$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142860.roa File: AS142860.roa (raw, json) Hash identifier: Slb32a/2iDSnY/ooi4Su/GETK7+e2rBWCHKWC5tRgH4= Subject key identifier: 6E:85:49:C1:1E:13:8F:96:83:9E:E1:37:F0:32:A1:F0:CF:14:4D:A0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 490539BB6ED609CA70C68FE74605426B6FCA751E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142860.roa Signing time: Wed 04 Mar 2026 06:06:51 +0000 ROA not before: Wed 04 Mar 2026 06:01:51 +0000 ROA not after: Wed 03 Mar 2027 06:06:51 +0000 asID: 142860 IP address blocks: 240a:a0d2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:05:39:bb:6e:d6:09:ca:70:c6:8f:e7:46:05:42:6b:6f:ca:75:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:51 2026 GMT Not After : Mar 3 06:06:51 2027 GMT Subject: CN=6E8549C11E138F96839EE137F032A1F0CF144DA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:08:ea:fd:65:2f:9c:12:e9:74:de:dc:e9:4e: 79:a0:4f:c2:7c:01:8f:1b:07:f6:20:9e:3b:13:3e: 0e:76:3b:d7:94:0a:08:2d:ca:c5:52:d2:29:28:1e: cd:bc:c9:27:7f:72:79:83:13:6d:6d:dc:7c:7f:e8: 1e:95:e1:57:af:76:63:e7:21:72:a5:98:ab:85:80: 12:c0:80:90:63:1a:ba:c6:0e:7b:58:a9:dc:68:c5: 85:b4:b6:d9:01:1b:76:82:e6:b0:26:6f:77:10:39: 44:26:10:3e:14:41:66:38:86:d7:6a:fb:e1:c0:3b: 06:bf:95:14:b5:49:b5:e5:91:25:d8:f0:71:92:8e: 2e:7b:4b:4e:d0:8b:03:6d:23:d2:39:67:8a:50:a9: 68:1a:d2:38:3e:d7:8e:1c:ad:5e:33:64:38:1f:a6: bd:61:a7:7c:f9:03:66:37:d7:01:f7:b2:dd:f9:3c: 22:2f:a4:73:0f:dd:51:d6:ad:7d:1b:51:be:ab:d9: 6d:44:96:9d:ec:cf:b6:42:e0:d1:5f:a7:9e:49:ce: 1e:d4:53:7a:45:89:d9:d8:8d:74:55:4b:1f:04:ce: b5:b7:3c:38:0c:bc:bd:ed:ca:f4:1f:c3:36:6a:46: 17:fb:c9:3f:0b:c7:2a:74:91:d7:a8:43:64:e4:83: 41:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:85:49:C1:1E:13:8F:96:83:9E:E1:37:F0:32:A1:F0:CF:14:4D:A0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142860.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0d2::/32 Signature Algorithm: sha256WithRSAEncryption 8d:52:da:1d:ce:77:76:7d:0e:8f:13:62:91:48:c1:80:e4:0a: 18:04:4b:5b:f8:e0:51:8b:e5:a1:de:10:cd:18:61:cc:ca:bc: cc:56:c5:7d:2b:41:e3:d0:37:ee:23:9d:eb:d6:c0:ca:b9:fb: 65:cf:fd:34:5a:ed:10:58:21:31:1e:e2:bb:12:8f:fc:24:74: 57:1f:c3:a7:a8:83:3e:86:af:38:87:89:54:e1:45:4f:38:53: b3:69:3f:33:60:ac:07:40:03:de:ba:71:a2:60:6d:4a:e3:b9: 5e:dd:c8:c1:d4:20:07:1e:c3:9f:9c:e5:6e:14:a3:62:1b:fa: 4f:ae:59:3e:59:a9:61:ec:87:04:f7:5b:11:07:ab:2d:b7:bc: 30:e2:55:25:03:81:4e:be:eb:9f:ef:2c:70:39:d1:75:44:6d: 89:85:4c:15:be:16:6f:cf:42:08:e8:d1:1e:24:4a:af:c9:80: dd:78:86:6b:a9:87:f9:8c:7f:ca:bb:e2:73:55:8b:49:6f:99: 76:c1:45:9e:a2:ef:f4:ee:3b:cd:1b:14:a7:0a:ba:e7:57:a4: 38:c2:50:64:51:70:fc:26:28:f9:cf:9d:ca:70:be:d2:55:67: c7:ac:28:50:f7:8c:d5:19:14:50:36:62:2a:9c:2b:49:98:06: be:c7:c6:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSQU5u27WCcpwxo/nRgVCa2/KdR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE1MVoX DTI3MDMwMzA2MDY1MVowMzExMC8GA1UEAxMoNkU4NTQ5QzExRTEzOEY5NjgzOUVF MTM3RjAzMkExRjBDRjE0NERBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoI6v1lL5wS6XTe3OlOeaBPwnwBjxsH9iCeOxM+DnY715QKCC3KxVLSKSge zbzJJ39yeYMTbW3cfH/oHpXhV692Y+chcqWYq4WAEsCAkGMausYOe1ip3GjFhbS2 2QEbdoLmsCZvdxA5RCYQPhRBZjiG12r74cA7Br+VFLVJteWRJdjwcZKOLntLTtCL A20j0jlnilCpaBrSOD7XjhytXjNkOB+mvWGnfPkDZjfXAfey3fk8Ii+kcw/dUdat fRtRvqvZbUSWnezPtkLg0V+nnknOHtRTekWJ2diNdFVLHwTOtbc8OAy8ve3K9B/D NmpGF/vJPwvHKnSR16hDZOSDQQkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRuhUnB HhOPloOe4TfwMqHwzxRNoDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjg2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oNIwDQYJKoZIhvcNAQELBQADggEBAI1S2h3Od3Z9Do8TYpFIwYDkChgES1v44FGL 5aHeEM0YYczKvMxWxX0rQePQN+4jnevWwMq5+2XP/TRa7RBYITEe4rsSj/wkdFcf w6eogz6GrziHiVThRU84U7NpPzNgrAdAA966caJgbUrjuV7dyMHUIAcew5+c5W4U o2Ib+k+uWT5ZqWHshwT3WxEHqy23vDDiVSUDgU6+65/vLHA50XVEbYmFTBW+Fm/P Qgjo0R4kSq/JgN14hmuph/mMf8q74nNVi0lvmXbBRZ6i7/TuO80bFKcKuudXpDjC UGRRcPwmKPnPncpwvtJVZ8esKFD3jNUZFFA2YiqcK0mYBr7HxuM= -----END CERTIFICATE-----Generated at Sat Mar 28 13:14:04 2026 by rpki-client