$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142771.roa File: AS142771.roa (raw, json) Hash identifier: UH3zDYCHpkmDDW7RCXeylRcNyNtaKHZfzCYIIxi6APs= Subject key identifier: 76:98:BC:05:7C:F2:7A:15:A9:69:DF:A3:47:C1:50:9C:E6:A4:30:FC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 278BA074F19F227823ED3A37B6E787F251965391 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142771.roa Signing time: Wed 04 Mar 2026 06:06:09 +0000 ROA not before: Wed 04 Mar 2026 06:01:09 +0000 ROA not after: Wed 03 Mar 2027 06:06:09 +0000 asID: 142771 IP address blocks: 240a:a079::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:8b:a0:74:f1:9f:22:78:23:ed:3a:37:b6:e7:87:f2:51:96:53:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:09 2026 GMT Not After : Mar 3 06:06:09 2027 GMT Subject: CN=7698BC057CF27A15A969DFA347C1509CE6A430FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:48:0a:4b:8a:44:0c:9e:c2:39:29:b0:bf: af:98:54:f2:bd:b6:0d:da:f5:e5:bf:cc:44:a0:45: 4b:b4:be:27:94:16:77:3f:87:fa:86:91:75:6a:2f: c5:29:dd:1b:f8:90:d8:52:c9:21:5f:25:81:33:21: a3:2e:57:6f:47:53:c1:a3:32:a4:51:92:d4:80:65: ad:e0:62:73:8f:8e:eb:4d:1b:04:cb:fc:b1:10:e4: d6:4e:1d:f5:92:50:1d:af:6d:ea:73:47:16:d7:7f: b2:41:74:ab:f6:e7:bf:d4:99:57:be:db:51:53:58: 29:7c:21:08:f6:99:91:e5:a3:2c:a4:25:25:27:97: dc:97:82:92:01:5c:28:74:ab:74:47:b9:68:7e:35: 05:e5:16:91:84:61:c4:b8:a4:94:a3:84:a6:bd:48: 9e:4f:4a:e5:d7:46:da:da:51:01:6b:31:01:72:14: 59:e1:ad:d6:c4:d4:76:45:f9:b9:29:8b:37:c1:95: 57:18:2f:64:b7:cb:0b:11:43:bf:69:33:e1:a8:7a: ad:ed:ad:2a:9a:94:88:85:25:8d:24:38:cb:9e:a0: 31:bb:a1:17:5e:22:6a:91:7d:7f:da:41:7b:a8:7e: 0e:47:55:51:ff:dd:6e:38:72:5a:65:ff:d2:76:48: 44:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:98:BC:05:7C:F2:7A:15:A9:69:DF:A3:47:C1:50:9C:E6:A4:30:FC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142771.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a079::/32 Signature Algorithm: sha256WithRSAEncryption 7c:b9:9f:62:ec:db:0b:2b:81:6a:2f:ad:6c:b9:2f:91:1f:d2: 62:ac:36:62:24:e2:3e:f5:1d:20:c8:a4:0b:bd:a2:f1:55:0b: e3:ec:ba:80:71:74:e1:f1:42:6a:55:aa:8d:41:53:40:a7:87: 1b:ab:0f:07:ba:47:5e:a5:44:c2:10:23:c4:b4:73:6a:0a:76: 7f:9f:d7:30:fb:5b:b6:86:9c:42:a1:f2:32:44:a4:bd:e8:0c: 95:65:e8:2d:13:6b:97:a5:23:a2:56:63:45:1f:e9:82:1f:14: b5:c7:12:ee:10:2b:40:b8:fd:c4:58:c9:84:6e:22:95:27:12: 52:2d:86:fc:df:74:13:12:8d:7b:4d:70:cb:86:a1:35:ca:58: fb:05:46:a7:07:2b:34:0b:37:60:fa:05:93:1b:fb:53:bd:81: 17:16:da:f0:2d:29:2a:1b:c4:41:d7:83:32:ec:f3:41:b0:72: 8f:ff:df:ad:f8:38:ae:05:a6:cb:1c:58:80:86:49:a8:52:4c: d5:f0:5c:95:a2:27:17:f1:13:c7:12:23:2c:2b:54:21:54:8b: 25:0c:2b:dd:83:0c:bf:f0:08:a8:dc:9d:d9:e2:62:60:84:e3: f1:8e:6b:e8:66:87:96:a2:cc:db:48:76:ad:b9:66:d7:7b:19: 13:55:7d:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJ4ugdPGfIngj7To3tueH8lGWU5EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEwOVoX DTI3MDMwMzA2MDYwOVowMzExMC8GA1UEAxMoNzY5OEJDMDU3Q0YyN0ExNUE5NjlE RkEzNDdDMTUwOUNFNkE0MzBGQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALloSApLikQMnsI5KbC/r5hU8r22Ddr15b/MRKBFS7S+J5QWdz+H+oaRdWov xSndG/iQ2FLJIV8lgTMhoy5Xb0dTwaMypFGS1IBlreBic4+O600bBMv8sRDk1k4d 9ZJQHa9t6nNHFtd/skF0q/bnv9SZV77bUVNYKXwhCPaZkeWjLKQlJSeX3JeCkgFc KHSrdEe5aH41BeUWkYRhxLiklKOEpr1Ink9K5ddG2tpRAWsxAXIUWeGt1sTUdkX5 uSmLN8GVVxgvZLfLCxFDv2kz4ah6re2tKpqUiIUljSQ4y56gMbuhF14iapF9f9pB e6h+DkdVUf/dbjhyWmX/0nZIRKMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR2mLwF fPJ6Falp36NHwVCc5qQw/DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc3MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oHkwDQYJKoZIhvcNAQELBQADggEBAHy5n2Ls2wsrgWovrWy5L5Ef0mKsNmIk4j71 HSDIpAu9ovFVC+PsuoBxdOHxQmpVqo1BU0CnhxurDwe6R16lRMIQI8S0c2oKdn+f 1zD7W7aGnEKh8jJEpL3oDJVl6C0Ta5elI6JWY0Uf6YIfFLXHEu4QK0C4/cRYyYRu IpUnElIthvzfdBMSjXtNcMuGoTXKWPsFRqcHKzQLN2D6BZMb+1O9gRcW2vAtKSob xEHXgzLs80Gwco//3634OK4FpsscWICGSahSTNXwXJWiJxfxE8cSIywrVCFUiyUM K92DDL/wCKjcndniYmCE4/GOa+hmh5aizNtIdq25Ztd7GRNVffg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:44 2026 by rpki-client