$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142756.roa File: AS142756.roa (raw, json) Hash identifier: uQuFcukU/7xT5W32oBHTb/2LQfOP8fRHmjunGBLkYd0= Subject key identifier: ED:02:62:CD:29:5E:FA:C9:69:44:B8:87:45:26:24:F6:6E:3E:05:DB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 42FE32C737C80236214968EE5820810C8AE5AD6A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142756.roa Signing time: Wed 04 Mar 2026 06:06:05 +0000 ROA not before: Wed 04 Mar 2026 06:01:05 +0000 ROA not after: Wed 03 Mar 2027 06:06:05 +0000 asID: 142756 IP address blocks: 240a:a06a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:fe:32:c7:37:c8:02:36:21:49:68:ee:58:20:81:0c:8a:e5:ad:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:05 2026 GMT Not After : Mar 3 06:06:05 2027 GMT Subject: CN=ED0262CD295EFAC96944B887452624F66E3E05DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:e0:c2:05:db:df:9a:07:d7:48:04:18:6a: 27:12:79:c1:4a:6b:58:61:a3:41:b3:e1:0e:81:b0: 1c:cc:84:91:91:97:06:5e:44:10:c8:a8:5d:87:80: 0f:43:f2:0f:fd:66:c9:e0:5f:4f:62:7f:d4:27:43: dd:b3:e2:e1:87:89:28:6b:d4:27:61:44:36:e2:51: 36:39:2a:f5:fe:a6:fb:7a:70:28:95:bd:88:32:cd: 30:fd:cf:8c:2c:88:61:05:a7:aa:c2:13:26:5e:1a: a1:c9:d2:ab:8d:69:ce:34:3c:fa:61:63:c5:0c:a2: 2f:4a:30:24:52:e6:a6:a0:ba:4f:27:f3:05:c7:65: 6d:07:3e:0e:18:80:60:e8:b3:05:f6:e7:3b:0a:6f: 4e:a3:fb:a5:83:08:05:f8:94:a4:b2:a4:94:01:c1: 38:c0:a8:02:5b:00:20:d7:64:2d:d9:3b:d6:99:fa: ac:5d:cd:08:67:79:a9:70:68:62:1d:ba:44:09:5d: f1:38:8d:fb:fc:10:78:99:2e:ee:1f:38:3b:35:dc: 1b:97:66:26:cf:24:5b:0f:a3:c1:cf:26:f7:5e:74: 41:5b:c3:38:31:81:25:8e:a1:82:9a:97:fc:cf:88: d5:b5:3d:54:e1:e1:fe:1c:0b:d0:d1:4e:2b:26:9b: b4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:02:62:CD:29:5E:FA:C9:69:44:B8:87:45:26:24:F6:6E:3E:05:DB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142756.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a06a::/32 Signature Algorithm: sha256WithRSAEncryption bd:ff:31:e9:fe:c0:b2:48:4e:11:da:ca:0c:bb:cd:9e:b1:bd: e8:cc:01:be:90:20:b1:da:6f:fb:25:61:65:29:b7:24:2f:b4: 87:b4:a8:b3:06:83:84:fc:aa:43:51:49:69:0d:ae:a3:bd:b1: 45:c7:7d:e7:2c:6a:78:a6:d5:c1:58:0d:f0:14:7b:63:cc:9b: 9c:fe:79:94:cf:f0:93:dc:ed:af:62:47:32:f9:33:f2:37:62: a7:1b:00:75:24:28:82:6c:91:7d:6e:31:d5:be:92:67:9e:34: 92:1f:8b:2e:19:bd:b1:e5:cf:32:5e:ad:8b:2f:83:b5:cf:0a: 84:66:91:05:73:ed:ec:d4:1f:14:f4:43:f4:38:57:d6:89:93: ff:2e:50:89:33:17:9e:cc:28:8e:5c:e0:19:97:7d:17:2b:bd: b7:8d:93:ac:9a:ea:4c:e4:63:3c:41:76:ee:cc:57:e9:95:66: af:a6:e3:19:da:1a:50:8b:8f:95:73:ed:39:83:bd:22:a0:ce: 2f:4a:3a:45:74:4b:58:95:eb:eb:cf:79:07:9e:1a:74:9b:03: af:e5:29:7e:96:a3:f5:2f:c4:a0:b4:a9:62:45:3c:e0:5b:0a: c3:f2:eb:58:ac:c3:95:7c:cd:b6:ba:4d:ca:d9:0d:7b:bf:e7: 8b:6d:b5:88 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQv4yxzfIAjYhSWjuWCCBDIrlrWowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEwNVoX DTI3MDMwMzA2MDYwNVowMzExMC8GA1UEAxMoRUQwMjYyQ0QyOTVFRkFDOTY5NDRC ODg3NDUyNjI0RjY2RTNFMDVEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiL4MIF29+aB9dIBBhqJxJ5wUprWGGjQbPhDoGwHMyEkZGXBl5EEMioXYeA D0PyD/1myeBfT2J/1CdD3bPi4YeJKGvUJ2FENuJRNjkq9f6m+3pwKJW9iDLNMP3P jCyIYQWnqsITJl4aocnSq41pzjQ8+mFjxQyiL0owJFLmpqC6TyfzBcdlbQc+DhiA YOizBfbnOwpvTqP7pYMIBfiUpLKklAHBOMCoAlsAINdkLdk71pn6rF3NCGd5qXBo Yh26RAld8TiN+/wQeJku7h84OzXcG5dmJs8kWw+jwc8m9150QVvDODGBJY6hgpqX /M+I1bU9VOHh/hwL0NFOKyabtKMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTtAmLN KV76yWlEuIdFJiT2bj4F2zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc1Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oGowDQYJKoZIhvcNAQELBQADggEBAL3/Men+wLJIThHaygy7zZ6xvejMAb6QILHa b/slYWUptyQvtIe0qLMGg4T8qkNRSWkNrqO9sUXHfecsanim1cFYDfAUe2PMm5z+ eZTP8JPc7a9iRzL5M/I3YqcbAHUkKIJskX1uMdW+kmeeNJIfiy4ZvbHlzzJerYsv g7XPCoRmkQVz7ezUHxT0Q/Q4V9aJk/8uUIkzF57MKI5c4BmXfRcrvbeNk6ya6kzk YzxBdu7MV+mVZq+m4xnaGlCLj5Vz7TmDvSKgzi9KOkV0S1iV6+vPeQeeGnSbA6/l KX6Wo/UvxKC0qWJFPOBbCsPy61isw5V8zba6TcrZDXu/54tttYg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:13 2026 by rpki-client