$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142693.roa File: AS142693.roa (raw, json) Hash identifier: BsMHXmW0RJHN4SSirxEGAC4RZPvq3w99kZcL8zO7+rk= Subject key identifier: 0B:57:12:7E:FB:8B:5C:2F:17:41:F4:3C:19:E0:E8:F1:CC:7B:14:2B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 223F5E63A7D4A7C4011D2DAFBF847760EF2C23E5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142693.roa Signing time: Wed 04 Mar 2026 06:05:51 +0000 ROA not before: Wed 04 Mar 2026 06:00:51 +0000 ROA not after: Wed 03 Mar 2027 06:05:51 +0000 asID: 142693 IP address blocks: 240a:a02b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:3f:5e:63:a7:d4:a7:c4:01:1d:2d:af:bf:84:77:60:ef:2c:23:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:51 2026 GMT Not After : Mar 3 06:05:51 2027 GMT Subject: CN=0B57127EFB8B5C2F1741F43C19E0E8F1CC7B142B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:60:29:60:32:19:c9:9f:df:62:26:66:ee: 60:02:3f:1c:74:2a:8d:0e:2d:2b:cb:8c:8c:a4:a3: 28:47:54:73:4f:73:20:25:2b:28:48:3a:3a:ed:46: db:fd:ad:30:56:0e:72:b6:6f:27:72:aa:f9:ee:eb: b0:20:d6:68:10:10:13:9d:ce:d7:d4:fb:8b:95:a7: d9:63:55:33:9a:ed:70:07:5f:02:6f:5c:dd:aa:a3: b0:b0:7f:9c:12:0a:84:bc:51:e8:94:18:d3:25:73: 1d:c1:c1:85:fa:82:9b:54:16:75:07:18:c1:15:57: c5:72:ff:05:7a:15:dd:47:af:af:09:64:a1:f8:34: 81:31:6b:bf:40:f4:a3:bd:90:53:71:b5:bb:02:5c: b5:d9:bb:9b:9c:cb:9c:50:c0:b2:c3:5e:3c:cf:1a: d9:d8:b6:31:b1:aa:5d:6b:58:4e:45:49:79:1c:da: dc:6e:1e:46:49:b5:e8:43:43:ab:aa:45:5e:5f:30: ad:a3:b5:e1:3f:6e:19:59:17:fb:30:48:7d:d4:ec: c0:be:4c:da:5c:97:27:75:60:b1:42:a8:f1:9a:f2: 73:17:fe:59:d2:cd:4f:17:6f:5c:76:f2:46:53:43: 36:1a:37:ca:92:27:5d:9e:d5:3d:dd:8d:48:c1:64: 18:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:57:12:7E:FB:8B:5C:2F:17:41:F4:3C:19:E0:E8:F1:CC:7B:14:2B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142693.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a02b::/32 Signature Algorithm: sha256WithRSAEncryption 92:81:db:f1:2d:d1:d7:b1:c2:50:ba:04:c7:e2:00:67:36:15: 36:32:73:f5:24:fd:93:2f:91:2a:05:6b:c8:d0:3e:31:2b:8e: 3f:50:47:53:c6:09:c4:6d:03:d1:8f:7f:10:7c:8a:b3:8f:b3: 97:7c:b9:3f:00:0b:00:55:c2:32:fa:38:dc:88:c8:63:b3:05: 96:27:7f:ab:61:c5:d4:6c:40:7e:c1:34:41:7b:29:b0:e9:10: 31:78:e7:b2:17:5d:f0:40:86:a8:a1:a3:e9:64:75:1d:61:5c: 3f:04:09:2e:52:84:9e:2d:f2:67:43:a5:99:5c:9e:1b:7a:9b: be:c4:30:69:25:a1:26:fe:19:0f:ae:27:e5:ef:e7:da:12:f6: fa:89:b8:c3:dc:56:da:64:29:35:0c:74:a5:d2:0c:e3:6d:91: b9:f3:b4:ea:a8:d7:b7:76:7b:4a:e7:42:8c:4e:83:b0:b6:17: d1:5a:5f:68:0b:4c:62:43:f7:46:89:40:6c:12:03:e6:84:6b: 60:65:e9:12:fb:79:3e:dd:d6:30:89:09:c6:3a:bf:2b:1a:60: 17:8b:53:db:22:3e:9a:09:96:a1:0b:cf:a7:41:a2:27:43:6f: be:4e:0a:af:03:3a:87:55:af:8b:8e:7b:e3:3a:80:df:13:31: 42:63:41:a7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIj9eY6fUp8QBHS2vv4R3YO8sI+UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA1MVoX DTI3MDMwMzA2MDU1MVowMzExMC8GA1UEAxMoMEI1NzEyN0VGQjhCNUMyRjE3NDFG NDNDMTlFMEU4RjFDQzdCMTQyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuoYClgMhnJn99iJmbuYAI/HHQqjQ4tK8uMjKSjKEdUc09zICUrKEg6Ou1G 2/2tMFYOcrZvJ3Kq+e7rsCDWaBAQE53O19T7i5Wn2WNVM5rtcAdfAm9c3aqjsLB/ nBIKhLxR6JQY0yVzHcHBhfqCm1QWdQcYwRVXxXL/BXoV3Uevrwlkofg0gTFrv0D0 o72QU3G1uwJctdm7m5zLnFDAssNePM8a2di2MbGqXWtYTkVJeRza3G4eRkm16END q6pFXl8wraO14T9uGVkX+zBIfdTswL5M2lyXJ3VgsUKo8Zrycxf+WdLNTxdvXHby RlNDNho3ypInXZ7VPd2NSMFkGOUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQLVxJ+ +4tcLxdB9DwZ4OjxzHsUKzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY5My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oCswDQYJKoZIhvcNAQELBQADggEBAJKB2/Et0dexwlC6BMfiAGc2FTYyc/Uk/ZMv kSoFa8jQPjErjj9QR1PGCcRtA9GPfxB8irOPs5d8uT8ACwBVwjL6ONyIyGOzBZYn f6thxdRsQH7BNEF7KbDpEDF457IXXfBAhqiho+lkdR1hXD8ECS5ShJ4t8mdDpZlc nht6m77EMGkloSb+GQ+uJ+Xv59oS9vqJuMPcVtpkKTUMdKXSDONtkbnztOqo17d2 e0rnQoxOg7C2F9FaX2gLTGJD90aJQGwSA+aEa2Bl6RL7eT7d1jCJCcY6vysaYBeL U9siPpoJlqELz6dBoidDb75OCq8DOodVr4uOe+M6gN8TMUJjQac= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:00 2026 by rpki-client