$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142982.roa File: AS142982.roa (raw, json) Hash identifier: M4x9t0J5ZE9zTOl8LqZuLj3Q5JmZf+OriPgngTqLgaw= Subject key identifier: CC:70:92:34:68:85:F8:B8:12:24:D3:0B:2F:89:0D:79:79:2B:87:9B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6A0C9AD3C944BFAD18AA9E82D60643A799C8C339 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142982.roa Signing time: Wed 04 Mar 2026 06:05:42 +0000 ROA not before: Wed 04 Mar 2026 06:00:42 +0000 ROA not after: Wed 03 Mar 2027 06:05:42 +0000 asID: 142982 IP address blocks: 240a:a14c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:0c:9a:d3:c9:44:bf:ad:18:aa:9e:82:d6:06:43:a7:99:c8:c3:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:00:42 2026 GMT Not After : Mar 3 06:05:42 2027 GMT Subject: CN=CC7092346885F8B81224D30B2F890D79792B879B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:2d:0d:fb:b6:8f:75:b0:88:bb:9d:97:11:01: 8e:b8:00:d1:63:e4:88:cb:c1:2a:f5:44:be:41:37: 25:aa:6d:45:72:17:fd:b2:91:da:87:8a:41:97:59: b7:7a:01:41:10:1f:04:38:00:cf:08:00:d0:4a:1d: 2c:7c:9f:0b:a8:ba:ae:e2:29:4f:65:66:a3:4b:55: 4f:2c:15:64:61:af:be:4a:7b:bd:52:98:54:fc:2f: 79:00:b5:83:87:35:8a:2b:96:4b:e6:70:2f:e5:8c: 3a:2a:d8:e4:a9:95:5d:db:02:e9:f9:86:53:16:86: c0:0f:8d:0e:5d:69:6e:96:b0:a5:91:9e:b6:41:a7: d0:3d:e7:8b:75:d5:77:0b:17:59:1e:3d:76:7c:f3: aa:f5:94:85:cc:b8:50:71:11:cc:d2:03:40:e8:94: cb:9e:9c:43:b0:26:5c:20:5a:e7:c2:da:28:42:cb: 9b:0f:90:5d:0c:bd:ea:14:ec:ab:6d:d2:9d:d3:b3: bc:bd:f8:eb:a2:a1:24:73:e7:3e:c3:ef:6b:0e:02: 9b:ea:55:76:dd:af:e7:91:b8:59:47:30:d4:6a:07: d6:4e:7a:fa:e1:75:e7:29:ed:1d:08:2a:12:09:98: 11:62:e3:f9:32:17:cf:f6:20:6c:f7:6e:0f:21:6a: c5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:70:92:34:68:85:F8:B8:12:24:D3:0B:2F:89:0D:79:79:2B:87:9B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142982.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a14c::/32 Signature Algorithm: sha256WithRSAEncryption 56:85:6b:cc:dd:1b:6b:85:16:bc:9c:6d:f7:be:6a:55:da:ee: 09:d0:a3:3a:50:bc:22:d4:ed:82:28:a4:e7:26:a9:b1:e0:78: d0:87:c7:5b:1f:8e:53:fc:44:1a:4e:f4:8c:f2:1a:cf:ce:67: d1:53:0c:dc:4b:ce:3c:09:ce:eb:81:c7:56:ec:eb:c4:15:79: a7:7d:2c:64:db:8e:9e:75:f4:e9:32:37:e9:75:4b:b2:9b:6f: 0b:b0:b8:dc:1c:a0:83:f8:29:81:b6:75:f2:1e:2e:ae:13:0c: ae:2f:c1:ed:bd:ed:7c:0a:51:fa:5a:29:cc:b4:23:ce:08:00: 0b:aa:ea:e0:ff:a2:47:64:7d:f3:df:a4:80:72:60:fa:8e:d6: 9e:87:8a:03:83:82:ef:4b:05:15:f9:16:83:a6:3e:23:ff:8f: d4:44:72:f5:8f:44:8c:4c:00:8f:b6:a3:5f:48:e3:fb:36:00: fc:8d:01:24:d7:6e:03:7b:59:67:85:f5:76:f2:28:ec:d3:fb: 9a:47:e6:7a:aa:fa:18:da:e4:ff:2a:61:c7:f2:39:cd:dc:1c: ab:76:10:4e:c1:a1:a7:d1:90:7a:7e:ab:60:d1:a8:9e:df:99: 94:18:15:e3:58:9b:6e:cf:08:ad:98:af:f8:7c:7a:b4:e7:03: e3:7c:21:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUagya08lEv60Yqp6C1gZDp5nIwzkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDA0MloX DTI3MDMwMzA2MDU0MlowMzExMC8GA1UEAxMoQ0M3MDkyMzQ2ODg1RjhCODEyMjRE MzBCMkY4OTBENzk3OTJCODc5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIQtDfu2j3WwiLudlxEBjrgA0WPkiMvBKvVEvkE3JaptRXIX/bKR2oeKQZdZ t3oBQRAfBDgAzwgA0EodLHyfC6i6ruIpT2Vmo0tVTywVZGGvvkp7vVKYVPwveQC1 g4c1iiuWS+ZwL+WMOirY5KmVXdsC6fmGUxaGwA+NDl1pbpawpZGetkGn0D3ni3XV dwsXWR49dnzzqvWUhcy4UHERzNIDQOiUy56cQ7AmXCBa58LaKELLmw+QXQy96hTs q23SndOzvL3466KhJHPnPsPvaw4Cm+pVdt2v55G4WUcw1GoH1k56+uF15yntHQgq EgmYEWLj+TIXz/YgbPduDyFqxWUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTMcJI0 aIX4uBIk0wsviQ15eSuHmzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjk4Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oUwwDQYJKoZIhvcNAQELBQADggEBAFaFa8zdG2uFFrycbfe+alXa7gnQozpQvCLU 7YIopOcmqbHgeNCHx1sfjlP8RBpO9IzyGs/OZ9FTDNxLzjwJzuuBx1bs68QVead9 LGTbjp519OkyN+l1S7KbbwuwuNwcoIP4KYG2dfIeLq4TDK4vwe297XwKUfpaKcy0 I84IAAuq6uD/okdkffPfpIByYPqO1p6HigODgu9LBRX5FoOmPiP/j9REcvWPRIxM AI+2o19I4/s2APyNASTXbgN7WWeF9XbyKOzT+5pH5nqq+hja5P8qYcfyOc3cHKt2 EE7BoafRkHp+q2DRqJ7fmZQYFeNYm27PCK2Yr/h8erTnA+N8IW8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:00 2026 by rpki-client