$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143726.roa File: AS143726.roa (raw, json) Hash identifier: 7tCwVmmrjL9fdy16tLlwuakHaQJyueVKA7cIyAZa4m4= Subject key identifier: F5:7B:71:64:39:5F:BD:54:20:35:22:32:F3:24:5F:84:99:BB:08:6E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 086466E7CAE5C3BFFAF1B0E3039A108A08D3714A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143726.roa Signing time: Wed 04 Mar 2026 06:13:27 +0000 ROA not before: Wed 04 Mar 2026 06:08:27 +0000 ROA not after: Wed 03 Mar 2027 06:13:27 +0000 asID: 143726 IP address blocks: 240a:a434::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:64:66:e7:ca:e5:c3:bf:fa:f1:b0:e3:03:9a:10:8a:08:d3:71:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:27 2026 GMT Not After : Mar 3 06:13:27 2027 GMT Subject: CN=F57B7164395FBD5420352232F3245F8499BB086E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1b:d4:a1:eb:b5:ee:cf:9f:e0:80:88:80:f9: b0:cd:85:33:c4:ef:14:89:83:56:ea:37:a4:1b:b6: 79:8e:1e:7f:b0:c0:ee:b6:e7:2e:e2:01:97:e8:c2: 16:ea:fb:cd:45:aa:69:c7:68:75:19:14:c9:58:29: 36:0a:aa:7c:05:6e:c7:2d:8d:78:b3:e9:40:ae:3a: 91:0d:02:27:10:ed:5d:22:d0:43:44:53:3e:44:6b: ab:db:38:40:31:3e:7e:bb:a6:19:a3:fb:b7:55:f9: 36:69:ca:4a:99:a8:73:84:0c:a3:aa:f4:c5:57:b8: 89:53:ee:00:5c:2d:b2:ef:bf:8c:a0:3d:5d:3b:76: b2:2e:df:f7:bd:9f:46:28:f4:24:7e:b9:3c:d0:45: f3:06:18:ad:12:e7:99:fe:30:bd:25:f4:d6:6e:c8: 8b:47:14:8a:73:84:06:cb:5a:56:c4:20:9b:a0:cc: 07:bc:5b:eb:e0:20:85:ce:88:4a:87:36:fd:f4:06: 3c:b4:79:0b:d8:37:3d:b8:74:42:90:a0:13:61:18: 08:fd:db:66:3c:c3:e0:b2:b6:61:fa:c6:68:08:4e: ce:e3:23:ca:5b:db:55:84:7f:b3:57:a3:8f:1a:15: fe:ce:f2:e7:40:2e:7b:cc:5f:56:c8:2b:36:0d:5e: be:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7B:71:64:39:5F:BD:54:20:35:22:32:F3:24:5F:84:99:BB:08:6E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143726.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a434::/32 Signature Algorithm: sha256WithRSAEncryption 43:b5:fd:c9:84:87:9f:de:d8:42:46:2f:03:bf:2d:f0:bc:0b: a8:f5:ed:bc:fe:e6:58:5f:ec:2b:0c:eb:cc:43:61:58:ff:3a: 2c:22:96:f2:07:3f:7a:97:c2:e7:7a:82:ab:68:fe:24:01:13: 4a:c0:a8:01:b6:bb:df:e1:d3:24:13:cf:1f:f9:ea:45:a4:fa: 7c:d6:cb:8f:99:00:97:65:26:b3:89:37:58:89:9b:cb:a0:ef: 9d:f1:28:0f:a1:92:5f:cd:5f:89:29:20:d6:b0:0f:ab:97:c3: dc:04:32:80:74:e7:c8:69:dc:f2:70:72:ff:45:6a:ff:96:03: c1:42:ec:fb:26:eb:54:9f:83:8a:a6:9f:ca:89:0d:a6:bc:8f: 99:e7:23:6b:df:42:24:f6:7c:13:83:01:17:1d:7c:f5:c2:e2: a5:55:90:33:e1:3c:a1:11:38:69:1a:16:49:5a:67:4c:e8:5a: 9b:06:74:01:9e:a3:c4:f6:7e:a8:d0:c0:d3:ad:f8:f3:8b:28: df:d1:af:a9:9a:a0:09:00:db:1d:c4:e6:2a:42:aa:6a:8f:d2: b1:a0:43:dc:be:6b:40:e6:0b:44:fd:a7:7a:6d:18:78:f1:9f: b0:d5:86:58:d5:8c:47:71:e0:95:e3:e5:22:f0:bb:26:7e:d5: 97:1f:d5:e7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCGRm58rlw7/68bDjA5oQigjTcUowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgyN1oX DTI3MDMwMzA2MTMyN1owMzExMC8GA1UEAxMoRjU3QjcxNjQzOTVGQkQ1NDIwMzUy MjMyRjMyNDVGODQ5OUJCMDg2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN4b1KHrte7Pn+CAiID5sM2FM8TvFImDVuo3pBu2eY4ef7DA7rbnLuIBl+jC Fur7zUWqacdodRkUyVgpNgqqfAVuxy2NeLPpQK46kQ0CJxDtXSLQQ0RTPkRrq9s4 QDE+frumGaP7t1X5NmnKSpmoc4QMo6r0xVe4iVPuAFwtsu+/jKA9XTt2si7f972f Rij0JH65PNBF8wYYrRLnmf4wvSX01m7Ii0cUinOEBstaVsQgm6DMB7xb6+Aghc6I Soc2/fQGPLR5C9g3Pbh0QpCgE2EYCP3bZjzD4LK2YfrGaAhOzuMjylvbVYR/s1ej jxoV/s7y50Aue8xfVsgrNg1evl0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT1e3Fk OV+9VCA1IjLzJF+EmbsIbjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzcyNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pDQwDQYJKoZIhvcNAQELBQADggEBAEO1/cmEh5/e2EJGLwO/LfC8C6j17bz+5lhf 7CsM68xDYVj/OiwilvIHP3qXwud6gqto/iQBE0rAqAG2u9/h0yQTzx/56kWk+nzW y4+ZAJdlJrOJN1iJm8ug753xKA+hkl/NX4kpINawD6uXw9wEMoB058hp3PJwcv9F av+WA8FC7Psm61Sfg4qmn8qJDaa8j5nnI2vfQiT2fBODARcdfPXC4qVVkDPhPKER OGkaFklaZ0zoWpsGdAGeo8T2fqjQwNOt+POLKN/Rr6maoAkA2x3E5ipCqmqP0rGg Q9y+a0DmC0T9p3ptGHjxn7DVhljVjEdx4JXj5SLwuyZ+1Zcf1ec= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:17 2026 by rpki-client