$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143863.roa File: AS143863.roa (raw, json) Hash identifier: 9pt36aQNGqlUjpEAVSnTtQ2xjt95tUddujlm62FTR1A= Subject key identifier: F0:7B:29:FC:2F:82:5D:B7:9B:91:CA:38:2B:7F:EC:07:11:84:81:5B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 47F7365963A59F40C328F7FD860E92A3163DDBA3 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143863.roa Signing time: Wed 04 Mar 2026 06:12:56 +0000 ROA not before: Wed 04 Mar 2026 06:07:56 +0000 ROA not after: Wed 03 Mar 2027 06:12:56 +0000 asID: 143863 IP address blocks: 240a:a4bd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:f7:36:59:63:a5:9f:40:c3:28:f7:fd:86:0e:92:a3:16:3d:db:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:07:56 2026 GMT Not After : Mar 3 06:12:56 2027 GMT Subject: CN=F07B29FC2F825DB79B91CA382B7FEC071184815B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:e6:a6:46:47:18:7e:e6:64:2a:6f:e7:40: ed:cf:46:4e:90:a9:ed:72:83:ce:82:aa:99:fc:9a: 40:8e:b0:eb:bb:54:9d:aa:e1:72:0b:cd:02:c8:a6: 8d:10:1f:bb:c2:01:9d:95:28:49:a0:85:70:eb:be: 24:48:6f:1d:66:df:25:89:a3:f9:f2:43:34:f3:fd: b8:ed:22:c2:97:0e:51:a1:76:72:16:b8:64:3a:b3: b8:84:12:5e:73:7d:90:f1:98:f7:b4:d7:97:5b:61: 62:45:e2:2d:03:6d:32:56:05:ca:bc:cc:01:25:0e: 7b:d3:12:27:2b:21:9f:10:af:6e:c6:a4:ad:c8:34: 50:27:26:e2:f2:80:d1:d2:e5:dd:fa:90:33:92:96: ba:8e:5b:0a:01:e5:08:9c:79:4b:54:f2:b1:4a:a3: b8:36:3b:07:45:aa:61:3f:30:64:21:51:7e:66:5f: 64:73:68:7f:56:ea:2c:3e:8a:12:33:76:cb:55:9b: ab:71:77:ca:88:b3:b1:44:59:24:47:c0:c7:f3:2d: 10:f3:a3:6f:1a:f7:2d:fa:8f:e0:0a:f4:16:1d:ef: 30:48:b4:10:a0:a1:8e:cc:85:26:00:f9:c1:f2:49: d2:1f:ef:34:ba:8d:ac:8b:35:b7:6e:ab:20:0f:14: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7B:29:FC:2F:82:5D:B7:9B:91:CA:38:2B:7F:EC:07:11:84:81:5B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143863.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a4bd::/32 Signature Algorithm: sha256WithRSAEncryption 77:bb:cd:7a:f0:8b:94:7e:ac:58:08:4e:d2:1a:4b:ea:a6:c7: 55:d2:c1:a2:09:ab:f7:79:f5:1d:5b:73:f5:2a:bc:23:af:11: 2b:6a:9f:d3:db:64:60:cd:d3:67:eb:6b:6b:4a:94:f2:eb:05: 9f:02:33:aa:e9:15:bc:50:87:15:26:4e:24:b3:a5:24:ae:ff: b9:b2:03:f9:f6:3a:b6:8f:ae:e9:05:c2:81:7f:8f:b8:d9:1c: 63:15:6d:c5:40:31:10:08:e1:22:3c:2a:64:1b:75:bb:7f:0a: 06:52:4e:a7:8e:80:3c:c3:de:2d:98:9a:ac:b6:2d:83:d8:bd: 57:45:d2:8e:fc:a0:43:d6:29:04:53:75:f7:03:cf:9d:17:39: e9:ea:10:15:fe:83:2b:c3:0d:f4:5f:71:aa:8d:fe:28:38:76: b4:27:65:cb:78:de:7d:75:45:d1:85:d3:b0:7a:0a:60:87:48: 9c:84:02:63:29:61:b9:a8:2a:f9:2c:e8:30:df:42:e2:92:a7: 4d:fb:6a:09:e8:a2:ac:b4:2c:72:9a:f3:89:38:5d:46:8a:84: e2:b8:b4:e5:01:4d:09:ed:48:e8:53:0d:1e:6c:ad:aa:81:d1: 57:3c:09:ad:ad:62:d4:68:c0:8d:a6:db:35:a1:ba:05:dd:c6: bc:6a:77:97 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUR/c2WWOln0DDKPf9hg6SoxY926MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDc1NloX DTI3MDMwMzA2MTI1NlowMzExMC8GA1UEAxMoRjA3QjI5RkMyRjgyNURCNzlCOTFD QTM4MkI3RkVDMDcxMTg0ODE1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALC15qZGRxh+5mQqb+dA7c9GTpCp7XKDzoKqmfyaQI6w67tUnarhcgvNAsim jRAfu8IBnZUoSaCFcOu+JEhvHWbfJYmj+fJDNPP9uO0iwpcOUaF2cha4ZDqzuIQS XnN9kPGY97TXl1thYkXiLQNtMlYFyrzMASUOe9MSJyshnxCvbsakrcg0UCcm4vKA 0dLl3fqQM5KWuo5bCgHlCJx5S1TysUqjuDY7B0WqYT8wZCFRfmZfZHNof1bqLD6K EjN2y1Wbq3F3yoizsURZJEfAx/MtEPOjbxr3LfqP4Ar0Fh3vMEi0EKChjsyFJgD5 wfJJ0h/vNLqNrIs1t26rIA8UPNMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTweyn8 L4Jdt5uRyjgrf+wHEYSBWzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzg2My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pL0wDQYJKoZIhvcNAQELBQADggEBAHe7zXrwi5R+rFgITtIaS+qmx1XSwaIJq/d5 9R1bc/UqvCOvEStqn9PbZGDN02fra2tKlPLrBZ8CM6rpFbxQhxUmTiSzpSSu/7my A/n2OraPrukFwoF/j7jZHGMVbcVAMRAI4SI8KmQbdbt/CgZSTqeOgDzD3i2Ymqy2 LYPYvVdF0o78oEPWKQRTdfcDz50XOenqEBX+gyvDDfRfcaqN/ig4drQnZct43n11 RdGF07B6CmCHSJyEAmMpYbmoKvks6DDfQuKSp037agnooqy0LHKa84k4XUaKhOK4 tOUBTQntSOhTDR5sraqB0Vc8Ca2tYtRowI2m2zWhugXdxrxqd5c= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:22 2026 by rpki-client