$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142818.roa File: AS142818.roa (raw, json) Hash identifier: /8J+b6yfTqvW4fsDZ9jZ+tLoeFCfla3qV5zUl4HnwHc= Subject key identifier: A5:21:55:9E:68:0F:E9:12:FD:27:9F:6A:AD:63:DB:55:AA:D7:80:9A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2E959492027D37264D90449BF87D316E07096050 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142818.roa Signing time: Wed 04 Mar 2026 06:06:42 +0000 ROA not before: Wed 04 Mar 2026 06:01:42 +0000 ROA not after: Wed 03 Mar 2027 06:06:42 +0000 asID: 142818 IP address blocks: 240a:a0a8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:95:94:92:02:7d:37:26:4d:90:44:9b:f8:7d:31:6e:07:09:60:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:42 2026 GMT Not After : Mar 3 06:06:42 2027 GMT Subject: CN=A521559E680FE912FD279F6AAD63DB55AAD7809A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dc:4c:70:56:a1:9a:a8:71:14:17:8b:25:b5: 36:19:a7:03:1a:d9:c5:fe:ef:67:6f:b0:1a:5d:81: ab:c6:a8:2f:79:d4:ef:29:33:12:50:fe:87:a1:1a: 15:70:13:20:c2:e0:c4:fc:98:96:3d:9e:ad:7b:a5: 37:fe:e9:ea:e7:3d:51:27:db:4e:ef:fd:8e:22:48: a0:71:4f:2d:36:2a:9f:81:7f:fa:d6:08:f4:68:d4: 12:90:f7:9c:58:19:da:8f:cf:e5:4c:ed:36:8f:93: b3:ae:77:2d:bd:c6:f2:72:49:84:1b:cc:e3:b8:e0: c9:96:36:9e:ba:d3:fe:81:c9:2a:40:4d:77:b2:a8: 9e:ef:ba:90:f6:bd:a8:14:d4:b1:e8:cc:de:37:5e: 45:34:ec:f0:e7:2e:17:19:4f:67:34:83:d3:d0:f1: df:ac:63:0c:4d:6a:9c:a6:6a:af:09:a3:61:c5:99: 4f:89:09:d4:72:62:fb:c1:f0:43:b2:86:11:57:ad: 7c:b9:e0:93:f6:13:b9:ff:3b:1f:c9:e0:80:68:16: 5b:f2:01:26:d6:c2:e7:04:18:0e:d4:c4:41:03:75: 73:7d:38:4a:f7:6f:38:dd:70:23:df:05:db:57:30: 39:47:df:18:67:df:0f:f0:4b:ff:57:1e:c6:cf:68: 32:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:21:55:9E:68:0F:E9:12:FD:27:9F:6A:AD:63:DB:55:AA:D7:80:9A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142818.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0a8::/32 Signature Algorithm: sha256WithRSAEncryption d9:c9:0e:36:83:5c:0a:54:b0:a1:c8:3a:8a:a2:b3:d2:6d:5e: 7c:db:27:04:74:74:98:91:a0:f2:94:af:1f:ce:de:2b:f7:37: d2:5b:46:17:ec:45:13:07:3f:5a:f3:de:a0:6a:10:b4:9b:8e: a7:32:d2:d4:60:0e:7f:71:ca:9a:d9:0d:75:64:f7:66:77:5c: 51:33:18:1f:26:6e:9b:ab:f8:94:3b:aa:5c:89:5f:c1:28:c1: 34:b3:a0:97:69:6d:c5:05:b5:48:66:d9:af:ef:2b:82:24:89: e1:fd:1a:45:ef:6f:a2:b7:1f:a4:49:d3:d7:cb:c6:29:54:06: f2:e9:2f:15:fb:93:c4:1d:c3:53:7e:54:a0:18:08:d1:19:64: 38:21:a3:bf:f9:52:a7:25:d2:ee:e9:e4:96:a5:76:ce:7f:83: ce:a4:dc:6c:ab:b0:23:bc:14:c4:4f:c2:73:a2:3d:d2:7b:5e: bc:ef:14:1d:bf:01:2d:5e:2a:6c:bf:98:f6:9b:6f:28:cc:80: 2e:23:4b:ba:aa:67:96:1b:61:05:f8:c0:a6:21:d6:1c:6d:7f: 77:26:85:87:59:df:e9:df:39:fe:35:9f:8f:fd:47:f3:06:23: 76:fa:d8:30:03:cb:7b:12:fc:0f:50:84:c7:ac:ed:2f:14:f4: d3:35:a0:52 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULpWUkgJ9NyZNkESb+H0xbgcJYFAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE0MloX DTI3MDMwMzA2MDY0MlowMzExMC8GA1UEAxMoQTUyMTU1OUU2ODBGRTkxMkZEMjc5 RjZBQUQ2M0RCNTVBQUQ3ODA5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK3cTHBWoZqocRQXiyW1NhmnAxrZxf7vZ2+wGl2Bq8aoL3nU7ykzElD+h6Ea FXATIMLgxPyYlj2erXulN/7p6uc9USfbTu/9jiJIoHFPLTYqn4F/+tYI9GjUEpD3 nFgZ2o/P5UztNo+Ts653Lb3G8nJJhBvM47jgyZY2nrrT/oHJKkBNd7Konu+6kPa9 qBTUsejM3jdeRTTs8OcuFxlPZzSD09Dx36xjDE1qnKZqrwmjYcWZT4kJ1HJi+8Hw Q7KGEVetfLngk/YTuf87H8nggGgWW/IBJtbC5wQYDtTEQQN1c304SvdvON1wI98F 21cwOUffGGffD/BL/1cexs9oMmcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSlIVWe aA/pEv0nn2qtY9tVqteAmjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjgxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oKgwDQYJKoZIhvcNAQELBQADggEBANnJDjaDXApUsKHIOoqis9JtXnzbJwR0dJiR oPKUrx/O3iv3N9JbRhfsRRMHP1rz3qBqELSbjqcy0tRgDn9xyprZDXVk92Z3XFEz GB8mbpur+JQ7qlyJX8EowTSzoJdpbcUFtUhm2a/vK4IkieH9GkXvb6K3H6RJ09fL xilUBvLpLxX7k8Qdw1N+VKAYCNEZZDgho7/5Uqcl0u7p5Jalds5/g86k3GyrsCO8 FMRPwnOiPdJ7XrzvFB2/AS1eKmy/mPabbyjMgC4jS7qqZ5YbYQX4wKYh1hxtf3cm hYdZ3+nfOf41n4/9R/MGI3b62DADy3sS/A9QhMes7S8U9NM1oFI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:57 2026 by rpki-client