$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143616.roa File: AS143616.roa (raw, json) Hash identifier: rZc4oh0TFxIjEkMC9TBie0x+Zf42TU+mh94RaSyEZWg= Subject key identifier: B3:0D:DD:09:BB:53:D3:63:3B:E9:58:52:31:BC:13:11:06:D0:01:5B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 541C963BB92BD003BAB60ADE58A42BFBC1471067 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143616.roa Signing time: Wed 04 Mar 2026 06:15:15 +0000 ROA not before: Wed 04 Mar 2026 06:10:15 +0000 ROA not after: Wed 03 Mar 2027 06:15:15 +0000 asID: 143616 IP address blocks: 240a:a3c6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:1c:96:3b:b9:2b:d0:03:ba:b6:0a:de:58:a4:2b:fb:c1:47:10:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:15 2026 GMT Not After : Mar 3 06:15:15 2027 GMT Subject: CN=B30DDD09BB53D3633BE9585231BC131106D0015B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:a8:70:ac:d4:45:d1:a4:62:93:83:45:34: 4f:b9:ef:c5:9f:9e:28:7c:7d:be:b0:d1:80:07:05: 32:93:07:97:46:75:5f:3b:11:a8:f6:5d:bd:62:02: f7:44:bb:72:e0:76:18:3c:ee:5b:4a:cf:d7:a4:dc: 60:4f:72:34:2d:3e:79:4c:94:7b:47:ac:ad:b8:bf: 1a:91:22:9a:0a:d5:28:40:fc:28:8e:18:d2:5f:fd: 19:a0:d4:16:fc:15:46:c4:eb:e1:ee:b2:c2:83:ba: b1:c8:68:f9:6f:c0:2f:b4:27:f7:fd:8e:7a:e1:fa: d0:0d:16:b7:a3:3d:64:4d:00:2d:e7:7f:db:6a:9f: 01:73:5a:1c:32:d7:93:96:61:42:5f:37:6b:7f:ad: d1:a7:57:76:d8:4e:b9:d1:8e:65:08:86:ad:e3:45: f2:8e:63:e7:bb:82:cd:15:3f:88:c4:2c:5c:7d:5e: 9d:27:3e:f7:98:6b:bd:2c:51:3b:08:9e:30:dc:7b: 03:27:91:08:81:e5:f9:ad:14:17:7c:b6:8a:9a:5a: c4:d6:42:8e:40:aa:c6:3a:c9:5c:b6:10:4f:6f:ba: 05:0c:2a:e5:a8:4a:35:33:21:e9:b3:46:f6:ba:9e: 96:f7:85:de:b3:75:31:4d:02:f8:03:68:3a:44:28: 03:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0D:DD:09:BB:53:D3:63:3B:E9:58:52:31:BC:13:11:06:D0:01:5B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143616.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a3c6::/32 Signature Algorithm: sha256WithRSAEncryption 78:38:58:40:0b:b9:f7:c5:67:83:db:a8:1a:52:22:20:1b:d7: 28:2d:c3:ab:12:47:e8:89:8d:ed:d0:5c:94:74:ec:e4:ae:ac: 77:4d:b6:e1:3d:bc:cc:8b:5f:04:62:88:60:21:d4:d2:b0:2a: f8:9b:ce:33:6d:c4:ea:ca:a1:34:68:16:f3:b7:c0:1a:e5:07: 29:dd:ac:8d:2d:8a:d3:67:a4:bd:be:ec:f3:5a:d2:b4:e4:50: 95:df:0f:62:9f:7b:49:ec:de:40:b8:50:b9:bd:a4:f9:7d:3f: 78:69:7a:0e:6c:2c:c3:92:05:d5:c8:be:e2:ce:48:c1:b6:4a: fe:8e:5d:29:52:9e:f1:ae:9a:05:96:dc:67:39:1a:61:a8:b3: 77:7f:45:b8:1b:a4:ad:4a:31:e4:90:07:04:53:89:82:ce:20: 3f:7c:d7:f0:e6:5f:1f:60:69:c1:52:f7:ea:08:2c:d6:a9:fd: 3f:e4:00:6b:7a:62:48:43:ef:a8:7c:bc:ff:c4:c6:d0:13:e2: e2:52:35:09:1f:2d:a5:1a:8e:e3:b2:b4:39:c6:c4:ba:f3:32: 7c:25:50:f5:93:a7:78:96:ec:d6:34:ef:8f:02:dd:54:99:97: e2:69:09:1f:7c:ec:42:52:e3:db:4a:33:f5:6d:f8:69:14:78: 20:e1:81:1f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVByWO7kr0AO6tgreWKQr+8FHEGcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAxNVoX DTI3MDMwMzA2MTUxNVowMzExMC8GA1UEAxMoQjMwREREMDlCQjUzRDM2MzNCRTk1 ODUyMzFCQzEzMTEwNkQwMDE1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7hqHCs1EXRpGKTg0U0T7nvxZ+eKHx9vrDRgAcFMpMHl0Z1XzsRqPZdvWIC 90S7cuB2GDzuW0rP16TcYE9yNC0+eUyUe0esrbi/GpEimgrVKED8KI4Y0l/9GaDU FvwVRsTr4e6ywoO6scho+W/AL7Qn9/2OeuH60A0Wt6M9ZE0ALed/22qfAXNaHDLX k5ZhQl83a3+t0adXdthOudGOZQiGreNF8o5j57uCzRU/iMQsXH1enSc+95hrvSxR OwieMNx7AyeRCIHl+a0UF3y2ippaxNZCjkCqxjrJXLYQT2+6BQwq5ahKNTMh6bNG 9rqelveF3rN1MU0C+ANoOkQoAz8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSzDd0J u1PTYzvpWFIxvBMRBtABWzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzYxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK o8YwDQYJKoZIhvcNAQELBQADggEBAHg4WEALuffFZ4PbqBpSIiAb1ygtw6sSR+iJ je3QXJR07OSurHdNtuE9vMyLXwRiiGAh1NKwKvibzjNtxOrKoTRoFvO3wBrlBynd rI0titNnpL2+7PNa0rTkUJXfD2Kfe0ns3kC4ULm9pPl9P3hpeg5sLMOSBdXIvuLO SMG2Sv6OXSlSnvGumgWW3Gc5GmGos3d/RbgbpK1KMeSQBwRTiYLOID981/DmXx9g acFS9+oILNap/T/kAGt6YkhD76h8vP/ExtAT4uJSNQkfLaUajuOytDnGxLrzMnwl UPWTp3iW7NY0748C3VSZl+JpCR987EJS49tKM/Vt+GkUeCDhgR8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:25 2026 by rpki-client