$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146128.roa File: AS146128.roa (raw, json) Hash identifier: f90pefBawqHhBEhONw/CjJJQmMECiX3lRzo2aC6CG80= Subject key identifier: 7F:F9:3A:B6:CA:D9:B9:2A:42:E9:E9:E1:71:23:9E:B2:93:12:D3:E4 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 48593AFD1932CBA2872D2D25B3E082AB60754ABF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146128.roa Signing time: Wed 04 Mar 2026 06:34:29 +0000 ROA not before: Wed 04 Mar 2026 06:29:29 +0000 ROA not after: Wed 03 Mar 2027 06:34:29 +0000 asID: 146128 IP address blocks: 240a:ad96::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:59:3a:fd:19:32:cb:a2:87:2d:2d:25:b3:e0:82:ab:60:75:4a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:29 2026 GMT Not After : Mar 3 06:34:29 2027 GMT Subject: CN=7FF93AB6CAD9B92A42E9E9E171239EB29312D3E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:94:74:29:98:08:d2:f0:39:46:6c:0e:1e:c3: f3:d7:b6:4f:c8:99:87:5b:29:a1:d9:b6:65:86:63: ec:fa:b0:28:a6:0f:5c:d9:31:ef:22:58:b0:1a:7d: 27:ac:ac:59:a8:d9:b2:6c:c8:1e:c8:6c:14:8a:02: 21:2a:31:11:d5:42:7a:a8:f5:d6:d6:92:47:48:e1: d1:22:6f:e9:a2:59:9d:c9:58:89:ad:ee:a0:ba:28: 8f:a0:98:d1:18:0b:9f:9e:b0:6c:0e:18:5e:62:6a: 74:53:b3:3d:ed:64:02:35:a3:3d:bf:14:4b:bb:8f: 5d:90:0f:0f:2f:96:d0:4f:5d:71:c5:7e:b7:9d:8e: bd:92:d2:60:4b:5c:ad:3d:a8:76:eb:85:e6:21:85: d0:a6:c8:b5:3d:0a:7f:0e:ac:1c:cd:59:d2:3a:65: f9:52:39:5c:c6:db:47:56:1f:f7:36:f4:cf:05:73: 1c:77:c5:7a:07:ed:e8:ef:51:c5:27:1b:67:87:d9: f0:7e:28:de:32:ee:bf:0e:51:a0:28:a0:ce:24:80: 6d:9e:7a:45:49:fb:0a:02:5f:61:49:90:60:28:31: da:50:d8:d7:8f:4d:ea:84:40:14:30:2e:e1:d0:82: a8:1b:04:3e:8b:53:9b:d1:a9:16:62:99:8c:09:c1: 96:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F9:3A:B6:CA:D9:B9:2A:42:E9:E9:E1:71:23:9E:B2:93:12:D3:E4 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146128.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad96::/32 Signature Algorithm: sha256WithRSAEncryption 5b:7c:21:e0:f3:2c:8e:07:e5:af:ee:f5:47:1f:37:8c:e2:07: ce:26:92:50:ae:90:30:4e:d2:f5:7f:3c:79:c5:6c:14:56:90: 70:ab:5f:51:be:1c:25:88:67:30:72:ff:c9:3d:88:c6:f4:df: b5:29:f6:2e:2e:e3:53:8c:40:d6:85:25:46:53:2c:53:42:45: ae:6b:28:ca:df:c5:8a:f5:6e:9d:af:01:af:fc:e3:64:c7:b8: 4b:35:4b:82:60:85:6a:58:48:3c:e3:fb:a4:aa:1a:e2:bd:1c: 9d:21:51:38:7c:0b:11:a4:37:b7:81:14:25:d9:07:50:a2:c2: 1a:31:22:bb:4d:4d:b7:e1:04:82:55:eb:16:6e:13:74:49:55: f8:05:cb:58:31:14:11:31:d1:b9:8d:92:9e:7d:87:c4:61:91: 42:4b:e2:56:7f:cf:d1:c0:d8:a6:e0:a9:11:3d:04:16:31:42: 1d:53:17:73:e0:ae:df:b4:c7:99:f9:03:2c:e2:fe:15:11:ea: 40:72:0c:58:13:72:10:1e:fa:ee:5a:ce:e8:25:9e:1e:d4:0d: 77:1c:ad:db:1a:af:fe:95:da:f5:3f:60:86:0c:d8:48:f4:db: 06:83:08:88:08:d3:e2:29:94:d0:65:ee:25:06:9a:8d:ad:d0: 99:0e:13:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSFk6/Rkyy6KHLS0ls+CCq2B1Sr8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkyOVoX DTI3MDMwMzA2MzQyOVowMzExMC8GA1UEAxMoN0ZGOTNBQjZDQUQ5QjkyQTQyRTlF OUUxNzEyMzlFQjI5MzEyRDNFNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqUdCmYCNLwOUZsDh7D89e2T8iZh1spodm2ZYZj7PqwKKYPXNkx7yJYsBp9 J6ysWajZsmzIHshsFIoCISoxEdVCeqj11taSR0jh0SJv6aJZnclYia3uoLooj6CY 0RgLn56wbA4YXmJqdFOzPe1kAjWjPb8US7uPXZAPDy+W0E9dccV+t52OvZLSYEtc rT2oduuF5iGF0KbItT0Kfw6sHM1Z0jpl+VI5XMbbR1Yf9zb0zwVzHHfFegft6O9R xScbZ4fZ8H4o3jLuvw5RoCigziSAbZ56RUn7CgJfYUmQYCgx2lDY149N6oRAFDAu 4dCCqBsEPotTm9GpFmKZjAnBlkcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR/+Tq2 ytm5KkLp6eFxI56ykxLT5DAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjEyOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rZYwDQYJKoZIhvcNAQELBQADggEBAFt8IeDzLI4H5a/u9UcfN4ziB84mklCukDBO 0vV/PHnFbBRWkHCrX1G+HCWIZzBy/8k9iMb037Up9i4u41OMQNaFJUZTLFNCRa5r KMrfxYr1bp2vAa/842THuEs1S4JghWpYSDzj+6SqGuK9HJ0hUTh8CxGkN7eBFCXZ B1CiwhoxIrtNTbfhBIJV6xZuE3RJVfgFy1gxFBEx0bmNkp59h8RhkUJL4lZ/z9HA 2KbgqRE9BBYxQh1TF3Pgrt+0x5n5Ayzi/hUR6kByDFgTchAe+u5azuglnh7UDXcc rdsar/6V2vU/YIYM2Ej02waDCIgI0+IplNBl7iUGmo2t0JkOE4A= -----END CERTIFICATE-----Generated at Sat Mar 28 13:18:13 2026 by rpki-client