$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146054.roa File: AS146054.roa (raw, json) Hash identifier: Hvxma/Ij5ebe+A1JVO+8hU12bjjUOWJ85kICYmQRx8I= Subject key identifier: 4F:A4:D2:F9:81:86:0B:F7:84:95:AC:A0:4F:20:45:F6:6E:FF:2A:08 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1BB5FB6415165DD39162B2E522EBEEED1F843D55 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146054.roa Signing time: Wed 04 Mar 2026 06:34:37 +0000 ROA not before: Wed 04 Mar 2026 06:29:37 +0000 ROA not after: Wed 03 Mar 2027 06:34:37 +0000 asID: 146054 IP address blocks: 240a:ad4c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b5:fb:64:15:16:5d:d3:91:62:b2:e5:22:eb:ee:ed:1f:84:3d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:37 2026 GMT Not After : Mar 3 06:34:37 2027 GMT Subject: CN=4FA4D2F981860BF78495ACA04F2045F66EFF2A08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:08:42:79:15:93:52:a7:34:bc:19:21:43:99: fd:1f:6e:07:25:67:1c:74:86:d0:a5:a9:3c:9e:9f: ea:37:ae:c4:5d:bb:3a:6b:1b:c3:a4:46:10:12:51: 33:50:b6:d8:55:ff:e5:0d:bc:7b:e8:a1:64:85:41: 15:04:9c:e3:60:71:0b:02:bb:87:0d:46:75:53:5c: c2:21:45:6d:12:d9:7c:13:00:ad:aa:f5:b2:6d:0a: 23:ed:3e:45:4f:20:6d:74:30:f3:f7:02:db:aa:16: d4:7d:0e:24:5e:5e:ef:f3:2b:c8:e2:9c:75:b2:5f: f3:f4:f6:7c:99:da:e5:dd:08:1a:3e:2b:17:e9:62: c7:7e:f9:79:5e:b2:8c:83:88:c2:ea:37:2d:53:84: 5d:f1:eb:d4:85:3d:0c:b0:79:e9:5a:48:0a:ff:65: 01:7d:19:97:75:d5:13:fd:b7:c7:26:ed:ef:ec:a2: fd:2e:98:64:8e:92:d3:9d:5e:7c:14:77:61:be:2a: 8d:a1:40:42:cf:ca:51:1f:35:cd:9f:28:1f:4e:c5: a2:8c:2b:1d:02:34:d6:44:48:bd:1b:e6:26:a9:42: ed:52:88:69:44:76:ea:14:2a:ea:af:34:0a:69:76: b5:a1:50:c7:b7:d5:81:66:df:b9:b6:29:8a:00:7b: 2f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A4:D2:F9:81:86:0B:F7:84:95:AC:A0:4F:20:45:F6:6E:FF:2A:08 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146054.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad4c::/32 Signature Algorithm: sha256WithRSAEncryption 92:2d:c4:42:48:2f:2e:0b:4c:ce:8f:42:22:4f:3d:24:1c:83: 64:01:7e:3e:85:a6:67:ba:1e:a3:63:0c:17:b9:ed:d0:c4:1f: c0:5c:de:92:30:b1:c4:f2:18:cb:f8:4e:4f:0d:e8:94:e1:93: 0c:18:7f:82:a0:f3:f5:ad:06:38:49:48:5d:02:fa:07:5f:0a: ee:56:c3:75:ca:c4:fc:fd:40:42:52:0d:ff:a9:c1:85:5e:72: 35:e3:ab:e1:5b:ff:7f:a9:19:b5:f3:1f:1c:cf:45:d6:bd:b6: 67:0b:36:7a:06:16:63:58:e8:1e:49:37:c9:a0:07:b4:fb:34: 21:4e:a5:8c:3b:06:f9:a7:79:cd:24:d2:1a:81:42:66:3e:c9: 26:7b:fe:5a:24:1d:8b:b6:55:a0:cb:3e:5f:9d:d7:0d:9e:19: 71:7d:b9:2b:d7:53:55:4c:cb:8d:43:b0:e2:a1:c1:e1:ab:6c: 88:cc:0f:5a:66:da:31:ee:4d:7c:57:c6:0b:a7:1d:c8:36:39: d8:fa:96:de:c7:eb:31:6a:ab:78:c0:fb:36:3b:21:92:fc:96: 3f:8c:a7:9b:5b:f2:de:ab:c6:fe:86:ea:6a:0e:00:e2:7a:ed: 72:9d:36:8a:4a:51:6d:13:c7:41:76:d7:53:a7:69:73:62:c5: 6e:9b:cf:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUG7X7ZBUWXdORYrLlIuvu7R+EPVUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzN1oX DTI3MDMwMzA2MzQzN1owMzExMC8GA1UEAxMoNEZBNEQyRjk4MTg2MEJGNzg0OTVB Q0EwNEYyMDQ1RjY2RUZGMkEwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANkIQnkVk1KnNLwZIUOZ/R9uByVnHHSG0KWpPJ6f6jeuxF27Omsbw6RGEBJR M1C22FX/5Q28e+ihZIVBFQSc42BxCwK7hw1GdVNcwiFFbRLZfBMArar1sm0KI+0+ RU8gbXQw8/cC26oW1H0OJF5e7/MryOKcdbJf8/T2fJna5d0IGj4rF+lix375eV6y jIOIwuo3LVOEXfHr1IU9DLB56VpICv9lAX0Zl3XVE/23xybt7+yi/S6YZI6S051e fBR3Yb4qjaFAQs/KUR81zZ8oH07FoowrHQI01kRIvRvmJqlC7VKIaUR26hQq6q80 Cml2taFQx7fVgWbfubYpigB7L48CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRPpNL5 gYYL94SVrKBPIEX2bv8qCDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA1NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rUwwDQYJKoZIhvcNAQELBQADggEBAJItxEJILy4LTM6PQiJPPSQcg2QBfj6Fpme6 HqNjDBe57dDEH8Bc3pIwscTyGMv4Tk8N6JThkwwYf4Kg8/WtBjhJSF0C+gdfCu5W w3XKxPz9QEJSDf+pwYVecjXjq+Fb/3+pGbXzHxzPRda9tmcLNnoGFmNY6B5JN8mg B7T7NCFOpYw7Bvmnec0k0hqBQmY+ySZ7/lokHYu2VaDLPl+d1w2eGXF9uSvXU1VM y41DsOKhweGrbIjMD1pm2jHuTXxXxgunHcg2Odj6lt7H6zFqq3jA+zY7IZL8lj+M p5tb8t6rxv6G6moOAOJ67XKdNopKUW0Tx0F211OnaXNixW6bz0w= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:51 2026 by rpki-client