$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142792.roa File: AS142792.roa (raw, json) Hash identifier: wILsR+s6tBWoSsvElPYP3XOOQ3f9vBwImngT2pDG12Q= Subject key identifier: 46:07:1B:ED:94:A3:AE:70:1C:CE:D1:39:0E:47:C6:02:A0:AF:E0:F4 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1AEA5E7076A02C25BC0C46CAD242A652EF0E8E73 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142792.roa Signing time: Wed 04 Mar 2026 06:07:43 +0000 ROA not before: Wed 04 Mar 2026 06:02:43 +0000 ROA not after: Wed 03 Mar 2027 06:07:43 +0000 asID: 142792 IP address blocks: 240a:a08e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ea:5e:70:76:a0:2c:25:bc:0c:46:ca:d2:42:a6:52:ef:0e:8e:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:43 2026 GMT Not After : Mar 3 06:07:43 2027 GMT Subject: CN=46071BED94A3AE701CCED1390E47C602A0AFE0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d3:c2:10:f8:5d:6a:a7:9e:e5:2a:33:2d:e6: a1:d6:3c:c5:0e:9b:75:99:20:88:3c:05:c2:9a:1c: 71:5d:b8:05:28:3e:e1:68:1f:0b:47:0c:c5:1d:22: 7d:4a:59:fb:07:5f:ae:92:5b:2f:23:3e:31:97:23: 8e:ad:4e:11:26:2c:69:2c:af:03:eb:51:f1:37:04: 1c:19:61:4b:f2:6b:e4:e0:f3:c8:fd:e8:d8:79:9a: 67:10:44:8e:95:89:14:b5:f5:54:5a:66:e5:ac:1c: a6:ea:03:e5:6c:92:98:f3:ed:f2:86:11:5d:5e:66: 31:c1:63:ca:79:39:02:86:95:d1:58:c7:e2:67:5c: cd:b5:ee:06:c7:af:fd:86:e3:e6:84:64:69:b5:b1: d8:44:0e:09:cd:33:b1:65:2d:84:89:61:25:19:35: fa:89:02:5c:d2:d5:66:54:bc:43:ec:83:4f:5e:60: 89:95:08:0d:ce:cd:24:30:31:cf:4b:55:32:5e:df: e6:9c:ef:e7:f0:fa:67:5b:fb:ac:42:dc:a2:a1:d0: d0:f7:24:7e:d4:e1:00:65:03:45:ef:b8:2f:19:ac: f6:e5:5f:72:58:27:cd:85:4c:56:14:e4:9e:25:48: 5a:8a:3a:f6:91:1a:6b:9b:21:bb:22:54:39:a3:a5: 22:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:07:1B:ED:94:A3:AE:70:1C:CE:D1:39:0E:47:C6:02:A0:AF:E0:F4 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142792.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a08e::/32 Signature Algorithm: sha256WithRSAEncryption b6:2f:86:41:9f:31:10:9d:e3:61:cf:d2:f8:f2:f4:28:6e:a9: 59:12:0a:3b:5b:08:cb:be:7f:3d:97:2a:c4:86:f8:0e:e8:ae: f5:f5:95:b9:97:78:9c:39:b1:f4:34:20:16:50:11:7e:83:57: 14:f5:57:41:0c:0b:f3:53:0d:9c:29:24:f2:67:11:0f:3e:63: 84:9b:7d:24:28:ec:2f:65:b1:62:5a:92:26:d9:7a:dc:9e:fb: 95:cc:79:9c:1d:31:06:2f:20:8e:4c:52:57:69:21:79:51:59: 74:7e:e2:7b:20:04:4a:dc:0b:de:c3:a2:c4:20:0d:9d:16:60: 3f:2d:7a:03:c7:8e:99:11:e6:2b:76:e2:bf:aa:5e:62:f6:88: ab:b3:87:ae:43:8c:c1:04:a4:4b:cc:8d:1e:9a:89:5b:30:11: 33:78:54:98:40:86:99:6c:d7:aa:5a:6f:0d:7d:a7:69:c8:70: cc:95:5e:9f:67:f8:80:be:f0:37:ca:93:c5:92:61:34:08:98: 44:45:d7:5f:33:0d:5b:33:ae:46:e3:31:47:63:d4:c7:d9:9c: a1:a0:64:35:d4:d4:f9:74:2e:cf:b3:81:42:dc:13:3f:19:31: 13:0b:65:7b:96:39:f3:e7:db:d6:66:a4:e6:d6:91:4d:b8:0f: 0c:c2:1e:36 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGupecHagLCW8DEbK0kKmUu8OjnMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDI0M1oX DTI3MDMwMzA2MDc0M1owMzExMC8GA1UEAxMoNDYwNzFCRUQ5NEEzQUU3MDFDQ0VE MTM5MEU0N0M2MDJBMEFGRTBGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANbTwhD4XWqnnuUqMy3modY8xQ6bdZkgiDwFwpoccV24BSg+4WgfC0cMxR0i fUpZ+wdfrpJbLyM+MZcjjq1OESYsaSyvA+tR8TcEHBlhS/Jr5ODzyP3o2HmaZxBE jpWJFLX1VFpm5awcpuoD5WySmPPt8oYRXV5mMcFjynk5AoaV0VjH4mdczbXuBsev /Ybj5oRkabWx2EQOCc0zsWUthIlhJRk1+okCXNLVZlS8Q+yDT15giZUIDc7NJDAx z0tVMl7f5pzv5/D6Z1v7rELcoqHQ0PckftThAGUDRe+4Lxms9uVfclgnzYVMVhTk niVIWoo69pEaa5shuyJUOaOlIksCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRGBxvt lKOucBzO0TkOR8YCoK/g9DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjc5Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oI4wDQYJKoZIhvcNAQELBQADggEBALYvhkGfMRCd42HP0vjy9ChuqVkSCjtbCMu+ fz2XKsSG+A7orvX1lbmXeJw5sfQ0IBZQEX6DVxT1V0EMC/NTDZwpJPJnEQ8+Y4Sb fSQo7C9lsWJakibZetye+5XMeZwdMQYvII5MUldpIXlRWXR+4nsgBErcC97DosQg DZ0WYD8tegPHjpkR5it24r+qXmL2iKuzh65DjMEEpEvMjR6aiVswETN4VJhAhpls 16pabw19p2nIcMyVXp9n+IC+8DfKk8WSYTQImERF118zDVszrkbjMUdj1MfZnKGg ZDXU1Pl0Ls+zgULcEz8ZMRMLZXuWOfPn29ZmpObWkU24DwzCHjY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:16 2026 by rpki-client