$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143783.roa File: AS143783.roa (raw, json) Hash identifier: ntCYCzhquvHmq45YSwLUb+ckfMFptE1nVfY5ZP3qHG4= Subject key identifier: 15:CB:5B:44:1C:4E:5C:07:5E:4B:C6:83:47:F7:A1:42:50:EC:44:C7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 07CCE8ED83FD3366DA56A38B8C87D232AAEDAB95 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143783.roa Signing time: Wed 04 Mar 2026 06:15:48 +0000 ROA not before: Wed 04 Mar 2026 06:10:48 +0000 ROA not after: Wed 03 Mar 2027 06:15:48 +0000 asID: 143783 IP address blocks: 240a:a46d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:cc:e8:ed:83:fd:33:66:da:56:a3:8b:8c:87:d2:32:aa:ed:ab:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:48 2026 GMT Not After : Mar 3 06:15:48 2027 GMT Subject: CN=15CB5B441C4E5C075E4BC68347F7A14250EC44C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:93:8c:25:7b:a2:d2:39:fd:75:52:68:9e: 70:93:c0:9d:b1:7a:b9:bc:42:f1:35:ba:d2:cc:2c: 38:c7:0c:be:15:e9:e1:4e:33:25:81:f4:32:3f:fc: 46:cb:f3:33:bc:4b:d0:8e:0d:82:a8:c7:02:5c:4c: ac:d9:f9:21:bc:cc:77:07:ea:ec:b6:fa:be:b9:b8: f1:17:14:56:72:96:65:12:b1:10:b8:b2:3c:cc:5c: a2:d5:9e:73:ff:cd:07:0a:a6:7c:1a:a8:c8:b6:85: 97:2b:79:cc:70:b5:7d:d2:91:21:f4:fc:df:cd:46: bc:df:ac:f0:ce:24:85:30:3f:1b:c4:78:d2:3c:26: c5:ef:88:45:be:41:32:9a:e6:93:f6:ae:ed:12:6d: 66:a9:2d:11:c3:4b:ab:a9:df:98:6d:d0:3f:69:94: 18:47:63:2e:61:3f:e1:95:2c:ee:d9:d9:fe:a1:d5: 92:01:36:4a:1f:b2:ca:90:18:7e:79:fd:bf:37:ee: d1:ba:0f:b3:66:cc:2f:96:27:4f:f2:95:6a:69:72: ff:63:cd:0c:3a:32:3e:e6:fc:d8:e6:2d:fd:cc:f1: ba:2b:38:b9:83:ea:82:67:84:0e:74:14:16:81:b8: bf:15:65:cd:9b:e2:e2:75:72:de:a6:e6:87:5e:91: 00:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CB:5B:44:1C:4E:5C:07:5E:4B:C6:83:47:F7:A1:42:50:EC:44:C7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143783.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a46d::/32 Signature Algorithm: sha256WithRSAEncryption 54:17:28:91:c1:a6:ed:4a:de:60:fa:01:4b:46:49:25:2e:19: d2:29:55:6d:8c:29:e1:0c:43:a4:e3:5e:6a:72:10:da:5a:51: 33:9a:05:dd:2b:c8:9e:7e:e3:31:a8:0e:f7:27:80:25:51:23: e5:9a:87:15:bb:87:9b:6a:38:69:34:94:19:12:f1:26:cc:74: d5:38:59:cb:cb:56:64:c1:88:db:9e:c8:d1:90:67:d0:fd:1a: 68:70:96:de:43:2f:75:70:4c:39:ac:11:51:7e:92:fe:83:e6: aa:49:63:db:5a:89:bb:ac:f1:f4:41:75:f6:1a:b3:56:e4:f6: a9:a8:eb:ef:6e:5c:ca:92:d1:2e:2d:f3:8c:a0:74:a4:ca:46: 3b:0d:81:d9:8d:70:ef:b1:f9:d9:ce:87:42:8c:2f:03:3b:31: f2:03:87:72:5e:f4:41:94:87:6d:35:6d:02:9d:5b:80:32:e1: 6b:95:c6:4c:e2:c6:f0:b0:9d:5a:78:51:fb:01:bc:96:10:08: a8:63:7b:58:a5:dc:dd:eb:3f:2c:b9:44:68:42:b2:1b:e0:6c: 20:3c:92:db:37:f6:32:d9:ab:53:a5:2a:12:0c:b5:9b:65:1e: 8c:d1:b2:d3:88:7b:a1:5e:fd:3c:4f:5a:4c:a6:24:81:bd:e2: 27:4e:e2:c3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUB8zo7YP9M2baVqOLjIfSMqrtq5UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTA0OFoX DTI3MDMwMzA2MTU0OFowMzExMC8GA1UEAxMoMTVDQjVCNDQxQzRFNUMwNzVFNEJD NjgzNDdGN0ExNDI1MEVDNDRDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8Rk4wle6LSOf11UmiecJPAnbF6ubxC8TW60swsOMcMvhXp4U4zJYH0Mj/8 RsvzM7xL0I4NgqjHAlxMrNn5IbzMdwfq7Lb6vrm48RcUVnKWZRKxELiyPMxcotWe c//NBwqmfBqoyLaFlyt5zHC1fdKRIfT8381GvN+s8M4khTA/G8R40jwmxe+IRb5B Mprmk/au7RJtZqktEcNLq6nfmG3QP2mUGEdjLmE/4ZUs7tnZ/qHVkgE2Sh+yypAY fnn9vzfu0boPs2bML5YnT/KVamly/2PNDDoyPub82OYt/czxuis4uYPqgmeEDnQU FoG4vxVlzZvi4nVy3qbmh16RAG0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQVy1tE HE5cB15LxoNH96FCUOxExzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzc4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pG0wDQYJKoZIhvcNAQELBQADggEBAFQXKJHBpu1K3mD6AUtGSSUuGdIpVW2MKeEM Q6TjXmpyENpaUTOaBd0ryJ5+4zGoDvcngCVRI+WahxW7h5tqOGk0lBkS8SbMdNU4 WcvLVmTBiNueyNGQZ9D9Gmhwlt5DL3VwTDmsEVF+kv6D5qpJY9taibus8fRBdfYa s1bk9qmo6+9uXMqS0S4t84ygdKTKRjsNgdmNcO+x+dnOh0KMLwM7MfIDh3Je9EGU h201bQKdW4Ay4WuVxkzixvCwnVp4UfsBvJYQCKhje1il3N3rPyy5RGhCshvgbCA8 kts39jLZq1OlKhIMtZtlHozRstOIe6Fe/TxPWkymJIG94idO4sM= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:04 2026 by rpki-client