$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142786.roa File: AS142786.roa (raw, json) Hash identifier: WlGuzeVmMeW5P+HrKAYycjN5G0n5JrSDHNgyiOGXqko= Subject key identifier: 26:76:31:8B:BF:2E:89:7D:6C:93:30:BC:A0:1C:72:2E:3A:3E:62:63 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2F1466D60131BE5260F70B38D4F184DEF7D65BE2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142786.roa Signing time: Wed 04 Mar 2026 06:07:36 +0000 ROA not before: Wed 04 Mar 2026 06:02:36 +0000 ROA not after: Wed 03 Mar 2027 06:07:36 +0000 asID: 142786 IP address blocks: 240a:a088::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:14:66:d6:01:31:be:52:60:f7:0b:38:d4:f1:84:de:f7:d6:5b:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:36 2026 GMT Not After : Mar 3 06:07:36 2027 GMT Subject: CN=2676318BBF2E897D6C9330BCA01C722E3A3E6263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:71:32:e2:1e:67:ca:18:ba:81:18:1a:88:3c: 54:e5:81:37:10:da:29:d2:35:d6:79:98:af:9c:5d: cf:00:1c:6b:bc:e4:c3:1f:b2:34:0b:d3:0b:40:ba: b6:ad:a5:c5:d2:5d:fa:42:e5:8f:b4:21:19:f0:b7: 9c:59:be:cc:b7:99:b5:8d:9c:22:db:26:ee:55:6c: ff:e1:bc:5c:b0:97:d0:39:f6:24:14:1b:3b:3c:52: fe:e2:0b:9d:79:38:41:ed:55:c3:ff:e7:12:2b:05: b0:45:78:24:fa:c1:8f:6c:b7:98:93:79:e0:a9:05: 57:25:ab:88:bf:e9:be:54:41:cc:3c:3c:15:b9:9e: 54:c8:84:7a:4b:dd:51:2b:cd:e1:1e:c3:01:ef:01: 97:da:7d:05:9e:c6:1a:17:0e:3a:ae:b6:61:e2:38: 11:c4:3e:cd:7f:fa:17:25:b5:29:49:e4:d2:ae:5a: 31:3e:b5:0a:95:3f:41:99:da:4b:7a:14:45:0a:55: f0:0a:e1:83:e2:d4:b2:6e:a6:23:e3:20:69:7e:86: 90:98:62:98:d3:04:7c:46:df:a8:a3:ce:99:41:84: d2:66:00:7f:a1:22:2e:7b:d8:14:d3:3b:f9:7f:71: 4f:76:9f:65:7e:43:f9:1a:fd:f1:53:aa:9d:89:4a: ef:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:76:31:8B:BF:2E:89:7D:6C:93:30:BC:A0:1C:72:2E:3A:3E:62:63 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142786.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a088::/32 Signature Algorithm: sha256WithRSAEncryption 4c:59:4e:7f:17:6a:14:58:2e:64:2e:c8:dd:40:c6:d9:2e:26: 45:f8:b2:29:2c:83:78:6d:ab:44:a7:fd:fd:ab:b9:7b:d1:0f: aa:28:43:6e:54:fe:2a:37:ff:12:98:8e:df:de:21:4c:49:6c: 14:fa:2b:a9:c8:86:c2:2e:d3:41:5b:e1:8c:11:53:9d:3f:93: 80:62:35:9f:c9:11:b8:b3:31:d8:f4:68:18:d2:31:b9:6a:22: e7:d0:7c:ac:5d:b0:09:5d:35:99:74:58:9b:3d:ea:51:55:bd: 8c:19:1b:31:14:6a:9f:55:3a:19:9f:70:aa:49:0a:a6:23:35: b3:a8:57:77:82:08:38:8a:c3:df:78:35:77:6d:a0:6e:ee:a5: 84:04:3f:bf:5c:1c:c6:53:4e:b5:e1:d2:91:64:5a:83:49:fc: 94:d5:98:fa:6c:15:27:93:ac:7d:65:9e:41:b3:90:d6:ac:7a: 31:50:a5:57:dc:d2:8c:de:ba:e2:c1:12:6f:36:a1:98:01:d8: 8e:97:e3:b3:97:14:d7:6a:69:d0:e7:ca:11:4f:0b:82:7e:53: 91:88:8b:b2:b2:9a:d3:df:20:81:be:40:78:c5:67:f2:ed:f6: d6:69:31:44:ab:36:27:ae:e7:9c:89:1d:0d:b6:b4:ac:8f:8f: 27:58:4b:44 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULxRm1gExvlJg9ws41PGE3vfWW+IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIzNloX DTI3MDMwMzA2MDczNlowMzExMC8GA1UEAxMoMjY3NjMxOEJCRjJFODk3RDZDOTMz MEJDQTAxQzcyMkUzQTNFNjI2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRxMuIeZ8oYuoEYGog8VOWBNxDaKdI11nmYr5xdzwAca7zkwx+yNAvTC0C6 tq2lxdJd+kLlj7QhGfC3nFm+zLeZtY2cItsm7lVs/+G8XLCX0Dn2JBQbOzxS/uIL nXk4Qe1Vw//nEisFsEV4JPrBj2y3mJN54KkFVyWriL/pvlRBzDw8FbmeVMiEekvd USvN4R7DAe8Bl9p9BZ7GGhcOOq62YeI4EcQ+zX/6FyW1KUnk0q5aMT61CpU/QZna S3oURQpV8Arhg+LUsm6mI+MgaX6GkJhimNMEfEbfqKPOmUGE0mYAf6EiLnvYFNM7 +X9xT3afZX5D+Rr98VOqnYlK79MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQmdjGL vy6JfWyTMLygHHIuOj5iYzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc4Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oIgwDQYJKoZIhvcNAQELBQADggEBAExZTn8XahRYLmQuyN1AxtkuJkX4siksg3ht q0Sn/f2ruXvRD6ooQ25U/io3/xKYjt/eIUxJbBT6K6nIhsIu00Fb4YwRU50/k4Bi NZ/JEbizMdj0aBjSMblqIufQfKxdsAldNZl0WJs96lFVvYwZGzEUap9VOhmfcKpJ CqYjNbOoV3eCCDiKw994NXdtoG7upYQEP79cHMZTTrXh0pFkWoNJ/JTVmPpsFSeT rH1lnkGzkNasejFQpVfc0ozeuuLBEm82oZgB2I6X47OXFNdqadDnyhFPC4J+U5GI i7KymtPfIIG+QHjFZ/Lt9tZpMUSrNieu55yJHQ22tKyPjydYS0Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:55 2026 by rpki-client