$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143732.roa File: AS143732.roa (raw, json) Hash identifier: Mj4Lxq8oKz0kxH45sWwH47Fg20JbV07GEDoJI6GJMlM= Subject key identifier: 69:81:88:EB:D2:4F:0D:3D:BE:F9:DC:57:53:15:06:01:15:55:E2:B3 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41EA59FCEA3AD001BBD6CB15548319A998F6F78D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143732.roa Signing time: Wed 04 Mar 2026 06:12:43 +0000 ROA not before: Wed 04 Mar 2026 06:07:43 +0000 ROA not after: Wed 03 Mar 2027 06:12:43 +0000 asID: 143732 IP address blocks: 240a:a43a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ea:59:fc:ea:3a:d0:01:bb:d6:cb:15:54:83:19:a9:98:f6:f7:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:43 2026 GMT Not After : Mar 3 06:12:43 2027 GMT Subject: CN=698188EBD24F0D3DBEF9DC57531506011555E2B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ce:29:22:48:a3:0a:ab:37:76:67:18:40:b6: 8d:31:af:00:3a:8f:25:7f:58:83:7a:5f:f3:e0:40: b4:f3:96:4d:b6:9e:ca:ff:b4:2b:4e:ab:5a:94:a6: 78:90:b3:cf:ad:5e:4b:a0:53:97:05:76:40:0f:45: d3:52:ae:aa:25:11:98:1f:fa:cd:99:25:27:15:d6: 22:58:ba:a1:98:e4:5e:a6:fe:55:4e:d7:36:ca:a7: 87:e6:45:0b:3f:3c:87:79:8e:59:a9:57:14:0c:83: 83:75:f8:52:9b:49:15:f0:a1:06:f1:b4:09:ae:c2: 9b:ce:5f:cb:cd:a1:e2:57:09:06:74:6f:25:1d:32: f6:60:0d:fc:73:d1:b6:5d:8c:95:04:11:b1:4b:89: 0d:56:c9:42:9e:df:ac:7b:9e:68:63:e9:ca:5b:a0: ea:af:2e:a6:37:e1:00:92:61:3f:56:f7:e2:38:3b: 47:76:f4:a3:b4:87:6f:37:c3:77:59:ee:42:70:b6: c7:09:c7:2d:7a:aa:8c:55:85:d9:a8:75:93:1f:4a: b8:ad:71:60:a8:83:9f:17:bb:23:60:2a:94:a5:79: e1:a2:5e:6f:a7:c9:cd:4a:64:4a:0c:8f:2e:ba:ad: 0e:7e:77:2e:b2:b1:0e:1f:aa:e2:76:18:ae:52:24: de:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:81:88:EB:D2:4F:0D:3D:BE:F9:DC:57:53:15:06:01:15:55:E2:B3 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a43a::/32 Signature Algorithm: sha256WithRSAEncryption 51:b1:d6:0d:15:7a:63:56:62:05:e0:6d:1b:c1:52:22:9a:ca: 49:d5:70:b9:a0:2d:b5:cd:1d:83:55:4d:ab:fc:e1:2c:34:f1: 17:2d:72:fd:30:2b:cf:e5:3b:18:32:8a:49:53:6b:23:b1:bd: e9:7d:58:e4:9b:fb:c9:11:c8:91:8a:37:dd:e5:13:f4:70:bb: 79:a1:02:3a:cd:67:bb:9f:ee:d8:80:a3:6f:03:7a:1e:b8:fb: 16:87:9c:a7:98:50:a9:33:1a:5e:c1:8e:1c:13:58:89:3a:45: 5b:a3:a1:cd:bc:c1:d6:88:ff:1a:55:a5:9c:19:05:65:6a:78: e5:c1:af:35:6d:6a:7b:3a:b4:d3:75:7d:d3:61:92:83:1a:10: 02:5a:76:54:91:42:7f:d5:a6:d7:dc:96:1a:ae:f5:ad:52:13: 35:a4:5f:c2:58:98:35:bd:e5:cb:ab:74:c2:f4:0b:6a:80:d6: df:d6:d1:7a:2b:55:e0:47:52:4a:cd:77:db:b6:56:5d:9c:76: 20:79:1e:1a:03:b7:2a:8a:56:f2:3e:d1:88:35:56:a4:13:3a: a9:aa:b5:ab:46:ab:0b:5d:83:84:d5:68:91:d2:06:fa:3f:49: b4:35:c0:c6:19:89:eb:35:4f:4c:9b:d4:ea:25:38:e4:d1:1b: ca:d8:52:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQepZ/Oo60AG71ssVVIMZqZj2940wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc0M1oX DTI3MDMwMzA2MTI0M1owMzExMC8GA1UEAxMoNjk4MTg4RUJEMjRGMEQzREJFRjlE QzU3NTMxNTA2MDExNTU1RTJCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzOKSJIowqrN3ZnGEC2jTGvADqPJX9Yg3pf8+BAtPOWTbaeyv+0K06rWpSm eJCzz61eS6BTlwV2QA9F01KuqiURmB/6zZklJxXWIli6oZjkXqb+VU7XNsqnh+ZF Cz88h3mOWalXFAyDg3X4UptJFfChBvG0Ca7Cm85fy82h4lcJBnRvJR0y9mAN/HPR tl2MlQQRsUuJDVbJQp7frHueaGPpylug6q8upjfhAJJhP1b34jg7R3b0o7SHbzfD d1nuQnC2xwnHLXqqjFWF2ah1kx9KuK1xYKiDnxe7I2AqlKV54aJeb6fJzUpkSgyP LrqtDn53LrKxDh+q4nYYrlIk3isCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRpgYjr 0k8NPb753FdTFQYBFVXiszAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzczMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pDowDQYJKoZIhvcNAQELBQADggEBAFGx1g0VemNWYgXgbRvBUiKayknVcLmgLbXN HYNVTav84Sw08Rctcv0wK8/lOxgyiklTayOxvel9WOSb+8kRyJGKN93lE/Rwu3mh AjrNZ7uf7tiAo28Deh64+xaHnKeYUKkzGl7BjhwTWIk6RVujoc28wdaI/xpVpZwZ BWVqeOXBrzVtans6tNN1fdNhkoMaEAJadlSRQn/Vptfclhqu9a1SEzWkX8JYmDW9 5curdML0C2qA1t/W0XorVeBHUkrNd9u2Vl2cdiB5HhoDtyqKVvI+0Yg1VqQTOqmq tatGqwtdg4TVaJHSBvo/SbQ1wMYZies1T0yb1OolOOTRG8rYUhA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:31 2026 by rpki-client