$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142699.roa File: AS142699.roa (raw, json) Hash identifier: 2BDknEExRxQ9B1CPPRGkl2ecKu4uH1FS9Sn5DIynum0= Subject key identifier: 9F:79:31:A9:21:1D:40:EF:B3:EF:63:F5:97:31:BD:BF:FC:60:99:C6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41F44A2347DDC74527A62DBDA5EF4B84DEFF1C82 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142699.roa Signing time: Wed 04 Mar 2026 06:06:54 +0000 ROA not before: Wed 04 Mar 2026 06:01:54 +0000 ROA not after: Wed 03 Mar 2027 06:06:54 +0000 asID: 142699 IP address blocks: 240a:a031::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f4:4a:23:47:dd:c7:45:27:a6:2d:bd:a5:ef:4b:84:de:ff:1c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:54 2026 GMT Not After : Mar 3 06:06:54 2027 GMT Subject: CN=9F7931A9211D40EFB3EF63F59731BDBFFC6099C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c8:c1:87:ad:9b:47:41:f2:90:ae:ca:30:0c: 58:03:d6:93:2f:4e:63:8d:39:fb:67:c4:d2:b5:c0: 2c:52:4b:e1:9d:c5:a3:1d:b6:61:f3:f6:c3:02:6f: 74:e0:5b:0e:64:79:86:6c:c5:7e:dd:9b:91:45:bd: f7:44:ea:68:e9:87:60:ae:c2:ab:0a:b6:29:7e:8e: 8c:5b:c5:e1:3c:55:96:a6:a1:a1:2e:d0:7c:3a:5d: 23:77:15:c2:0c:55:73:83:9a:6f:a0:ea:cd:7f:24: 61:e0:84:2b:82:83:d4:4e:82:28:66:fe:a4:3e:5d: 86:37:04:46:20:03:b9:26:03:91:af:3d:ce:35:74: b0:73:30:26:0a:89:81:79:0f:f8:71:99:e3:c6:2d: 4f:02:69:9e:07:c5:e8:e4:05:7f:4c:f8:68:20:33: 71:44:97:e3:61:be:35:02:2b:56:5a:2d:c8:a9:77: e7:a9:b4:43:71:b2:b3:b2:54:db:f8:54:ce:62:c5: eb:19:01:31:50:eb:db:5a:0d:49:c4:e4:84:61:0a: 0f:60:29:2c:b7:c3:37:7f:c1:be:2c:1a:05:a3:f2: 88:09:49:bd:73:c2:58:14:cc:49:2f:c1:8a:45:a6: 45:04:0d:37:76:b0:15:12:0b:87:42:74:a6:fc:c7: 07:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:79:31:A9:21:1D:40:EF:B3:EF:63:F5:97:31:BD:BF:FC:60:99:C6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a031::/32 Signature Algorithm: sha256WithRSAEncryption 77:91:69:1a:b1:26:ec:25:66:6b:7b:78:02:e7:fd:f5:cb:23: e6:5c:02:06:bc:fa:5e:a6:07:31:cb:54:80:7b:4b:a7:48:8f: 73:5b:14:34:c3:95:98:b3:a4:7d:54:23:00:79:c4:71:10:6c: d3:c6:89:75:0a:83:d6:bd:48:22:a1:5d:2f:3c:c6:4d:e8:a3: 8d:eb:19:58:14:a4:f8:36:f1:3e:05:4f:ad:b8:0a:a2:88:1b: 1e:09:30:bb:73:dc:0f:9c:41:ec:13:93:d9:32:2d:1c:ab:b1: 9a:83:df:e7:73:67:2b:15:7b:0b:5f:43:c6:59:dd:0d:36:8c: a3:df:02:d2:b2:81:de:b1:9d:93:70:dd:2c:23:ca:87:71:c3: a2:cb:76:4b:ff:ec:d0:9a:50:7e:35:5f:70:c1:8a:ea:53:41: eb:1b:ca:90:3f:ed:7f:bc:e8:93:c4:91:48:be:68:ad:e4:99: a8:f7:1b:68:c2:f8:03:d8:84:99:2b:41:09:8a:82:07:06:1d: ae:7f:a6:4b:b7:ba:d6:07:ad:73:48:ad:f8:05:0b:b9:e1:e8: ca:e3:b1:f6:10:ef:c6:c4:2a:54:0a:53:99:2e:ad:a3:22:6c: 76:00:67:ed:d8:75:b9:89:24:25:99:7a:95:b3:b4:cf:7a:53: 69:78:f7:3e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQfRKI0fdx0Unpi29pe9LhN7/HIIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE1NFoX DTI3MDMwMzA2MDY1NFowMzExMC8GA1UEAxMoOUY3OTMxQTkyMTFENDBFRkIzRUY2 M0Y1OTczMUJEQkZGQzYwOTlDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTIwYetm0dB8pCuyjAMWAPWky9OY405+2fE0rXALFJL4Z3Fox22YfP2wwJv dOBbDmR5hmzFft2bkUW990TqaOmHYK7Cqwq2KX6OjFvF4TxVlqahoS7QfDpdI3cV wgxVc4Oab6DqzX8kYeCEK4KD1E6CKGb+pD5dhjcERiADuSYDka89zjV0sHMwJgqJ gXkP+HGZ48YtTwJpngfF6OQFf0z4aCAzcUSX42G+NQIrVlotyKl356m0Q3Gys7JU 2/hUzmLF6xkBMVDr21oNScTkhGEKD2ApLLfDN3/BviwaBaPyiAlJvXPCWBTMSS/B ikWmRQQNN3awFRILh0J0pvzHB18CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSfeTGp IR1A77PvY/WXMb2//GCZxjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY5OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oDEwDQYJKoZIhvcNAQELBQADggEBAHeRaRqxJuwlZmt7eALn/fXLI+ZcAga8+l6m BzHLVIB7S6dIj3NbFDTDlZizpH1UIwB5xHEQbNPGiXUKg9a9SCKhXS88xk3oo43r GVgUpPg28T4FT624CqKIGx4JMLtz3A+cQewTk9kyLRyrsZqD3+dzZysVewtfQ8ZZ 3Q02jKPfAtKygd6xnZNw3Swjyodxw6LLdkv/7NCaUH41X3DBiupTQesbypA/7X+8 6JPEkUi+aK3kmaj3G2jC+APYhJkrQQmKggcGHa5/pku3utYHrXNIrfgFC7nh6Mrj sfYQ78bEKlQKU5kuraMibHYAZ+3YdbmJJCWZepWztM96U2l49z4= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:45 2026 by rpki-client