$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142738.roa File: AS142738.roa (raw, json) Hash identifier: FZNhNh8PDB72Z7sz2YSXOCVUAAXwNq0C1RncY2/tAEA= Subject key identifier: C6:0A:0F:2D:34:F5:5A:26:54:93:96:AF:10:75:0B:04:0A:D0:15:DA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0274FE7E9787CCEE499F49F7A3DDF7108A6FC8D6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142738.roa Signing time: Wed 04 Mar 2026 06:07:13 +0000 ROA not before: Wed 04 Mar 2026 06:02:13 +0000 ROA not after: Wed 03 Mar 2027 06:07:13 +0000 asID: 142738 IP address blocks: 240a:a058::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:74:fe:7e:97:87:cc:ee:49:9f:49:f7:a3:dd:f7:10:8a:6f:c8:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:13 2026 GMT Not After : Mar 3 06:07:13 2027 GMT Subject: CN=C60A0F2D34F55A26549396AF10750B040AD015DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a9:52:5b:ab:11:20:95:50:d7:79:9b:73:64: 5a:85:e8:71:1d:5b:aa:44:26:ce:ad:0f:48:57:d5: 3b:4d:de:48:ba:bc:53:4e:26:0d:6c:c3:dd:fb:bc: 23:34:3b:f0:74:a0:1b:fc:ad:a2:c1:19:10:ac:0d: a5:3f:88:de:15:b2:27:8e:71:cb:60:9d:7d:35:12: 43:03:83:30:a0:aa:bd:9d:f7:e9:a6:31:aa:a7:b1: 71:35:dc:08:be:86:79:79:7c:95:25:c3:a6:aa:aa: be:d1:60:c6:ae:06:b3:1c:d1:ee:94:c8:cc:49:fd: 98:55:26:69:90:28:60:4a:cb:ba:b7:88:27:52:4c: 7c:c0:64:bf:14:5e:b9:7b:25:dc:68:29:1d:62:e4: 17:7b:a8:c0:d7:80:63:0e:0e:6b:f6:db:d2:c0:0a: 80:4f:4e:86:88:5a:78:b5:5e:dd:04:1d:72:0d:8e: 19:24:0d:fb:8b:92:ec:b6:73:68:43:08:56:19:59: db:c9:74:1e:f0:43:62:a6:53:40:b1:9f:82:08:65: 85:43:18:ef:db:0c:44:f1:14:e2:47:3a:bc:aa:01: df:f0:08:7b:dd:c8:5f:7d:82:d3:83:61:be:ed:35: 42:4d:cb:e3:ae:b6:23:3d:ca:0c:e7:6d:31:5d:8e: ca:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:0A:0F:2D:34:F5:5A:26:54:93:96:AF:10:75:0B:04:0A:D0:15:DA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a058::/32 Signature Algorithm: sha256WithRSAEncryption ac:44:46:e9:a1:91:63:6f:54:5f:3e:35:84:d3:ee:5c:18:e0: 2f:ef:4d:36:15:3d:d6:65:df:f8:53:ce:f1:9a:bc:a4:17:5e: 9d:8a:b8:85:09:a9:21:ab:68:56:69:d1:32:de:96:fb:ba:78: 60:8e:fe:20:a3:88:8f:43:cd:31:cc:6e:b0:f3:24:5b:42:29: 8c:08:35:40:c8:fe:b2:f7:dc:01:36:cd:7b:b9:1b:7f:37:82: ec:11:8c:b2:52:96:01:46:c3:0a:e7:c0:73:77:6c:3b:66:03: c5:24:8f:e4:c1:a8:4d:93:ac:bd:87:f8:e0:55:13:b8:0a:2e: 13:f2:c9:cb:a1:d6:51:b3:10:7a:43:1e:62:b0:7c:76:ff:2b: 87:ae:9c:63:3e:8b:62:f1:8c:11:ee:f1:61:9c:ef:fc:b8:8a: 55:26:21:d3:5b:fc:ed:35:6e:f8:04:99:fc:01:ee:14:59:9c: 8d:8a:59:62:63:3b:9f:15:5c:96:92:78:fe:7b:d6:d0:0c:79: 3d:92:d3:d6:3c:e9:1b:db:06:f8:6f:bd:c5:12:83:42:1e:b3: f5:08:fb:59:69:3f:d6:4d:6b:72:f8:50:b7:8a:17:ec:1a:79: 39:ef:e9:9f:33:15:0f:ef:e4:aa:27:45:41:9e:3f:8d:f8:bc: ff:e3:1d:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAnT+fpeHzO5Jn0n3o933EIpvyNYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIxM1oX DTI3MDMwMzA2MDcxM1owMzExMC8GA1UEAxMoQzYwQTBGMkQzNEY1NUEyNjU0OTM5 NkFGMTA3NTBCMDQwQUQwMTVEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKapUlurESCVUNd5m3NkWoXocR1bqkQmzq0PSFfVO03eSLq8U04mDWzD3fu8 IzQ78HSgG/ytosEZEKwNpT+I3hWyJ45xy2CdfTUSQwODMKCqvZ336aYxqqexcTXc CL6GeXl8lSXDpqqqvtFgxq4GsxzR7pTIzEn9mFUmaZAoYErLureIJ1JMfMBkvxRe uXsl3GgpHWLkF3uowNeAYw4Oa/bb0sAKgE9OhohaeLVe3QQdcg2OGSQN+4uS7LZz aEMIVhlZ28l0HvBDYqZTQLGfgghlhUMY79sMRPEU4kc6vKoB3/AIe93IX32C04Nh vu01Qk3L4662Iz3KDOdtMV2OymkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTGCg8t NPVaJlSTlq8QdQsECtAV2jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjczOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oFgwDQYJKoZIhvcNAQELBQADggEBAKxERumhkWNvVF8+NYTT7lwY4C/vTTYVPdZl 3/hTzvGavKQXXp2KuIUJqSGraFZp0TLelvu6eGCO/iCjiI9DzTHMbrDzJFtCKYwI NUDI/rL33AE2zXu5G383guwRjLJSlgFGwwrnwHN3bDtmA8Ukj+TBqE2TrL2H+OBV E7gKLhPyycuh1lGzEHpDHmKwfHb/K4eunGM+i2LxjBHu8WGc7/y4ilUmIdNb/O01 bvgEmfwB7hRZnI2KWWJjO58VXJaSeP571tAMeT2S09Y86RvbBvhvvcUSg0Ies/UI +1lpP9ZNa3L4ULeKF+waeTnv6Z8zFQ/v5KonRUGeP434vP/jHZM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:38 2026 by rpki-client