$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143842.roa File: AS143842.roa (raw, json) Hash identifier: bG7nAliYZJkED2b6VcGTMm07fh5mj8bOnDj2WoXqlqA= Subject key identifier: 3F:A3:55:2D:E3:31:4F:DE:55:60:53:A4:91:62:81:04:C8:CA:94:15 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6C09F8F8FF177F3E3B2E9918139EB8102DF77D6F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143842.roa Signing time: Wed 04 Mar 2026 06:12:56 +0000 ROA not before: Wed 04 Mar 2026 06:07:56 +0000 ROA not after: Wed 03 Mar 2027 06:12:56 +0000 asID: 143842 IP address blocks: 240a:a4a8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:09:f8:f8:ff:17:7f:3e:3b:2e:99:18:13:9e:b8:10:2d:f7:7d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:56 2026 GMT Not After : Mar 3 06:12:56 2027 GMT Subject: CN=3FA3552DE3314FDE556053A491628104C8CA9415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:34:f1:be:df:6e:82:56:3b:2e:cf:61:1d:e2: 5e:0b:9d:14:cf:4e:79:cf:2f:f5:3d:5a:a8:96:26: e9:44:0b:1e:a8:20:88:cb:b6:df:99:c6:64:75:c5: 50:ea:46:cd:55:b9:58:23:d3:c3:99:51:41:3f:27: bd:e7:50:1c:67:66:29:03:75:4a:f5:cd:68:76:6a: 30:db:18:95:e1:68:c6:0d:c8:a5:86:0d:fa:35:a0: 4e:b5:a8:5a:6f:e6:68:54:b3:e7:24:e3:43:58:69: 2e:d8:42:55:5b:18:40:7b:ed:c4:ae:ab:d7:40:5d: 58:75:0c:c9:19:04:33:93:8d:d9:97:ed:86:c5:06: 17:44:6d:64:58:69:0b:12:ce:2b:4b:71:95:0d:7e: 2c:1e:67:aa:34:b6:c2:2f:88:af:6d:63:6e:eb:f5: 82:1c:37:0c:70:b1:da:47:f9:2c:f8:45:00:df:6f: 49:92:62:fd:60:e6:a5:7b:54:67:b5:c7:29:2e:99: ee:dd:b3:ef:9e:3c:76:52:1f:47:dc:d0:af:dd:46: aa:58:71:aa:c8:dd:a1:d8:36:0b:0f:38:7f:28:72: 5b:f9:f4:66:7f:c5:75:9e:95:3a:8d:72:28:1f:53: 46:bf:95:28:c7:50:b2:ba:68:88:a6:97:81:7b:18: 5b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A3:55:2D:E3:31:4F:DE:55:60:53:A4:91:62:81:04:C8:CA:94:15 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143842.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a4a8::/32 Signature Algorithm: sha256WithRSAEncryption 6e:33:88:3e:1b:80:24:06:4f:57:a5:9c:3b:22:c6:51:47:2c: 66:c5:ad:46:aa:0c:d1:2a:af:75:87:48:7f:a7:1b:61:65:f9: df:22:ed:96:96:67:41:3e:d9:ff:bb:82:03:f2:b2:2a:13:65: 4a:49:f6:8c:80:fa:2c:98:63:c7:d7:6a:80:9a:00:40:09:b2: 3b:2c:2c:f2:e1:af:27:95:d5:e4:a3:2e:76:c0:ff:3f:bd:d0: 66:89:36:14:86:54:2e:96:0f:8e:41:1b:ec:71:81:ec:c7:6b: b2:81:a9:97:c7:ad:77:ba:2b:77:2a:93:79:12:2d:97:f2:68: c5:c2:f6:ac:49:17:22:d8:ab:71:7e:c6:16:5c:31:dd:70:b3: 89:b3:90:29:03:05:ad:b0:3b:ae:cd:58:ce:37:a5:f4:0a:88: 37:85:df:00:1c:4c:31:e1:d7:e2:80:6c:8e:b0:50:a8:8b:ca: e3:71:59:c8:11:8a:0f:d1:87:fd:27:db:55:c4:43:6a:5c:70: 16:99:49:90:2c:05:c7:fb:d6:ee:12:1e:b7:7a:92:fa:56:1a: 79:02:d3:e8:e1:4e:fe:da:4f:03:75:a3:f8:88:f4:77:d8:0c: 48:a2:4e:03:95:a8:ca:7d:27:51:cf:7e:df:7b:15:75:fa:61: 82:b2:3b:e0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbAn4+P8Xfz47LpkYE564EC33fW8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc1NloX DTI3MDMwMzA2MTI1NlowMzExMC8GA1UEAxMoM0ZBMzU1MkRFMzMxNEZERTU1NjA1 M0E0OTE2MjgxMDRDOENBOTQxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALA08b7fboJWOy7PYR3iXgudFM9Oec8v9T1aqJYm6UQLHqggiMu235nGZHXF UOpGzVW5WCPTw5lRQT8nvedQHGdmKQN1SvXNaHZqMNsYleFoxg3IpYYN+jWgTrWo Wm/maFSz5yTjQ1hpLthCVVsYQHvtxK6r10BdWHUMyRkEM5ON2ZfthsUGF0RtZFhp CxLOK0txlQ1+LB5nqjS2wi+Ir21jbuv1ghw3DHCx2kf5LPhFAN9vSZJi/WDmpXtU Z7XHKS6Z7t2z7548dlIfR9zQr91Gqlhxqsjdodg2Cw84fyhyW/n0Zn/FdZ6VOo1y KB9TRr+VKMdQsrpoiKaXgXsYW+kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ/o1Ut 4zFP3lVgU6SRYoEEyMqUFTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzg0Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pKgwDQYJKoZIhvcNAQELBQADggEBAG4ziD4bgCQGT1elnDsixlFHLGbFrUaqDNEq r3WHSH+nG2Fl+d8i7ZaWZ0E+2f+7ggPysioTZUpJ9oyA+iyYY8fXaoCaAEAJsjss LPLhryeV1eSjLnbA/z+90GaJNhSGVC6WD45BG+xxgezHa7KBqZfHrXe6K3cqk3kS LZfyaMXC9qxJFyLYq3F+xhZcMd1ws4mzkCkDBa2wO67NWM43pfQKiDeF3wAcTDHh 1+KAbI6wUKiLyuNxWcgRig/Rh/0n21XEQ2pccBaZSZAsBcf71u4SHrd6kvpWGnkC 0+jhTv7aTwN1o/iI9HfYDEiiTgOVqMp9J1HPft97FXX6YYKyO+A= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:35 2026 by rpki-client