$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143805.roa File: AS143805.roa (raw, json) Hash identifier: hnqhwfYd8o79o29FfH8UosFB1RDxmjPmn5Zv7JhyV98= Subject key identifier: 24:DB:58:3F:D6:2A:4C:11:93:19:20:E1:2C:31:3C:7D:14:CA:7B:31 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 026B6513B6C91661C12EAE5357A4043DE21BFDD0 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143805.roa Signing time: Wed 04 Mar 2026 06:15:22 +0000 ROA not before: Wed 04 Mar 2026 06:10:22 +0000 ROA not after: Wed 03 Mar 2027 06:15:22 +0000 asID: 143805 IP address blocks: 240a:a483::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6b:65:13:b6:c9:16:61:c1:2e:ae:53:57:a4:04:3d:e2:1b:fd:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:10:22 2026 GMT Not After : Mar 3 06:15:22 2027 GMT Subject: CN=24DB583FD62A4C11931920E12C313C7D14CA7B31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d3:6a:0b:86:b8:2f:34:93:01:c9:84:69:d0: 2f:b5:d6:f0:3b:a2:43:11:0c:51:2a:08:85:35:66: 3d:1b:f3:98:12:68:6c:12:9e:7e:41:f5:39:1f:dd: dd:94:a8:13:0e:64:75:10:b3:8c:67:33:44:6e:37: b7:62:8a:6c:21:f7:19:03:92:0c:a7:5b:b8:bb:bf: 90:e5:df:60:0f:87:39:ee:7f:bd:65:bd:d9:50:23: e8:bd:02:fc:ee:f9:cb:8e:4c:b3:e1:fa:fa:7b:b0: 60:6e:a2:c4:42:eb:8b:d4:b7:92:67:4b:60:c4:34: a1:93:38:3b:70:aa:15:44:3b:97:bc:51:a1:6e:da: c5:05:76:7f:e8:6d:04:8d:89:ca:46:57:37:80:1b: d7:13:a8:0c:c2:54:5b:cd:52:31:30:39:64:76:cc: 1c:c7:54:bc:83:a6:27:45:c0:28:ac:89:84:cb:1c: 50:30:80:9b:82:f5:46:07:8d:25:44:f0:db:76:79: 58:3a:98:d4:33:07:a7:d5:f7:22:c4:b8:1d:18:9c: ae:cc:ba:0a:af:a0:95:64:4b:5a:83:e5:85:bf:ce: 48:14:68:99:10:78:8e:c3:36:d8:d6:c3:41:f9:64: c8:b7:10:84:87:fe:f5:f6:aa:0c:cf:c9:9d:09:84: 1f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DB:58:3F:D6:2A:4C:11:93:19:20:E1:2C:31:3C:7D:14:CA:7B:31 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143805.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a483::/32 Signature Algorithm: sha256WithRSAEncryption 31:28:37:cf:25:09:d8:51:7d:6a:42:84:2b:c2:ba:91:f2:be: c3:d8:6f:0b:93:8a:01:5f:f3:86:5d:81:a3:ac:8e:26:78:97: 03:9c:48:3a:4e:97:bb:b9:88:4b:fe:fc:11:d0:42:1b:eb:ea: 5b:d3:2e:2c:79:3c:96:9f:f5:26:ba:af:4f:ca:0b:fb:65:76: d4:96:5a:a4:6a:92:7c:62:5b:2f:1e:1c:cc:72:fb:cd:07:ea: 49:47:f7:45:89:75:e8:ed:8e:6a:5a:97:1f:ab:00:23:7a:79: de:32:63:aa:01:ee:73:28:f1:69:81:1d:c5:1f:3f:2a:42:eb: 62:a9:1d:0c:a9:50:19:f6:f2:37:a3:1b:ab:4e:21:2f:36:dd: 96:a6:92:43:2e:2b:2c:5e:cc:56:d3:c3:e7:03:5a:c0:11:27: 71:52:65:e0:68:bf:9a:28:ad:99:4f:b0:25:e6:ca:e1:b3:ad: 23:9b:d4:20:bf:59:54:c4:bb:12:4e:4e:56:fa:89:df:b3:c9: a2:ad:64:b8:14:99:48:04:b6:85:fb:5e:ff:8c:27:c8:39:f1: 88:98:94:36:76:d1:e9:e7:34:57:e3:36:49:8f:28:49:cd:58: dd:78:21:f6:1c:24:de:c6:d5:7c:50:b8:34:47:d9:b9:87:14: ea:d0:01:8e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAmtlE7bJFmHBLq5TV6QEPeIb/dAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MTAyMloX DTI3MDMwMzA2MTUyMlowMzExMC8GA1UEAxMoMjREQjU4M0ZENjJBNEMxMTkzMTky MEUxMkMzMTNDN0QxNENBN0IzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/TaguGuC80kwHJhGnQL7XW8DuiQxEMUSoIhTVmPRvzmBJobBKefkH1OR/d 3ZSoEw5kdRCzjGczRG43t2KKbCH3GQOSDKdbuLu/kOXfYA+HOe5/vWW92VAj6L0C /O75y45Ms+H6+nuwYG6ixELri9S3kmdLYMQ0oZM4O3CqFUQ7l7xRoW7axQV2f+ht BI2JykZXN4Ab1xOoDMJUW81SMTA5ZHbMHMdUvIOmJ0XAKKyJhMscUDCAm4L1RgeN JUTw23Z5WDqY1DMHp9X3IsS4HRicrsy6Cq+glWRLWoPlhb/OSBRomRB4jsM22NbD QflkyLcQhIf+9faqDM/JnQmEH+sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQk21g/ 1ipMEZMZIOEsMTx9FMp7MTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzgwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pIMwDQYJKoZIhvcNAQELBQADggEBADEoN88lCdhRfWpChCvCupHyvsPYbwuTigFf 84ZdgaOsjiZ4lwOcSDpOl7u5iEv+/BHQQhvr6lvTLix5PJaf9Sa6r0/KC/tldtSW WqRqknxiWy8eHMxy+80H6klH90WJdejtjmpalx+rACN6ed4yY6oB7nMo8WmBHcUf PypC62KpHQypUBn28jejG6tOIS823ZamkkMuKyxezFbTw+cDWsARJ3FSZeBov5oo rZlPsCXmyuGzrSOb1CC/WVTEuxJOTlb6id+zyaKtZLgUmUgEtoX7Xv+MJ8g58YiY lDZ20ennNFfjNkmPKEnNWN14IfYcJN7G1XxQuDRH2bmHFOrQAY4= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:26 2026 by rpki-client