$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146108.roa File: AS146108.roa (raw, json) Hash identifier: 8Zlbt0quFnDggSlG/GG1xlY6Ip/yiVYVQQbF+2z77IE= Subject key identifier: 01:C1:C6:28:AA:53:C7:9B:70:C2:5D:74:9B:02:76:A9:E5:9B:0D:A8 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 36F1BA105E669D8822E8E98EF8D281AAA334FA40 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146108.roa Signing time: Wed 04 Mar 2026 06:34:02 +0000 ROA not before: Wed 04 Mar 2026 06:29:02 +0000 ROA not after: Wed 03 Mar 2027 06:34:02 +0000 asID: 146108 IP address blocks: 240a:ad82::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:f1:ba:10:5e:66:9d:88:22:e8:e9:8e:f8:d2:81:aa:a3:34:fa:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:02 2026 GMT Not After : Mar 3 06:34:02 2027 GMT Subject: CN=01C1C628AA53C79B70C25D749B0276A9E59B0DA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e3:57:3a:b6:f7:9d:af:88:d4:ba:d3:a8:9f: 0c:b2:8e:4c:0a:56:b1:44:0e:69:2c:dd:c4:ba:c4: f5:28:96:f3:0b:d1:88:d0:f3:b5:0f:7b:ad:a8:72: f0:58:ab:fa:61:50:62:6f:bc:9d:bc:a2:77:78:9b: 96:27:23:51:c3:0b:27:b0:60:00:94:d9:61:55:aa: 9f:cb:56:b3:c9:c8:c7:00:86:0e:09:91:d4:cf:dc: 48:59:ea:ce:7b:aa:31:a3:6b:d4:a6:4b:6c:d6:c2: ee:09:3e:28:97:6a:e7:e4:b0:e8:3e:5f:43:55:63: 9d:33:e7:de:b1:ee:67:3f:ee:62:4e:f5:26:ca:5c: 93:a6:22:62:02:d1:7c:9d:b7:80:db:47:0b:3c:0a: 71:45:09:00:91:6d:df:5c:22:4d:56:f5:73:d7:0e: fd:60:27:2c:5f:de:62:36:2f:8c:7b:d9:e1:04:ca: e6:a6:87:47:f2:b2:50:a6:0c:9f:b4:d9:3f:aa:3b: 1f:75:36:03:89:4f:c3:7e:69:ce:1f:5c:66:f4:89: a5:e3:22:6a:8a:5e:dd:2c:97:66:fe:6b:de:4f:be: bc:ad:82:aa:f9:76:a3:98:1c:e1:a4:0e:68:b7:f7: 6e:a3:b2:cf:f4:ef:d1:8d:a0:66:23:ad:08:af:de: 29:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C1:C6:28:AA:53:C7:9B:70:C2:5D:74:9B:02:76:A9:E5:9B:0D:A8 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146108.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad82::/32 Signature Algorithm: sha256WithRSAEncryption 49:71:26:c2:45:0f:bf:27:37:77:ce:1d:e4:03:3f:2b:62:c3: 90:46:db:58:8c:dd:14:f6:fb:5b:65:2f:66:fd:7a:cc:61:2b: 89:fe:1a:42:ec:bf:cf:e5:af:16:80:9c:31:de:c6:5d:65:fd: 61:eb:d9:d4:31:22:6a:1e:32:1d:81:68:56:03:59:66:3d:70: 07:e8:79:b1:16:37:08:bc:e3:4b:4a:78:74:3c:6a:f4:7f:0b: 1c:2b:5b:af:f1:bf:75:6e:74:9b:d5:5d:dc:8e:36:a7:07:64: 4c:7f:b5:c4:ee:62:32:fa:c8:3b:aa:23:18:b3:54:d7:aa:6f: 87:4f:a8:8e:f2:54:9f:6b:a3:ba:c9:f6:1c:2a:84:82:b1:1b: a9:01:13:10:1d:9a:a4:03:fe:91:21:b2:9a:79:d2:5c:1d:e4: 93:eb:d1:bd:ae:0c:8d:cc:88:97:48:91:db:74:73:fc:b3:28: e9:02:a7:10:0c:25:92:88:85:77:77:cc:9a:fd:1d:1b:4e:8a: b0:a1:79:2e:f5:d9:56:4b:99:0e:13:36:3b:70:d5:c3:27:0b: 30:b0:d3:81:0d:28:12:a2:d6:e4:02:f2:61:c5:53:20:de:bd: 9f:e5:74:c1:34:50:64:08:ae:e6:82:af:5f:39:70:22:5a:9f: b7:52:0b:1e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUNvG6EF5mnYgi6OmO+NKBqqM0+kAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwMloX DTI3MDMwMzA2MzQwMlowMzExMC8GA1UEAxMoMDFDMUM2MjhBQTUzQzc5QjcwQzI1 RDc0OUIwMjc2QTlFNTlCMERBODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANDjVzq2952viNS606ifDLKOTApWsUQOaSzdxLrE9SiW8wvRiNDztQ97rahy 8Fir+mFQYm+8nbyid3iblicjUcMLJ7BgAJTZYVWqn8tWs8nIxwCGDgmR1M/cSFnq znuqMaNr1KZLbNbC7gk+KJdq5+Sw6D5fQ1VjnTPn3rHuZz/uYk71Jspck6YiYgLR fJ23gNtHCzwKcUUJAJFt31wiTVb1c9cO/WAnLF/eYjYvjHvZ4QTK5qaHR/KyUKYM n7TZP6o7H3U2A4lPw35pzh9cZvSJpeMiaope3SyXZv5r3k++vK2Cqvl2o5gc4aQO aLf3bqOyz/Tv0Y2gZiOtCK/eKeUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQBwcYo qlPHm3DCXXSbAnap5ZsNqDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjEwOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rYIwDQYJKoZIhvcNAQELBQADggEBAElxJsJFD78nN3fOHeQDPytiw5BG21iM3RT2 +1tlL2b9esxhK4n+GkLsv8/lrxaAnDHexl1l/WHr2dQxImoeMh2BaFYDWWY9cAfo ebEWNwi840tKeHQ8avR/CxwrW6/xv3VudJvVXdyONqcHZEx/tcTuYjL6yDuqIxiz VNeqb4dPqI7yVJ9ro7rJ9hwqhIKxG6kBExAdmqQD/pEhspp50lwd5JPr0b2uDI3M iJdIkdt0c/yzKOkCpxAMJZKIhXd3zJr9HRtOirCheS712VZLmQ4TNjtw1cMnCzCw 04ENKBKi1uQC8mHFUyDevZ/ldME0UGQIruaCr185cCJan7dSCx4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:17 2026 by rpki-client