$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142702.roa File: AS142702.roa (raw, json) Hash identifier: cu1CvwreU1RI/taXj5j6ci2gPUh8Fx3mV1cio6qve7c= Subject key identifier: BB:94:44:90:62:3E:07:5D:3E:61:CD:6C:85:65:D8:46:C2:DD:B3:48 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 65A0F201A714996329885E278376B3B59B33BCDA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142702.roa Signing time: Wed 04 Mar 2026 06:06:40 +0000 ROA not before: Wed 04 Mar 2026 06:01:40 +0000 ROA not after: Wed 03 Mar 2027 06:06:40 +0000 asID: 142702 IP address blocks: 240a:a034::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:a0:f2:01:a7:14:99:63:29:88:5e:27:83:76:b3:b5:9b:33:bc:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:40 2026 GMT Not After : Mar 3 06:06:40 2027 GMT Subject: CN=BB944490623E075D3E61CD6C8565D846C2DDB348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5a:53:0c:ea:65:0d:43:9c:b2:78:94:06:14: 25:8c:a4:bb:b4:06:5c:5e:fb:94:5d:65:65:06:97: 2c:97:b7:70:f7:cf:47:fc:ce:2e:5d:ba:30:ca:0e: 60:00:44:3d:39:c9:c3:2c:66:1b:1b:4c:12:e5:2e: 1f:a0:5e:a6:32:f1:80:59:4d:84:ec:da:cb:5f:f1: e3:e0:f7:68:95:e7:f6:25:5a:f9:16:6e:fb:ea:6a: 47:b3:5c:a7:51:6d:f0:fb:ea:c8:33:de:0e:53:2e: 19:ea:e8:36:07:2b:43:a9:2e:71:b0:13:8e:c5:13: 50:b8:f8:ee:9b:f5:51:0d:cb:28:1e:17:8f:50:c7: d8:54:17:32:2c:8f:44:29:e3:a6:7d:63:10:11:39: ea:49:71:a7:94:92:86:14:7d:c1:6b:a4:3a:9f:39: 30:62:2d:b1:4e:75:d6:94:23:be:a7:dc:63:1d:da: c6:ab:10:f6:35:33:23:1f:b6:76:2b:f1:21:13:42: 97:4c:0e:5f:71:b2:4c:84:0d:6b:37:70:40:c5:68: 67:28:e2:06:bc:2e:45:d8:e0:08:fe:60:7d:11:86: cc:e9:de:40:50:e5:ec:6f:3a:f3:0b:ba:27:b7:9f: e1:67:75:5e:b9:3f:9f:9a:54:1d:c4:80:48:ed:b6: 93:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:94:44:90:62:3E:07:5D:3E:61:CD:6C:85:65:D8:46:C2:DD:B3:48 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142702.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a034::/32 Signature Algorithm: sha256WithRSAEncryption bd:b5:12:3e:35:19:39:bb:14:13:6e:fc:19:37:02:85:47:95: 28:f8:d7:e5:0c:0d:19:d3:bc:bd:aa:49:8c:a5:4d:f6:a4:fe: e4:27:ed:5c:05:0e:3c:3c:df:59:0b:94:94:25:4c:a3:ec:9c: 96:77:ae:80:14:99:8d:13:64:9a:0a:44:5a:3c:d1:71:0f:2f: 87:48:42:f4:05:95:f1:56:66:94:4e:3c:0c:b4:59:e9:51:e8: 58:75:98:81:e7:1d:1c:4f:16:ae:67:32:af:20:c0:2a:1a:41: 36:ad:75:92:dd:33:67:b3:41:26:ec:3d:92:49:86:e9:f1:dc: ea:ff:55:ab:52:7d:24:3e:39:7e:5b:cc:11:ec:1f:2e:a4:73: 45:30:ce:8d:c3:36:06:33:f6:0e:82:0f:61:da:0f:9d:97:2d: a9:fd:bf:f3:60:51:fc:91:86:b8:98:5f:34:95:21:92:1a:ec: 24:e5:67:ab:43:5d:d3:2c:93:1f:ba:79:a5:e8:bd:45:2d:be: b1:e7:ec:ac:6b:b1:7d:47:de:50:f5:c0:4c:33:2e:32:f1:5b: 30:f7:02:b5:1c:a9:a2:a3:5b:4b:23:69:f2:33:98:03:7e:47: d2:1a:a5:10:aa:d1:d6:89:9c:48:23:55:41:23:b9:33:6b:bb: 01:8d:0f:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZaDyAacUmWMpiF4ng3aztZszvNowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE0MFoX DTI3MDMwMzA2MDY0MFowMzExMC8GA1UEAxMoQkI5NDQ0OTA2MjNFMDc1RDNFNjFD RDZDODU2NUQ4NDZDMkREQjM0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdaUwzqZQ1DnLJ4lAYUJYyku7QGXF77lF1lZQaXLJe3cPfPR/zOLl26MMoO YABEPTnJwyxmGxtMEuUuH6BepjLxgFlNhOzay1/x4+D3aJXn9iVa+RZu++pqR7Nc p1Ft8PvqyDPeDlMuGeroNgcrQ6kucbATjsUTULj47pv1UQ3LKB4Xj1DH2FQXMiyP RCnjpn1jEBE56klxp5SShhR9wWukOp85MGItsU511pQjvqfcYx3axqsQ9jUzIx+2 divxIRNCl0wOX3GyTIQNazdwQMVoZyjiBrwuRdjgCP5gfRGGzOneQFDl7G868wu6 J7ef4Wd1Xrk/n5pUHcSASO22k8UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS7lESQ Yj4HXT5hzWyFZdhGwt2zSDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjcwMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oDQwDQYJKoZIhvcNAQELBQADggEBAL21Ej41GTm7FBNu/Bk3AoVHlSj41+UMDRnT vL2qSYylTfak/uQn7VwFDjw831kLlJQlTKPsnJZ3roAUmY0TZJoKRFo80XEPL4dI QvQFlfFWZpROPAy0WelR6Fh1mIHnHRxPFq5nMq8gwCoaQTatdZLdM2ezQSbsPZJJ hunx3Or/VatSfSQ+OX5bzBHsHy6kc0Uwzo3DNgYz9g6CD2HaD52XLan9v/NgUfyR hriYXzSVIZIa7CTlZ6tDXdMskx+6eaXovUUtvrHn7KxrsX1H3lD1wEwzLjLxWzD3 ArUcqaKjW0sjafIzmAN+R9IapRCq0daJnEgjVUEjuTNruwGND0I= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:03 2026 by rpki-client