$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142679.roa File: AS142679.roa (raw, json) Hash identifier: qThzAU6ahoEuQZrexL1qSGjQixbsnEJIyo/mUEBNqNE= Subject key identifier: 22:00:77:85:06:DA:98:8C:52:72:8E:61:19:5C:BD:B7:3D:56:93:D5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 581587B89D169DEE4B1EE115B06C4F62433C9C0E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142679.roa Signing time: Wed 04 Mar 2026 06:07:32 +0000 ROA not before: Wed 04 Mar 2026 06:02:32 +0000 ROA not after: Wed 03 Mar 2027 06:07:32 +0000 asID: 142679 IP address blocks: 240a:a01d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:15:87:b8:9d:16:9d:ee:4b:1e:e1:15:b0:6c:4f:62:43:3c:9c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:32 2026 GMT Not After : Mar 3 06:07:32 2027 GMT Subject: CN=2200778506DA988C52728E61195CBDB73D5693D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:68:fe:00:7f:b1:22:e3:89:97:17:8c:08:8a: 82:db:54:8c:57:61:7e:bf:dc:09:8d:bd:fb:af:c7: 2a:87:63:61:bf:fb:dc:c0:60:dc:01:2d:00:fa:b0: ae:a0:33:89:d6:e4:8d:ae:f6:67:03:1b:b3:b2:7c: 58:24:67:cc:43:bd:5a:dd:28:5e:85:4c:28:bc:d5: ad:e2:a1:c6:59:8d:d9:d6:13:1e:a6:af:68:0e:3e: 16:40:3d:5b:da:ee:33:bd:3a:7b:8c:d9:d8:37:6b: c7:58:3c:9c:92:bc:55:d9:65:ee:d5:9c:34:ae:23: 8a:fb:5b:8d:66:84:a3:db:cc:f0:8c:4d:29:5d:e2: e8:b1:46:12:16:4a:e1:8d:b5:d4:26:52:e1:ee:5c: 76:b4:af:71:2c:40:12:cd:44:d9:71:9b:2c:3c:1b: 43:a5:1e:4f:e8:68:ee:02:08:81:b9:9e:73:62:99: 30:98:e8:e7:b8:1a:f1:74:6a:8f:e6:26:7c:49:b0: 11:a9:fc:f7:10:4f:b8:50:1e:17:2b:da:bc:7c:60: 63:98:44:4c:66:16:3f:36:18:c3:5c:3f:4d:a2:97: d1:61:3e:6e:b8:d8:c4:63:ff:de:38:ed:86:af:58: 0f:47:68:a1:e2:c6:61:1a:90:97:55:58:cb:a7:fc: e3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:00:77:85:06:DA:98:8C:52:72:8E:61:19:5C:BD:B7:3D:56:93:D5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a01d::/32 Signature Algorithm: sha256WithRSAEncryption 7f:a3:d2:fd:44:ac:95:4c:74:02:8e:08:56:45:e3:b1:5f:64: 12:e4:d0:40:18:cc:26:53:14:5a:db:c9:df:6f:76:93:f6:2e: 35:4c:e0:36:a3:69:1d:8b:23:9d:c9:f3:4e:19:c4:be:37:b3: 84:57:16:31:5d:98:5c:9f:76:6c:a7:51:d3:22:e6:d5:42:e8: 0b:0a:81:86:ac:ba:b8:57:c9:d7:ad:cb:8b:4f:9b:24:78:a5: 3e:ff:8c:bf:6e:a1:18:a0:78:9b:2d:b7:92:64:e9:20:a7:78: 21:43:de:91:eb:3e:62:fc:3a:a8:f9:e4:43:3b:11:0b:93:68: 70:f4:76:a1:08:27:9a:b5:e9:69:0c:e0:a3:66:10:e0:20:13: 26:28:71:56:49:ac:3c:94:63:9a:5d:f3:71:17:a7:fa:57:33: 43:03:3f:93:00:6c:65:0e:49:e4:39:9f:59:a3:33:06:e8:fa: fd:46:e8:98:5f:b0:04:b6:47:8f:c6:e1:64:07:c5:de:a1:d3: e5:a7:21:ff:f6:27:fd:26:91:ed:5d:50:e3:47:e0:c4:d4:97: 16:e7:4e:01:32:1e:f3:69:b8:74:4e:88:e2:d6:66:e5:4e:d7: 8d:ef:33:b6:e9:b3:fc:52:c0:b9:a7:8f:b7:7b:78:6f:e0:55: 7b:9d:78:33 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUWBWHuJ0Wne5LHuEVsGxPYkM8nA4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIzMloX DTI3MDMwMzA2MDczMlowMzExMC8GA1UEAxMoMjIwMDc3ODUwNkRBOTg4QzUyNzI4 RTYxMTk1Q0JEQjczRDU2OTNENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZo/gB/sSLjiZcXjAiKgttUjFdhfr/cCY29+6/HKodjYb/73MBg3AEtAPqw rqAzidbkja72ZwMbs7J8WCRnzEO9Wt0oXoVMKLzVreKhxlmN2dYTHqavaA4+FkA9 W9ruM706e4zZ2Ddrx1g8nJK8Vdll7tWcNK4jivtbjWaEo9vM8IxNKV3i6LFGEhZK 4Y211CZS4e5cdrSvcSxAEs1E2XGbLDwbQ6UeT+ho7gIIgbmec2KZMJjo57ga8XRq j+YmfEmwEan89xBPuFAeFyvavHxgY5hETGYWPzYYw1w/TaKX0WE+brjYxGP/3jjt hq9YD0dooeLGYRqQl1VYy6f847UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQiAHeF BtqYjFJyjmEZXL23PVaT1TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY3OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oB0wDQYJKoZIhvcNAQELBQADggEBAH+j0v1ErJVMdAKOCFZF47FfZBLk0EAYzCZT FFrbyd9vdpP2LjVM4DajaR2LI53J804ZxL43s4RXFjFdmFyfdmynUdMi5tVC6AsK gYasurhXydety4tPmyR4pT7/jL9uoRigeJstt5Jk6SCneCFD3pHrPmL8Oqj55EM7 EQuTaHD0dqEIJ5q16WkM4KNmEOAgEyYocVZJrDyUY5pd83EXp/pXM0MDP5MAbGUO SeQ5n1mjMwbo+v1G6JhfsAS2R4/G4WQHxd6h0+WnIf/2J/0mke1dUONH4MTUlxbn TgEyHvNpuHROiOLWZuVO143vM7bps/xSwLmnj7d7eG/gVXudeDM= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:38 2026 by rpki-client