$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142855.roa File: AS142855.roa (raw, json) Hash identifier: n88SMZlkJ6M9CIyI9QKDiAfjisZ8tO6HpiEGiUSheKY= Subject key identifier: 13:A2:24:C9:11:32:74:D2:15:9E:EC:33:EC:1D:81:65:D3:B0:6A:99 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0C5A1C517D647B5C569FD3691FFDDA67A4A2560A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142855.roa Signing time: Wed 04 Mar 2026 06:06:26 +0000 ROA not before: Wed 04 Mar 2026 06:01:26 +0000 ROA not after: Wed 03 Mar 2027 06:06:26 +0000 asID: 142855 IP address blocks: 240a:a0cd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:5a:1c:51:7d:64:7b:5c:56:9f:d3:69:1f:fd:da:67:a4:a2:56:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:26 2026 GMT Not After : Mar 3 06:06:26 2027 GMT Subject: CN=13A224C9113274D2159EEC33EC1D8165D3B06A99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2e:c1:5e:7d:1c:5d:c1:75:a8:90:8d:95:07: 65:f2:b3:69:c7:1d:2f:00:da:09:3c:3e:20:43:7e: b0:14:2d:5e:65:3d:d8:a9:67:aa:5e:72:d6:24:59: b3:ef:80:09:10:38:3c:29:ef:b8:45:63:ea:3d:5b: 98:8b:a1:ac:b5:6e:3d:8e:86:2c:4d:5c:6b:67:ff: b0:02:ab:ff:21:ef:c6:6d:63:65:bb:f1:06:6f:71: cc:7a:87:46:20:38:01:0d:eb:5b:55:25:e6:32:07: fd:25:75:3a:a5:81:6c:1d:90:5d:7c:0c:1d:48:e6: 92:2f:2d:13:2c:0d:29:4a:78:b5:ae:25:91:a6:6c: ac:cc:67:1d:96:10:30:19:21:2c:e4:39:9e:92:32: cb:ff:ca:c5:bb:f3:0b:83:b4:93:78:15:90:62:b0: b8:74:d1:82:d4:7b:33:9d:c2:ea:26:45:33:74:b1: 4a:99:e6:4c:82:da:d4:ed:8b:db:da:16:bb:c2:fc: bb:c3:c5:8e:82:39:ba:8f:4d:4e:71:5a:d3:33:08: 75:a8:2f:12:7f:c1:1a:46:82:e4:46:d5:ad:01:18: 90:87:59:43:68:89:a7:c8:9a:bd:ce:6f:60:8a:ac: 87:17:c5:62:08:9f:c0:d4:71:ad:15:b3:32:99:bb: a4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A2:24:C9:11:32:74:D2:15:9E:EC:33:EC:1D:81:65:D3:B0:6A:99 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142855.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0cd::/32 Signature Algorithm: sha256WithRSAEncryption 0f:f0:8b:bf:c9:86:6b:46:b0:85:dc:df:8e:45:cc:07:13:38: 7a:ac:64:06:13:a5:36:aa:f2:09:bc:a9:ab:dc:16:32:69:85: cf:3e:46:c8:21:33:24:b8:52:9c:47:eb:bf:8e:73:0d:42:5d: 9d:87:e7:ab:27:2e:8d:00:47:71:eb:2f:3a:f8:bc:e6:da:83: 28:16:f3:db:2a:b1:46:68:61:73:62:4d:1d:c1:76:39:81:e3: 1e:66:aa:2c:d8:bc:48:ab:14:13:eb:e5:d4:71:cc:bf:9f:92: cf:81:df:2b:5a:8b:25:ce:4c:69:77:ad:f3:a1:92:80:b5:67: 98:12:e8:ed:d8:f2:e0:91:db:12:de:e4:dd:07:ad:26:da:97: f2:a2:d4:14:2e:7f:bf:16:71:42:df:52:7c:de:bc:4e:ce:1c: 68:55:4f:c0:2f:79:df:ec:20:a5:5e:2c:46:1b:4e:2a:e6:58: b8:7b:b6:6f:0d:dc:15:82:ba:5d:a3:5b:8a:9e:db:11:9e:d9: b9:46:66:b6:41:e4:dd:f1:69:7a:18:7b:db:bf:ad:d3:f8:e5: f7:3d:ff:43:ae:a3:04:f4:d5:75:cd:b3:83:74:0b:b0:0a:6e: f9:27:6c:c2:ac:c5:a7:e3:3e:f9:98:2e:16:16:75:e5:eb:f5: 44:ac:8d:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDFocUX1ke1xWn9NpH/3aZ6SiVgowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDEyNloX DTI3MDMwMzA2MDYyNlowMzExMC8GA1UEAxMoMTNBMjI0QzkxMTMyNzREMjE1OUVF QzMzRUMxRDgxNjVEM0IwNkE5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcuwV59HF3BdaiQjZUHZfKzaccdLwDaCTw+IEN+sBQtXmU92Klnql5y1iRZ s++ACRA4PCnvuEVj6j1bmIuhrLVuPY6GLE1ca2f/sAKr/yHvxm1jZbvxBm9xzHqH RiA4AQ3rW1Ul5jIH/SV1OqWBbB2QXXwMHUjmki8tEywNKUp4ta4lkaZsrMxnHZYQ MBkhLOQ5npIyy//KxbvzC4O0k3gVkGKwuHTRgtR7M53C6iZFM3SxSpnmTILa1O2L 29oWu8L8u8PFjoI5uo9NTnFa0zMIdagvEn/BGkaC5EbVrQEYkIdZQ2iJp8iavc5v YIqshxfFYgifwNRxrRWzMpm7pAsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQToiTJ ETJ00hWe7DPsHYFl07BqmTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjg1NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oM0wDQYJKoZIhvcNAQELBQADggEBAA/wi7/JhmtGsIXc345FzAcTOHqsZAYTpTaq 8gm8qavcFjJphc8+RsghMyS4UpxH67+Ocw1CXZ2H56snLo0AR3HrLzr4vObagygW 89sqsUZoYXNiTR3BdjmB4x5mqizYvEirFBPr5dRxzL+fks+B3ytaiyXOTGl3rfOh koC1Z5gS6O3Y8uCR2xLe5N0HrSbal/Ki1BQuf78WcULfUnzevE7OHGhVT8Aved/s IKVeLEYbTirmWLh7tm8N3BWCul2jW4qe2xGe2blGZrZB5N3xaXoYe9u/rdP45fc9 /0OuowT01XXNs4N0C7AKbvknbMKsxafjPvmYLhYWdeXr9USsjZs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:20 2026 by rpki-client