$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143781.roa File: AS143781.roa (raw, json) Hash identifier: BrVXS3iL52mC55Bziwu66cNQHxf++TDBGvsrUQixfmM= Subject key identifier: E2:FE:70:BA:9F:75:08:CB:14:4B:1E:A6:38:C1:2C:F0:5E:1D:4B:EA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2F42D792406335CC816E0BD6E5ED315790F1B127 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143781.roa Signing time: Wed 04 Mar 2026 06:15:25 +0000 ROA not before: Wed 04 Mar 2026 06:10:25 +0000 ROA not after: Wed 03 Mar 2027 06:15:25 +0000 asID: 143781 IP address blocks: 240a:a46b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:42:d7:92:40:63:35:cc:81:6e:0b:d6:e5:ed:31:57:90:f1:b1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:25 2026 GMT Not After : Mar 3 06:15:25 2027 GMT Subject: CN=E2FE70BA9F7508CB144B1EA638C12CF05E1D4BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:43:d0:4c:0b:60:6a:97:ba:10:72:fb:63:1c: 89:ec:b8:14:eb:6d:28:af:12:f2:40:2a:20:e3:d2: 9a:b9:44:1b:6a:20:9a:99:1b:66:fa:dd:8f:30:71: cb:fe:23:29:f6:04:c5:f3:83:04:9d:1f:9d:f2:50: 4c:b0:4f:5c:0b:23:01:07:f3:a9:26:6b:86:5a:2b: aa:f3:bb:5a:93:15:ed:6e:ad:dc:3d:53:b2:1d:c5: 23:ec:fa:e0:91:31:85:5e:af:2d:5f:cf:d5:72:2a: a5:c4:86:f5:26:02:35:56:cc:26:76:1d:fd:92:97: d9:d4:73:44:58:ed:f0:55:f9:92:8f:8f:e5:43:99: d8:75:c7:dc:ac:f7:bf:2c:40:e7:84:b5:59:e4:cd: 93:38:ac:31:bd:0f:33:cc:73:1b:4a:61:e9:a9:54: 9c:bb:05:19:6d:0e:09:df:32:db:25:a0:dc:fd:03: a6:37:3b:b4:17:d5:30:67:e3:8b:37:f5:0f:aa:0e: e0:fe:cc:62:58:73:c1:14:4c:fc:33:9c:ef:4a:bb: 1d:9e:21:ce:74:d9:18:41:a9:44:39:62:3c:00:87: 32:da:f1:59:df:18:f0:f8:8d:fb:d8:52:89:be:f3: ae:c5:11:c5:62:b0:df:a8:d4:6c:1a:2b:3e:56:ee: a9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FE:70:BA:9F:75:08:CB:14:4B:1E:A6:38:C1:2C:F0:5E:1D:4B:EA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143781.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a46b::/32 Signature Algorithm: sha256WithRSAEncryption 09:3c:02:ff:02:68:f8:4e:63:05:fb:77:ba:46:7b:c6:22:e2: 28:e4:f6:a1:10:b1:fa:d6:b4:ea:fd:87:d9:c8:7a:32:3b:61: d5:14:f0:9c:3c:f5:bc:a7:5c:27:d1:9f:79:25:eb:fa:a8:47: 3e:69:48:b7:01:91:e4:c4:b5:58:20:61:e1:f9:9a:f4:cf:d1: ed:3f:90:ec:ea:e0:b7:97:79:15:74:5c:4b:e8:02:64:fe:73: 2f:3d:11:de:fe:cb:3f:79:b0:b2:97:1e:6f:c9:ac:48:56:b1: ad:f6:89:05:14:24:81:a7:ca:00:b0:6d:ce:ca:35:9e:bb:76: 66:ad:d6:bc:f0:c9:ef:bf:00:f0:7d:45:bf:08:b9:cf:ce:c7: 71:23:ee:72:98:a8:1d:1d:41:7a:7d:36:ff:97:d1:03:6c:c4: 2a:83:58:45:28:1a:cb:2e:a9:9a:10:94:f4:a8:6c:ee:a1:7b: 1a:46:9f:3d:f7:9b:71:8e:f2:6e:26:4d:27:f2:5b:12:23:80: 57:8b:b4:2f:1c:48:d4:cc:c3:9d:f8:14:01:ae:58:ad:98:72: f2:62:d5:e9:b7:e4:9a:2d:84:8b:6d:c1:7d:50:9b:b7:b0:6b: ff:48:c0:27:41:33:28:53:3b:e4:64:96:b0:5e:c3:15:b6:0d: 81:13:ff:cc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUL0LXkkBjNcyBbgvW5e0xV5DxsScwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyNVoX DTI3MDMwMzA2MTUyNVowMzExMC8GA1UEAxMoRTJGRTcwQkE5Rjc1MDhDQjE0NEIx RUE2MzhDMTJDRjA1RTFENEJFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxD0EwLYGqXuhBy+2Mciey4FOttKK8S8kAqIOPSmrlEG2ogmpkbZvrdjzBx y/4jKfYExfODBJ0fnfJQTLBPXAsjAQfzqSZrhlorqvO7WpMV7W6t3D1Tsh3FI+z6 4JExhV6vLV/P1XIqpcSG9SYCNVbMJnYd/ZKX2dRzRFjt8FX5ko+P5UOZ2HXH3Kz3 vyxA54S1WeTNkzisMb0PM8xzG0ph6alUnLsFGW0OCd8y2yWg3P0Dpjc7tBfVMGfj izf1D6oO4P7MYlhzwRRM/DOc70q7HZ4hznTZGEGpRDliPACHMtrxWd8Y8PiN+9hS ib7zrsURxWKw36jUbBorPlbuqYMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTi/nC6 n3UIyxRLHqY4wSzwXh1L6jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzc4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pGswDQYJKoZIhvcNAQELBQADggEBAAk8Av8CaPhOYwX7d7pGe8Yi4ijk9qEQsfrW tOr9h9nIejI7YdUU8Jw89bynXCfRn3kl6/qoRz5pSLcBkeTEtVggYeH5mvTP0e0/ kOzq4LeXeRV0XEvoAmT+cy89Ed7+yz95sLKXHm/JrEhWsa32iQUUJIGnygCwbc7K NZ67dmat1rzwye+/APB9Rb8Iuc/Ox3Ej7nKYqB0dQXp9Nv+X0QNsxCqDWEUoGssu qZoQlPSobO6hexpGnz33m3GO8m4mTSfyWxIjgFeLtC8cSNTMw534FAGuWK2YcvJi 1em35JothIttwX1Qm7ewa/9IwCdBMyhTO+RklrBewxW2DYET/8w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:42 2026 by rpki-client