$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142675.roa File: AS142675.roa (raw, json) Hash identifier: BtqPoXFAl7ffMkMbnO3OJsSMbazxVKOmAqYCApgZ7RA= Subject key identifier: F5:2E:7F:5B:BD:55:37:D2:E7:ED:F7:87:CD:6D:83:4E:3A:7E:B3:97 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7F64A45F50D37FC8EAA9C7BF5DC896EF9FFCCFE0 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142675.roa Signing time: Wed 04 Mar 2026 06:07:02 +0000 ROA not before: Wed 04 Mar 2026 06:02:02 +0000 ROA not after: Wed 03 Mar 2027 06:07:02 +0000 asID: 142675 IP address blocks: 240a:a019::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:64:a4:5f:50:d3:7f:c8:ea:a9:c7:bf:5d:c8:96:ef:9f:fc:cf:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:02 2026 GMT Not After : Mar 3 06:07:02 2027 GMT Subject: CN=F52E7F5BBD5537D2E7EDF787CD6D834E3A7EB397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:66:fc:b2:d4:0c:30:f6:aa:22:36:e8:bc:ec: 47:8d:f8:55:25:22:50:df:2e:b9:dc:bc:9c:03:11: b3:f4:e6:90:a5:80:f2:24:71:99:0a:4d:dd:40:78: 1a:34:c5:9a:4e:5a:5b:6b:48:ff:0e:a9:c4:2e:04: aa:c4:76:fa:58:ee:c6:be:de:cd:94:2d:dc:09:af: ea:38:17:6d:a0:46:d4:5b:3b:40:4c:37:62:a4:b2: 20:85:01:3a:ec:c5:c3:b0:a1:ea:b0:0b:63:04:5a: 3a:34:72:f4:6a:bd:5c:11:55:ff:be:a7:05:58:8e: a3:9c:33:83:da:a4:31:81:cf:a8:57:d2:c8:6a:d6: fe:d8:25:35:22:68:b2:51:33:ef:e6:a6:04:47:bb: bd:48:5b:d1:af:75:48:4c:45:f7:eb:ae:54:ae:df: 18:d3:93:03:43:c7:6e:e2:fe:6e:7c:90:f8:fc:c4: 0f:eb:d4:35:f9:0e:92:75:be:2b:b9:f9:8e:b0:a4: 31:a9:f7:46:18:b6:a0:54:32:bf:b2:52:63:66:74: d5:4d:bc:a9:1e:63:15:0e:f9:96:2b:38:a7:12:70: ff:03:b0:7a:af:57:57:f7:49:2d:53:fa:46:6f:fe: ff:05:01:61:77:2c:cf:9d:a5:4c:d8:f8:35:56:22: 13:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:2E:7F:5B:BD:55:37:D2:E7:ED:F7:87:CD:6D:83:4E:3A:7E:B3:97 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142675.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a019::/32 Signature Algorithm: sha256WithRSAEncryption 90:0f:86:15:aa:01:46:df:e8:e1:8f:d3:cc:ca:e9:f2:e6:78: bc:b6:f0:1e:59:79:e3:4b:4b:9c:f4:b6:d2:15:c1:44:92:69: 74:fd:4f:ec:c2:fb:10:c8:57:16:cb:96:81:73:4a:76:4e:57: d8:18:9b:9a:7f:c1:42:7f:2c:8d:78:a2:94:9e:fb:88:a0:9b: 9d:e9:45:fb:b3:61:88:a4:cc:a4:c8:9d:09:8a:b0:9d:33:00: 53:f1:64:98:b7:a5:cc:29:6a:ce:6c:63:4b:32:cd:b2:7e:f6: 56:2f:59:3b:28:78:78:a4:5e:aa:f5:39:1c:0b:43:3f:89:ea: cc:ac:71:87:18:9a:ca:e8:4e:9c:74:d5:dd:44:67:ce:35:04: 2c:14:2c:3f:fa:cf:b2:3e:fc:06:36:03:6d:83:96:3c:24:b6: a5:00:55:19:5e:9b:81:8b:13:8f:92:b6:d0:1f:48:97:e3:73: 71:c4:f7:3a:d1:59:1d:ee:9e:07:b6:d4:de:0e:f7:4d:fa:3b: 62:0d:9e:c9:22:68:7d:92:dd:fd:4d:69:76:9a:0b:ce:d7:fe: e4:e4:3c:c2:b5:66:60:1e:ff:79:07:2b:e5:c2:83:0f:44:6e: b5:69:06:c4:3e:37:c4:6c:a3:f1:7a:94:a3:3b:d8:c0:ca:e5: 0b:cb:d7:ce -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUf2SkX1DTf8jqqce/XciW75/8z+AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIwMloX DTI3MDMwMzA2MDcwMlowMzExMC8GA1UEAxMoRjUyRTdGNUJCRDU1MzdEMkU3RURG Nzg3Q0Q2RDgzNEUzQTdFQjM5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ9m/LLUDDD2qiI26LzsR434VSUiUN8uudy8nAMRs/TmkKWA8iRxmQpN3UB4 GjTFmk5aW2tI/w6pxC4EqsR2+ljuxr7ezZQt3Amv6jgXbaBG1Fs7QEw3YqSyIIUB OuzFw7Ch6rALYwRaOjRy9Gq9XBFV/76nBViOo5wzg9qkMYHPqFfSyGrW/tglNSJo slEz7+amBEe7vUhb0a91SExF9+uuVK7fGNOTA0PHbuL+bnyQ+PzED+vUNfkOknW+ K7n5jrCkMan3Rhi2oFQyv7JSY2Z01U28qR5jFQ75lis4pxJw/wOweq9XV/dJLVP6 Rm/+/wUBYXcsz52lTNj4NVYiExkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT1Ln9b vVU30uft94fNbYNOOn6zlzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY3NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oBkwDQYJKoZIhvcNAQELBQADggEBAJAPhhWqAUbf6OGP08zK6fLmeLy28B5ZeeNL S5z0ttIVwUSSaXT9T+zC+xDIVxbLloFzSnZOV9gYm5p/wUJ/LI14opSe+4igm53p RfuzYYikzKTInQmKsJ0zAFPxZJi3pcwpas5sY0syzbJ+9lYvWTsoeHikXqr1ORwL Qz+J6syscYcYmsroTpx01d1EZ841BCwULD/6z7I+/AY2A22DljwktqUAVRlem4GL E4+SttAfSJfjc3HE9zrRWR3unge21N4O9036O2INnskiaH2S3f1NaXaaC87X/uTk PMK1ZmAe/3kHK+XCgw9EbrVpBsQ+N8Rso/F6lKM72MDK5QvL184= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:51 2026 by rpki-client