$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146111.roa File: AS146111.roa (raw, json) Hash identifier: l2MiyYLZLxKo8bG8wiin9AhhoWDuYpsq9fq3zSs1zi0= Subject key identifier: A9:4C:A1:8C:72:B2:C6:9B:29:E8:CD:EF:25:C3:56:E3:72:D1:AB:A0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 458ACD1FF26BFF8A0C98EBBBAEF90A99D3A9056B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146111.roa Signing time: Wed 04 Mar 2026 06:34:19 +0000 ROA not before: Wed 04 Mar 2026 06:29:19 +0000 ROA not after: Wed 03 Mar 2027 06:34:19 +0000 asID: 146111 IP address blocks: 240a:ad85::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8a:cd:1f:f2:6b:ff:8a:0c:98:eb:bb:ae:f9:0a:99:d3:a9:05:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:19 2026 GMT Not After : Mar 3 06:34:19 2027 GMT Subject: CN=A94CA18C72B2C69B29E8CDEF25C356E372D1ABA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:77:17:cb:1f:6d:92:33:dd:e6:ce:dc:d0:b6: f8:27:89:2b:34:04:72:fa:8b:7c:12:86:00:ef:72: 91:a2:fa:fe:c8:80:cc:09:d0:92:69:97:33:df:55: 26:6a:4c:66:5a:2e:66:08:2f:ea:6b:72:c4:24:d7: 54:25:dd:13:26:d5:52:0a:52:d9:91:49:39:6e:22: 45:d9:03:97:c9:e8:14:1d:8c:2d:2e:4e:bc:85:e8: a1:4d:0d:ef:60:8a:42:86:d7:ca:af:42:95:5b:ad: 2b:fb:f4:67:34:c9:45:8f:98:06:2d:0d:fc:a7:84: 1f:7b:81:4e:e7:7f:d6:ae:26:ac:b6:a6:17:7a:5f: 00:67:6e:43:47:13:07:c7:6e:f8:4b:20:60:b4:bc: 53:52:f8:3a:a5:d1:79:23:51:d8:e8:d0:58:25:db: 38:a8:65:63:6b:14:3e:10:c3:f4:0f:84:74:7d:7c: 43:2f:33:c7:b3:3b:32:7a:83:8f:63:a9:9f:53:33: f0:0e:e8:39:33:aa:d8:fb:12:9d:14:0f:e8:57:b5: aa:86:7c:93:cb:cb:f8:9a:29:1a:e0:82:21:ea:4d: 27:d4:01:c0:12:95:3c:b3:c6:91:80:8f:0e:a5:a4: 1e:69:39:87:c5:2f:47:c4:71:07:5e:d7:01:09:51: 82:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4C:A1:8C:72:B2:C6:9B:29:E8:CD:EF:25:C3:56:E3:72:D1:AB:A0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146111.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad85::/32 Signature Algorithm: sha256WithRSAEncryption d2:ef:cf:3a:b6:6c:ee:e5:46:19:b1:b7:1e:90:28:35:b7:d1: 0f:ba:cb:c2:e4:3f:97:e6:0e:ec:8b:80:82:21:74:53:5c:56: 39:0b:f5:f0:49:a0:18:97:11:a3:30:55:a8:33:bf:4a:bb:96: ee:38:3c:a9:04:d0:2b:91:57:ef:27:6c:ff:8b:74:cf:5d:5d: 42:89:1e:a6:19:ef:7d:ed:f1:09:a0:82:b7:d0:44:eb:0b:0a: fc:69:16:be:d5:0a:99:23:2c:d6:4d:59:72:4b:eb:c9:e6:08: 51:35:0b:2e:dd:21:97:c0:0d:f8:46:a1:b4:47:f3:71:f8:fa: 42:32:83:d7:97:3f:c4:b3:3e:af:28:cd:4d:58:7f:69:20:34: 8b:4f:4b:92:bc:90:37:44:16:aa:e8:75:78:f1:d4:2e:19:48: 51:1b:eb:14:46:7a:5f:62:e3:28:c2:d7:d0:aa:e7:20:ea:d0: be:a0:fa:32:84:ef:99:a8:d3:10:23:11:9f:42:a3:82:4a:ba: 62:82:10:95:4e:d7:ab:c4:67:f0:d3:c9:65:09:24:8e:9c:cb: 51:5e:51:a9:26:18:28:67:6f:e0:6c:c5:92:19:90:9e:db:28: ff:c7:ce:c5:d1:d3:87:03:e9:ec:0a:82:c6:bb:93:4f:88:a2: 5e:82:c4:91 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIURYrNH/Jr/4oMmOu7rvkKmdOpBWswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkxOVoX DTI3MDMwMzA2MzQxOVowMzExMC8GA1UEAxMoQTk0Q0ExOEM3MkIyQzY5QjI5RThD REVGMjVDMzU2RTM3MkQxQUJBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPp3F8sfbZIz3ebO3NC2+CeJKzQEcvqLfBKGAO9ykaL6/siAzAnQkmmXM99V JmpMZlouZggv6mtyxCTXVCXdEybVUgpS2ZFJOW4iRdkDl8noFB2MLS5OvIXooU0N 72CKQobXyq9ClVutK/v0ZzTJRY+YBi0N/KeEH3uBTud/1q4mrLamF3pfAGduQ0cT B8du+EsgYLS8U1L4OqXReSNR2OjQWCXbOKhlY2sUPhDD9A+EdH18Qy8zx7M7MnqD j2Opn1Mz8A7oOTOq2PsSnRQP6Fe1qoZ8k8vL+JopGuCCIepNJ9QBwBKVPLPGkYCP DqWkHmk5h8UvR8RxB17XAQlRghcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSpTKGM crLGmynoze8lw1bjctGroDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjExMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rYUwDQYJKoZIhvcNAQELBQADggEBANLvzzq2bO7lRhmxtx6QKDW30Q+6y8LkP5fm DuyLgIIhdFNcVjkL9fBJoBiXEaMwVagzv0q7lu44PKkE0CuRV+8nbP+LdM9dXUKJ HqYZ733t8QmggrfQROsLCvxpFr7VCpkjLNZNWXJL68nmCFE1Cy7dIZfADfhGobRH 83H4+kIyg9eXP8SzPq8ozU1Yf2kgNItPS5K8kDdEFqrodXjx1C4ZSFEb6xRGel9i 4yjC19Cq5yDq0L6g+jKE75mo0xAjEZ9Co4JKumKCEJVO16vEZ/DTyWUJJI6cy1Fe UakmGChnb+BsxZIZkJ7bKP/HzsXR04cD6ewKgsa7k0+Iol6CxJE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:37 2026 by rpki-client