$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142847.roa File: AS142847.roa (raw, json) Hash identifier: Lqw58uLMEX7vt9Q5BYoSam13y+KIxDAcWbWMJEQJ1Jw= Subject key identifier: 1F:1A:3B:44:8A:48:46:49:2A:CF:F0:83:BA:26:F2:D3:3B:62:65:9F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7AFBBD06DE422129BF03E9F97C3BFA8EA689FB9F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142847.roa Signing time: Wed 04 Mar 2026 06:07:47 +0000 ROA not before: Wed 04 Mar 2026 06:02:47 +0000 ROA not after: Wed 03 Mar 2027 06:07:47 +0000 asID: 142847 IP address blocks: 240a:a0c5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:fb:bd:06:de:42:21:29:bf:03:e9:f9:7c:3b:fa:8e:a6:89:fb:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:47 2026 GMT Not After : Mar 3 06:07:47 2027 GMT Subject: CN=1F1A3B448A4846492ACFF083BA26F2D33B62659F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:58:11:94:11:60:6c:d4:5f:9b:72:f5:d7: ff:b4:66:78:97:11:3d:4f:bd:b1:e9:a6:42:47:4c: 41:57:27:c4:8c:33:12:40:bb:99:66:a4:27:23:9b: a1:7b:59:ec:ba:9f:96:04:27:ea:e3:47:6c:8c:ec: f9:8e:39:c4:b3:ea:05:36:3b:7f:63:ed:f1:60:76: 8c:54:d3:de:aa:b1:38:c1:26:9c:78:22:13:c0:4d: cd:55:39:b3:b3:86:bf:65:cd:54:58:bb:1f:74:5e: fd:2a:31:25:66:96:2d:0d:83:2e:00:e9:25:07:42: 5b:65:2f:96:51:9d:0a:9d:b1:9e:db:85:2a:9b:43: 1b:33:7c:4d:d9:b7:1f:8f:a4:f6:9c:76:05:67:49: 55:8b:f8:73:df:6f:d2:18:d9:06:78:0e:7a:72:8a: 4d:26:ac:d4:7d:d9:ec:eb:61:09:02:f9:94:bf:01: 00:21:34:e7:08:c2:c8:f0:b7:ff:29:cf:40:67:5a: d6:c1:16:36:4a:0b:c8:31:47:03:67:77:47:60:07: 8e:95:ae:93:dd:13:00:ab:eb:fa:09:2c:0a:37:57: ed:af:2b:ec:bb:95:ce:fa:d0:ba:1f:b2:e0:a7:6f: 79:37:7c:33:4c:49:d3:f8:ff:6c:f5:02:7f:c6:31: 52:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1A:3B:44:8A:48:46:49:2A:CF:F0:83:BA:26:F2:D3:3B:62:65:9F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142847.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0c5::/32 Signature Algorithm: sha256WithRSAEncryption 3e:3f:7e:08:73:e9:75:ed:38:0b:b4:bf:90:40:25:20:1b:88: 45:f2:ee:63:46:d2:b1:88:80:07:04:96:09:72:90:4d:f1:25: 16:1f:df:ac:d0:06:5c:ce:60:f0:6c:67:a8:6d:19:48:6b:2e: 10:9c:ce:3d:17:41:ef:2f:e1:01:fd:e5:bb:a5:d4:a0:d1:47: f6:28:87:f0:29:29:4a:a6:29:7b:f7:78:f2:59:d8:42:0b:af: c7:61:d4:f1:8c:df:a8:9d:a3:d0:68:13:6e:9e:7e:b6:c9:43: d0:b6:31:2d:7c:67:39:8a:f3:63:b8:5a:04:9c:86:87:db:e7: 72:fb:03:36:ae:66:08:65:7d:2b:fd:3e:e2:eb:35:32:3f:7c: 44:6d:1d:07:65:6c:ba:10:90:f6:17:fc:ec:82:f8:02:3d:93: d2:97:48:47:f1:71:28:85:1e:ae:27:69:b8:91:63:d4:8f:32: 78:7f:15:e8:34:49:f4:05:93:16:d6:4d:2a:b1:f9:44:3b:09: 64:fe:f5:be:e2:b1:1c:95:76:03:46:e0:41:76:5f:3a:32:a6: 1e:55:b5:80:cb:47:95:b3:40:76:15:71:2d:51:4c:fd:a4:3c: 7d:ab:26:ea:ef:31:66:4e:f7:66:64:2f:39:2d:6e:b5:91:1f: 8e:66:7d:06 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUevu9Bt5CISm/A+n5fDv6jqaJ+58wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDI0N1oX DTI3MDMwMzA2MDc0N1owMzExMC8GA1UEAxMoMUYxQTNCNDQ4QTQ4NDY0OTJBQ0ZG MDgzQkEyNkYyRDMzQjYyNjU5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANhCWBGUEWBs1F+bcvXX/7RmeJcRPU+9semmQkdMQVcnxIwzEkC7mWakJyOb oXtZ7LqflgQn6uNHbIzs+Y45xLPqBTY7f2Pt8WB2jFTT3qqxOMEmnHgiE8BNzVU5 s7OGv2XNVFi7H3Re/SoxJWaWLQ2DLgDpJQdCW2UvllGdCp2xntuFKptDGzN8Tdm3 H4+k9px2BWdJVYv4c99v0hjZBngOenKKTSas1H3Z7OthCQL5lL8BACE05wjCyPC3 /ynPQGda1sEWNkoLyDFHA2d3R2AHjpWuk90TAKvr+gksCjdX7a8r7LuVzvrQuh+y 4KdveTd8M0xJ0/j/bPUCf8YxUqUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQfGjtE ikhGSSrP8IO6JvLTO2JlnzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjg0Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oMUwDQYJKoZIhvcNAQELBQADggEBAD4/fghz6XXtOAu0v5BAJSAbiEXy7mNG0rGI gAcElglykE3xJRYf36zQBlzOYPBsZ6htGUhrLhCczj0XQe8v4QH95bul1KDRR/Yo h/ApKUqmKXv3ePJZ2EILr8dh1PGM36ido9BoE26efrbJQ9C2MS18ZzmK82O4WgSc hofb53L7AzauZghlfSv9PuLrNTI/fERtHQdlbLoQkPYX/OyC+AI9k9KXSEfxcSiF Hq4nabiRY9SPMnh/Feg0SfQFkxbWTSqx+UQ7CWT+9b7isRyVdgNG4EF2Xzoyph5V tYDLR5WzQHYVcS1RTP2kPH2rJurvMWZO92ZkLzktbrWRH45mfQY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:03 2026 by rpki-client