$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143750.roa File: AS143750.roa (raw, json) Hash identifier: +U+1vOtm2r153HchCfInhJqb6swP+MGKW5dmMTBZqmg= Subject key identifier: 3D:14:53:CD:B4:04:55:09:8E:66:F3:54:09:DE:EE:66:BC:FE:A1:7E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6CFA5335B3843FBBB27CA0A32B5AEE584AC7F468 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143750.roa Signing time: Wed 04 Mar 2026 06:12:48 +0000 ROA not before: Wed 04 Mar 2026 06:07:48 +0000 ROA not after: Wed 03 Mar 2027 06:12:48 +0000 asID: 143750 IP address blocks: 240a:a44c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fa:53:35:b3:84:3f:bb:b2:7c:a0:a3:2b:5a:ee:58:4a:c7:f4:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:48 2026 GMT Not After : Mar 3 06:12:48 2027 GMT Subject: CN=3D1453CDB40455098E66F35409DEEE66BCFEA17E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cf:e3:f5:70:e9:7a:4c:45:93:13:24:9d:4b: ec:8c:ee:8b:b0:c6:c5:4f:34:c3:40:52:fb:4d:2e: 36:3b:7e:a3:28:83:c0:c3:59:16:f1:c0:c4:a4:6e: 1d:72:e7:ff:0d:d6:c4:90:36:d9:d5:e5:a6:5b:2a: 60:7a:1e:b0:e2:38:8b:b6:16:38:29:3f:ce:01:d9: 88:cf:70:d8:1b:87:b9:eb:a4:be:57:54:66:16:e0: 30:85:7b:f9:c6:1e:e1:69:a0:82:39:1c:f5:67:2b: b1:00:9b:2a:be:33:91:95:64:6d:88:60:d4:89:09: 97:0f:9d:a7:8d:02:95:44:8b:b6:69:45:95:bf:52: 3e:a4:52:4a:33:5a:fb:2c:2b:0a:14:c7:4a:db:14: 19:f0:19:f1:c5:dc:7f:12:7d:6b:1f:11:73:a4:63: f0:f2:51:d6:f6:48:63:c3:2c:99:d8:ad:ad:73:6d: 2e:cd:38:d3:24:05:62:72:94:f9:5c:58:40:31:46: 48:8e:6c:44:bf:5d:de:a8:74:dd:94:db:1f:1b:ff: 87:b0:11:3d:a7:10:26:57:35:85:6c:a5:a2:00:a9: 81:3b:12:e5:1c:1e:50:34:37:f3:7a:01:ee:4e:fa: 65:8c:00:3c:29:02:c2:38:0e:53:87:39:79:9f:5e: b4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:14:53:CD:B4:04:55:09:8E:66:F3:54:09:DE:EE:66:BC:FE:A1:7E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143750.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a44c::/32 Signature Algorithm: sha256WithRSAEncryption 88:28:61:03:e4:07:ae:e8:e2:3e:60:c3:ad:9b:05:12:54:ed: f7:9d:6f:cf:80:2f:45:7b:3e:75:82:b4:91:2b:3f:2c:32:8d: c9:1b:87:3d:9a:f1:ca:3a:9b:3a:2b:b8:77:cd:25:94:02:15: 2b:a0:75:7a:49:a2:fc:64:07:f4:90:92:73:7d:8e:62:71:ed: 7c:de:aa:7e:22:67:82:11:20:c6:55:55:a4:34:30:2f:fd:b2: 36:a6:71:da:ce:8f:8c:39:e2:4d:21:6b:7e:a4:8a:cd:c0:ec: a9:c2:f9:31:39:44:5c:69:71:70:c5:72:10:d1:3e:cc:06:ee: 6c:ef:21:b5:49:ef:8b:6a:e6:dc:1a:e7:d0:68:97:6c:4b:7a: 57:c5:10:32:ba:82:db:99:98:55:34:9d:cb:10:48:d7:02:03: f6:9e:e4:ed:00:ba:73:34:5e:f1:bc:07:6f:a3:d6:e0:ee:63: bd:9a:09:46:c6:30:57:a8:51:f3:7a:cb:cd:88:f1:c5:d9:5a: d2:d4:fc:ec:20:ad:9e:fb:b6:bf:62:1d:fe:84:cd:fa:f1:57: 8d:07:c0:c1:ca:fa:14:f1:65:3e:6a:93:73:e1:ee:b9:22:8b: 67:96:37:40:a5:36:77:d7:6e:9e:ec:bb:b8:c3:25:a6:92:79: dd:e5:1b:90 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbPpTNbOEP7uyfKCjK1ruWErH9GgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc0OFoX DTI3MDMwMzA2MTI0OFowMzExMC8GA1UEAxMoM0QxNDUzQ0RCNDA0NTUwOThFNjZG MzU0MDlERUVFNjZCQ0ZFQTE3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN3P4/Vw6XpMRZMTJJ1L7Izui7DGxU80w0BS+00uNjt+oyiDwMNZFvHAxKRu HXLn/w3WxJA22dXlplsqYHoesOI4i7YWOCk/zgHZiM9w2BuHueukvldUZhbgMIV7 +cYe4Wmggjkc9WcrsQCbKr4zkZVkbYhg1IkJlw+dp40ClUSLtmlFlb9SPqRSSjNa +ywrChTHStsUGfAZ8cXcfxJ9ax8Rc6Rj8PJR1vZIY8MsmditrXNtLs040yQFYnKU +VxYQDFGSI5sRL9d3qh03ZTbHxv/h7ARPacQJlc1hWylogCpgTsS5RweUDQ383oB 7k76ZYwAPCkCwjgOU4c5eZ9etP0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ9FFPN tARVCY5m81QJ3u5mvP6hfjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzc1MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pEwwDQYJKoZIhvcNAQELBQADggEBAIgoYQPkB67o4j5gw62bBRJU7fedb8+AL0V7 PnWCtJErPywyjckbhz2a8co6mzoruHfNJZQCFSugdXpJovxkB/SQknN9jmJx7Xze qn4iZ4IRIMZVVaQ0MC/9sjamcdrOj4w54k0ha36kis3A7KnC+TE5RFxpcXDFchDR PswG7mzvIbVJ74tq5twa59Bol2xLelfFEDK6gtuZmFU0ncsQSNcCA/ae5O0AunM0 XvG8B2+j1uDuY72aCUbGMFeoUfN6y82I8cXZWtLU/OwgrZ77tr9iHf6EzfrxV40H wMHK+hTxZT5qk3Ph7rkii2eWN0ClNnfXbp7su7jDJaaSed3lG5A= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:35 2026 by rpki-client