$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143819.roa File: AS143819.roa (raw, json) Hash identifier: Us1490O1DdA9lvTInMeQiW9TnWSmKk5BmSVt/E9bH9o= Subject key identifier: 76:A5:F1:21:B3:47:CB:8F:AF:A7:36:BB:31:B2:58:0F:95:C5:BB:FC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13484FEDB3AE42BE4F10A7E6B026FDE81E7226C1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143819.roa Signing time: Wed 04 Mar 2026 06:14:51 +0000 ROA not before: Wed 04 Mar 2026 06:09:51 +0000 ROA not after: Wed 03 Mar 2027 06:14:51 +0000 asID: 143819 IP address blocks: 240a:a491::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:48:4f:ed:b3:ae:42:be:4f:10:a7:e6:b0:26:fd:e8:1e:72:26:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:51 2026 GMT Not After : Mar 3 06:14:51 2027 GMT Subject: CN=76A5F121B347CB8FAFA736BB31B2580F95C5BBFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ef:e9:c5:ff:cc:3e:5c:54:57:8f:86:8d:0a: e5:38:32:4a:dc:bf:2a:39:2b:a1:1e:24:9d:f4:12: ee:95:be:8a:64:ed:dc:7a:bb:84:17:d7:7b:ac:b6: 68:36:5a:71:2a:9b:1c:02:82:cb:f4:04:0a:cc:57: ad:5a:32:71:4e:be:ba:5b:b0:06:6b:dd:15:e8:cc: 61:a0:6b:2b:34:09:14:66:97:af:35:18:81:a6:e0: 73:aa:4b:d3:e6:91:73:23:82:1b:0b:bc:ff:8f:46: ff:56:c9:35:c9:dc:ad:d4:8c:7d:73:f6:6e:94:02: f9:4d:fd:38:55:ce:66:e3:85:dd:e9:05:66:88:b1: a9:a0:52:e7:1f:b0:14:87:98:80:5a:eb:12:34:93: f5:18:db:10:a8:9f:d5:2a:93:b8:69:7c:df:18:64: 5e:a1:a6:3c:e6:94:6a:4a:a5:82:da:c5:e9:54:00: 82:60:10:03:7e:64:9c:dc:6f:f6:d4:59:58:5b:c1: 23:63:8c:e6:91:d5:5b:ef:f4:4e:7b:09:b1:db:7c: b4:11:d9:89:ae:bb:50:3f:ce:20:3b:53:b5:2c:22: e3:8e:fc:d4:54:54:3f:13:ee:25:ac:b4:4f:cb:a3: dc:97:f6:e5:b8:2b:42:dc:a4:6c:b3:a9:c9:d2:f2: 54:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A5:F1:21:B3:47:CB:8F:AF:A7:36:BB:31:B2:58:0F:95:C5:BB:FC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143819.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a491::/32 Signature Algorithm: sha256WithRSAEncryption 8d:6f:e9:9a:39:77:55:02:e2:d9:c3:ca:51:82:e7:e4:ba:d3: 63:a0:44:ff:ba:f8:4e:57:05:61:cf:75:c6:cc:27:b5:e5:61: 75:df:f9:58:d6:3b:41:be:7e:df:b8:c0:eb:4c:5e:9b:c1:cc: 98:61:54:3e:0c:84:03:e2:27:53:99:a9:03:04:07:3d:4e:79: 23:3c:75:19:79:89:4b:e3:b4:c8:87:a5:a2:d5:a8:25:3a:22: aa:3c:bd:ec:34:c0:c6:a5:f1:70:03:5b:e2:d0:ec:37:78:f0: 15:3b:89:1b:6e:31:27:8c:f7:96:85:27:6b:1c:d3:c2:b1:a9: a5:86:23:75:60:22:85:3b:37:11:03:f0:84:8f:e2:f1:9d:cf: 6b:89:33:8f:be:93:d3:5a:cf:30:dd:83:6b:fe:20:f3:12:0f: eb:14:5e:11:9f:6f:ea:64:04:55:5f:91:25:d3:cc:5b:f7:fc: 1b:7c:4b:23:23:49:9c:8c:91:eb:1a:45:59:1f:4b:ba:63:29: 61:9c:86:18:54:95:54:cb:02:7d:3b:02:7e:d6:35:cc:79:9c: ab:0f:ff:ca:af:3c:2d:d3:33:f4:44:60:e1:01:0e:bb:bc:fa: bd:65:55:2c:2f:6a:bd:69:0f:5b:7d:f0:35:b3:b7:16:ca:c0: 5e:95:4c:ad -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUE0hP7bOuQr5PEKfmsCb96B5yJsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk1MVoX DTI3MDMwMzA2MTQ1MVowMzExMC8GA1UEAxMoNzZBNUYxMjFCMzQ3Q0I4RkFGQTcz NkJCMzFCMjU4MEY5NUM1QkJGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7v6cX/zD5cVFePho0K5TgySty/KjkroR4knfQS7pW+imTt3Hq7hBfXe6y2 aDZacSqbHAKCy/QECsxXrVoycU6+uluwBmvdFejMYaBrKzQJFGaXrzUYgabgc6pL 0+aRcyOCGwu8/49G/1bJNcncrdSMfXP2bpQC+U39OFXOZuOF3ekFZoixqaBS5x+w FIeYgFrrEjST9RjbEKif1SqTuGl83xhkXqGmPOaUakqlgtrF6VQAgmAQA35knNxv 9tRZWFvBI2OM5pHVW+/0TnsJsdt8tBHZia67UD/OIDtTtSwi44781FRUPxPuJay0 T8uj3Jf25bgrQtykbLOpydLyVKUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR2pfEh s0fLj6+nNrsxslgPlcW7/DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MzgxOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pJEwDQYJKoZIhvcNAQELBQADggEBAI1v6Zo5d1UC4tnDylGC5+S602OgRP+6+E5X BWHPdcbMJ7XlYXXf+VjWO0G+ft+4wOtMXpvBzJhhVD4MhAPiJ1OZqQMEBz1OeSM8 dRl5iUvjtMiHpaLVqCU6Iqo8vew0wMal8XADW+LQ7Dd48BU7iRtuMSeM95aFJ2sc 08KxqaWGI3VgIoU7NxED8ISP4vGdz2uJM4++k9NazzDdg2v+IPMSD+sUXhGfb+pk BFVfkSXTzFv3/Bt8SyMjSZyMkesaRVkfS7pjKWGchhhUlVTLAn07An7WNcx5nKsP /8qvPC3TM/REYOEBDru8+r1lVSwvar1pD1t98DWztxbKwF6VTK0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:43 2026 by rpki-client