$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142781.roa File: AS142781.roa (raw, json) Hash identifier: FNiBqjo9b4uTt5T1LQVDNXhiQCBh+u+qrm7aA85tr0g= Subject key identifier: 99:B5:A6:CD:40:36:2B:1A:97:18:46:98:C2:14:57:DD:EC:81:FD:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 77766787F9C9045390590FAC30E2BCD2F00C5962 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142781.roa Signing time: Wed 04 Mar 2026 06:06:17 +0000 ROA not before: Wed 04 Mar 2026 06:01:17 +0000 ROA not after: Wed 03 Mar 2027 06:06:17 +0000 asID: 142781 IP address blocks: 240a:a083::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:76:67:87:f9:c9:04:53:90:59:0f:ac:30:e2:bc:d2:f0:0c:59:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:17 2026 GMT Not After : Mar 3 06:06:17 2027 GMT Subject: CN=99B5A6CD40362B1A97184698C21457DDEC81FD7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:db:b9:2c:bc:9b:b5:68:d6:47:1a:21:4d:19: ba:12:3f:89:e0:a9:6b:52:c6:ce:5e:55:63:56:89: cb:7b:ca:9b:6e:93:d4:32:69:27:9b:18:3f:62:59: 2b:5a:fa:ff:5d:e1:3a:bf:81:64:65:3b:5e:f6:c6: 41:d1:4c:38:cd:61:a7:80:0b:24:a5:16:70:65:aa: 7d:fe:2e:13:93:aa:ed:da:8d:d4:8f:f7:12:5a:9a: 5e:8e:54:c8:6b:35:09:77:e9:68:3f:9d:84:bf:4b: 1f:db:0e:3b:19:d8:95:b5:0a:d3:4b:85:57:09:46: 6d:a4:a1:5c:d7:b2:c3:7d:e1:bb:75:67:85:ff:60: 27:97:fa:91:d6:0e:d9:31:83:52:f1:d9:65:09:1c: fe:14:97:7c:c0:82:a8:ba:da:7b:87:b8:4b:d8:26: 0f:65:da:6a:e6:c4:b7:d9:33:f9:16:ce:e7:20:ff: 4b:15:df:fa:97:07:a9:7a:55:27:a7:9b:b4:68:38: 31:cb:cb:ea:32:f4:44:b1:70:10:aa:42:92:a4:3c: 74:7f:e5:15:66:10:a3:47:d0:5f:af:9c:a0:1c:5f: 25:f4:74:38:90:36:85:51:cd:b9:78:cb:b8:fb:fb: e7:6b:d3:e4:2c:20:87:4c:25:74:c2:c1:c1:24:db: 35:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B5:A6:CD:40:36:2B:1A:97:18:46:98:C2:14:57:DD:EC:81:FD:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142781.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a083::/32 Signature Algorithm: sha256WithRSAEncryption 41:5c:8b:a3:51:70:a5:89:77:83:72:42:e1:2a:44:4a:c1:ff: 77:7a:55:e5:38:0d:fb:47:0a:4f:97:e7:79:60:81:10:28:86: a2:c2:8f:64:4c:e2:4f:47:2b:1c:ab:cd:ef:80:15:d5:55:38: 47:8a:dc:9f:c3:9f:0c:7e:d7:08:9e:93:c6:05:94:f2:4c:33: 84:fe:9f:12:ad:14:2b:56:01:df:e0:db:91:95:0e:f6:63:6c: 5f:20:2f:3e:a7:6c:28:41:d5:74:d8:7a:3b:c2:6f:33:68:9a: 53:45:fd:8e:02:e5:5f:61:08:f0:15:62:b4:a1:1f:f8:aa:b5: 45:a7:55:7e:34:75:78:50:67:fc:ea:31:04:a0:5c:9d:72:2b: ae:24:27:58:65:01:4e:81:7c:01:57:13:e7:5c:34:b7:ed:2a: 6e:e0:9c:cf:4d:63:d1:87:53:4d:d5:2f:dc:3c:27:a5:a9:8f: e1:33:80:d2:7a:20:2d:66:40:a0:de:49:d1:51:7c:80:fc:37: b2:30:a7:89:c9:56:bb:c5:43:cd:75:88:db:72:4d:c7:8c:c0: e8:a5:97:60:19:80:ef:70:5f:d3:62:b9:c9:9a:4e:21:f8:4c: 57:30:39:47:82:a7:81:50:1f:ec:59:25:76:d8:bf:2d:af:ab: c5:f5:7f:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUd3Znh/nJBFOQWQ+sMOK80vAMWWIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDExN1oX DTI3MDMwMzA2MDYxN1owMzExMC8GA1UEAxMoOTlCNUE2Q0Q0MDM2MkIxQTk3MTg0 Njk4QzIxNDU3RERFQzgxRkQ3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPDbuSy8m7Vo1kcaIU0ZuhI/ieCpa1LGzl5VY1aJy3vKm26T1DJpJ5sYP2JZ K1r6/13hOr+BZGU7XvbGQdFMOM1hp4ALJKUWcGWqff4uE5Oq7dqN1I/3ElqaXo5U yGs1CXfpaD+dhL9LH9sOOxnYlbUK00uFVwlGbaShXNeyw33hu3Vnhf9gJ5f6kdYO 2TGDUvHZZQkc/hSXfMCCqLrae4e4S9gmD2XaaubEt9kz+RbO5yD/SxXf+pcHqXpV J6ebtGg4McvL6jL0RLFwEKpCkqQ8dH/lFWYQo0fQX6+coBxfJfR0OJA2hVHNuXjL uPv752vT5Cwgh0wldMLBwSTbNaMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSZtabN QDYrGpcYRpjCFFfd7IH9fTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oIMwDQYJKoZIhvcNAQELBQADggEBAEFci6NRcKWJd4NyQuEqRErB/3d6VeU4DftH Ck+X53lggRAohqLCj2RM4k9HKxyrze+AFdVVOEeK3J/Dnwx+1wiek8YFlPJMM4T+ nxKtFCtWAd/g25GVDvZjbF8gLz6nbChB1XTYejvCbzNomlNF/Y4C5V9hCPAVYrSh H/iqtUWnVX40dXhQZ/zqMQSgXJ1yK64kJ1hlAU6BfAFXE+dcNLftKm7gnM9NY9GH U03VL9w8J6Wpj+EzgNJ6IC1mQKDeSdFRfID8N7Iwp4nJVrvFQ811iNtyTceMwOil l2AZgO9wX9NiucmaTiH4TFcwOUeCp4FQH+xZJXbYvy2vq8X1f8E= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:49 2026 by rpki-client