$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143854.roa File: AS143854.roa (raw, json) Hash identifier: 3PN8qL5VM/Si1DZo1eOmAfB2nkPfesKe9EQny7HJog0= Subject key identifier: C7:26:0A:92:19:85:AE:3D:05:89:15:87:99:AD:A3:EC:8F:27:71:C0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2AD99E76B698AA3553A217CD3301238C24B03DB7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143854.roa Signing time: Wed 04 Mar 2026 06:13:21 +0000 ROA not before: Wed 04 Mar 2026 06:08:21 +0000 ROA not after: Wed 03 Mar 2027 06:13:21 +0000 asID: 143854 IP address blocks: 240a:a4b4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d9:9e:76:b6:98:aa:35:53:a2:17:cd:33:01:23:8c:24:b0:3d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:08:21 2026 GMT Not After : Mar 3 06:13:21 2027 GMT Subject: CN=C7260A921985AE3D0589158799ADA3EC8F2771C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:a4:a8:8d:c5:07:ba:db:0e:08:01:12:00: b8:58:13:6a:98:72:75:a2:fe:8f:e4:db:af:b3:1a: f2:8e:cf:f5:36:0e:93:93:50:fd:49:92:a1:3b:61: b3:88:8f:d2:b8:95:e8:53:0b:92:b8:fc:c4:7c:0d: 2d:d0:75:8d:29:b7:aa:9b:7a:10:e8:c1:02:9d:4e: c4:8d:bc:ed:4a:85:e1:96:24:11:9c:b4:96:90:59: 69:ec:06:1a:18:ff:85:dd:3d:23:d9:c1:f5:09:ec: 0d:02:f0:90:59:99:54:6c:67:d2:39:6c:c5:21:1f: 46:00:be:df:c9:0b:27:bc:9e:cd:13:c6:6f:02:48: 18:6f:85:ba:0a:f9:48:6c:af:25:2c:98:1b:77:33: 03:d6:7e:32:49:ea:49:73:bf:77:c7:38:bb:1a:f4: 7c:d7:c0:81:ba:45:f3:5c:31:e0:d2:10:ed:d8:ef: 03:2c:5b:bf:1f:b4:f7:bb:ec:f8:44:a7:4b:a6:40: 2b:a0:30:e1:76:ad:df:44:2e:66:df:14:e1:39:1b: eb:ff:5f:e2:1a:27:31:ce:00:eb:32:a2:52:ef:5a: cb:a9:b0:8d:18:d3:ad:43:4c:eb:9d:f0:d4:4c:85: c7:bb:67:34:8d:a4:98:67:1f:f6:4f:e1:93:c8:76: 69:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:26:0A:92:19:85:AE:3D:05:89:15:87:99:AD:A3:EC:8F:27:71:C0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143854.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a4b4::/32 Signature Algorithm: sha256WithRSAEncryption 81:ca:a0:0f:5f:3f:1a:c2:17:ee:5d:2a:0c:1d:d6:8e:1d:16: c6:dc:ca:45:a7:43:16:e9:2c:20:97:cd:94:23:18:9c:0d:59: 17:7a:a8:b3:0f:ca:25:98:f7:c9:80:79:b3:6d:10:85:ce:c3: 37:78:fc:17:fd:c9:27:ac:3d:ad:88:35:9e:43:87:49:55:a5: e2:0c:9f:69:dc:92:4f:9e:be:0f:fd:cf:38:3f:f0:e4:bb:60: 80:f8:6e:cb:8e:d6:b3:f2:a9:57:b8:a3:3a:df:9b:3a:eb:ce: f4:4d:6c:d5:ef:f3:9c:13:f9:33:8a:fd:da:75:ed:88:37:11: 64:82:ef:5e:77:e4:d6:3b:d7:3b:46:e9:8b:7a:0d:5b:66:a3: ae:0f:58:77:cf:55:da:c2:69:58:c9:89:3e:ab:9b:91:9b:e2: 12:18:41:f5:d9:76:99:40:f7:33:5d:16:8d:2d:f7:91:55:30: d2:9b:53:c2:94:97:93:8e:4e:b0:e5:35:b9:6c:97:9a:e0:c8: 7a:7f:66:18:d0:55:24:77:f5:b9:02:77:ee:f4:dc:3a:16:8f: b0:07:6b:ba:b0:49:83:b6:12:f0:6f:02:0a:2a:5d:01:77:ea: 75:eb:58:bb:2f:ee:e9:31:87:e4:d4:b8:ef:ad:f7:a2:01:cd: 3e:f9:fe:4e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKtmedraYqjVTohfNMwEjjCSwPbcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDgyMVoX DTI3MDMwMzA2MTMyMVowMzExMC8GA1UEAxMoQzcyNjBBOTIxOTg1QUUzRDA1ODkx NTg3OTlBREEzRUM4RjI3NzFDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgppKiNxQe62w4IARIAuFgTaphydaL+j+Tbr7Ma8o7P9TYOk5NQ/UmSoTth s4iP0riV6FMLkrj8xHwNLdB1jSm3qpt6EOjBAp1OxI287UqF4ZYkEZy0lpBZaewG Ghj/hd09I9nB9QnsDQLwkFmZVGxn0jlsxSEfRgC+38kLJ7yezRPGbwJIGG+Fugr5 SGyvJSyYG3czA9Z+MknqSXO/d8c4uxr0fNfAgbpF81wx4NIQ7djvAyxbvx+097vs +ESnS6ZAK6Aw4Xat30QuZt8U4Tkb6/9f4honMc4A6zKiUu9ay6mwjRjTrUNM653w 1EyFx7tnNI2kmGcf9k/hk8h2adsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTHJgqS GYWuPQWJFYeZraPsjydxwDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzg1NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pLQwDQYJKoZIhvcNAQELBQADggEBAIHKoA9fPxrCF+5dKgwd1o4dFsbcykWnQxbp LCCXzZQjGJwNWRd6qLMPyiWY98mAebNtEIXOwzd4/Bf9ySesPa2INZ5Dh0lVpeIM n2nckk+evg/9zzg/8OS7YID4bsuO1rPyqVe4ozrfmzrrzvRNbNXv85wT+TOK/dp1 7Yg3EWSC71535NY71ztG6Yt6DVtmo64PWHfPVdrCaVjJiT6rm5Gb4hIYQfXZdplA 9zNdFo0t95FVMNKbU8KUl5OOTrDlNblsl5rgyHp/ZhjQVSR39bkCd+703DoWj7AH a7qwSYO2EvBvAgoqXQF36nXrWLsv7ukxh+TUuO+t96IBzT75/k4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:47 2026 by rpki-client