$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142660.roa File: AS142660.roa (raw, json) Hash identifier: DACosJjJcD5YuPa8gkNsCOFp+SM+a6jkkD83JiKinA0= Subject key identifier: 1A:BB:F6:9B:F5:3B:08:C6:18:6F:26:09:1C:91:07:5C:5A:71:CA:82 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 57CA6C1565F4C641F7FF90DF06894F6A4CBBA2EB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142660.roa Signing time: Wed 04 Mar 2026 06:06:50 +0000 ROA not before: Wed 04 Mar 2026 06:01:50 +0000 ROA not after: Wed 03 Mar 2027 06:06:50 +0000 asID: 142660 IP address blocks: 240a:a00a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ca:6c:15:65:f4:c6:41:f7:ff:90:df:06:89:4f:6a:4c:bb:a2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:50 2026 GMT Not After : Mar 3 06:06:50 2027 GMT Subject: CN=1ABBF69BF53B08C6186F26091C91075C5A71CA82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:96:9d:a8:5c:05:73:09:3b:ba:44:2b:e9:eb: a0:b2:c7:43:8f:8c:54:b2:ca:db:a7:ba:de:10:09: 2e:e6:12:81:5d:f1:02:a0:d9:0b:ad:bc:e8:c3:fa: bb:85:1d:ff:07:d8:8e:2f:5d:3e:16:a1:93:69:15: 1b:5b:54:d8:63:52:07:c2:05:92:bb:a3:72:1b:c6: b6:c5:f6:ca:8e:dd:cc:b8:b6:0e:73:06:08:51:f6: 5e:8b:d3:1f:e0:4b:ef:b0:81:24:7b:f9:08:c1:22: db:e8:ca:a4:19:ad:0e:f7:c2:51:25:64:cd:02:21: 40:90:a0:ad:ad:8f:b1:98:11:aa:14:c9:ea:74:3f: af:c2:6d:3e:01:f7:91:ac:0b:3b:7a:7d:20:13:2d: b9:07:0b:22:57:d6:2c:cc:ea:91:38:57:50:25:53: 26:11:ee:72:5d:80:bc:f2:64:9e:3c:a8:af:03:35: b0:55:be:b8:56:97:c0:72:5d:d0:5c:5a:70:93:63: 14:f4:27:d7:c4:37:86:6a:56:a5:37:87:71:ec:dd: eb:a5:4a:50:51:9a:ba:4a:16:56:ed:97:fd:91:17: a9:3b:4d:a2:4d:81:e0:8d:03:32:a2:db:28:37:75: 89:a5:57:ee:52:ac:49:cc:05:e8:44:37:31:99:f7: 9d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BB:F6:9B:F5:3B:08:C6:18:6F:26:09:1C:91:07:5C:5A:71:CA:82 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142660.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a00a::/32 Signature Algorithm: sha256WithRSAEncryption c7:fd:5d:1e:c3:71:98:d4:57:d7:fe:99:22:ea:f1:14:d2:67: 20:f8:86:35:95:34:53:ba:3d:a7:ab:88:5a:2e:be:e5:64:1d: 57:8c:a1:10:37:3c:9a:41:ca:91:2b:75:7f:dc:ff:5d:7b:c3: f8:95:cd:d6:3d:2b:90:1f:5f:c1:75:df:e0:c1:1f:7b:41:f7: 74:b3:4c:f7:ac:91:27:71:9d:51:3b:73:86:53:75:06:2b:5b: 9a:4f:39:d3:b4:4e:1b:59:6d:07:fb:2c:6d:19:6f:6b:55:d5: 06:9b:80:ff:fc:18:1b:ab:a4:7e:53:a9:5c:64:3f:f3:e2:1b: ce:34:9e:a9:fa:6a:b1:b0:23:ed:68:2d:99:6c:32:10:4f:26: 04:8a:bb:83:74:04:df:ad:f8:62:4a:e9:c0:f0:87:d5:9f:fd: 61:e9:05:22:eb:36:e1:9c:eb:b6:fa:56:2e:b3:21:99:88:e6: 65:00:85:21:23:c2:75:d9:21:5e:43:68:dc:9e:13:e3:0c:ed: 64:e2:6a:75:ca:7b:eb:3e:3c:95:10:47:26:17:8b:21:b3:fa: fc:ac:2e:58:60:be:88:e2:80:8c:f7:24:2e:cf:2c:da:38:36: a9:48:de:cf:8d:14:ba:f5:83:1f:8a:b2:ef:52:bb:91:ce:b1: e3:2e:82:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUV8psFWX0xkH3/5DfBolPaky7ouswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE1MFoX DTI3MDMwMzA2MDY1MFowMzExMC8GA1UEAxMoMUFCQkY2OUJGNTNCMDhDNjE4NkYy NjA5MUM5MTA3NUM1QTcxQ0E4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALmWnahcBXMJO7pEK+nroLLHQ4+MVLLK26e63hAJLuYSgV3xAqDZC6286MP6 u4Ud/wfYji9dPhahk2kVG1tU2GNSB8IFkrujchvGtsX2yo7dzLi2DnMGCFH2XovT H+BL77CBJHv5CMEi2+jKpBmtDvfCUSVkzQIhQJCgra2PsZgRqhTJ6nQ/r8JtPgH3 kawLO3p9IBMtuQcLIlfWLMzqkThXUCVTJhHucl2AvPJknjyorwM1sFW+uFaXwHJd 0FxacJNjFPQn18Q3hmpWpTeHcezd66VKUFGaukoWVu2X/ZEXqTtNok2B4I0DMqLb KDd1iaVX7lKsScwF6EQ3MZn3nZcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQau/ab 9TsIxhhvJgkckQdcWnHKgjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oAowDQYJKoZIhvcNAQELBQADggEBAMf9XR7DcZjUV9f+mSLq8RTSZyD4hjWVNFO6 PaeriFouvuVkHVeMoRA3PJpBypErdX/c/117w/iVzdY9K5AfX8F13+DBH3tB93Sz TPeskSdxnVE7c4ZTdQYrW5pPOdO0ThtZbQf7LG0Zb2tV1QabgP/8GBurpH5TqVxk P/PiG840nqn6arGwI+1oLZlsMhBPJgSKu4N0BN+t+GJK6cDwh9Wf/WHpBSLrNuGc 67b6Vi6zIZmI5mUAhSEjwnXZIV5DaNyeE+MM7WTianXKe+s+PJUQRyYXiyGz+vys LlhgvojigIz3JC7PLNo4NqlI3s+NFLr1gx+Ksu9Su5HOseMugvg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:59 2026 by rpki-client