$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142667.roa File: AS142667.roa (raw, json) Hash identifier: RofkNMaoIa6ZY+fLP5m3J1BtCQD51mvz8FSVu2p8UbY= Subject key identifier: D6:3E:37:72:71:11:FF:12:A6:16:72:5C:4A:1D:2E:09:76:66:F4:C8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 56256ACAEF2D3E73A4C9203F2860C01C51C32192 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142667.roa Signing time: Wed 04 Mar 2026 06:06:10 +0000 ROA not before: Wed 04 Mar 2026 06:01:10 +0000 ROA not after: Wed 03 Mar 2027 06:06:10 +0000 asID: 142667 IP address blocks: 240a:a011::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:25:6a:ca:ef:2d:3e:73:a4:c9:20:3f:28:60:c0:1c:51:c3:21:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:10 2026 GMT Not After : Mar 3 06:06:10 2027 GMT Subject: CN=D63E37727111FF12A616725C4A1D2E097666F4C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:74:7e:42:d6:08:42:7c:31:63:fa:50:58:31: 9e:06:cd:ba:f1:6d:2f:d1:ca:d4:c1:0f:43:b4:66: 52:27:7d:e2:ea:ca:44:a3:63:ac:eb:0f:f2:da:3b: 65:0b:1b:97:d9:45:73:6b:38:82:f8:7a:72:33:b2: d3:b8:9e:7e:db:bf:a4:0d:b8:8a:ec:e7:51:25:e3: ac:b6:f7:e9:d1:66:f1:c0:93:b3:95:05:35:09:4b: 73:e6:b8:2f:71:8f:9c:50:6c:29:eb:f8:80:cf:40: db:49:cc:f1:0f:36:12:91:0c:dc:25:be:64:65:0e: 87:ff:5c:3a:40:c2:84:bb:cd:69:99:e3:0d:35:af: 8b:8d:ff:e2:6b:b4:90:3a:4c:54:b6:1d:cc:03:8c: 36:92:05:cb:49:5e:07:9c:49:12:a5:2c:a7:3b:2a: 4a:e6:0b:55:e0:fd:b2:c7:13:85:a0:0b:13:e6:7e: 10:50:ca:f9:22:7b:1d:a6:23:7d:23:9a:1c:a6:49: 73:87:91:16:7e:d9:26:7c:e6:12:76:aa:3f:75:6b: 37:c2:20:6c:06:21:4a:e4:4f:25:6b:62:eb:6f:09: c5:59:74:e4:c7:d2:ca:81:78:99:0c:7f:25:48:ad: 9d:7b:26:d9:5e:62:4f:18:56:50:c5:45:1c:2c:62: b0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3E:37:72:71:11:FF:12:A6:16:72:5C:4A:1D:2E:09:76:66:F4:C8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a011::/32 Signature Algorithm: sha256WithRSAEncryption bc:ce:9a:ef:d2:f8:a6:d7:0d:f0:31:5a:d3:c5:a4:df:f7:ee: 2c:15:9f:d0:4d:df:1e:54:92:f8:7c:18:91:99:56:16:89:c4: 57:bc:7f:ed:0f:82:81:3a:c7:93:e8:34:66:a0:bb:ba:50:f9: be:00:b7:e0:54:83:1f:45:b6:4b:00:ad:40:c6:a3:49:9c:63: a2:01:2d:a9:ae:a6:dd:31:d5:f5:b6:f7:6b:53:3d:44:4b:c5: 50:bf:58:02:bf:6c:cb:6b:ea:fd:97:0d:9f:e2:7f:4a:c1:aa: 3e:05:60:9a:da:d0:28:cb:b3:89:fd:16:03:c5:0b:28:f9:34: 73:1c:2b:05:e3:c4:e9:bb:c1:d4:86:ad:6e:2f:d3:7b:2a:be: 4c:d9:e5:cc:8f:8b:8e:54:18:29:9b:b3:c9:9b:12:53:2e:4c: 6c:b6:27:4d:3a:20:32:ff:ed:f6:57:24:0f:94:ca:ec:78:c6: 7b:09:10:d2:43:c2:3c:fe:bf:c7:85:93:0d:72:64:ee:97:87: c5:e1:a5:15:a7:b0:77:5c:cf:2e:f4:d8:66:58:1d:69:c9:a1: f4:39:da:cd:43:67:f3:5d:fc:57:43:7c:2f:fa:0f:88:23:83: b3:06:79:1c:c1:dc:38:11:a4:d8:14:d5:61:f7:4c:77:f9:98: e6:e1:11:c3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUViVqyu8tPnOkySA/KGDAHFHDIZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDExMFoX DTI3MDMwMzA2MDYxMFowMzExMC8GA1UEAxMoRDYzRTM3NzI3MTExRkYxMkE2MTY3 MjVDNEExRDJFMDk3NjY2RjRDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL50fkLWCEJ8MWP6UFgxngbNuvFtL9HK1MEPQ7RmUid94urKRKNjrOsP8to7 ZQsbl9lFc2s4gvh6cjOy07ieftu/pA24iuznUSXjrLb36dFm8cCTs5UFNQlLc+a4 L3GPnFBsKev4gM9A20nM8Q82EpEM3CW+ZGUOh/9cOkDChLvNaZnjDTWvi43/4mu0 kDpMVLYdzAOMNpIFy0leB5xJEqUspzsqSuYLVeD9sscThaALE+Z+EFDK+SJ7HaYj fSOaHKZJc4eRFn7ZJnzmEnaqP3VrN8IgbAYhSuRPJWti628JxVl05MfSyoF4mQx/ JUitnXsm2V5iTxhWUMVFHCxisL8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTWPjdy cRH/EqYWclxKHS4Jdmb0yDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY2Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oBEwDQYJKoZIhvcNAQELBQADggEBALzOmu/S+KbXDfAxWtPFpN/37iwVn9BN3x5U kvh8GJGZVhaJxFe8f+0PgoE6x5PoNGagu7pQ+b4At+BUgx9FtksArUDGo0mcY6IB Lamupt0x1fW292tTPURLxVC/WAK/bMtr6v2XDZ/if0rBqj4FYJra0CjLs4n9FgPF Cyj5NHMcKwXjxOm7wdSGrW4v03sqvkzZ5cyPi45UGCmbs8mbElMuTGy2J006IDL/ 7fZXJA+Uyux4xnsJENJDwjz+v8eFkw1yZO6Xh8XhpRWnsHdczy702GZYHWnJofQ5 2s1DZ/Nd/FdDfC/6D4gjg7MGeRzB3DgRpNgU1WH3THf5mObhEcM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:54 2026 by rpki-client