$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142734.roa File: AS142734.roa (raw, json) Hash identifier: rHwJPZzI/FWdqO/qFdIsqECi8BSEkWR19VXprmPfj5o= Subject key identifier: 3E:82:6C:FC:64:A9:31:6D:18:25:90:82:FD:94:CA:59:6D:D0:C5:9D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6FE63A810AB8F046EA42C2B3D56D481BCD68A80B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142734.roa Signing time: Wed 04 Mar 2026 06:05:56 +0000 ROA not before: Wed 04 Mar 2026 06:00:56 +0000 ROA not after: Wed 03 Mar 2027 06:05:56 +0000 asID: 142734 IP address blocks: 240a:a054::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e6:3a:81:0a:b8:f0:46:ea:42:c2:b3:d5:6d:48:1b:cd:68:a8:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:56 2026 GMT Not After : Mar 3 06:05:56 2027 GMT Subject: CN=3E826CFC64A9316D18259082FD94CA596DD0C59D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:28:5c:4d:c1:00:a8:cd:e8:fc:8b:91:73: c1:ab:6a:64:43:b6:45:7d:92:5a:24:bb:b5:ad:49: b3:71:2a:6a:00:85:2d:68:90:ea:49:4b:24:72:60: 64:6d:9d:fe:14:52:3b:76:01:7e:7a:c3:ab:a2:ab: 95:79:95:5e:a4:49:0b:a1:3a:a2:1f:d4:8d:be:78: ee:99:c1:88:0a:33:52:4f:99:2f:bf:c2:9a:68:3c: 22:f3:55:02:8b:d9:8c:09:69:70:56:f9:92:87:94: e1:63:ac:bb:3c:2d:76:b9:87:15:87:13:c2:80:2d: de:5a:7b:d5:c0:5e:7a:bb:01:be:46:2a:8f:23:97: dc:9e:30:ae:50:79:74:9c:ec:8b:30:5c:c6:81:0c: bb:af:f3:23:8e:2a:76:03:a8:d6:64:28:36:13:2b: c1:b8:84:d0:20:70:ad:b2:6f:cc:b4:dc:32:51:32: b0:79:d1:81:ed:ab:1a:1f:15:25:65:21:91:cd:84: 78:75:a1:2a:51:a3:40:ce:32:cb:5d:63:f7:be:e2: 6f:c7:22:ad:8e:da:b9:f3:5e:b7:c8:bf:74:c8:47: c7:08:95:b0:71:1f:2f:f3:0d:04:71:65:9b:0b:e8: fa:cf:0e:54:6e:5e:b7:50:11:97:f9:3e:6e:c3:dc: e1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:82:6C:FC:64:A9:31:6D:18:25:90:82:FD:94:CA:59:6D:D0:C5:9D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a054::/32 Signature Algorithm: sha256WithRSAEncryption 13:ab:57:f3:b1:75:dc:b5:de:b1:14:5e:c2:f9:c8:bd:84:45: 73:61:bf:de:10:59:05:b2:20:f5:d4:65:25:61:62:e8:14:22: da:e3:f5:a4:c6:45:a6:ca:68:ee:dd:bd:98:99:bc:27:c5:f6: d8:37:46:6e:dc:eb:88:1f:22:87:2c:20:c5:6a:48:1f:62:4f: 15:00:d0:dc:d8:de:79:4e:81:fa:44:31:df:b4:61:d1:0c:da: 0a:e3:ca:a6:c4:7d:e7:0d:1c:5a:fb:2d:f3:60:66:03:0d:bc: 7c:28:bd:f5:e2:32:b4:cc:76:5c:83:68:dc:f8:14:53:03:f9: db:ad:a3:c9:ea:0f:72:cb:b0:a5:4e:3e:ff:52:a0:5f:8f:5b: 7a:15:d5:3c:0e:95:c3:21:bf:b7:3c:67:f8:19:53:19:b3:70: d6:96:37:60:74:c1:3e:56:32:b9:80:6c:4a:7a:17:8a:27:2a: 26:55:74:9e:4f:04:b2:e1:c0:8e:cd:c1:ea:8c:ef:66:4b:f2: 7f:4f:d8:c5:70:f1:49:aa:0c:f7:4a:80:59:ab:bf:2a:de:24: 9c:7c:7e:de:71:da:2d:d4:08:42:65:1b:19:34:a9:b2:72:eb: 98:f3:9b:8a:cc:b5:f5:65:8d:c0:48:d2:59:3f:25:db:f4:90: 94:09:57:91 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUb+Y6gQq48EbqQsKz1W1IG81oqAswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA1NloX DTI3MDMwMzA2MDU1NlowMzExMC8GA1UEAxMoM0U4MjZDRkM2NEE5MzE2RDE4MjU5 MDgyRkQ5NENBNTk2REQwQzU5RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuCKFxNwQCozej8i5FzwatqZEO2RX2SWiS7ta1Js3EqagCFLWiQ6klLJHJg ZG2d/hRSO3YBfnrDq6KrlXmVXqRJC6E6oh/Ujb547pnBiAozUk+ZL7/Cmmg8IvNV AovZjAlpcFb5koeU4WOsuzwtdrmHFYcTwoAt3lp71cBeersBvkYqjyOX3J4wrlB5 dJzsizBcxoEMu6/zI44qdgOo1mQoNhMrwbiE0CBwrbJvzLTcMlEysHnRge2rGh8V JWUhkc2EeHWhKlGjQM4yy11j977ib8cirY7aufNet8i/dMhHxwiVsHEfL/MNBHFl mwvo+s8OVG5et1ARl/k+bsPc4cECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ+gmz8 ZKkxbRglkIL9lMpZbdDFnTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjczNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oFQwDQYJKoZIhvcNAQELBQADggEBABOrV/Oxddy13rEUXsL5yL2ERXNhv94QWQWy IPXUZSVhYugUItrj9aTGRabKaO7dvZiZvCfF9tg3Rm7c64gfIocsIMVqSB9iTxUA 0NzY3nlOgfpEMd+0YdEM2grjyqbEfecNHFr7LfNgZgMNvHwovfXiMrTMdlyDaNz4 FFMD+duto8nqD3LLsKVOPv9SoF+PW3oV1TwOlcMhv7c8Z/gZUxmzcNaWN2B0wT5W MrmAbEp6F4onKiZVdJ5PBLLhwI7NweqM72ZL8n9P2MVw8UmqDPdKgFmrvyreJJx8 ft5x2i3UCEJlGxk0qbJy65jzm4rMtfVljcBI0lk/Jdv0kJQJV5E= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:12 2026 by rpki-client