$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142737.roa File: AS142737.roa (raw, json) Hash identifier: 3oE4wpgSFKPKzZiVGC08+A+p29hrrfEbgmSs1uh9QvI= Subject key identifier: C5:EC:01:6F:A0:4F:D3:73:97:AB:65:A7:BD:21:1B:6B:4A:FC:F6:1B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41B7F60C0FEEC88EE0EB74D3084F9A9070EA53DC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142737.roa Signing time: Wed 04 Mar 2026 06:05:50 +0000 ROA not before: Wed 04 Mar 2026 06:00:50 +0000 ROA not after: Wed 03 Mar 2027 06:05:50 +0000 asID: 142737 IP address blocks: 240a:a057::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b7:f6:0c:0f:ee:c8:8e:e0:eb:74:d3:08:4f:9a:90:70:ea:53:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:50 2026 GMT Not After : Mar 3 06:05:50 2027 GMT Subject: CN=C5EC016FA04FD37397AB65A7BD211B6B4AFCF61B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3e:9b:06:3f:0a:67:9f:eb:16:88:b2:ef:b7: 75:b6:20:6c:75:cd:4d:71:41:49:1f:f6:d8:82:d8: fc:08:4e:42:98:24:fb:79:40:ad:80:9f:e7:bb:ae: aa:26:45:ce:28:77:05:5c:ad:04:07:98:d0:60:f7: b0:00:03:6f:d1:0c:5a:4b:7a:c9:b1:87:c3:01:4c: ac:d5:e6:69:73:14:ab:1c:8e:2a:80:33:41:fa:ae: 05:3e:0e:37:70:99:05:28:8a:00:14:b8:37:c6:43: f9:70:85:a9:0d:86:38:91:74:d7:3d:56:c1:53:ae: 5a:72:0a:8a:6d:c6:09:e0:4e:47:9d:16:3f:44:55: a3:8c:a7:2d:29:28:ca:e9:7f:bf:a2:cf:3d:d1:ec: fb:87:ea:fd:49:08:6e:f0:5d:2f:2f:04:c3:ad:c2: 7d:8a:16:27:3b:80:cd:c6:4c:55:80:04:ff:e4:65: de:38:cd:69:d4:4f:ba:20:16:a1:f8:40:f5:5e:09: ff:18:19:ed:a7:fa:1e:03:aa:20:f5:00:4c:95:9d: a7:22:09:81:13:bd:70:2c:46:6a:89:d9:36:52:70: ba:90:e0:fe:b8:97:49:8c:11:20:9d:71:87:f8:0b: 0f:47:55:cf:07:ef:53:16:78:d4:66:06:4e:e7:9e: c4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EC:01:6F:A0:4F:D3:73:97:AB:65:A7:BD:21:1B:6B:4A:FC:F6:1B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a057::/32 Signature Algorithm: sha256WithRSAEncryption d0:cf:e9:23:c7:04:3b:01:cd:09:9e:f9:c0:74:7e:e8:cf:08: c9:27:d7:0d:1b:67:6a:be:1e:2f:69:19:ea:af:5b:9e:4d:cd: 24:72:65:95:0d:93:fc:84:ed:ee:9c:18:8e:86:d5:39:7d:38: 1d:70:b8:2c:6d:06:f7:b8:f1:bd:5d:d5:af:40:27:b7:e8:b1: e2:87:da:75:7a:4b:90:44:6d:87:c8:90:9d:36:80:25:88:5d: a2:56:3a:21:16:f3:e8:8d:eb:73:6e:9d:f3:96:8c:9d:53:ed: 42:74:ba:52:fe:0f:41:bb:e3:da:2f:b2:22:c7:10:26:3f:0a: 39:e1:81:3f:0a:df:03:c5:34:42:d0:02:26:f6:5b:6a:a5:04: 0a:76:80:98:f2:f7:b8:52:8f:06:2f:fd:3c:7b:b2:94:b9:16: aa:11:c4:f7:4a:b0:e4:9f:f8:68:fa:f6:1c:66:73:81:e2:53: 00:5e:b3:2d:4c:87:fd:83:df:87:aa:1d:22:9b:c6:c4:d7:e3: 42:c9:fb:ad:bf:85:05:d9:09:13:84:01:fe:f6:4f:9d:a8:8d: 19:c9:31:81:10:aa:cd:48:46:69:f0:04:ef:1f:49:46:51:86: 2b:f4:b2:b6:b7:ab:01:bb:8e:26:1e:a5:a9:93:d0:37:b3:c3: f1:b9:a4:b2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQbf2DA/uyI7g63TTCE+akHDqU9wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA1MFoX DTI3MDMwMzA2MDU1MFowMzExMC8GA1UEAxMoQzVFQzAxNkZBMDRGRDM3Mzk3QUI2 NUE3QkQyMTFCNkI0QUZDRjYxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJM+mwY/Cmef6xaIsu+3dbYgbHXNTXFBSR/22ILY/AhOQpgk+3lArYCf57uu qiZFzih3BVytBAeY0GD3sAADb9EMWkt6ybGHwwFMrNXmaXMUqxyOKoAzQfquBT4O N3CZBSiKABS4N8ZD+XCFqQ2GOJF01z1WwVOuWnIKim3GCeBOR50WP0RVo4ynLSko yul/v6LPPdHs+4fq/UkIbvBdLy8Ew63CfYoWJzuAzcZMVYAE/+Rl3jjNadRPuiAW ofhA9V4J/xgZ7af6HgOqIPUATJWdpyIJgRO9cCxGaonZNlJwupDg/riXSYwRIJ1x h/gLD0dVzwfvUxZ41GYGTueexC0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTF7AFv oE/Tc5erZae9IRtrSvz2GzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjczNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oFcwDQYJKoZIhvcNAQELBQADggEBANDP6SPHBDsBzQme+cB0fujPCMkn1w0bZ2q+ Hi9pGeqvW55NzSRyZZUNk/yE7e6cGI6G1Tl9OB1wuCxtBve48b1d1a9AJ7foseKH 2nV6S5BEbYfIkJ02gCWIXaJWOiEW8+iN63NunfOWjJ1T7UJ0ulL+D0G749ovsiLH ECY/CjnhgT8K3wPFNELQAib2W2qlBAp2gJjy97hSjwYv/Tx7spS5FqoRxPdKsOSf +Gj69hxmc4HiUwBesy1Mh/2D34eqHSKbxsTX40LJ+62/hQXZCROEAf72T52ojRnJ MYEQqs1IRmnwBO8fSUZRhiv0sra3qwG7jiYepamT0Dezw/G5pLI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:09 2026 by rpki-client