$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143710.roa File: AS143710.roa (raw, json) Hash identifier: VyX42DhSSbHQqx0y10369W7x6uM1mI/D/cwhJfM6zeY= Subject key identifier: 8E:D2:64:F9:9B:BA:D1:07:48:EE:84:D9:72:8D:3D:D8:FF:41:31:4B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6E54B5684AC2B53F392489D370D7CB68FF2E03D6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143710.roa Signing time: Wed 04 Mar 2026 06:14:46 +0000 ROA not before: Wed 04 Mar 2026 06:09:46 +0000 ROA not after: Wed 03 Mar 2027 06:14:46 +0000 asID: 143710 IP address blocks: 240a:a424::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:54:b5:68:4a:c2:b5:3f:39:24:89:d3:70:d7:cb:68:ff:2e:03:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:46 2026 GMT Not After : Mar 3 06:14:46 2027 GMT Subject: CN=8ED264F99BBAD10748EE84D9728D3DD8FF41314B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:c1:4e:67:e2:36:83:38:f6:54:15:e6:f1: ae:0f:eb:b7:67:f0:69:de:cf:be:f5:c0:c0:81:2b: 42:01:2a:53:9a:67:91:cc:26:34:05:66:ee:a1:26: b4:61:6d:3d:84:e9:1f:24:58:01:af:c1:39:34:1f: 8c:c6:e4:d7:87:2b:4d:85:c7:e1:12:e5:1e:9e:94: 1b:61:65:ec:c9:73:50:0d:bf:83:06:6a:c2:bc:36: c3:d1:81:60:0e:c3:73:48:3a:b3:93:55:37:ef:23: af:e8:9c:be:c4:62:7a:eb:3e:81:cb:18:82:32:82: ee:d9:5e:14:08:97:72:c3:c7:4b:3a:ac:46:23:0f: 59:6a:2a:c1:81:1a:a7:4c:d4:81:77:2c:33:12:2b: d1:eb:ba:6b:5c:4a:e5:8d:ea:97:47:76:3c:ee:bc: f6:f8:3e:80:bd:a0:eb:e6:03:85:ba:31:22:2e:5f: ef:8b:b8:bc:8b:16:35:11:a6:60:3f:7d:61:40:eb: 3d:cc:39:5a:22:97:16:27:f8:d0:98:a0:4c:3a:fb: 62:22:6e:a3:01:2f:e2:80:71:5d:49:c8:46:25:3f: db:7f:dc:21:1c:69:78:ec:ea:b4:bf:e3:de:2a:9a: 41:c9:a6:9e:24:02:2b:7d:f3:6a:d2:93:f8:47:69: d5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D2:64:F9:9B:BA:D1:07:48:EE:84:D9:72:8D:3D:D8:FF:41:31:4B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143710.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a424::/32 Signature Algorithm: sha256WithRSAEncryption 5b:8d:04:15:18:7b:bb:03:f6:be:45:5a:2c:82:70:75:33:af: 17:9d:23:c4:07:aa:79:df:aa:b8:10:ba:85:7a:aa:9b:13:6f: b5:e5:c7:fe:b5:69:62:01:2b:14:f0:a8:3d:aa:39:d4:35:cd: 5e:0b:72:ed:a7:a5:ec:5c:bf:b5:b2:64:0b:79:e3:a6:79:c6: 8f:a5:70:4a:23:e4:15:0c:ed:81:ed:81:34:32:ba:5d:cf:62: a2:fa:6b:49:a1:3d:4e:13:c7:90:25:a3:c1:56:ef:63:c9:aa: d5:6f:4c:bb:7c:90:11:83:d4:bc:ee:24:f4:f9:2c:63:30:33: 80:3f:39:94:14:39:d8:dd:6d:4a:fe:c6:43:60:97:51:28:75: b8:85:43:18:50:7b:3b:5b:07:b3:26:79:f1:3a:5a:76:3f:b3: 81:45:ae:93:37:b1:e2:ec:e3:b8:16:f1:11:58:99:5e:ff:76: c0:47:3e:4e:e8:84:15:4a:53:fa:f5:aa:bb:e1:06:4f:e4:7d: 56:08:e5:11:e9:84:3c:b4:9c:20:3f:c1:15:fa:41:fb:a3:c3: 85:4c:47:07:58:c0:05:6e:ee:41:79:62:44:85:99:ea:73:a2: 25:5b:e4:01:f2:b8:e5:57:ce:81:5f:69:1a:61:8d:be:66:b4: 34:c8:b6:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUblS1aErCtT85JInTcNfLaP8uA9YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk0NloX DTI3MDMwMzA2MTQ0NlowMzExMC8GA1UEAxMoOEVEMjY0Rjk5QkJBRDEwNzQ4RUU4 NEQ5NzI4RDNERDhGRjQxMzE0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1VwU5n4jaDOPZUFebxrg/rt2fwad7PvvXAwIErQgEqU5pnkcwmNAVm7qEm tGFtPYTpHyRYAa/BOTQfjMbk14crTYXH4RLlHp6UG2Fl7MlzUA2/gwZqwrw2w9GB YA7Dc0g6s5NVN+8jr+icvsRieus+gcsYgjKC7tleFAiXcsPHSzqsRiMPWWoqwYEa p0zUgXcsMxIr0eu6a1xK5Y3ql0d2PO689vg+gL2g6+YDhboxIi5f74u4vIsWNRGm YD99YUDrPcw5WiKXFif40JigTDr7YiJuowEv4oBxXUnIRiU/23/cIRxpeOzqtL/j 3iqaQcmmniQCK33zatKT+Edp1TUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSO0mT5 m7rRB0juhNlyjT3Y/0ExSzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzcxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pCQwDQYJKoZIhvcNAQELBQADggEBAFuNBBUYe7sD9r5FWiyCcHUzrxedI8QHqnnf qrgQuoV6qpsTb7Xlx/61aWIBKxTwqD2qOdQ1zV4Lcu2npexcv7WyZAt546Z5xo+l cEoj5BUM7YHtgTQyul3PYqL6a0mhPU4Tx5Alo8FW72PJqtVvTLt8kBGD1LzuJPT5 LGMwM4A/OZQUOdjdbUr+xkNgl1EodbiFQxhQeztbB7MmefE6WnY/s4FFrpM3seLs 47gW8RFYmV7/dsBHPk7ohBVKU/r1qrvhBk/kfVYI5RHphDy0nCA/wRX6Qfujw4VM RwdYwAVu7kF5YkSFmepzoiVb5AHyuOVXzoFfaRphjb5mtDTItiI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:45 2026 by rpki-client