$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142706.roa File: AS142706.roa (raw, json) Hash identifier: W2O/HBopTWDoRkthzlt5IFys/X4+Jq9QXO7nn3lqqH0= Subject key identifier: B0:C6:79:8F:A3:7C:62:52:1A:6E:9E:6F:4D:4B:19:91:98:53:B1:DF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 09651EA0C58E072C303261C5ED373B91CFB7B5ED Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142706.roa Signing time: Wed 04 Mar 2026 06:06:19 +0000 ROA not before: Wed 04 Mar 2026 06:01:19 +0000 ROA not after: Wed 03 Mar 2027 06:06:19 +0000 asID: 142706 IP address blocks: 240a:a038::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:65:1e:a0:c5:8e:07:2c:30:32:61:c5:ed:37:3b:91:cf:b7:b5:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:19 2026 GMT Not After : Mar 3 06:06:19 2027 GMT Subject: CN=B0C6798FA37C62521A6E9E6F4D4B19919853B1DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d5:3a:e5:7b:e4:a5:82:1e:63:3f:e1:23:7b: 7d:65:1f:d6:73:29:d2:a0:e2:4a:b1:a0:40:bf:ac: 44:33:9e:06:0f:dd:92:8f:89:72:8e:44:c0:f3:23: 0a:b7:b0:5f:5f:61:84:3d:53:0c:08:87:a3:04:34: df:58:4b:8d:96:49:3b:da:10:2b:eb:e5:0a:17:e0: d3:25:b4:c8:0e:4a:8a:00:d8:3b:61:b4:4d:83:71: bb:89:93:4d:2f:65:13:57:9d:9c:37:52:48:02:17: 5c:71:36:c4:71:82:e2:62:15:36:0b:be:74:28:c8: 3e:2f:1b:90:c5:13:5d:75:88:71:17:68:0a:82:4c: 9f:98:6d:b5:e7:dd:89:0c:73:89:79:f0:36:24:5d: 29:8f:31:d4:81:ed:d7:8c:99:00:27:80:00:85:6a: 0a:5e:ec:42:41:55:cf:6e:e1:52:c9:73:3b:d1:72: 7a:50:ae:a3:f3:d4:27:00:34:9b:cd:8f:6c:0a:44: 02:d9:03:f6:85:12:96:82:28:57:cc:38:17:8f:ef: 88:14:6c:db:02:cc:2f:11:7e:a1:3f:1a:2e:86:0e: 14:47:f7:9c:3a:8b:ce:73:87:70:14:11:97:2b:e6: f3:28:b6:91:fd:ad:41:2b:7e:53:ea:7a:ea:93:2a: aa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C6:79:8F:A3:7C:62:52:1A:6E:9E:6F:4D:4B:19:91:98:53:B1:DF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142706.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a038::/32 Signature Algorithm: sha256WithRSAEncryption d8:b2:ff:6a:9f:bb:dd:6b:4b:52:34:c5:fe:58:80:bb:50:d9: dc:77:3e:eb:87:4d:fe:1c:9d:9a:d9:df:87:3c:17:f8:9b:b0: 27:07:7f:3c:7c:41:84:d5:a4:a0:04:cf:f3:6a:21:43:c2:53: e3:23:02:e4:f2:dc:03:db:a2:ec:ac:93:00:e1:fb:69:7a:8d: 70:e6:00:c4:49:19:be:db:1d:98:b3:46:c5:a4:2d:65:6c:12: 9b:c0:52:52:1e:bf:83:8b:6e:58:45:59:4e:34:8d:a7:23:ff: df:45:52:84:9e:6c:96:e6:4e:b6:b3:82:31:26:18:0d:af:d7: 1f:f3:b7:c5:c7:c9:a1:07:b7:72:84:78:1c:5f:2c:16:6c:82: 82:95:00:97:4f:0b:f9:d5:d2:16:7e:8b:d3:b1:a9:54:bd:53: b2:8e:38:c6:c0:e1:0e:65:d6:c2:9a:4d:de:cd:b2:3b:b6:d2: cf:38:ad:f4:a3:10:60:38:b4:00:32:41:9c:8e:9d:21:1f:e8: eb:e6:b9:11:a5:d8:b4:c0:ca:5c:b8:a5:35:5f:d7:c5:21:c1: 4f:63:28:92:40:1f:bb:85:9b:61:46:a5:6c:0f:10:20:b3:e9: e6:73:b3:52:d1:4e:ae:d5:b0:c4:e2:cf:58:9b:f8:47:db:db: 86:22:03:e5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCWUeoMWOBywwMmHF7Tc7kc+3te0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDExOVoX DTI3MDMwMzA2MDYxOVowMzExMC8GA1UEAxMoQjBDNjc5OEZBMzdDNjI1MjFBNkU5 RTZGNEQ0QjE5OTE5ODUzQjFERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzVOuV75KWCHmM/4SN7fWUf1nMp0qDiSrGgQL+sRDOeBg/dko+Jco5EwPMj CrewX19hhD1TDAiHowQ031hLjZZJO9oQK+vlChfg0yW0yA5KigDYO2G0TYNxu4mT TS9lE1ednDdSSAIXXHE2xHGC4mIVNgu+dCjIPi8bkMUTXXWIcRdoCoJMn5httefd iQxziXnwNiRdKY8x1IHt14yZACeAAIVqCl7sQkFVz27hUslzO9FyelCuo/PUJwA0 m82PbApEAtkD9oUSloIoV8w4F4/viBRs2wLMLxF+oT8aLoYOFEf3nDqLznOHcBQR lyvm8yi2kf2tQSt+U+p66pMqqr8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSwxnmP o3xiUhpunm9NSxmRmFOx3zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjcwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oDgwDQYJKoZIhvcNAQELBQADggEBANiy/2qfu91rS1I0xf5YgLtQ2dx3PuuHTf4c nZrZ34c8F/ibsCcHfzx8QYTVpKAEz/NqIUPCU+MjAuTy3APbouyskwDh+2l6jXDm AMRJGb7bHZizRsWkLWVsEpvAUlIev4OLblhFWU40jacj/99FUoSebJbmTrazgjEm GA2v1x/zt8XHyaEHt3KEeBxfLBZsgoKVAJdPC/nV0hZ+i9OxqVS9U7KOOMbA4Q5l 1sKaTd7Nsju20s84rfSjEGA4tAAyQZyOnSEf6OvmuRGl2LTAyly4pTVf18UhwU9j KJJAH7uFm2FGpWwPECCz6eZzs1LRTq7VsMTiz1ib+Efb24YiA+U= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:12 2026 by rpki-client