$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146077.roa File: AS146077.roa (raw, json) Hash identifier: EqjnOF6k0jeswGTOemjYmE3iWpwLgBftNtpoVVj9cC8= Subject key identifier: 5A:6B:7B:BC:23:CE:2B:AD:B9:A3:39:63:E0:5F:EA:99:15:17:37:DA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 161FBB4A6F5E8AC11F3E8755335E99F30C81919C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146077.roa Signing time: Wed 04 Mar 2026 06:34:37 +0000 ROA not before: Wed 04 Mar 2026 06:29:37 +0000 ROA not after: Wed 03 Mar 2027 06:34:37 +0000 asID: 146077 IP address blocks: 240a:ad63::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:1f:bb:4a:6f:5e:8a:c1:1f:3e:87:55:33:5e:99:f3:0c:81:91:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:37 2026 GMT Not After : Mar 3 06:34:37 2027 GMT Subject: CN=5A6B7BBC23CE2BADB9A33963E05FEA99151737DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1c:94:27:f2:f0:2e:36:a9:0a:82:06:b5:6c: 9b:9d:a8:ba:76:88:23:21:5d:72:c2:8d:da:86:a4: 34:73:52:7b:ad:35:52:0d:8c:fa:59:4e:93:e4:d9: 86:b1:c7:a2:46:5e:ea:11:ff:99:6f:ca:2a:0f:18: b6:72:c1:5f:f1:4e:f9:1f:b3:51:cb:5c:0f:16:8e: 24:75:bd:60:f9:82:57:c3:e6:79:58:8e:bb:50:ee: a0:69:2d:3a:fd:26:78:b1:2f:7e:bf:f3:d5:11:f6: 7d:79:a4:b8:f8:7d:91:87:1b:b3:5d:5d:18:ea:5d: 37:7c:79:1a:32:74:db:49:d8:cb:44:76:55:2e:15: 06:05:db:8a:cd:25:eb:f2:04:fe:8a:b9:84:ed:c9: c8:c9:00:40:34:5e:7e:11:01:56:7f:22:47:9f:52: 66:07:3f:8e:a1:e6:4d:ed:32:8b:91:44:e4:41:90: f2:6a:0c:08:9c:dd:e8:f9:8e:1f:f5:78:83:b9:b8: f0:76:d5:2a:9a:27:cf:90:61:3d:9b:9b:83:de:56: 8f:b4:69:95:9a:ad:92:c0:16:82:1a:21:f8:c4:86: 1d:82:16:a6:47:90:86:9e:d6:82:93:21:c7:7c:01: 86:ba:c1:f4:a5:a6:56:53:6a:e1:ef:a6:8a:e2:8a: 7f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:6B:7B:BC:23:CE:2B:AD:B9:A3:39:63:E0:5F:EA:99:15:17:37:DA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146077.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad63::/32 Signature Algorithm: sha256WithRSAEncryption d3:3f:9d:eb:88:13:b3:ad:5e:03:bb:37:39:33:ff:8e:1f:fd: 7f:24:77:f5:78:c9:af:18:a3:e7:21:d8:2f:48:c2:d7:c7:57: a3:5b:9f:44:27:72:41:6b:3b:20:de:69:61:92:f3:3b:7c:c4: 48:b4:1d:44:a7:c8:96:96:b5:d7:72:b1:62:21:b2:f8:0e:3c: 99:c1:98:e5:b8:a6:cd:f9:d1:1b:59:a5:61:bf:4a:9e:3a:7f: 76:2e:6a:ce:27:b4:b9:1b:ed:7c:73:6d:23:de:17:9b:8c:3c: a4:92:fa:3c:b6:bb:b8:ac:aa:cf:31:1f:70:db:05:82:37:ae: 14:59:81:5d:b5:2c:4d:e9:c5:83:ec:fc:0f:e9:04:80:43:8c: 08:29:ef:2f:50:6b:ff:55:22:aa:cd:5e:0e:8e:bf:7a:6d:96: 66:dc:fa:fd:aa:5a:f4:a5:f6:58:31:f8:9d:91:cd:9f:d2:a5: 5e:c9:ed:58:4c:d1:94:b0:37:44:65:5f:7a:ac:f3:72:88:88: f0:73:a6:51:09:09:9e:bf:eb:43:58:94:49:a1:33:3e:a9:0a: 0e:be:6f:53:c5:37:ba:99:f2:36:44:95:87:00:29:b8:a5:c5: d4:d9:56:0a:2c:62:5b:00:97:fe:fa:1a:6d:58:bd:e2:4a:e2: 0f:ce:51:d6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUFh+7Sm9eisEfPodVM16Z8wyBkZwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzN1oX DTI3MDMwMzA2MzQzN1owMzExMC8GA1UEAxMoNUE2QjdCQkMyM0NFMkJBREI5QTMz OTYzRTA1RkVBOTkxNTE3MzdEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMQclCfy8C42qQqCBrVsm52ounaIIyFdcsKN2oakNHNSe601Ug2M+llOk+TZ hrHHokZe6hH/mW/KKg8YtnLBX/FO+R+zUctcDxaOJHW9YPmCV8PmeViOu1DuoGkt Ov0meLEvfr/z1RH2fXmkuPh9kYcbs11dGOpdN3x5GjJ020nYy0R2VS4VBgXbis0l 6/IE/oq5hO3JyMkAQDRefhEBVn8iR59SZgc/jqHmTe0yi5FE5EGQ8moMCJzd6PmO H/V4g7m48HbVKponz5BhPZubg95Wj7RplZqtksAWghoh+MSGHYIWpkeQhp7WgpMh x3wBhrrB9KWmVlNq4e+miuKKf50CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRaa3u8 I84rrbmjOWPgX+qZFRc32jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rWMwDQYJKoZIhvcNAQELBQADggEBANM/neuIE7OtXgO7Nzkz/44f/X8kd/V4ya8Y o+ch2C9IwtfHV6Nbn0QnckFrOyDeaWGS8zt8xEi0HUSnyJaWtddysWIhsvgOPJnB mOW4ps350RtZpWG/Sp46f3Yuas4ntLkb7XxzbSPeF5uMPKSS+jy2u7isqs8xH3Db BYI3rhRZgV21LE3pxYPs/A/pBIBDjAgp7y9Qa/9VIqrNXg6Ov3ptlmbc+v2qWvSl 9lgx+J2RzZ/SpV7J7VhM0ZSwN0RlX3qs83KIiPBzplEJCZ6/60NYlEmhMz6pCg6+ b1PFN7qZ8jZElYcAKbilxdTZVgosYlsAl/76Gm1YveJK4g/OUdY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:42 2026 by rpki-client