$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142755.roa File: AS142755.roa (raw, json) Hash identifier: K5KxiYf675I6Rz+2Nh2ELzqCn2vuU8Kc9MVbPmDGYEc= Subject key identifier: 3D:3C:98:41:BB:CC:82:6C:77:EB:BD:BC:1A:2B:DE:96:06:2D:57:4D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 15C9AA127B88410052872D7824346FB21A57ADC5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142755.roa Signing time: Wed 04 Mar 2026 06:05:37 +0000 ROA not before: Wed 04 Mar 2026 06:00:37 +0000 ROA not after: Wed 03 Mar 2027 06:05:37 +0000 asID: 142755 IP address blocks: 240a:a069::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c9:aa:12:7b:88:41:00:52:87:2d:78:24:34:6f:b2:1a:57:ad:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:37 2026 GMT Not After : Mar 3 06:05:37 2027 GMT Subject: CN=3D3C9841BBCC826C77EBBDBC1A2BDE96062D574D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:29:e5:24:5c:07:57:42:1f:45:c4:15:46:11: 7c:5e:44:b8:cc:29:52:c0:e7:7e:ee:91:39:e0:47: 31:cd:93:fe:d6:f2:f6:0e:e8:ac:a2:f2:fb:d8:39: b8:e0:37:0f:6d:b0:40:1b:92:00:35:74:b7:49:2d: 23:c2:b7:07:91:f5:48:bb:ba:04:c1:33:1a:99:12: 02:59:40:05:30:ed:2f:03:aa:10:07:2b:ac:76:69: 51:9e:c7:9d:df:25:94:eb:f9:cf:15:48:46:3a:9b: 4d:e8:00:1c:ef:6e:7e:4f:04:76:51:66:21:7a:fb: 2b:f3:01:3f:ec:0f:66:7f:37:7c:c9:fd:ae:da:a9: 33:4b:f4:20:c9:49:72:67:dd:d8:27:20:8e:63:93: fb:41:f1:6f:e7:dd:2f:2b:de:71:cb:a4:32:58:5f: e5:d0:0b:10:c0:29:8c:40:6a:6d:c9:4e:5a:48:b6: 69:54:56:de:fb:12:31:9e:76:d7:89:8f:5e:ed:3a: 61:f5:df:98:ff:18:30:ec:d3:30:54:7a:d4:fc:28: 47:a4:2f:e9:81:0f:c9:0c:a0:6c:4b:b4:09:3c:5c: b9:51:d9:f1:e2:6c:9c:dd:21:4e:39:85:b4:04:51: 03:00:6d:86:a8:e3:cb:c1:df:49:0f:28:f1:aa:c8: 2d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:3C:98:41:BB:CC:82:6C:77:EB:BD:BC:1A:2B:DE:96:06:2D:57:4D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142755.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a069::/32 Signature Algorithm: sha256WithRSAEncryption 76:f3:d3:f0:60:5d:d6:2b:1e:8c:9f:62:20:72:20:46:11:bf: 9b:6b:11:48:aa:08:d7:ae:fe:8b:33:c4:12:b2:96:59:d1:76: 74:c0:57:3a:3f:fa:34:a2:41:9a:fb:97:5d:c2:ea:38:74:cd: 3a:c5:d1:80:5c:58:c0:4e:93:6e:20:c2:30:5c:2d:f2:27:41: 0a:15:92:be:57:f2:7a:5a:99:2c:45:ca:c0:4c:37:3b:9e:36: c5:b3:57:8e:1d:d7:3b:24:96:a1:cb:0a:d9:b5:18:67:d0:a1: c4:83:9c:34:12:a6:37:ae:6a:d4:94:73:43:1c:1a:dc:a2:31: a8:10:36:b0:31:a5:6e:9d:18:32:4d:ca:2d:42:18:91:06:8c: 19:71:0e:94:dc:9c:f7:1e:8f:09:6f:6a:92:6a:56:62:ba:da: c2:be:e0:5e:44:df:40:d2:4d:e9:1a:a4:7c:a1:38:3b:20:c6: ef:f4:2a:c6:46:88:68:86:41:80:93:f4:a0:cc:71:8f:ed:ae: ff:fc:a0:55:e7:18:05:d4:ad:aa:2d:2a:c9:6f:1d:7e:df:11: 7d:eb:f9:13:eb:16:1d:1c:c1:06:24:d7:96:32:5c:96:9c:62: 94:7f:1b:63:fd:e3:f6:22:c9:80:3e:5e:bd:fb:58:a4:9b:18: d3:e8:93:3c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFcmqEnuIQQBShy14JDRvshpXrcUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDAzN1oX DTI3MDMwMzA2MDUzN1owMzExMC8GA1UEAxMoM0QzQzk4NDFCQkNDODI2Qzc3RUJC REJDMUEyQkRFOTYwNjJENTc0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJIp5SRcB1dCH0XEFUYRfF5EuMwpUsDnfu6ROeBHMc2T/tby9g7orKLy+9g5 uOA3D22wQBuSADV0t0ktI8K3B5H1SLu6BMEzGpkSAllABTDtLwOqEAcrrHZpUZ7H nd8llOv5zxVIRjqbTegAHO9ufk8EdlFmIXr7K/MBP+wPZn83fMn9rtqpM0v0IMlJ cmfd2CcgjmOT+0Hxb+fdLyveccukMlhf5dALEMApjEBqbclOWki2aVRW3vsSMZ52 14mPXu06YfXfmP8YMOzTMFR61PwoR6Qv6YEPyQygbEu0CTxcuVHZ8eJsnN0hTjmF tARRAwBthqjjy8HfSQ8o8arILbUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ9PJhB u8yCbHfrvbwaK96WBi1XTTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc1NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oGkwDQYJKoZIhvcNAQELBQADggEBAHbz0/BgXdYrHoyfYiByIEYRv5trEUiqCNeu /oszxBKyllnRdnTAVzo/+jSiQZr7l13C6jh0zTrF0YBcWMBOk24gwjBcLfInQQoV kr5X8npamSxFysBMNzueNsWzV44d1zsklqHLCtm1GGfQocSDnDQSpjeuatSUc0Mc GtyiMagQNrAxpW6dGDJNyi1CGJEGjBlxDpTcnPcejwlvapJqVmK62sK+4F5E30DS TekapHyhODsgxu/0KsZGiGiGQYCT9KDMcY/trv/8oFXnGAXUraotKslvHX7fEX3r +RPrFh0cwQYk15YyXJacYpR/G2P94/YiyYA+Xr37WKSbGNPokzw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:00 2026 by rpki-client