$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146115.roa File: AS146115.roa (raw, json) Hash identifier: //RP+je7BvfFJeGhBY+5saeMVmVqaqO38VTo/cW50BA= Subject key identifier: 76:D6:02:F8:E8:CB:87:D5:5A:EA:8B:7A:00:19:08:3B:B5:9D:9A:77 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 28D8483256EDD8E5B333098896E0D1BFAF405837 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146115.roa Signing time: Wed 04 Mar 2026 06:34:59 +0000 ROA not before: Wed 04 Mar 2026 06:29:59 +0000 ROA not after: Wed 03 Mar 2027 06:34:59 +0000 asID: 146115 IP address blocks: 240a:ad89::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d8:48:32:56:ed:d8:e5:b3:33:09:88:96:e0:d1:bf:af:40:58:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:59 2026 GMT Not After : Mar 3 06:34:59 2027 GMT Subject: CN=76D602F8E8CB87D55AEA8B7A0019083BB59D9A77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:72:e0:a4:89:53:92:b7:a5:65:85:a6:1c:29: e7:18:3f:60:8c:1e:e1:91:90:e3:8c:68:24:fc:88: bd:a7:43:b9:bb:ad:8a:51:28:49:39:21:8b:a0:05: f7:6d:48:19:4e:bb:f8:d6:fc:51:58:21:c7:5e:80: 6e:99:1f:65:33:a7:dc:bb:59:81:18:ec:85:e2:8b: fa:e9:87:43:3e:c4:77:b0:2d:c3:84:6e:3c:87:ea: 2b:2f:9e:3a:56:86:0f:c2:7d:b1:9e:02:28:c0:a9: b4:5c:c8:32:45:a8:6a:9a:cb:d3:e6:30:4f:02:87: 58:7c:3f:23:ae:2c:a1:1d:9b:89:5d:cd:a4:a9:30: e4:c1:5d:fd:5e:ea:2a:2e:06:b0:72:fb:1e:91:21: a1:a2:35:89:9d:3c:7a:62:41:51:08:df:4e:57:b4: 10:dd:6e:cd:42:e0:8d:a1:45:ab:22:a6:6d:88:07: a3:c3:6b:29:f0:ed:5b:01:7a:87:1f:8e:71:a1:f6: f7:59:e0:d0:35:81:37:2c:8b:29:69:de:79:2c:bd: 07:29:e9:9b:58:4d:81:21:c2:ac:f1:4d:d0:1a:3a: 84:ec:fe:9c:b9:af:e0:e8:7e:e3:98:82:97:ea:41: a1:eb:84:ef:4c:d9:09:97:81:b2:1c:a3:7f:68:95: cf:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D6:02:F8:E8:CB:87:D5:5A:EA:8B:7A:00:19:08:3B:B5:9D:9A:77 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146115.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad89::/32 Signature Algorithm: sha256WithRSAEncryption 2c:02:ab:1c:ba:2a:63:ec:a7:66:bc:99:7f:06:bf:45:fb:65: 52:2b:60:46:85:2f:fc:04:c3:b6:3c:cf:72:ef:60:65:f4:16: ac:59:7c:cc:ed:d6:e5:d5:0f:67:ad:f0:20:1d:87:8c:7f:25: fd:35:dc:82:e8:a5:41:33:62:75:ae:56:63:fa:c4:5d:ec:91: 3a:d9:76:b7:a5:0d:3f:eb:a3:1e:1e:24:ed:20:a1:88:f8:2d: 0c:f6:68:0d:bf:c7:38:63:e2:72:d1:e1:1c:ff:5d:29:7b:f7: 3e:1f:5e:a1:0a:88:99:93:1d:9a:34:63:06:fa:03:a6:23:7e: 5e:75:70:0e:22:c1:03:2f:9a:8c:2d:b7:fe:18:80:9c:60:bf: 72:bf:df:d7:62:63:9c:52:00:d9:70:9d:01:65:15:9b:f0:77: 07:54:50:b1:1d:63:c3:bb:4c:d6:9d:12:b5:e0:69:f9:e4:dd: dd:0d:29:6b:5c:9c:7e:21:da:4e:3a:43:59:1c:8b:95:91:d5: 5c:f0:33:eb:70:f2:df:76:95:93:9f:2e:f2:f1:83:93:5b:8b: 0e:d4:8f:cb:84:c6:91:21:c0:77:5d:33:ef:c0:d9:ac:33:3c: 6e:77:3b:69:e0:e9:24:fd:5f:e3:2d:1b:6b:39:0e:aa:7b:1b: ae:fc:70:c2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKNhIMlbt2OWzMwmIluDRv69AWDcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk1OVoX DTI3MDMwMzA2MzQ1OVowMzExMC8GA1UEAxMoNzZENjAyRjhFOENCODdENTVBRUE4 QjdBMDAxOTA4M0JCNTlEOUE3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZy4KSJU5K3pWWFphwp5xg/YIwe4ZGQ44xoJPyIvadDubutilEoSTkhi6AF 921IGU67+Nb8UVghx16AbpkfZTOn3LtZgRjsheKL+umHQz7Ed7Atw4RuPIfqKy+e OlaGD8J9sZ4CKMCptFzIMkWoaprL0+YwTwKHWHw/I64soR2biV3NpKkw5MFd/V7q Ki4GsHL7HpEhoaI1iZ08emJBUQjfTle0EN1uzULgjaFFqyKmbYgHo8NrKfDtWwF6 hx+OcaH291ng0DWBNyyLKWneeSy9Bynpm1hNgSHCrPFN0Bo6hOz+nLmv4Oh+45iC l+pBoeuE70zZCZeBshyjf2iVz+8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR21gL4 6MuH1Vrqi3oAGQg7tZ2adzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjExNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rYkwDQYJKoZIhvcNAQELBQADggEBACwCqxy6KmPsp2a8mX8Gv0X7ZVIrYEaFL/wE w7Y8z3LvYGX0FqxZfMzt1uXVD2et8CAdh4x/Jf013ILopUEzYnWuVmP6xF3skTrZ drelDT/rox4eJO0goYj4LQz2aA2/xzhj4nLR4Rz/XSl79z4fXqEKiJmTHZo0Ywb6 A6Yjfl51cA4iwQMvmowtt/4YgJxgv3K/39diY5xSANlwnQFlFZvwdwdUULEdY8O7 TNadErXgafnk3d0NKWtcnH4h2k46Q1kci5WR1VzwM+tw8t92lZOfLvLxg5Nbiw7U j8uExpEhwHddM+/A2awzPG53O2ng6ST9X+MtG2s5Dqp7G678cMI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:03 2026 by rpki-client