$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142816.roa File: AS142816.roa (raw, json) Hash identifier: cuFuo0bn3+PGi1RRr/cQ+JnCffz7egt8NKe1Onaea4g= Subject key identifier: BD:A3:ED:C9:FB:7B:4D:F9:8A:F3:4C:8C:4C:17:8E:D4:0F:2A:2E:3C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 77F4DCCBD70ECD8934D813327F71AD5A9937C03A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142816.roa Signing time: Wed 04 Mar 2026 06:07:10 +0000 ROA not before: Wed 04 Mar 2026 06:02:10 +0000 ROA not after: Wed 03 Mar 2027 06:07:10 +0000 asID: 142816 IP address blocks: 240a:a0a6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f4:dc:cb:d7:0e:cd:89:34:d8:13:32:7f:71:ad:5a:99:37:c0:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:10 2026 GMT Not After : Mar 3 06:07:10 2027 GMT Subject: CN=BDA3EDC9FB7B4DF98AF34C8C4C178ED40F2A2E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ce:99:49:30:f8:1e:89:75:9d:78:81:a0:ed: 8f:71:0b:4f:63:5e:f5:4b:86:0c:0d:f3:0e:13:97: 27:09:0d:1b:3d:d9:6b:42:f0:83:26:3d:59:83:a5: 97:4e:8e:f7:7f:84:a9:5c:65:ae:2f:d6:a8:9b:f9: e4:b8:7f:f6:32:b0:44:d3:4f:71:c8:f9:66:e9:04: e9:f4:cb:80:08:55:22:da:ad:e7:33:8a:b2:a8:af: 11:e4:52:33:14:9b:1c:e5:a4:32:32:99:63:b2:7b: b6:10:58:62:82:55:35:fa:5f:ab:a4:63:e0:77:b8: 20:0d:19:fa:d5:82:2f:6d:86:7a:01:04:39:58:fc: 5c:bb:33:18:dd:53:73:78:1b:e0:39:09:66:04:f8: 1b:b1:ba:9d:dc:c8:09:5a:df:fd:01:cc:a0:bc:00: 2c:58:36:3c:c6:9f:6e:3e:0b:f1:9a:cb:d2:0b:67: b1:38:0c:f3:61:a5:f3:16:14:58:f2:07:b9:2d:dd: 5c:ad:87:1a:59:4b:ce:2d:c3:02:93:de:fc:ce:74: 6c:e4:64:14:09:07:cd:e4:39:e3:d8:3f:02:af:4c: 03:18:1c:32:24:e8:77:8c:ea:01:74:9b:d3:aa:97: 07:02:8a:60:55:5d:ea:2c:e2:76:33:fa:1d:99:ea: b6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A3:ED:C9:FB:7B:4D:F9:8A:F3:4C:8C:4C:17:8E:D4:0F:2A:2E:3C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142816.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0a6::/32 Signature Algorithm: sha256WithRSAEncryption 10:7c:1b:2d:3b:6f:c0:29:fd:2e:fb:cd:b8:6a:0f:7f:d6:a4: f2:0d:8c:88:c2:6e:aa:36:d0:f9:96:3b:7b:5d:7b:39:c1:2e: 22:c8:82:d3:b5:13:60:cf:a1:da:b0:f3:37:05:12:ff:14:9f: 01:43:68:c5:ab:80:08:9d:de:38:aa:23:23:46:2b:cb:b8:40: bd:9f:ae:97:62:1a:a0:94:64:a1:73:02:95:8f:66:2a:0a:02: 88:21:66:79:af:59:7a:e7:85:8b:9b:45:34:05:fe:4b:2c:63: da:a9:1a:15:b7:7a:93:42:4c:a6:7a:ec:a7:fa:0e:91:32:b3: 0a:32:e4:98:15:dc:cb:dc:58:42:a3:65:18:b2:84:bb:07:b9: c1:9d:64:30:5a:22:a8:dc:a3:8e:cd:d2:61:55:fc:98:33:af: 64:b5:99:ab:aa:f9:9f:5b:6c:ce:a8:2c:48:fd:f0:a7:45:9b: 83:a9:ad:8e:80:86:3f:d9:72:e6:a6:01:38:e6:54:1c:0d:08: 3e:73:81:56:4b:dc:dc:c6:4c:18:77:03:a3:73:e6:3c:ba:65: b4:54:f4:78:8b:79:4f:21:44:db:fb:73:95:97:06:81:ca:8c: e3:ba:2c:53:4d:47:65:2f:38:af:54:03:f2:95:7d:39:d5:3e: 03:5e:13:06 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUd/Tcy9cOzYk02BMyf3GtWpk3wDowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIxMFoX DTI3MDMwMzA2MDcxMFowMzExMC8GA1UEAxMoQkRBM0VEQzlGQjdCNERGOThBRjM0 QzhDNEMxNzhFRDQwRjJBMkUzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/OmUkw+B6JdZ14gaDtj3ELT2Ne9UuGDA3zDhOXJwkNGz3Za0LwgyY9WYOl l06O93+EqVxlri/WqJv55Lh/9jKwRNNPccj5ZukE6fTLgAhVItqt5zOKsqivEeRS MxSbHOWkMjKZY7J7thBYYoJVNfpfq6Rj4He4IA0Z+tWCL22GegEEOVj8XLszGN1T c3gb4DkJZgT4G7G6ndzICVrf/QHMoLwALFg2PMafbj4L8ZrL0gtnsTgM82Gl8xYU WPIHuS3dXK2HGllLzi3DApPe/M50bORkFAkHzeQ549g/Aq9MAxgcMiTod4zqAXSb 06qXBwKKYFVd6izidjP6HZnqttkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS9o+3J +3tN+YrzTIxMF47UDyouPDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjgxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oKYwDQYJKoZIhvcNAQELBQADggEBABB8Gy07b8Ap/S77zbhqD3/WpPINjIjCbqo2 0PmWO3tdeznBLiLIgtO1E2DPodqw8zcFEv8UnwFDaMWrgAid3jiqIyNGK8u4QL2f rpdiGqCUZKFzApWPZioKAoghZnmvWXrnhYubRTQF/kssY9qpGhW3epNCTKZ67Kf6 DpEyswoy5JgV3MvcWEKjZRiyhLsHucGdZDBaIqjco47N0mFV/Jgzr2S1mauq+Z9b bM6oLEj98KdFm4OprY6Ahj/ZcuamATjmVBwNCD5zgVZL3NzGTBh3A6Nz5jy6ZbRU 9HiLeU8hRNv7c5WXBoHKjOO6LFNNR2UvOK9UA/KVfTnVPgNeEwY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:00 2026 by rpki-client