$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143713.roa File: AS143713.roa (raw, json) Hash identifier: 3wnfjNj/SYHSXPc/rTbzi/2OTrIBKkh6QnXoX/p7Zh4= Subject key identifier: CC:34:60:44:B9:CA:38:CE:0E:6B:AB:5E:52:E8:F4:4A:84:9E:35:AD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3511734182BB34470EB5706D02B22C5DEBA7F6E6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143713.roa Signing time: Wed 04 Mar 2026 06:13:39 +0000 ROA not before: Wed 04 Mar 2026 06:08:39 +0000 ROA not after: Wed 03 Mar 2027 06:13:39 +0000 asID: 143713 IP address blocks: 240a:a427::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:11:73:41:82:bb:34:47:0e:b5:70:6d:02:b2:2c:5d:eb:a7:f6:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:39 2026 GMT Not After : Mar 3 06:13:39 2027 GMT Subject: CN=CC346044B9CA38CE0E6BAB5E52E8F44A849E35AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3b:50:d2:78:6f:56:0c:86:9f:38:ad:c1:1b: 6d:44:20:da:4e:fe:0b:54:57:9f:2a:7a:24:a9:79: a3:0c:e7:6c:b0:e6:f1:70:e6:95:96:96:c6:2c:b6: 68:f0:da:d2:9b:d6:d9:05:09:11:66:93:e6:1d:9b: 1e:48:37:70:21:8a:f1:d3:78:f6:32:49:ab:0e:2e: 2e:e8:81:28:94:65:de:a0:e0:44:7b:49:39:49:39: 9b:cd:fc:9c:50:e0:bf:52:a2:74:d5:5b:d6:4f:ce: 5d:d0:89:a2:6a:4d:bc:d6:c8:1b:12:6c:0f:1a:49: 56:78:5e:3b:35:e7:f1:c4:bc:ff:41:1f:78:cd:c5: 6f:e4:10:58:09:d8:8e:ac:fa:41:f5:e6:8a:63:bb: dc:45:11:fb:d5:5f:88:83:cd:d7:f4:8d:8d:42:18: 78:8d:69:e9:ef:03:1b:82:5a:b9:ca:0a:65:80:0e: d8:ef:18:6b:39:f4:a5:f7:c3:32:52:a6:13:30:9a: 00:af:08:0e:e2:5a:f3:87:a7:2d:a4:02:7d:16:d0: 02:64:ec:b7:ad:18:b5:79:eb:40:94:76:dc:d6:83: a5:7b:5c:a3:8a:1b:83:f7:05:a3:10:b4:ce:31:ad: 48:69:8b:2f:fc:77:84:63:50:86:af:36:ed:13:75: 63:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:34:60:44:B9:CA:38:CE:0E:6B:AB:5E:52:E8:F4:4A:84:9E:35:AD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143713.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a427::/32 Signature Algorithm: sha256WithRSAEncryption 02:26:25:63:3a:7b:03:70:74:2b:c5:e4:62:31:2c:29:27:9e: f9:b7:40:a4:6f:26:43:74:e0:44:8f:52:c9:07:9c:74:97:5e: 3d:42:80:4f:d7:5c:ca:ee:75:dd:f1:db:5e:5d:ce:b2:41:1f: 1c:4a:4a:41:8a:0d:f8:81:f2:be:48:c5:ff:dc:45:02:8f:c6: 87:04:50:ea:89:dd:1a:ba:36:95:20:3d:58:5b:de:d9:2e:44: cc:dc:a4:ae:dc:b6:f5:ef:59:eb:45:e1:b5:9c:35:d9:72:6c: d9:f0:86:9e:f4:ca:2a:ce:c4:7e:21:db:1f:98:f1:63:02:1a: 2e:e1:f0:61:52:98:85:6b:65:31:ba:3a:2b:42:c6:4f:12:34: 2b:22:df:0a:97:50:52:d5:74:b1:6d:7d:ec:2f:23:df:35:c8: d3:79:ff:c0:1e:db:4e:6e:70:f4:16:2f:3a:8b:9c:29:d8:1a: 94:06:c0:90:cc:4a:ca:26:4c:a7:88:43:a2:aa:28:ac:2e:f5: 3d:99:de:e2:93:18:e9:27:fb:81:13:27:25:af:14:4c:2c:3d: e0:b7:66:a4:8a:57:95:82:e8:11:04:27:0a:b4:8d:aa:80:0a: 23:e8:0e:ef:6a:b4:d1:43:70:5f:78:1c:bf:f5:fe:3a:71:99: 35:32:78:dd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNRFzQYK7NEcOtXBtArIsXeun9uYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgzOVoX DTI3MDMwMzA2MTMzOVowMzExMC8GA1UEAxMoQ0MzNDYwNDRCOUNBMzhDRTBFNkJB QjVFNTJFOEY0NEE4NDlFMzVBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN87UNJ4b1YMhp84rcEbbUQg2k7+C1RXnyp6JKl5owznbLDm8XDmlZaWxiy2 aPDa0pvW2QUJEWaT5h2bHkg3cCGK8dN49jJJqw4uLuiBKJRl3qDgRHtJOUk5m838 nFDgv1KidNVb1k/OXdCJompNvNbIGxJsDxpJVnheOzXn8cS8/0EfeM3Fb+QQWAnY jqz6QfXmimO73EUR+9VfiIPN1/SNjUIYeI1p6e8DG4JaucoKZYAO2O8Yazn0pffD MlKmEzCaAK8IDuJa84enLaQCfRbQAmTst60YtXnrQJR23NaDpXtco4obg/cFoxC0 zjGtSGmLL/x3hGNQhq827RN1Y9sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTMNGBE uco4zg5rq15S6PRKhJ41rTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzcxMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pCcwDQYJKoZIhvcNAQELBQADggEBAAImJWM6ewNwdCvF5GIxLCknnvm3QKRvJkN0 4ESPUskHnHSXXj1CgE/XXMrudd3x215dzrJBHxxKSkGKDfiB8r5Ixf/cRQKPxocE UOqJ3Rq6NpUgPVhb3tkuRMzcpK7ctvXvWetF4bWcNdlybNnwhp70yirOxH4h2x+Y 8WMCGi7h8GFSmIVrZTG6OitCxk8SNCsi3wqXUFLVdLFtfewvI981yNN5/8Ae205u cPQWLzqLnCnYGpQGwJDMSsomTKeIQ6KqKKwu9T2Z3uKTGOkn+4ETJyWvFEwsPeC3 ZqSKV5WC6BEEJwq0jaqACiPoDu9qtNFDcF94HL/1/jpxmTUyeN0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:58 2026 by rpki-client