$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143814.roa File: AS143814.roa (raw, json) Hash identifier: tGDhj0hOTG4q4wvShzINRYacQLjdMoRXA6BOWuKa3IY= Subject key identifier: D5:07:C4:BB:3A:D9:DC:65:22:0A:19:C7:84:ED:06:D9:34:C8:AA:C9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 616EFF0CDCF0EDA3FFFE3669B661448A9DB5A871 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143814.roa Signing time: Wed 04 Mar 2026 06:13:21 +0000 ROA not before: Wed 04 Mar 2026 06:08:21 +0000 ROA not after: Wed 03 Mar 2027 06:13:21 +0000 asID: 143814 IP address blocks: 240a:a48c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:6e:ff:0c:dc:f0:ed:a3:ff:fe:36:69:b6:61:44:8a:9d:b5:a8:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:21 2026 GMT Not After : Mar 3 06:13:21 2027 GMT Subject: CN=D507C4BB3AD9DC65220A19C784ED06D934C8AAC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:7c:e6:d9:0d:f9:a5:4f:6d:e5:d1:27:7a: 91:e4:4f:51:5e:e9:4f:ea:b1:87:5e:68:60:01:cf: e8:07:d9:76:e4:55:f5:c3:7c:3f:6a:36:4a:89:31: 53:18:e3:83:34:59:99:a0:b2:93:6a:2c:ac:ab:38: ce:40:3c:2a:6c:84:d6:0e:55:0d:5c:a8:0d:bf:1b: 95:48:8d:cd:35:cd:5e:e3:50:dd:52:3c:2c:c4:4a: b8:0e:0a:64:17:1a:92:36:d1:0b:2e:b0:d6:77:cf: 1a:55:11:b5:29:5a:5b:dd:7c:46:2e:b2:d3:18:25: 4a:62:16:15:08:e1:f0:54:d3:cd:b8:82:7e:29:ad: a6:e1:14:b8:1a:cf:8d:70:7d:d1:ad:06:1b:61:2c: 90:7a:ca:50:e9:b8:4a:7c:29:9b:62:89:42:be:f9: 76:2b:1f:29:3f:49:5f:9e:cd:db:56:17:05:d6:e8: da:0d:61:95:38:cf:30:6a:d3:13:05:4f:04:97:d3: 99:72:0b:c6:b2:60:04:30:4f:11:b7:9e:b2:e4:72: 4f:e7:45:cc:8f:52:9f:b2:2d:8b:07:76:b8:dd:74: 2a:fd:7b:32:51:d6:86:82:ac:94:5e:d7:c5:81:83: 58:b2:23:b1:87:29:a7:eb:c7:a2:d8:6d:66:34:5e: ee:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:07:C4:BB:3A:D9:DC:65:22:0A:19:C7:84:ED:06:D9:34:C8:AA:C9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143814.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a48c::/32 Signature Algorithm: sha256WithRSAEncryption c8:39:45:44:52:b3:58:ce:68:81:e3:5d:42:2e:ef:2f:16:ba: fa:7e:f0:95:d1:41:f9:cc:25:2c:c1:4b:ea:79:85:4b:38:bf: b2:db:74:15:a9:22:cc:1a:d8:76:99:4f:89:7a:54:6e:58:b0: fd:7a:e7:08:c4:0b:5c:76:f2:f6:9a:a2:d9:ff:f6:12:00:4a: 7b:6d:36:40:10:dd:1f:08:74:d7:5f:48:aa:29:d9:39:aa:8e: 10:cf:78:44:62:d5:69:7d:cc:fb:06:df:70:22:72:98:56:1f: 06:93:3e:1c:a3:10:9a:dd:e1:ad:22:da:f8:3d:2d:96:ec:11: 42:82:c7:0a:39:54:60:fa:c4:d2:34:09:82:8e:78:55:05:ec: a7:90:14:62:8e:3e:e0:68:a3:8c:2c:81:49:0a:ac:c8:c2:ca: 8d:f8:2f:d6:1a:0c:2d:df:c3:14:a2:fa:0e:91:58:c2:34:0a: a2:aa:a1:18:62:82:36:42:60:0c:64:ba:e3:5e:07:41:17:50: 9c:2e:6d:71:4c:e1:10:c2:d8:ba:5c:9a:df:eb:5b:11:9f:00: 83:92:1c:af:92:40:89:fd:d0:3f:b8:e8:b9:5c:9e:ec:95:36: b7:c7:8a:e5:9a:a0:bb:ca:68:77:86:ac:93:b2:81:9a:55:76: 1d:6d:e0:2d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYW7/DNzw7aP//jZptmFEip21qHEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgyMVoX DTI3MDMwMzA2MTMyMVowMzExMC8GA1UEAxMoRDUwN0M0QkIzQUQ5REM2NTIyMEEx OUM3ODRFRDA2RDkzNEM4QUFDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAML1fObZDfmlT23l0Sd6keRPUV7pT+qxh15oYAHP6AfZduRV9cN8P2o2Sokx UxjjgzRZmaCyk2osrKs4zkA8KmyE1g5VDVyoDb8blUiNzTXNXuNQ3VI8LMRKuA4K ZBcakjbRCy6w1nfPGlURtSlaW918Ri6y0xglSmIWFQjh8FTTzbiCfimtpuEUuBrP jXB90a0GG2EskHrKUOm4Snwpm2KJQr75disfKT9JX57N21YXBdbo2g1hlTjPMGrT EwVPBJfTmXILxrJgBDBPEbeesuRyT+dFzI9Sn7Itiwd2uN10Kv17MlHWhoKslF7X xYGDWLIjsYcpp+vHothtZjRe7hcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTVB8S7 OtncZSIKGceE7QbZNMiqyTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzgxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pIwwDQYJKoZIhvcNAQELBQADggEBAMg5RURSs1jOaIHjXUIu7y8Wuvp+8JXRQfnM JSzBS+p5hUs4v7LbdBWpIswa2HaZT4l6VG5YsP165wjEC1x28vaaotn/9hIASntt NkAQ3R8IdNdfSKop2TmqjhDPeERi1Wl9zPsG33AicphWHwaTPhyjEJrd4a0i2vg9 LZbsEUKCxwo5VGD6xNI0CYKOeFUF7KeQFGKOPuBoo4wsgUkKrMjCyo34L9YaDC3f wxSi+g6RWMI0CqKqoRhigjZCYAxkuuNeB0EXUJwubXFM4RDC2Lpcmt/rWxGfAIOS HK+SQIn90D+46LlcnuyVNrfHiuWaoLvKaHeGrJOygZpVdh1t4C0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:02 2026 by rpki-client