$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142701.roa File: AS142701.roa (raw, json) Hash identifier: gb6FTE+zXhprMJqmZvW333eeeBYBcHTfRIRKrigLUlc= Subject key identifier: 36:C5:99:92:62:41:6C:2A:56:F4:66:47:5D:54:67:18:0C:5A:CE:57 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2FC22BA6F3FD175E877B486AB5253AAE29583049 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142701.roa Signing time: Wed 04 Mar 2026 06:05:22 +0000 ROA not before: Wed 04 Mar 2026 06:00:22 +0000 ROA not after: Wed 03 Mar 2027 06:05:22 +0000 asID: 142701 IP address blocks: 240a:a033::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:c2:2b:a6:f3:fd:17:5e:87:7b:48:6a:b5:25:3a:ae:29:58:30:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:22 2026 GMT Not After : Mar 3 06:05:22 2027 GMT Subject: CN=36C5999262416C2A56F466475D5467180C5ACE57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:70:44:2b:18:28:43:ec:a4:90:82:b7:c8:95: 0f:33:86:45:c6:38:f5:57:30:64:18:6e:f6:9f:5c: a6:e8:8f:f9:70:18:99:3f:8b:40:39:fb:c1:37:4b: 6a:c5:05:35:62:96:3d:ef:94:3d:0c:bb:5e:e1:96: ff:62:77:bd:f5:46:e7:76:e3:5c:9f:7a:73:f4:ea: 2b:38:31:27:37:d0:a4:ff:49:f7:9a:36:cd:9f:22: 49:34:66:4e:2b:da:d0:58:82:e8:75:1a:6d:62:0c: f4:38:ee:d3:1d:96:34:9c:f8:19:5b:50:e7:12:f9: 9e:ea:4b:30:6e:a0:ee:ac:db:52:02:85:26:18:9e: cd:28:7b:81:3d:df:23:1a:ac:0f:4d:9d:c7:f5:f4: ef:ba:c6:b9:cf:82:34:ca:f5:87:c8:73:93:dc:12: 54:5a:e2:00:05:f7:a4:97:d3:a9:eb:53:0b:fb:96: 6e:be:41:bb:10:fc:ee:55:2f:3f:fe:09:67:12:ba: 0f:86:54:c7:e1:03:38:d5:2e:d9:1b:54:ce:1a:f8: 3e:7f:07:a9:14:59:06:83:00:c6:20:bb:11:b2:dc: 9b:b7:c9:a6:09:0d:0d:00:79:69:8e:68:28:87:60: 43:f9:e3:01:39:b2:87:8a:ff:31:a7:b9:b5:86:d1: 74:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C5:99:92:62:41:6C:2A:56:F4:66:47:5D:54:67:18:0C:5A:CE:57 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142701.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a033::/32 Signature Algorithm: sha256WithRSAEncryption 7c:b7:ca:01:d3:42:01:78:b3:53:1b:b6:f8:7b:d4:1d:5c:b6: c7:26:a7:e2:23:5a:34:bf:83:dc:fa:e3:f8:b0:bc:8c:0c:a2: fd:be:b3:a6:77:94:4b:93:58:74:46:a1:bc:2f:e0:d6:5b:33: b6:04:ac:09:70:be:69:61:16:0b:62:31:7a:19:92:58:9d:dc: 3e:a0:d8:98:59:bb:01:cd:07:24:ef:ef:cb:24:d7:c6:f9:a4: 9e:bc:30:db:e6:c6:80:94:06:43:9c:8d:ba:b5:f1:d3:4e:8c: 9b:cf:32:3e:50:0b:47:64:71:c1:51:2d:83:5c:b2:ca:c9:1d: ad:26:33:16:2a:16:fe:cc:15:fb:0a:aa:0f:3c:8e:e5:a2:d0: 51:df:35:2b:b8:fe:72:9f:eb:0b:60:e5:c3:cf:ae:f0:8b:d5: d7:53:b4:8d:3d:62:b8:52:6e:5f:6a:d5:13:05:18:4a:93:90: 97:d4:6d:42:b9:c3:5d:25:27:4d:80:3b:e1:52:34:bc:1f:98: 94:c4:70:09:aa:73:48:b0:09:9c:b4:47:25:a7:c6:31:13:35: 34:39:c4:73:f2:d8:14:82:e3:6a:87:44:97:fb:ce:97:09:62: af:16:38:f5:42:f7:cb:f6:62:7a:b5:f5:70:41:bc:46:32:2b: 3a:38:cb:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUL8IrpvP9F16He0hqtSU6rilYMEkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAyMloX DTI3MDMwMzA2MDUyMlowMzExMC8GA1UEAxMoMzZDNTk5OTI2MjQxNkMyQTU2RjQ2 NjQ3NUQ1NDY3MTgwQzVBQ0U1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRwRCsYKEPspJCCt8iVDzOGRcY49VcwZBhu9p9cpuiP+XAYmT+LQDn7wTdL asUFNWKWPe+UPQy7XuGW/2J3vfVG53bjXJ96c/TqKzgxJzfQpP9J95o2zZ8iSTRm Tiva0FiC6HUabWIM9Dju0x2WNJz4GVtQ5xL5nupLMG6g7qzbUgKFJhiezSh7gT3f IxqsD02dx/X077rGuc+CNMr1h8hzk9wSVFriAAX3pJfTqetTC/uWbr5BuxD87lUv P/4JZxK6D4ZUx+EDONUu2RtUzhr4Pn8HqRRZBoMAxiC7EbLcm7fJpgkNDQB5aY5o KIdgQ/njATmyh4r/Mae5tYbRdGkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ2xZmS YkFsKlb0ZkddVGcYDFrOVzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjcwMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oDMwDQYJKoZIhvcNAQELBQADggEBAHy3ygHTQgF4s1Mbtvh71B1ctscmp+IjWjS/ g9z64/iwvIwMov2+s6Z3lEuTWHRGobwv4NZbM7YErAlwvmlhFgtiMXoZklid3D6g 2JhZuwHNByTv78sk18b5pJ68MNvmxoCUBkOcjbq18dNOjJvPMj5QC0dkccFRLYNc ssrJHa0mMxYqFv7MFfsKqg88juWi0FHfNSu4/nKf6wtg5cPPrvCL1ddTtI09YrhS bl9q1RMFGEqTkJfUbUK5w10lJ02AO+FSNLwfmJTEcAmqc0iwCZy0RyWnxjETNTQ5 xHPy2BSC42qHRJf7zpcJYq8WOPVC98v2Ynq19XBBvEYyKzo4yzQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:07 2026 by rpki-client