$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142901.roa File: AS142901.roa (raw, json) Hash identifier: tm/V+Y0xXB1F4PSzkXiZ88/EWqm4UR5riNALSWZGxpo= Subject key identifier: 41:46:65:2D:D9:2B:11:8A:FB:A4:ED:9B:3E:2B:20:EB:44:91:7E:79 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 187BC3B1DDBD5E2A65325A9DF5ABB2CF8788E900 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142901.roa Signing time: Wed 04 Mar 2026 06:07:01 +0000 ROA not before: Wed 04 Mar 2026 06:02:01 +0000 ROA not after: Wed 03 Mar 2027 06:07:01 +0000 asID: 142901 IP address blocks: 240a:a0fb::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:7b:c3:b1:dd:bd:5e:2a:65:32:5a:9d:f5:ab:b2:cf:87:88:e9:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:01 2026 GMT Not After : Mar 3 06:07:01 2027 GMT Subject: CN=4146652DD92B118AFBA4ED9B3E2B20EB44917E79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:02:73:39:52:ca:ef:ac:15:36:a0:ea:7f: 5e:0e:df:ab:a2:cf:62:e1:26:96:19:86:2d:6b:c0: 8d:52:20:47:59:75:68:f3:15:73:2e:f0:6a:09:76: 0c:a2:53:a8:b2:e7:59:73:e1:1f:23:83:5a:31:72: 86:bf:22:35:b3:d9:e9:05:25:5d:28:8a:d5:b5:6a: 4a:79:6d:77:f5:00:10:32:ac:b6:61:56:82:fd:fd: 85:57:dc:79:9b:38:b8:45:af:6d:60:2b:44:fb:38: 49:1f:3a:d1:60:d4:89:99:71:7b:b4:ce:2b:31:92: 19:42:3b:a2:17:c3:f7:c1:58:22:2f:a1:48:7a:be: ea:15:84:de:a9:68:0a:25:80:35:79:25:4f:69:7d: 5a:49:dc:cf:54:03:c2:c8:17:3d:91:0c:15:ef:28: 3d:ba:5f:b2:67:5a:41:5a:84:17:ec:1d:9b:3e:e7: d3:7f:a2:7d:e7:dd:fc:e6:dd:68:b3:00:8f:c3:f4: 61:82:aa:79:6a:1c:84:bb:e0:25:44:a3:3e:ec:58: 67:c5:16:e4:26:c4:bc:e5:06:45:df:5a:21:3e:3d: a8:50:55:1e:7f:ee:c8:6d:67:b1:cb:4e:7e:c7:65: ec:82:ce:1b:d1:f4:43:f0:71:1b:df:44:9b:36:1c: 35:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:46:65:2D:D9:2B:11:8A:FB:A4:ED:9B:3E:2B:20:EB:44:91:7E:79 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142901.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a0fb::/32 Signature Algorithm: sha256WithRSAEncryption 97:67:a1:df:d8:ad:b1:df:7f:56:a5:af:fe:ae:ab:36:95:be: ff:08:b6:72:05:50:10:6d:5c:13:9c:dd:bf:72:06:ca:b5:3c: 3c:3c:7f:8f:1f:21:c9:06:49:dc:35:4e:d2:2d:e3:76:f0:42: cb:04:0a:f0:44:52:c6:ee:72:f1:34:15:ed:5e:8d:c3:27:2d: 53:85:43:1a:e7:6f:2c:46:47:80:04:61:ef:75:1a:d3:10:49: 0b:af:c5:54:b3:44:16:8a:43:56:cf:c8:02:2d:93:31:4b:36: 08:6a:06:b7:11:86:03:6c:4b:30:c7:21:ef:36:4b:c0:85:9c: e3:be:5f:c5:da:6a:36:f7:34:03:16:b7:6c:eb:31:65:c9:57: 0c:30:d4:cf:a6:f5:e0:2a:a1:12:49:da:71:c1:89:99:2e:4d: d0:44:39:0d:65:0c:1b:11:6e:e0:38:35:43:2c:10:08:9e:31: d7:ad:a5:0f:e1:16:bc:4d:82:bf:2e:2c:22:98:6e:16:0c:f9: 18:63:2a:7e:28:9a:d5:dd:1e:92:0e:c5:1d:7c:c9:f2:15:93: 85:00:35:ef:15:7a:69:a4:22:11:b5:aa:ae:00:44:de:d6:a9: 27:94:a8:7b:2a:78:7e:57:44:c8:25:b8:e9:20:2a:7e:f9:a8: e2:e8:d0:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGHvDsd29XiplMlqd9auyz4eI6QAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIwMVoX DTI3MDMwMzA2MDcwMVowMzExMC8GA1UEAxMoNDE0NjY1MkREOTJCMTE4QUZCQTRF RDlCM0UyQjIwRUI0NDkxN0U3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2pAnM5UsrvrBU2oOp/Xg7fq6LPYuEmlhmGLWvAjVIgR1l1aPMVcy7wagl2 DKJTqLLnWXPhHyODWjFyhr8iNbPZ6QUlXSiK1bVqSnltd/UAEDKstmFWgv39hVfc eZs4uEWvbWArRPs4SR860WDUiZlxe7TOKzGSGUI7ohfD98FYIi+hSHq+6hWE3qlo CiWANXklT2l9Wkncz1QDwsgXPZEMFe8oPbpfsmdaQVqEF+wdmz7n03+ifefd/Obd aLMAj8P0YYKqeWochLvgJUSjPuxYZ8UW5CbEvOUGRd9aIT49qFBVHn/uyG1nsctO fsdl7ILOG9H0Q/BxG99EmzYcNXMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRBRmUt 2SsRivuk7Zs+KyDrRJF+eTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjkwMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oPswDQYJKoZIhvcNAQELBQADggEBAJdnod/YrbHff1alr/6uqzaVvv8ItnIFUBBt XBOc3b9yBsq1PDw8f48fIckGSdw1TtIt43bwQssECvBEUsbucvE0Fe1ejcMnLVOF QxrnbyxGR4AEYe91GtMQSQuvxVSzRBaKQ1bPyAItkzFLNghqBrcRhgNsSzDHIe82 S8CFnOO+X8Xaajb3NAMWt2zrMWXJVwww1M+m9eAqoRJJ2nHBiZkuTdBEOQ1lDBsR buA4NUMsEAieMdetpQ/hFrxNgr8uLCKYbhYM+RhjKn4omtXdHpIOxR18yfIVk4UA Ne8VemmkIhG1qq4ARN7WqSeUqHsqeH5XRMgluOkgKn75qOLo0Aw= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:47 2026 by rpki-client