$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143804.roa File: AS143804.roa (raw, json) Hash identifier: H6T17rvenkef63meuARKLe4tqLvvAvUNu1zeJ5aBnN0= Subject key identifier: 1F:4F:A0:18:70:0C:4D:37:87:6B:AD:76:4E:E0:60:C0:0F:3A:23:F1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1C9B4A8C36496C4BC1BD2E1875AFAFA529C4D47E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143804.roa Signing time: Wed 04 Mar 2026 06:13:59 +0000 ROA not before: Wed 04 Mar 2026 06:08:59 +0000 ROA not after: Wed 03 Mar 2027 06:13:59 +0000 asID: 143804 IP address blocks: 240a:a482::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9b:4a:8c:36:49:6c:4b:c1:bd:2e:18:75:af:af:a5:29:c4:d4:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:59 2026 GMT Not After : Mar 3 06:13:59 2027 GMT Subject: CN=1F4FA018700C4D37876BAD764EE060C00F3A23F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:55:54:5a:3b:bf:d4:bf:8b:b7:06:ce:00: 19:1b:d9:d0:33:84:6d:4e:e5:a4:b6:58:f8:bd:db: 7b:a2:f0:e8:0b:63:f9:6d:40:06:36:a8:1a:5d:82: e9:99:54:5e:19:a2:26:fc:c6:d8:ce:9d:c1:da:6d: 98:5e:8a:04:ae:79:0f:e9:b2:11:e9:f6:2d:cc:7e: 30:f7:70:f5:d4:1a:e8:a2:2b:94:95:d5:38:0b:b4: c7:d7:d9:a5:49:a0:03:7b:6f:df:8a:de:df:46:65: 87:17:c8:cf:7c:bf:22:70:f2:ef:74:79:7e:97:12: 25:f9:31:3d:a8:4a:59:e7:1b:28:ca:64:ff:7f:3a: df:04:3c:70:60:4b:4e:c2:aa:6c:5a:db:46:64:27: ce:1f:d4:59:fb:e8:32:87:ec:88:ac:95:58:84:29: d4:80:99:b5:70:fa:8a:02:a3:60:16:03:bb:c6:a9: 8f:f0:41:19:2f:14:07:a1:96:57:5b:fd:98:cc:f2: d4:bd:93:5d:fe:06:cc:7a:65:dd:89:85:cf:50:4f: a6:d3:84:46:c7:38:c8:bc:fb:02:10:44:39:35:8c: af:f0:02:fa:e8:8c:07:8f:56:ce:f9:e3:54:9f:75: a4:06:5a:97:a0:d8:3a:e0:65:30:91:20:85:e8:04: 78:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4F:A0:18:70:0C:4D:37:87:6B:AD:76:4E:E0:60:C0:0F:3A:23:F1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143804.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a482::/32 Signature Algorithm: sha256WithRSAEncryption d6:f6:bb:ab:26:95:23:82:fc:65:a9:96:3a:5a:06:99:d9:08: 85:22:93:d5:2e:20:fe:47:52:00:76:49:c1:b9:c4:1a:85:44: 17:35:a0:44:3b:5b:20:44:46:6a:75:f3:b3:cc:29:71:1b:17: 18:b0:35:31:93:7b:53:fd:5c:79:b7:65:2e:4c:e0:bb:26:53: e8:71:4d:91:92:74:19:cb:ea:a3:48:0d:bf:6c:38:e8:13:aa: 09:b2:f0:6f:3b:db:02:13:d6:0c:68:41:11:e7:6d:d7:bc:52: 83:be:d5:70:82:bd:77:53:b3:f0:6b:d9:89:5c:77:cc:9f:f3: 60:94:2f:12:da:7a:24:ed:56:9d:82:8a:ce:99:a9:72:bc:e2: 19:af:71:c9:68:bf:c7:bc:d1:f6:7f:46:c3:cd:ad:00:2a:0f: ef:d8:f3:38:46:ec:d3:1d:47:51:05:2d:e4:b2:89:55:6c:2b: f5:62:da:12:e2:af:98:3c:a7:6c:70:49:6f:5a:12:2f:e9:19: ff:77:42:c8:71:13:6a:c8:15:47:1f:21:24:5e:4a:8c:8a:d3: 6c:bb:35:69:49:ba:53:cf:d3:b6:42:12:46:f2:c8:06:6d:a0: ec:a9:bb:b9:e6:ba:c7:ab:4c:ca:23:25:57:8b:75:e5:60:3b: 81:bb:fe:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHJtKjDZJbEvBvS4Yda+vpSnE1H4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDg1OVoX DTI3MDMwMzA2MTM1OVowMzExMC8GA1UEAxMoMUY0RkEwMTg3MDBDNEQzNzg3NkJB RDc2NEVFMDYwQzAwRjNBMjNGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6/VVRaO7/Uv4u3Bs4AGRvZ0DOEbU7lpLZY+L3be6Lw6Atj+W1ABjaoGl2C 6ZlUXhmiJvzG2M6dwdptmF6KBK55D+myEen2Lcx+MPdw9dQa6KIrlJXVOAu0x9fZ pUmgA3tv34re30ZlhxfIz3y/InDy73R5fpcSJfkxPahKWecbKMpk/3863wQ8cGBL TsKqbFrbRmQnzh/UWfvoMofsiKyVWIQp1ICZtXD6igKjYBYDu8apj/BBGS8UB6GW V1v9mMzy1L2TXf4GzHpl3YmFz1BPptOERsc4yLz7AhBEOTWMr/AC+uiMB49Wzvnj VJ91pAZal6DYOuBlMJEghegEeF8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQfT6AY cAxNN4drrXZO4GDADzoj8TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzgwNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pIIwDQYJKoZIhvcNAQELBQADggEBANb2u6smlSOC/GWpljpaBpnZCIUik9UuIP5H UgB2ScG5xBqFRBc1oEQ7WyBERmp187PMKXEbFxiwNTGTe1P9XHm3ZS5M4LsmU+hx TZGSdBnL6qNIDb9sOOgTqgmy8G872wIT1gxoQRHnbde8UoO+1XCCvXdTs/Br2Ylc d8yf82CULxLaeiTtVp2Cis6ZqXK84hmvcclov8e80fZ/RsPNrQAqD+/Y8zhG7NMd R1EFLeSyiVVsK/Vi2hLir5g8p2xwSW9aEi/pGf93QshxE2rIFUcfISReSoyK02y7 NWlJulPP07ZCEkbyyAZtoOypu7nmuserTMojJVeLdeVgO4G7/lE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:52 2026 by rpki-client