$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142739.roa File: AS142739.roa (raw, json) Hash identifier: kRkbBEa9vHJVosqZPn61EeLpqgUwjQsFHhUrA18p4Zg= Subject key identifier: 48:09:6C:57:C0:16:9E:34:1B:06:58:99:65:C9:9D:00:72:1F:48:6C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 64E041AC8D71362BBC603AC78DF8E54420CC2F8B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142739.roa Signing time: Wed 04 Mar 2026 06:05:34 +0000 ROA not before: Wed 04 Mar 2026 06:00:34 +0000 ROA not after: Wed 03 Mar 2027 06:05:34 +0000 asID: 142739 IP address blocks: 240a:a059::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e0:41:ac:8d:71:36:2b:bc:60:3a:c7:8d:f8:e5:44:20:cc:2f:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:34 2026 GMT Not After : Mar 3 06:05:34 2027 GMT Subject: CN=48096C57C0169E341B06589965C99D00721F486C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:02:da:36:a4:cc:20:f5:c9:7e:1a:80:2c:58: 1c:6b:dd:43:08:a2:86:8a:23:fe:bc:d6:ba:43:7f: 29:4c:fc:01:c3:28:95:20:e5:f7:36:af:dd:18:ad: 11:4e:c3:a8:66:38:8d:ae:45:bb:0d:3e:4e:77:9e: 51:32:e2:bc:f6:a9:90:ba:9a:bd:f3:47:7f:4a:b4: 47:69:ca:42:f6:3f:2a:ea:a1:8a:3b:84:83:71:8b: 3c:7d:75:9c:91:ef:55:b8:0e:76:ff:b4:d9:b2:9b: e5:08:71:a5:30:cc:be:ba:b6:d0:b2:3a:dd:d9:a1: 7f:a6:79:33:40:b7:31:84:d6:dd:0a:4d:28:ae:18: 94:9e:39:c2:ba:e8:60:90:7e:77:46:d1:07:20:a2: 8e:84:6b:0f:5e:93:b0:5f:95:bc:be:17:c4:45:4f: 31:fe:f9:11:e6:d1:73:2a:58:7a:82:4f:3d:71:b2: a7:04:5d:12:92:44:de:e0:82:fb:f2:d1:ff:81:3e: 05:65:b8:20:fe:50:e8:d0:2f:f2:1f:a2:c7:29:f4: 37:66:1b:8e:88:61:1e:03:73:51:e6:8c:a0:73:17: 2c:65:c1:aa:a3:eb:48:44:c5:b7:81:65:cc:d2:49: 2a:e9:9a:fe:9a:65:81:e0:38:cd:df:5b:11:11:95: 47:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:09:6C:57:C0:16:9E:34:1B:06:58:99:65:C9:9D:00:72:1F:48:6C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a059::/32 Signature Algorithm: sha256WithRSAEncryption 79:b1:38:9d:f7:64:c7:7c:49:2d:35:bf:a8:e8:76:13:64:6d: 5e:f9:fa:2c:b4:3a:2a:e0:89:ec:92:ab:92:96:b4:db:68:e7: bc:75:d6:fe:34:b5:6c:49:dc:9e:ce:83:7d:6f:6d:89:3c:e7: 80:e3:ea:0c:9b:7e:69:38:a5:04:8d:5f:ea:6b:39:dd:51:5d: 31:fc:30:96:b2:28:ae:db:71:f3:64:62:f6:09:a5:ea:66:7a: a4:53:03:d8:0c:94:7b:23:72:c6:43:26:4f:90:86:80:08:30: 1d:03:96:9a:4b:0d:16:76:0c:fb:28:69:6b:7d:f8:b2:e7:60: 6c:eb:e6:4c:ed:44:ca:1b:63:79:af:18:c0:70:e1:29:2d:d7: b1:ea:d7:d8:63:7c:80:c1:c7:b3:e5:ce:7a:5a:7c:c7:54:b7: 85:00:26:34:54:fd:90:24:d6:2a:2f:0c:5c:a7:13:a2:08:d0: 4e:34:21:50:9e:56:87:b8:36:21:c4:c7:f9:88:7a:6a:7e:55: 3c:7f:61:21:81:be:c7:aa:25:98:ef:d2:85:ce:91:82:59:bf: 4a:ac:80:a6:76:9e:fb:27:06:b5:bf:1d:9b:9e:19:bc:27:ed: 08:0a:7d:3e:33:73:18:68:f8:4c:80:be:91:80:e9:6d:dd:49: 90:b8:64:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZOBBrI1xNiu8YDrHjfjlRCDML4swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAzNFoX DTI3MDMwMzA2MDUzNFowMzExMC8GA1UEAxMoNDgwOTZDNTdDMDE2OUUzNDFCMDY1 ODk5NjVDOTlEMDA3MjFGNDg2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANsC2jakzCD1yX4agCxYHGvdQwiihooj/rzWukN/KUz8AcMolSDl9zav3Rit EU7DqGY4ja5Fuw0+TneeUTLivPapkLqavfNHf0q0R2nKQvY/KuqhijuEg3GLPH11 nJHvVbgOdv+02bKb5QhxpTDMvrq20LI63dmhf6Z5M0C3MYTW3QpNKK4YlJ45wrro YJB+d0bRByCijoRrD16TsF+VvL4XxEVPMf75EebRcypYeoJPPXGypwRdEpJE3uCC +/LR/4E+BWW4IP5Q6NAv8h+ixyn0N2YbjohhHgNzUeaMoHMXLGXBqqPrSETFt4Fl zNJJKuma/pplgeA4zd9bERGVRwsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRICWxX wBaeNBsGWJllyZ0Ach9IbDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjczOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oFkwDQYJKoZIhvcNAQELBQADggEBAHmxOJ33ZMd8SS01v6jodhNkbV75+iy0Oirg ieySq5KWtNto57x11v40tWxJ3J7Og31vbYk854Dj6gybfmk4pQSNX+prOd1RXTH8 MJayKK7bcfNkYvYJpepmeqRTA9gMlHsjcsZDJk+QhoAIMB0DlppLDRZ2DPsoaWt9 +LLnYGzr5kztRMobY3mvGMBw4Skt17Hq19hjfIDBx7PlznpafMdUt4UAJjRU/ZAk 1iovDFynE6II0E40IVCeVoe4NiHEx/mIemp+VTx/YSGBvseqJZjv0oXOkYJZv0qs gKZ2nvsnBrW/HZueGbwn7QgKfT4zcxho+EyAvpGA6W3dSZC4ZA8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:28 2026 by rpki-client