$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142769.roa File: AS142769.roa (raw, json) Hash identifier: GDAEsPOkIFxNAujOjSpW7SfAIwYPARn3/EAr1VdhoN0= Subject key identifier: 21:DA:B8:43:0F:32:5D:C1:A8:5E:CC:60:23:79:CC:31:BB:45:59:03 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4577A617E50CA3FAB78C791D2F36EFCEA2CFE2E8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142769.roa Signing time: Wed 04 Mar 2026 06:06:15 +0000 ROA not before: Wed 04 Mar 2026 06:01:15 +0000 ROA not after: Wed 03 Mar 2027 06:06:15 +0000 asID: 142769 IP address blocks: 240a:a077::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:77:a6:17:e5:0c:a3:fa:b7:8c:79:1d:2f:36:ef:ce:a2:cf:e2:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:15 2026 GMT Not After : Mar 3 06:06:15 2027 GMT Subject: CN=21DAB8430F325DC1A85ECC602379CC31BB455903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:69:dc:9e:de:0c:b4:3d:9c:fc:c1:2c:ca:ef: 98:5b:9c:22:67:48:ad:c2:9b:43:2a:74:bd:4e:23: 3b:fb:46:c1:16:19:8f:e7:c1:18:6d:1e:e7:6f:9a: 11:3b:88:9f:a8:c0:70:d8:96:e0:f6:f1:62:c1:da: 1d:4f:c1:fa:b8:bb:d2:21:52:f7:2e:85:7f:ba:d8: 1e:c6:bd:7f:be:be:6a:54:8f:c0:14:82:31:5e:58: 18:89:46:6b:31:ca:2d:71:e2:10:bf:72:c0:20:84: a3:4a:c9:27:86:1b:17:a3:04:6f:d0:8e:bf:55:56: 72:f6:ac:0b:72:9f:6d:f2:c0:2e:80:c3:f0:31:19: 91:61:c2:b0:f6:8d:33:8a:a8:00:2e:71:8f:5a:7c: 25:41:5e:d9:b9:db:0e:2b:dd:87:11:20:01:78:ab: f3:ee:03:7c:2f:99:93:0e:57:c7:aa:da:20:eb:89: 37:cc:fe:db:20:da:14:0d:a1:ec:82:78:a4:36:fc: 61:4a:35:81:65:a3:b9:5f:27:e5:02:17:74:78:10: eb:92:8b:7a:96:6a:be:53:df:e1:f6:af:89:e5:a9: e2:50:2c:6c:ab:d3:2d:20:58:cd:79:df:64:81:c3: da:3f:29:79:3e:2c:7b:c4:06:77:f3:5b:f5:e4:cb: 1b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DA:B8:43:0F:32:5D:C1:A8:5E:CC:60:23:79:CC:31:BB:45:59:03 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142769.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a077::/32 Signature Algorithm: sha256WithRSAEncryption 66:8b:60:bb:61:b2:2d:91:cb:4e:1e:d9:1a:d2:16:5d:ab:c1: 4c:8b:a5:15:f2:38:34:41:a6:74:b2:15:f6:4a:22:70:f5:ff: a3:3b:fd:dc:2f:42:e2:f2:19:0d:82:28:52:b3:1f:2b:ed:8a: 03:48:5e:d9:36:4c:dc:d7:84:69:bb:d4:79:cb:60:77:d4:0e: 12:5a:09:56:e5:a7:9f:61:81:d1:47:aa:97:4a:f6:c1:ec:fc: 46:42:37:de:2f:25:09:79:b0:46:8d:66:3e:96:cc:53:1a:86: 7f:41:31:4e:cd:da:5a:a6:f1:43:9f:8d:6c:b5:06:4d:0c:e6: 69:ee:34:6f:cc:07:d2:29:49:d2:d4:72:fb:a4:e6:0c:0a:4f: 9b:77:a9:3f:fb:63:2c:0a:73:93:a1:e2:54:d4:cb:53:35:7d: 06:4c:a3:ef:60:a0:81:09:3c:94:49:00:64:77:50:f2:ca:a5: e3:9b:00:bf:87:91:2f:0e:a4:8c:5b:a2:67:65:6d:b5:3f:73: 20:73:5d:80:9f:8e:45:32:4b:f2:ac:af:36:8e:95:5e:3a:93: 5c:80:a4:2b:cd:43:85:ed:d7:bb:ed:79:1c:63:88:c0:fa:7a: e2:11:92:8c:02:be:22:bf:87:cc:1f:f6:64:87:b9:29:b8:59: 21:2b:9f:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIURXemF+UMo/q3jHkdLzbvzqLP4ugwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDExNVoX DTI3MDMwMzA2MDYxNVowMzExMC8GA1UEAxMoMjFEQUI4NDMwRjMyNURDMUE4NUVD QzYwMjM3OUNDMzFCQjQ1NTkwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJdp3J7eDLQ9nPzBLMrvmFucImdIrcKbQyp0vU4jO/tGwRYZj+fBGG0e52+a ETuIn6jAcNiW4PbxYsHaHU/B+ri70iFS9y6Ff7rYHsa9f76+alSPwBSCMV5YGIlG azHKLXHiEL9ywCCEo0rJJ4YbF6MEb9COv1VWcvasC3KfbfLALoDD8DEZkWHCsPaN M4qoAC5xj1p8JUFe2bnbDivdhxEgAXir8+4DfC+Zkw5Xx6raIOuJN8z+2yDaFA2h 7IJ4pDb8YUo1gWWjuV8n5QIXdHgQ65KLepZqvlPf4favieWp4lAsbKvTLSBYzXnf ZIHD2j8peT4se8QGd/Nb9eTLGzsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQh2rhD DzJdwahezGAjecwxu0VZAzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oHcwDQYJKoZIhvcNAQELBQADggEBAGaLYLthsi2Ry04e2RrSFl2rwUyLpRXyODRB pnSyFfZKInD1/6M7/dwvQuLyGQ2CKFKzHyvtigNIXtk2TNzXhGm71HnLYHfUDhJa CVblp59hgdFHqpdK9sHs/EZCN94vJQl5sEaNZj6WzFMahn9BMU7N2lqm8UOfjWy1 Bk0M5mnuNG/MB9IpSdLUcvuk5gwKT5t3qT/7YywKc5Oh4lTUy1M1fQZMo+9goIEJ PJRJAGR3UPLKpeObAL+HkS8OpIxbomdlbbU/cyBzXYCfjkUyS/KsrzaOlV46k1yA pCvNQ4Xt17vteRxjiMD6euIRkowCviK/h8wf9mSHuSm4WSErn4Y= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:08 2026 by rpki-client