$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142714.roa File: AS142714.roa (raw, json) Hash identifier: geW+UurwuVQs9M/Z1jDhBYAr6Ff0ajfRgv2OlFMqaBY= Subject key identifier: 71:45:E9:0F:EC:55:6B:77:CD:73:DB:D3:E3:D4:28:1D:B8:E0:C5:1C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 446779996329A43049059389E4053AF0D4BA24B4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142714.roa Signing time: Wed 04 Mar 2026 06:06:45 +0000 ROA not before: Wed 04 Mar 2026 06:01:45 +0000 ROA not after: Wed 03 Mar 2027 06:06:45 +0000 asID: 142714 IP address blocks: 240a:a040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:67:79:99:63:29:a4:30:49:05:93:89:e4:05:3a:f0:d4:ba:24:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:45 2026 GMT Not After : Mar 3 06:06:45 2027 GMT Subject: CN=7145E90FEC556B77CD73DBD3E3D4281DB8E0C51C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b7:c6:ef:7e:74:a6:bf:44:11:ea:2b:e5:5c: 12:4d:d5:2f:72:60:81:3b:63:8a:88:d5:62:1e:9c: d3:1f:ba:b7:45:fe:e0:fe:84:4e:0c:b2:c1:d8:71: 17:43:e3:97:3b:b4:ec:ac:6b:35:c3:08:35:c7:cc: 46:8c:b3:7b:f9:14:73:61:27:b8:78:55:a3:dd:42: 1a:96:52:03:5d:ef:64:16:b3:1b:38:93:72:e4:a3: 1c:fe:1e:2f:44:5a:85:68:06:69:ef:0a:58:20:ac: ab:07:22:44:16:2e:31:e4:ae:bc:14:c2:2d:13:c0: 83:7a:34:be:a0:a2:22:97:62:c3:85:06:35:e4:35: dc:d8:98:8e:9a:49:70:40:01:66:81:bb:c9:f3:5e: d3:a1:07:7e:d8:3b:62:6b:65:60:12:d8:a9:98:0c: 24:ef:7b:8f:3b:72:52:e9:1d:f9:6d:19:2c:16:cc: 74:47:05:fb:b7:c6:21:5c:19:cd:46:ea:c2:41:8b: 64:58:37:2b:bb:e2:e1:dc:96:48:9d:5a:61:b2:cf: bb:db:f8:5b:fc:eb:4d:05:7b:49:2f:14:e4:2a:ef: f2:61:19:fe:2f:4b:c5:66:34:6a:e8:cc:d1:ad:7a: 39:30:aa:91:77:5b:96:e6:c6:0c:e3:91:a5:a0:4d: 2b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:45:E9:0F:EC:55:6B:77:CD:73:DB:D3:E3:D4:28:1D:B8:E0:C5:1C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a040::/32 Signature Algorithm: sha256WithRSAEncryption 3f:a8:85:c5:5f:5c:91:47:ee:bf:a2:66:7f:65:15:43:c8:f3: 2f:07:fa:ef:cb:11:cd:3e:9c:b9:0e:5b:59:21:cf:0a:9c:da: ea:9d:b2:60:73:98:2e:31:2b:2c:51:b6:a7:fe:7e:e5:b7:9e: 3f:68:4e:5b:bd:94:8b:4a:a1:32:0d:4a:1c:15:14:f1:7d:ce: 9e:28:76:c4:2e:ec:dd:9a:00:09:68:00:a6:3e:27:1e:94:f5: bd:20:b6:01:36:cc:f2:89:fa:45:c0:63:d9:e9:af:16:a9:35: 00:51:fb:f0:af:f6:e8:d5:d8:96:13:ea:ff:28:3a:21:74:23: a7:a3:ee:4e:5b:ef:f2:76:4d:33:b0:25:e8:65:50:ff:81:9d: 91:57:3a:b9:6f:d7:d2:27:99:2f:6e:2b:aa:f5:bf:93:59:1d: 75:cc:02:a0:de:d9:b9:6e:c4:17:f1:1f:2f:74:99:ed:16:9f: 1a:2b:fd:59:a6:89:50:ca:2f:f1:df:31:ea:3e:98:fe:08:77: 87:d9:bd:41:17:98:4a:0f:7a:e2:9e:e7:a0:80:93:0b:d9:bd: f6:19:19:59:bb:f7:bf:d0:24:d1:e0:4d:cd:42:7b:20:ff:8a: 45:2d:f0:ed:f3:5d:34:36:ff:88:70:63:1e:64:9f:42:e5:8a: 2f:10:ca:0b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIURGd5mWMppDBJBZOJ5AU68NS6JLQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE0NVoX DTI3MDMwMzA2MDY0NVowMzExMC8GA1UEAxMoNzE0NUU5MEZFQzU1NkI3N0NENzNE QkQzRTNENDI4MURCOEUwQzUxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANO3xu9+dKa/RBHqK+VcEk3VL3JggTtjiojVYh6c0x+6t0X+4P6ETgyywdhx F0Pjlzu07KxrNcMINcfMRoyze/kUc2EnuHhVo91CGpZSA13vZBazGziTcuSjHP4e L0RahWgGae8KWCCsqwciRBYuMeSuvBTCLRPAg3o0vqCiIpdiw4UGNeQ13NiYjppJ cEABZoG7yfNe06EHftg7YmtlYBLYqZgMJO97jztyUukd+W0ZLBbMdEcF+7fGIVwZ zUbqwkGLZFg3K7vi4dyWSJ1aYbLPu9v4W/zrTQV7SS8U5Crv8mEZ/i9LxWY0aujM 0a16OTCqkXdblubGDOORpaBNK80CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRxRekP 7FVrd81z29Pj1CgduODFHDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjcxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oEAwDQYJKoZIhvcNAQELBQADggEBAD+ohcVfXJFH7r+iZn9lFUPI8y8H+u/LEc0+ nLkOW1khzwqc2uqdsmBzmC4xKyxRtqf+fuW3nj9oTlu9lItKoTINShwVFPF9zp4o dsQu7N2aAAloAKY+Jx6U9b0gtgE2zPKJ+kXAY9nprxapNQBR+/Cv9ujV2JYT6v8o OiF0I6ej7k5b7/J2TTOwJehlUP+BnZFXOrlv19InmS9uK6r1v5NZHXXMAqDe2blu xBfxHy90me0Wnxor/VmmiVDKL/HfMeo+mP4Id4fZvUEXmEoPeuKe56CAkwvZvfYZ GVm797/QJNHgTc1CeyD/ikUt8O3zXTQ2/4hwYx5kn0Llii8Qygs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:39 2026 by rpki-client