$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142824.roa File: AS142824.roa (raw, json) Hash identifier: OJP7pRKTZBeprYgFeKyVgtlIG4yLtHexNgjGerNBiYg= Subject key identifier: E8:C1:74:A5:60:CA:C7:A4:9F:29:E2:7B:39:49:EA:79:28:25:35:9A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1EC74D9EB855656CC15ED6A921D7DD1D88243937 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142824.roa Signing time: Wed 04 Mar 2026 06:06:30 +0000 ROA not before: Wed 04 Mar 2026 06:01:30 +0000 ROA not after: Wed 03 Mar 2027 06:06:30 +0000 asID: 142824 IP address blocks: 240a:a0ae::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c7:4d:9e:b8:55:65:6c:c1:5e:d6:a9:21:d7:dd:1d:88:24:39:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:30 2026 GMT Not After : Mar 3 06:06:30 2027 GMT Subject: CN=E8C174A560CAC7A49F29E27B3949EA792825359A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:41:2e:17:03:b0:3b:39:6b:b1:c8:ac:18: f4:63:e8:bd:a8:8c:e7:57:d8:63:e1:f8:f8:f4:4f: e8:8f:96:d4:51:9f:b0:fc:08:75:bc:46:9a:4f:1e: 0d:87:8a:b5:5f:d2:ab:7e:d0:13:cb:1e:c8:49:02: 62:41:ce:71:de:da:57:78:9c:6e:e5:d6:69:55:ef: 09:00:01:a3:99:c2:21:ba:55:a7:ed:a9:ac:06:6a: 09:36:be:f8:6b:2a:ce:c2:2f:14:e0:df:26:a0:27: ec:70:c8:c3:8a:d2:a2:18:33:87:23:df:bf:de:55: 2c:7b:62:07:cb:6d:a2:72:f5:d9:e8:d4:33:92:d7: 71:b9:82:e4:8d:b1:2d:bb:d4:d9:a4:f2:ed:78:5e: 89:39:b8:c8:ae:fd:f7:05:59:70:ee:c2:c9:1a:9b: 42:6a:fb:ee:e6:5d:32:2d:0a:c5:b1:af:b0:ac:16: bd:93:52:7f:cc:91:d6:97:74:2c:59:71:94:d1:a1: 09:11:af:ac:c6:be:04:c5:2c:ea:86:81:62:34:75: 04:0b:c8:10:5b:a5:f1:8d:d1:52:07:f4:ac:9b:2a: 74:d3:d7:7f:53:b5:14:a2:cf:59:ba:1a:c6:81:d2: 02:6b:46:2f:3d:49:4f:e7:5b:72:09:64:73:ba:2f: 20:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C1:74:A5:60:CA:C7:A4:9F:29:E2:7B:39:49:EA:79:28:25:35:9A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142824.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0ae::/32 Signature Algorithm: sha256WithRSAEncryption 97:19:6c:3a:15:1f:e4:ce:ac:28:cb:9f:17:c8:2d:cc:9b:f8: 05:ff:68:7b:97:02:ff:2a:a3:7c:a4:b5:3c:1c:02:96:a9:fc: 2a:89:f2:36:30:38:f9:a6:02:02:5a:a9:a1:d0:23:69:80:a9: ee:d8:3a:5a:98:be:49:0e:6b:c0:63:17:d6:ff:f1:0e:34:ee: 02:e4:11:24:e3:bc:06:2e:1b:ea:c5:9a:0f:89:8b:cc:aa:92: dc:7a:d3:74:c8:d9:b5:90:22:b9:ee:d3:3e:20:15:84:a3:b1: d8:c9:e7:16:7f:bc:5d:b8:26:6e:27:d3:e9:31:8b:6e:a9:97: da:78:03:64:23:82:45:04:67:e1:20:2c:1f:a0:ec:db:e9:a3: c1:f6:3c:89:2f:74:e1:7e:8a:2a:53:31:9d:18:19:3c:ee:7c: 58:b2:4b:7e:c7:95:28:71:b1:41:76:2a:63:d8:45:af:22:ff: d5:10:21:af:6f:1b:d8:f0:12:98:c0:87:08:da:bd:4d:a5:14: c4:b4:ae:30:97:1d:00:9a:48:75:eb:1a:91:13:68:ea:f5:60: ea:06:d5:36:5c:f4:74:e3:72:66:31:fb:ad:13:6a:8a:88:ff: 8b:7b:d2:50:57:56:e6:aa:fa:67:0f:e0:bb:6d:f7:2f:f1:63: 97:53:38:3b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHsdNnrhVZWzBXtapIdfdHYgkOTcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEzMFoX DTI3MDMwMzA2MDYzMFowMzExMC8GA1UEAxMoRThDMTc0QTU2MENBQzdBNDlGMjlF MjdCMzk0OUVBNzkyODI1MzU5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7aQS4XA7A7OWuxyKwY9GPovaiM51fYY+H4+PRP6I+W1FGfsPwIdbxGmk8e DYeKtV/Sq37QE8seyEkCYkHOcd7aV3icbuXWaVXvCQABo5nCIbpVp+2prAZqCTa+ +GsqzsIvFODfJqAn7HDIw4rSohgzhyPfv95VLHtiB8ttonL12ejUM5LXcbmC5I2x LbvU2aTy7XheiTm4yK799wVZcO7CyRqbQmr77uZdMi0KxbGvsKwWvZNSf8yR1pd0 LFlxlNGhCRGvrMa+BMUs6oaBYjR1BAvIEFul8Y3RUgf0rJsqdNPXf1O1FKLPWboa xoHSAmtGLz1JT+dbcglkc7ovINcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTowXSl YMrHpJ8p4ns5Sep5KCU1mjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjgyNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oK4wDQYJKoZIhvcNAQELBQADggEBAJcZbDoVH+TOrCjLnxfILcyb+AX/aHuXAv8q o3yktTwcApap/CqJ8jYwOPmmAgJaqaHQI2mAqe7YOlqYvkkOa8BjF9b/8Q407gLk ESTjvAYuG+rFmg+Ji8yqktx603TI2bWQIrnu0z4gFYSjsdjJ5xZ/vF24Jm4n0+kx i26pl9p4A2QjgkUEZ+EgLB+g7Nvpo8H2PIkvdOF+iipTMZ0YGTzufFiyS37HlShx sUF2KmPYRa8i/9UQIa9vG9jwEpjAhwjavU2lFMS0rjCXHQCaSHXrGpETaOr1YOoG 1TZc9HTjcmYx+60TaoqI/4t70lBXVuaq+mcP4Ltt9y/xY5dTODs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:01 2026 by rpki-client