$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142986.roa File: AS142986.roa (raw, json) Hash identifier: HdPIc39jsce2jmkdtvAKOM4X6/JB5W3VicPxwr7gV6I= Subject key identifier: 30:68:C3:F0:4B:7F:8E:3A:2E:53:44:90:A7:53:6E:ED:46:A5:F1:1C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1E5F32FA548F49CDD46BFB6605957E9FCD1E4869 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142986.roa Signing time: Wed 04 Mar 2026 06:06:45 +0000 ROA not before: Wed 04 Mar 2026 06:01:45 +0000 ROA not after: Wed 03 Mar 2027 06:06:45 +0000 asID: 142986 IP address blocks: 240a:a150::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:5f:32:fa:54:8f:49:cd:d4:6b:fb:66:05:95:7e:9f:cd:1e:48:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:01:45 2026 GMT Not After : Mar 3 06:06:45 2027 GMT Subject: CN=3068C3F04B7F8E3A2E534490A7536EED46A5F11C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:55:82:40:a8:e1:e6:61:26:1a:e1:dd:1b:6c: fe:a3:72:a5:ba:f3:9f:89:76:8e:51:d6:51:30:d7: 13:84:88:77:4e:60:67:8f:bd:36:52:81:dd:9f:d2: ee:20:bc:4a:2a:d1:4b:ba:ba:9c:99:ee:a3:b1:95: fe:03:b5:c2:2d:53:08:55:9e:1d:75:95:08:df:f1: 40:d0:59:31:37:25:ba:19:8c:ba:8a:5f:2d:f2:d3: 53:a2:c2:d1:29:54:c3:3e:08:11:d8:f4:bd:42:7a: 6e:77:ba:9b:f8:1b:a0:67:8f:65:6c:ce:c5:8d:d8: 75:af:26:96:58:d1:f3:b0:1d:3b:46:ab:b4:f4:b5: ac:1d:f4:e0:70:31:97:73:3e:38:01:d9:85:93:dd: b1:87:85:d7:22:13:5b:04:aa:6d:6e:a8:29:b9:7d: f4:06:0c:28:8f:c4:50:6d:21:57:c4:82:c1:9b:9e: 0a:49:ac:36:07:15:a8:ea:35:66:61:18:a8:3b:c4: 4d:13:8b:50:3a:a4:cd:f7:11:47:22:c5:cf:4d:e2: 98:1d:26:c4:53:36:f6:79:c2:e7:0f:a1:f7:77:03: fb:f4:14:46:d6:01:6c:17:35:cd:02:e1:3d:a7:0a: e8:79:8b:77:1c:30:a4:b2:fa:13:82:6b:41:8d:62: 51:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:68:C3:F0:4B:7F:8E:3A:2E:53:44:90:A7:53:6E:ED:46:A5:F1:1C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142986.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a150::/32 Signature Algorithm: sha256WithRSAEncryption 6a:f6:ef:20:a6:5f:7c:ee:39:6e:f8:3c:ce:4c:5d:66:4a:b5: 22:b2:1e:da:81:8d:13:ae:b4:e2:1b:06:13:11:3f:a8:0c:6d: 7f:1c:f4:be:62:2e:98:d6:aa:4e:db:86:57:36:fa:27:ab:ab: f8:5f:e3:1d:38:ae:d5:08:0d:c7:ce:65:88:5b:40:c1:4f:44: 71:6a:75:8d:da:98:51:8c:61:35:9b:a4:75:25:6d:1e:65:67: 68:9f:0e:d9:d3:36:ec:35:73:f5:62:2b:5b:8d:7f:b7:a7:bd: e3:1e:8f:c6:c5:41:c2:69:ce:72:6d:c2:bb:ac:87:c7:e9:ab: ec:03:99:70:3d:21:a5:2f:81:1c:4b:d5:44:99:57:e5:15:60: 03:ca:43:94:07:ff:47:22:f6:62:7d:1c:7c:07:2c:fc:8c:3d: 04:3e:ca:75:50:d3:a9:7d:43:f3:7b:02:7a:07:83:16:75:8a: 63:7a:d1:0b:ba:f1:ff:3a:4a:71:4f:24:ae:88:f4:04:3b:03: c8:16:03:da:9a:22:ad:bd:3c:c6:85:6b:a5:91:97:05:56:61: 81:8e:b3:0f:bb:d2:4a:e4:6e:30:78:61:3b:4b:88:12:ad:a3: e9:87:d6:85:71:45:b8:f1:1f:71:8d:a8:8b:ed:2c:55:d9:69: 38:61:70:fd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHl8y+lSPSc3Ua/tmBZV+n80eSGkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MDE0NVoX DTI3MDMwMzA2MDY0NVowMzExMC8GA1UEAxMoMzA2OEMzRjA0QjdGOEUzQTJFNTM0 NDkwQTc1MzZFRUQ0NkE1RjExQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALtVgkCo4eZhJhrh3Rts/qNypbrzn4l2jlHWUTDXE4SId05gZ4+9NlKB3Z/S 7iC8SirRS7q6nJnuo7GV/gO1wi1TCFWeHXWVCN/xQNBZMTcluhmMuopfLfLTU6LC 0SlUwz4IEdj0vUJ6bne6m/gboGePZWzOxY3Yda8mlljR87AdO0artPS1rB304HAx l3M+OAHZhZPdsYeF1yITWwSqbW6oKbl99AYMKI/EUG0hV8SCwZueCkmsNgcVqOo1 ZmEYqDvETROLUDqkzfcRRyLFz03imB0mxFM29nnC5w+h93cD+/QURtYBbBc1zQLh PacK6HmLdxwwpLL6E4JrQY1iUb0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQwaMPw S3+OOi5TRJCnU27tRqXxHDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Mjk4Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oVAwDQYJKoZIhvcNAQELBQADggEBAGr27yCmX3zuOW74PM5MXWZKtSKyHtqBjROu tOIbBhMRP6gMbX8c9L5iLpjWqk7bhlc2+ierq/hf4x04rtUIDcfOZYhbQMFPRHFq dY3amFGMYTWbpHUlbR5lZ2ifDtnTNuw1c/ViK1uNf7enveMej8bFQcJpznJtwrus h8fpq+wDmXA9IaUvgRxL1USZV+UVYAPKQ5QH/0ci9mJ9HHwHLPyMPQQ+ynVQ06l9 Q/N7AnoHgxZ1imN60Qu68f86SnFPJK6I9AQ7A8gWA9qaIq29PMaFa6WRlwVWYYGO sw+70krkbjB4YTtLiBKto+mH1oVxRbjxH3GNqIvtLFXZaThhcP0= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:23 2026 by rpki-client