$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142726.roa File: AS142726.roa (raw, json) Hash identifier: /q+wB96GEhcK+kfmrP/FIl0MTW47AEs+pBgS/0Ffk4U= Subject key identifier: FB:94:72:98:5E:22:61:81:94:F1:FA:9D:39:48:74:44:BF:AF:43:79 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1B7956A6851F1E398B96596E5F1B70757DF1467E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142726.roa Signing time: Wed 04 Mar 2026 06:06:48 +0000 ROA not before: Wed 04 Mar 2026 06:01:48 +0000 ROA not after: Wed 03 Mar 2027 06:06:48 +0000 asID: 142726 IP address blocks: 240a:a04c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:79:56:a6:85:1f:1e:39:8b:96:59:6e:5f:1b:70:75:7d:f1:46:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:48 2026 GMT Not After : Mar 3 06:06:48 2027 GMT Subject: CN=FB9472985E22618194F1FA9D39487444BFAF4379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4b:98:89:58:84:93:dc:8a:c8:2b:89:d4:4d: 06:2c:c1:72:0c:66:9b:84:62:8c:cc:c4:b3:d9:2b: f8:9e:7c:91:85:e6:a2:07:95:e6:3f:25:09:04:53: 76:a2:1c:9c:3f:60:26:57:7a:2d:4c:84:e9:89:dc: 9f:ca:a5:a2:06:6c:fd:67:d4:02:7b:e5:0b:97:db: 48:25:64:5c:34:66:9b:84:27:54:8a:67:28:8c:3a: 55:2d:f4:96:05:9b:43:aa:cc:6b:77:df:9f:0a:fd: 9d:4d:d9:17:f1:0a:b8:81:e3:da:38:33:ae:4e:5d: 1d:46:1c:ce:ab:8d:93:fa:11:0c:94:7a:20:cb:52: 83:61:19:af:12:e7:45:1d:8e:42:7f:ed:5b:8b:d2: 2e:8c:90:b1:50:b0:18:64:49:70:0b:4c:18:8a:52: 01:47:43:e3:69:96:08:31:32:70:0e:d7:2c:e1:cd: 67:06:98:39:e8:74:35:da:cf:a7:eb:53:c6:ea:f8: 6a:5b:dc:f4:5d:95:6b:1d:c2:85:39:76:bd:1c:9a: 8e:4e:7e:3c:7c:fc:1c:63:c7:7d:2b:e2:3e:eb:c8: e6:a3:69:58:1a:31:dd:8d:13:c0:56:c7:e2:63:5c: e2:c6:6a:62:ab:1f:f5:bd:d9:76:4c:da:5f:de:97: a2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:94:72:98:5E:22:61:81:94:F1:FA:9D:39:48:74:44:BF:AF:43:79 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142726.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a04c::/32 Signature Algorithm: sha256WithRSAEncryption 67:42:f7:18:da:20:cb:85:57:03:57:36:06:9b:f2:8d:bd:62: de:54:eb:8f:bc:e0:4e:57:0a:f2:4d:fe:f3:e5:76:f1:bd:f2: 55:12:e7:cc:99:fb:4a:73:56:d6:71:0e:55:04:d3:bf:9c:a5: f9:65:12:6e:51:9f:51:02:16:d2:88:6a:da:7f:32:25:46:6a: 9e:1b:3a:67:bb:e2:e8:a1:f1:05:c8:eb:4d:92:79:83:4b:08: 04:4f:3a:30:8b:18:0e:88:92:2b:c0:f1:33:d7:e1:82:b3:75: 6c:3a:6b:f4:88:bb:f9:5b:16:31:cd:55:2c:53:e4:fe:a6:7b: b9:4c:7c:fa:7a:a2:8f:a2:ab:22:9b:b3:89:57:61:81:38:b2: 17:b9:80:2b:55:5a:2c:b8:5e:85:cc:6c:e6:e3:ca:1e:29:2f: cf:83:2a:0c:5a:9e:98:e8:88:3b:c8:84:ca:62:c3:9c:d8:02: 62:2e:c2:54:cb:da:fe:26:c6:90:ac:12:54:30:dc:fd:4d:8d: b0:92:92:33:eb:c3:b9:03:a8:81:f1:0f:83:bc:98:38:a9:22: 6a:76:c3:28:2b:1e:6d:28:d7:33:02:90:13:f7:ab:66:80:8b: 04:63:89:2b:82:c1:d6:53:64:f9:ed:69:7c:d6:5f:1f:ac:4e: 25:e9:68:89 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUG3lWpoUfHjmLllluXxtwdX3xRn4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE0OFoX DTI3MDMwMzA2MDY0OFowMzExMC8GA1UEAxMoRkI5NDcyOTg1RTIyNjE4MTk0RjFG QTlEMzk0ODc0NDRCRkFGNDM3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJtLmIlYhJPcisgridRNBizBcgxmm4RijMzEs9kr+J58kYXmogeV5j8lCQRT dqIcnD9gJld6LUyE6Yncn8qlogZs/WfUAnvlC5fbSCVkXDRmm4QnVIpnKIw6VS30 lgWbQ6rMa3ffnwr9nU3ZF/EKuIHj2jgzrk5dHUYczquNk/oRDJR6IMtSg2EZrxLn RR2OQn/tW4vSLoyQsVCwGGRJcAtMGIpSAUdD42mWCDEycA7XLOHNZwaYOeh0NdrP p+tTxur4alvc9F2Vax3ChTl2vRyajk5+PHz8HGPHfSviPuvI5qNpWBox3Y0TwFbH 4mNc4sZqYqsf9b3ZdkzaX96XovMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT7lHKY XiJhgZTx+p05SHREv69DeTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjcyNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oEwwDQYJKoZIhvcNAQELBQADggEBAGdC9xjaIMuFVwNXNgab8o29Yt5U64+84E5X CvJN/vPldvG98lUS58yZ+0pzVtZxDlUE07+cpfllEm5Rn1ECFtKIatp/MiVGap4b Ome74uih8QXI602SeYNLCARPOjCLGA6IkivA8TPX4YKzdWw6a/SIu/lbFjHNVSxT 5P6me7lMfPp6oo+iqyKbs4lXYYE4she5gCtVWiy4XoXMbObjyh4pL8+DKgxanpjo iDvIhMpiw5zYAmIuwlTL2v4mxpCsElQw3P1NjbCSkjPrw7kDqIHxD4O8mDipImp2 wygrHm0o1zMCkBP3q2aAiwRjiSuCwdZTZPntaXzWXx+sTiXpaIk= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:36 2026 by rpki-client