$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142790.roa File: AS142790.roa (raw, json) Hash identifier: 12gWwZtlxws4KEn/QXvdVXZMNt290ITWBEIZKxmhaUI= Subject key identifier: F5:38:E8:9A:01:3C:FE:70:48:30:CE:B4:C6:8C:C4:0E:73:30:B1:6B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 50161F037025337421EF0C1FC890C55CAB9DBEBB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142790.roa Signing time: Wed 04 Mar 2026 06:07:37 +0000 ROA not before: Wed 04 Mar 2026 06:02:37 +0000 ROA not after: Wed 03 Mar 2027 06:07:37 +0000 asID: 142790 IP address blocks: 240a:a08c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:16:1f:03:70:25:33:74:21:ef:0c:1f:c8:90:c5:5c:ab:9d:be:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:37 2026 GMT Not After : Mar 3 06:07:37 2027 GMT Subject: CN=F538E89A013CFE704830CEB4C68CC40E7330B16B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:14:0d:9c:f2:29:77:ea:2e:82:3f:dd:bf:d2: 71:a5:31:0a:08:df:d6:70:fa:e2:5a:0c:a1:7a:e7: 23:f4:0f:e8:7a:ca:64:4d:3d:f9:d0:36:a3:65:c4: dd:a5:46:af:7a:73:35:cc:45:82:54:03:80:5c:64: 47:2f:54:a1:57:91:31:5a:5b:4a:8b:d6:d4:d2:37: 26:87:68:a1:24:84:b2:ee:99:ec:4b:40:89:8a:69: 76:2a:cb:a1:21:76:4c:77:2d:c9:89:90:17:30:9d: 36:76:10:e1:93:64:fe:4f:f7:03:1f:99:fd:6d:ec: ab:49:1f:d0:ae:56:13:34:b4:f2:43:fc:29:15:42: 9a:1e:2f:a7:b3:72:46:ec:e4:d8:37:80:e0:7d:74: 7a:a6:08:a4:34:11:ef:90:28:44:0c:7e:b9:0c:fa: aa:5b:c9:89:b1:f8:c2:46:29:cb:b4:cf:ae:b1:68: 23:ff:01:fe:12:65:22:93:54:95:ad:d4:b3:bb:a5: d1:00:fc:6b:0b:b2:d2:bf:0f:a7:15:d0:be:60:82: d3:18:fc:b3:7a:13:a0:24:ff:c8:d5:b4:ac:1b:e4: 14:99:f0:8f:90:f3:0a:be:ec:a9:f6:dc:33:9c:e0: f4:62:6e:53:6d:a1:41:d6:e9:fc:12:9f:f5:c3:a1: c8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:38:E8:9A:01:3C:FE:70:48:30:CE:B4:C6:8C:C4:0E:73:30:B1:6B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142790.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a08c::/32 Signature Algorithm: sha256WithRSAEncryption 72:31:1a:49:a3:52:39:91:bb:e4:57:be:30:03:ef:5e:2f:d4: 84:55:e1:ce:b0:c5:c5:22:e3:3f:47:82:57:8d:00:e0:a4:38: 34:c3:ba:d3:02:b0:66:9c:e5:1d:9f:0c:5c:c7:25:fb:4e:65: b1:c0:9c:d7:ee:9d:7a:b0:38:24:08:b7:88:97:d7:ae:24:70: f8:1e:e7:4c:75:7b:6b:f3:2e:38:0b:a4:47:26:43:c9:14:0d: e8:19:a9:aa:f5:d2:69:3d:0d:bf:de:59:62:8f:0a:cc:1d:85: 11:98:15:34:d1:80:02:40:5f:5b:ef:02:ac:8b:bb:5b:61:28: c1:2e:92:e9:32:2b:be:fa:a2:b7:40:08:bb:16:7e:6c:d0:40: 58:85:41:4f:c9:23:ad:00:9a:e9:1f:d1:46:6c:04:e6:8b:ae: 6a:06:92:23:18:07:38:01:90:6b:8b:63:16:79:29:50:1f:4a: af:b1:16:16:8e:28:01:22:b3:a7:dc:e6:2b:e3:74:7d:d2:94: de:7a:02:c8:ee:0b:2f:52:44:88:02:02:13:70:f3:a6:f6:60: c2:cc:17:8e:e5:25:d0:c0:a2:60:db:3e:f8:9f:c5:c3:ad:e6: 8f:63:f3:81:a2:6c:47:4e:a9:38:5a:6e:0f:10:ee:b0:bf:65: 12:5b:2d:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUBYfA3AlM3Qh7wwfyJDFXKudvrswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIzN1oX DTI3MDMwMzA2MDczN1owMzExMC8GA1UEAxMoRjUzOEU4OUEwMTNDRkU3MDQ4MzBD RUI0QzY4Q0M0MEU3MzMwQjE2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoUDZzyKXfqLoI/3b/ScaUxCgjf1nD64loMoXrnI/QP6HrKZE09+dA2o2XE 3aVGr3pzNcxFglQDgFxkRy9UoVeRMVpbSovW1NI3JodooSSEsu6Z7EtAiYppdirL oSF2THctyYmQFzCdNnYQ4ZNk/k/3Ax+Z/W3sq0kf0K5WEzS08kP8KRVCmh4vp7Ny Ruzk2DeA4H10eqYIpDQR75AoRAx+uQz6qlvJibH4wkYpy7TPrrFoI/8B/hJlIpNU la3Us7ul0QD8awuy0r8PpxXQvmCC0xj8s3oToCT/yNW0rBvkFJnwj5DzCr7sqfbc M5zg9GJuU22hQdbp/BKf9cOhyKUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT1OOia ATz+cEgwzrTGjMQOczCxazAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc5MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oIwwDQYJKoZIhvcNAQELBQADggEBAHIxGkmjUjmRu+RXvjAD714v1IRV4c6wxcUi 4z9HgleNAOCkODTDutMCsGac5R2fDFzHJftOZbHAnNfunXqwOCQIt4iX164kcPge 50x1e2vzLjgLpEcmQ8kUDegZqar10mk9Db/eWWKPCswdhRGYFTTRgAJAX1vvAqyL u1thKMEukukyK776ordACLsWfmzQQFiFQU/JI60Amukf0UZsBOaLrmoGkiMYBzgB kGuLYxZ5KVAfSq+xFhaOKAEis6fc5ivjdH3SlN56AsjuCy9SRIgCAhNw86b2YMLM F47lJdDAomDbPvifxcOt5o9j84GibEdOqThabg8Q7rC/ZRJbLSw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:21 2026 by rpki-client