$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142976.roa File: AS142976.roa (raw, json) Hash identifier: EXuc9QQXT/0WDrcxtX5e+EVYYvCYQ5K/grdTWmR/WBU= Subject key identifier: 6E:35:21:9D:BF:A7:FC:CE:7D:D5:CD:23:81:F4:61:A3:83:58:96:EB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7DC069597C03648278C46C895E9C5935FCBD5EEF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142976.roa Signing time: Wed 04 Mar 2026 06:07:32 +0000 ROA not before: Wed 04 Mar 2026 06:02:32 +0000 ROA not after: Wed 03 Mar 2027 06:07:32 +0000 asID: 142976 IP address blocks: 240a:a146::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c0:69:59:7c:03:64:82:78:c4:6c:89:5e:9c:59:35:fc:bd:5e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:02:32 2026 GMT Not After : Mar 3 06:07:32 2027 GMT Subject: CN=6E35219DBFA7FCCE7DD5CD2381F461A3835896EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:34:2b:81:df:7d:cb:c4:2c:b9:2d:bf:91:ef: 9d:cc:ae:20:bb:38:7e:f7:fa:82:31:7c:a0:fa:0b: 42:1c:c2:14:26:72:c8:04:cf:7a:a2:43:c7:e0:c1: 3a:59:71:49:b0:f7:4f:3c:ad:62:e2:1a:e9:4e:5c: f2:4f:54:3c:6e:43:e4:3a:16:78:5d:bc:41:42:e2: 8c:f8:4a:1d:5c:12:ae:e0:95:51:ed:8d:c0:64:e8: bf:65:58:75:be:5c:0c:37:72:57:dc:38:48:85:1f: ba:c9:21:62:f6:a4:db:1f:8e:fd:af:11:c3:76:bc: 19:06:c1:8e:2a:fc:f1:44:b0:e0:df:eb:f2:a0:84: cd:4f:5f:c8:7f:d0:ac:15:0d:80:89:8a:ae:cb:7f: c7:d2:d9:3b:49:26:b7:30:8d:8f:1b:a1:4f:ec:b7: 28:8a:e4:af:42:1c:35:71:9c:07:7f:9a:ec:14:86: a7:f1:34:52:6a:80:d5:74:e0:cb:72:33:0b:49:6b: f6:0c:d1:e4:aa:11:f9:85:8d:7b:4c:30:ae:d4:64: 37:a7:c1:ee:cd:79:b3:27:d6:18:f8:d5:fa:f9:5b: 67:33:7a:66:1e:85:86:35:f6:20:8f:e2:62:1c:64: 76:22:bb:09:a6:7b:84:1d:00:ca:96:8e:6d:34:51: 4a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:35:21:9D:BF:A7:FC:CE:7D:D5:CD:23:81:F4:61:A3:83:58:96:EB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142976.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a146::/32 Signature Algorithm: sha256WithRSAEncryption cc:68:35:2c:01:f9:22:56:81:55:b7:eb:7a:6f:a1:08:59:7e: 90:6a:2c:f1:d6:34:71:ce:78:e6:59:d7:0e:60:15:d3:1b:5f: b9:c7:6b:65:25:bb:3e:a1:10:7b:3e:73:6d:3c:52:c2:b4:e9: c1:17:f8:2c:0a:68:6f:91:18:71:df:aa:b1:25:a5:63:de:2b: 39:f3:e4:be:39:49:3f:55:b7:c6:20:60:46:b7:90:a5:84:9a: a9:44:12:59:7f:07:42:69:8d:8f:89:8c:de:e2:3d:30:d7:60: cf:67:91:4f:42:29:db:90:f5:c7:66:ce:68:4c:54:26:2a:49: b3:d8:28:53:b6:09:67:e9:d3:58:3c:c7:bc:df:3e:35:dc:a2: 30:ea:39:25:5b:a1:6e:8d:e6:41:f7:7c:10:f3:25:e5:20:f2: be:52:6e:58:f1:96:ff:9d:d0:86:6b:b1:0d:e0:ec:85:9d:d4: 16:13:fc:7d:b6:cc:9c:d6:0a:1e:cc:3d:24:59:69:c1:74:50: bd:e3:82:5e:26:6b:df:d3:9d:56:33:a5:a1:11:5a:29:65:17: 53:8e:e4:ce:28:31:d5:4e:b5:31:48:51:98:c1:9d:e9:21:5e: 0e:b4:e4:68:f6:b7:88:fd:6e:4b:eb:ca:3e:eb:2b:7e:c8:27: da:6f:60:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUfcBpWXwDZIJ4xGyJXpxZNfy9Xu8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDIzMloX DTI3MDMwMzA2MDczMlowMzExMC8GA1UEAxMoNkUzNTIxOURCRkE3RkNDRTdERDVD RDIzODFGNDYxQTM4MzU4OTZFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL40K4HffcvELLktv5HvncyuILs4fvf6gjF8oPoLQhzCFCZyyATPeqJDx+DB OllxSbD3TzytYuIa6U5c8k9UPG5D5DoWeF28QULijPhKHVwSruCVUe2NwGTov2VY db5cDDdyV9w4SIUfuskhYvak2x+O/a8Rw3a8GQbBjir88USw4N/r8qCEzU9fyH/Q rBUNgImKrst/x9LZO0kmtzCNjxuhT+y3KIrkr0IcNXGcB3+a7BSGp/E0UmqA1XTg y3IzC0lr9gzR5KoR+YWNe0wwrtRkN6fB7s15syfWGPjV+vlbZzN6Zh6FhjX2II/i YhxkdiK7CaZ7hB0AypaObTRRSgcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRuNSGd v6f8zn3VzSOB9GGjg1iW6zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjk3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oUYwDQYJKoZIhvcNAQELBQADggEBAMxoNSwB+SJWgVW363pvoQhZfpBqLPHWNHHO eOZZ1w5gFdMbX7nHa2Uluz6hEHs+c208UsK06cEX+CwKaG+RGHHfqrElpWPeKznz 5L45ST9Vt8YgYEa3kKWEmqlEEll/B0JpjY+JjN7iPTDXYM9nkU9CKduQ9cdmzmhM VCYqSbPYKFO2CWfp01g8x7zfPjXcojDqOSVboW6N5kH3fBDzJeUg8r5Sbljxlv+d 0IZrsQ3g7IWd1BYT/H22zJzWCh7MPSRZacF0UL3jgl4ma9/TnVYzpaERWillF1OO 5M4oMdVOtTFIUZjBnekhXg605Gj2t4j9bkvryj7rK37IJ9pvYKo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:05 2026 by rpki-client