$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143614.roa File: AS143614.roa (raw, json) Hash identifier: EBAewMq6gc9A0+brSU+1L39mIfrG59GhQhdISyDFU2c= Subject key identifier: 5C:60:02:4E:79:08:DD:67:42:40:63:D7:AA:4B:06:74:B8:01:CC:3F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 162D23F4813DC20774412936F8DFF49DC7C804DC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143614.roa Signing time: Wed 04 Mar 2026 06:14:13 +0000 ROA not before: Wed 04 Mar 2026 06:09:13 +0000 ROA not after: Wed 03 Mar 2027 06:14:13 +0000 asID: 143614 IP address blocks: 240a:a3c4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:2d:23:f4:81:3d:c2:07:74:41:29:36:f8:df:f4:9d:c7:c8:04:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:13 2026 GMT Not After : Mar 3 06:14:13 2027 GMT Subject: CN=5C60024E7908DD67424063D7AA4B0674B801CC3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:d3:15:b8:85:49:3b:a4:fd:d4:40:2c:29:c0: b7:8d:8c:5d:59:03:ba:64:33:44:4e:0a:53:20:62: 2e:c0:c3:69:2b:85:e8:d0:e5:c0:51:69:ce:53:bc: 0d:62:85:ea:5a:1e:2b:eb:3c:b6:b2:2d:03:ac:9e: ea:aa:b2:ee:97:8d:ec:b5:db:d1:e6:3b:5f:75:5b: 4b:d8:75:b2:b7:64:ed:0d:39:9d:ee:5f:bf:28:e3: 32:15:1e:ae:74:a0:0a:a3:94:70:b8:49:76:64:49: 03:09:7f:47:2f:ba:c3:8f:99:5d:f5:8f:30:62:d8: 71:99:bb:bc:7c:d9:60:e0:e4:2d:c1:63:df:cf:5d: c7:97:e1:4c:17:5b:47:e6:39:51:ac:83:95:93:a2: 79:41:14:eb:9d:0d:39:bf:be:05:d7:74:44:2a:e6: 93:01:73:28:8f:bd:4d:62:5e:86:00:c0:d6:df:e7: 5e:95:5e:35:0b:c0:9a:06:0d:ac:cd:97:ea:b2:14: ce:f1:fe:ce:7d:fc:e9:43:e3:ab:76:ac:73:22:d7: fa:db:6f:15:e0:c2:4b:fc:70:96:0d:26:e2:62:72: 2c:c9:97:fa:29:4e:b4:74:e5:eb:f0:d2:aa:fb:72: 67:c3:0b:b7:61:41:2c:73:bb:85:0b:00:28:98:d5: f2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:60:02:4E:79:08:DD:67:42:40:63:D7:AA:4B:06:74:B8:01:CC:3F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143614.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a3c4::/32 Signature Algorithm: sha256WithRSAEncryption 1a:9f:53:7e:9a:3b:75:5c:02:35:87:59:56:1e:8b:ef:a5:a9: 9f:b1:ae:8f:bd:5b:58:a5:72:a0:b4:a1:00:d0:da:2f:7e:04: 85:2f:d8:22:68:9a:47:c3:68:21:49:83:79:b4:e9:46:fb:94: 44:1a:d4:be:51:39:2a:1f:cb:6d:a2:37:e7:9d:2e:66:72:eb: e6:c9:d2:e5:d7:18:a8:b5:a6:66:f3:4e:07:d5:55:d9:6a:fb: 42:88:51:81:3a:41:a3:c6:52:ea:24:9d:6c:29:1f:10:1c:9a: 48:1b:05:b6:32:0e:6f:3f:a6:b1:c0:86:a3:31:41:85:07:37: 40:5a:aa:70:66:ac:48:73:b7:80:bd:fd:d1:22:ca:cd:11:28: 18:ae:42:20:5e:32:40:ce:c9:e3:c9:11:68:3c:b7:a6:4d:97: 42:f4:a4:ff:a5:66:cf:8d:cc:41:d9:eb:55:80:58:fc:5a:8d: 4b:53:29:b7:a8:ee:6b:f8:ee:5a:32:d2:d2:ef:5b:f9:37:65: 03:57:e9:ee:8e:c9:96:58:ca:e2:64:c5:3a:4d:af:65:99:c9: 04:8e:24:dd:46:0b:a8:c5:9d:f0:83:64:23:60:44:00:01:10: 66:c7:6e:7b:c1:31:fb:21:47:10:8b:3c:55:d2:29:d5:33:b5: df:28:ee:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFi0j9IE9wgd0QSk2+N/0ncfIBNwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDkxM1oX DTI3MDMwMzA2MTQxM1owMzExMC8GA1UEAxMoNUM2MDAyNEU3OTA4REQ2NzQyNDA2 M0Q3QUE0QjA2NzRCODAxQ0MzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIHTFbiFSTuk/dRALCnAt42MXVkDumQzRE4KUyBiLsDDaSuF6NDlwFFpzlO8 DWKF6loeK+s8trItA6ye6qqy7peN7LXb0eY7X3VbS9h1srdk7Q05ne5fvyjjMhUe rnSgCqOUcLhJdmRJAwl/Ry+6w4+ZXfWPMGLYcZm7vHzZYODkLcFj389dx5fhTBdb R+Y5UayDlZOieUEU650NOb++Bdd0RCrmkwFzKI+9TWJehgDA1t/nXpVeNQvAmgYN rM2X6rIUzvH+zn386UPjq3ascyLX+ttvFeDCS/xwlg0m4mJyLMmX+ilOtHTl6/DS qvtyZ8MLt2FBLHO7hQsAKJjV8lECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRcYAJO eQjdZ0JAY9eqSwZ0uAHMPzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzYxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o8QwDQYJKoZIhvcNAQELBQADggEBABqfU36aO3VcAjWHWVYei++lqZ+xro+9W1il cqC0oQDQ2i9+BIUv2CJomkfDaCFJg3m06Ub7lEQa1L5ROSofy22iN+edLmZy6+bJ 0uXXGKi1pmbzTgfVVdlq+0KIUYE6QaPGUuoknWwpHxAcmkgbBbYyDm8/prHAhqMx QYUHN0BaqnBmrEhzt4C9/dEiys0RKBiuQiBeMkDOyePJEWg8t6ZNl0L0pP+lZs+N zEHZ61WAWPxajUtTKbeo7mv47loy0tLvW/k3ZQNX6e6OyZZYyuJkxTpNr2WZyQSO JN1GC6jFnfCDZCNgRAABEGbHbnvBMfshRxCLPFXSKdUztd8o7vw= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:48 2026 by rpki-client