$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS143864.roa File: AS143864.roa (raw, json) Hash identifier: kL7uxXUSdNIRxFHFlAvWoYb3yhYclF7pbliu9mpEV9s= Subject key identifier: 00:57:18:33:41:A7:9B:74:4B:0F:4B:50:60:32:AF:64:CC:C4:F1:83 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2D6BEF67720342C6D14E9B3122F5AFF1360D7AD2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS143864.roa Signing time: Wed 04 Mar 2026 06:14:58 +0000 ROA not before: Wed 04 Mar 2026 06:09:58 +0000 ROA not after: Wed 03 Mar 2027 06:14:58 +0000 asID: 143864 IP address blocks: 240a:a4be::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:6b:ef:67:72:03:42:c6:d1:4e:9b:31:22:f5:af:f1:36:0d:7a:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:09:58 2026 GMT Not After : Mar 3 06:14:58 2027 GMT Subject: CN=0057183341A79B744B0F4B506032AF64CCC4F183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:98:8b:eb:93:8d:f8:14:a5:4e:20:cb:bb:53: 07:d1:e0:e3:64:3a:5b:db:6b:c8:90:c8:5c:28:3f: aa:a7:2a:7c:85:61:b2:35:c7:18:ab:39:1a:ab:3b: 86:1c:fa:65:d5:75:97:e1:dc:ce:ec:52:7d:1a:8c: 90:a3:8d:ed:e3:ae:5c:be:50:dc:17:50:92:94:b4: f6:b9:3e:fb:25:71:a5:36:54:e9:7c:13:3b:2e:ed: 9b:44:2b:c4:2e:28:d7:25:7a:91:bd:e5:1e:e2:54: 39:83:7c:16:e3:6e:77:88:28:ff:c1:5a:97:ae:41: ac:fe:e6:1e:3f:db:53:92:d0:4f:24:13:ac:c5:d3: d9:70:65:cf:1b:b5:8d:07:43:c1:47:a8:8c:3f:36: 74:27:9b:ee:00:13:7b:ed:7b:d3:ab:74:8a:cc:4d: c9:f8:e9:36:20:40:d5:94:95:53:75:62:92:e2:1c: 8a:08:99:97:0a:1b:77:c5:3d:9b:3f:36:58:3b:4d: 9f:f0:1a:85:59:65:ef:46:1e:31:d3:62:a1:6f:c9: 8d:37:de:e1:89:1d:a9:f4:e4:bf:9b:93:c1:25:2f: 34:31:5d:b3:67:fc:3b:78:46:bd:36:7d:1a:7f:77: 38:95:4d:d9:9f:e0:1c:6a:e0:5e:7e:3e:1e:66:cd: 9c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:57:18:33:41:A7:9B:74:4B:0F:4B:50:60:32:AF:64:CC:C4:F1:83 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS143864.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a4be::/32 Signature Algorithm: sha256WithRSAEncryption ab:e0:38:b7:f1:e7:ba:95:23:51:ef:8e:e1:3c:3d:00:07:2d: cc:be:38:cd:99:04:90:4e:04:c9:9f:fc:dd:d4:2e:ff:2a:97: 58:fc:bb:f0:2a:b6:e8:7d:84:d2:2f:2a:6c:51:59:a2:45:4c: 33:d9:42:f3:07:fe:95:05:58:ee:95:7f:37:8f:1c:f3:d5:a1: 4f:f1:e8:7c:48:96:93:92:67:29:72:f1:83:84:af:28:cb:01: 50:e1:b1:e0:88:14:76:78:58:47:67:02:4c:09:79:f6:ab:8f: a4:4e:ad:3d:6b:de:00:4b:37:d9:1d:35:4a:96:d4:91:e8:0f: 87:8c:c1:d4:67:18:4f:3e:de:0c:43:8d:43:fa:e3:1f:9d:80: a4:0d:62:c6:d1:54:d6:7d:0c:a2:ee:ce:4f:9f:5e:d6:3a:77: ca:0b:f5:b7:27:b1:93:db:45:df:ad:34:35:27:d6:3f:96:58: 83:4e:fc:56:a8:a1:86:4a:51:83:f9:37:99:49:4e:13:60:67: 70:98:4e:8b:84:32:76:4b:cd:47:98:43:5e:97:0f:10:73:29: 0f:d4:51:f6:b1:78:42:68:16:af:de:fb:08:e3:a0:8a:37:19: 9c:e9:05:31:42:82:71:c4:9a:89:66:20:33:f5:ed:11:0a:1c: ab:fd:56:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULWvvZ3IDQsbRTpsxIvWv8TYNetIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDk1OFoX DTI3MDMwMzA2MTQ1OFowMzExMC8GA1UEAxMoMDA1NzE4MzM0MUE3OUI3NDRCMEY0 QjUwNjAzMkFGNjRDQ0M0RjE4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJaYi+uTjfgUpU4gy7tTB9Hg42Q6W9tryJDIXCg/qqcqfIVhsjXHGKs5Gqs7 hhz6ZdV1l+HczuxSfRqMkKON7eOuXL5Q3BdQkpS09rk++yVxpTZU6XwTOy7tm0Qr xC4o1yV6kb3lHuJUOYN8FuNud4go/8Fal65BrP7mHj/bU5LQTyQTrMXT2XBlzxu1 jQdDwUeojD82dCeb7gATe+1706t0isxNyfjpNiBA1ZSVU3VikuIcigiZlwobd8U9 mz82WDtNn/AahVll70YeMdNioW/JjTfe4YkdqfTkv5uTwSUvNDFds2f8O3hGvTZ9 Gn93OJVN2Z/gHGrgXn4+HmbNnPECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQAVxgz QaebdEsPS1BgMq9kzMTxgzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mzg2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK pL4wDQYJKoZIhvcNAQELBQADggEBAKvgOLfx57qVI1HvjuE8PQAHLcy+OM2ZBJBO BMmf/N3ULv8ql1j8u/Aqtuh9hNIvKmxRWaJFTDPZQvMH/pUFWO6VfzePHPPVoU/x 6HxIlpOSZyly8YOEryjLAVDhseCIFHZ4WEdnAkwJefarj6ROrT1r3gBLN9kdNUqW 1JHoD4eMwdRnGE8+3gxDjUP64x+dgKQNYsbRVNZ9DKLuzk+fXtY6d8oL9bcnsZPb Rd+tNDUn1j+WWINO/FaooYZKUYP5N5lJThNgZ3CYTouEMnZLzUeYQ16XDxBzKQ/U UfaxeEJoFq/e+wjjoIo3GZzpBTFCgnHEmolmIDP17REKHKv9Vis= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:08 2026 by rpki-client