$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146137.roa File: AS146137.roa (raw, json) Hash identifier: MxduhpiPuB9I+dSauU2IImcck2zhR9eOxhq38QxmXsQ= Subject key identifier: CA:52:6A:B8:DB:6A:32:E5:B5:31:3A:7C:FD:59:75:32:61:23:BA:4E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6986909AD635036757B1F66D14EC0F937FAB1218 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146137.roa Signing time: Wed 04 Mar 2026 06:34:09 +0000 ROA not before: Wed 04 Mar 2026 06:29:09 +0000 ROA not after: Wed 03 Mar 2027 06:34:09 +0000 asID: 146137 IP address blocks: 240a:ad9f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:86:90:9a:d6:35:03:67:57:b1:f6:6d:14:ec:0f:93:7f:ab:12:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:09 2026 GMT Not After : Mar 3 06:34:09 2027 GMT Subject: CN=CA526AB8DB6A32E5B5313A7CFD5975326123BA4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d7:e8:4a:66:41:c2:f5:75:ca:13:23:d5:61: 63:e5:79:19:e4:c1:b9:a8:70:45:07:02:fb:6a:ee: 58:56:13:fd:18:76:84:41:2d:88:73:b4:9e:fd:41: 4b:ee:5f:d1:50:9c:42:03:c8:db:83:80:93:a3:f3: 7a:7b:ed:1d:b7:b8:d7:bc:eb:08:2a:8c:f7:17:c2: 3a:a7:8f:22:9d:a9:55:43:10:86:36:1e:4c:26:6b: 8e:be:27:df:96:a6:18:fe:b8:73:be:23:67:36:fd: a9:6d:c4:01:6d:24:5c:c4:1d:de:bf:ec:33:28:81: 23:b8:a7:86:23:58:07:f5:68:f7:05:7b:a3:72:e5: ae:83:f2:51:8e:1a:18:f3:2b:25:f1:92:1f:7f:6c: 5c:98:2c:62:b5:65:4e:6e:7f:cf:2b:10:05:dd:8c: 4e:4f:b0:47:04:16:c7:06:c4:76:a9:8d:bd:1b:c5: 99:93:ed:80:cb:81:76:29:ab:1b:80:eb:b3:1a:ff: 83:0d:95:c1:34:b6:cf:a8:df:14:56:d8:87:98:66: 23:4c:e7:29:51:df:75:98:97:ae:25:d0:f2:af:de: e1:67:39:c0:94:0f:c2:44:4e:5b:70:7a:96:cd:09: 4a:a7:6d:1a:30:fa:9f:04:3c:8f:e2:07:d1:92:c3: 83:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:52:6A:B8:DB:6A:32:E5:B5:31:3A:7C:FD:59:75:32:61:23:BA:4E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad9f::/32 Signature Algorithm: sha256WithRSAEncryption 50:22:47:d8:d1:8f:ad:0a:37:9f:1c:db:66:4f:ce:e7:ed:81: e7:03:35:5b:cc:49:05:97:fe:76:c7:3b:e7:cf:89:74:9a:f0: c9:80:9e:e5:02:dd:9c:31:99:72:c4:6e:e2:cf:1d:8a:a0:0a: 23:9b:a1:c4:b5:40:08:73:92:18:2f:15:3d:54:69:7c:fb:1a: cf:0d:e9:79:20:53:13:9d:91:ff:f8:f6:93:3d:b4:e0:96:ee: 9b:3b:95:b6:fa:c1:64:74:05:ca:30:66:3c:73:3d:58:49:ee: c7:6f:1e:57:6e:4f:f9:86:93:4d:a9:be:ff:89:d9:f5:0d:a7: 8d:09:b6:93:05:38:5f:d4:ea:b7:c2:e3:58:b1:1b:fd:94:77: 35:cd:78:13:ee:96:c3:a1:54:d7:62:1f:17:43:87:f0:54:74: 30:57:4e:66:f8:7c:83:87:57:20:17:83:3a:c3:a8:22:b9:9b: 01:f2:a7:d5:a5:dd:3a:f2:1f:ec:29:e6:cf:fe:f3:9e:c8:68: 2b:39:7e:ae:29:6e:c9:1e:4f:43:11:98:76:3c:e0:45:e7:0d: 93:39:84:2a:d4:18:89:58:f7:d8:55:3e:f1:32:2c:72:81:86: fb:79:cd:47:c3:17:97:0e:37:3d:3c:16:88:16:0b:35:7c:98: 35:d9:6c:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUaYaQmtY1A2dXsfZtFOwPk3+rEhgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwOVoX DTI3MDMwMzA2MzQwOVowMzExMC8GA1UEAxMoQ0E1MjZBQjhEQjZBMzJFNUI1MzEz QTdDRkQ1OTc1MzI2MTIzQkE0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7X6EpmQcL1dcoTI9VhY+V5GeTBuahwRQcC+2ruWFYT/Rh2hEEtiHO0nv1B S+5f0VCcQgPI24OAk6PzenvtHbe417zrCCqM9xfCOqePIp2pVUMQhjYeTCZrjr4n 35amGP64c74jZzb9qW3EAW0kXMQd3r/sMyiBI7inhiNYB/Vo9wV7o3LlroPyUY4a GPMrJfGSH39sXJgsYrVlTm5/zysQBd2MTk+wRwQWxwbEdqmNvRvFmZPtgMuBdimr G4Drsxr/gw2VwTS2z6jfFFbYh5hmI0znKVHfdZiXriXQ8q/e4Wc5wJQPwkROW3B6 ls0JSqdtGjD6nwQ8j+IH0ZLDg3UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTKUmq4 22oy5bUxOnz9WXUyYSO6TjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjEzNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rZ8wDQYJKoZIhvcNAQELBQADggEBAFAiR9jRj60KN58c22ZPzuftgecDNVvMSQWX /nbHO+fPiXSa8MmAnuUC3ZwxmXLEbuLPHYqgCiObocS1QAhzkhgvFT1UaXz7Gs8N 6XkgUxOdkf/49pM9tOCW7ps7lbb6wWR0BcowZjxzPVhJ7sdvHlduT/mGk02pvv+J 2fUNp40JtpMFOF/U6rfC41ixG/2UdzXNeBPulsOhVNdiHxdDh/BUdDBXTmb4fIOH VyAXgzrDqCK5mwHyp9Wl3TryH+wp5s/+857IaCs5fq4pbskeT0MRmHY84EXnDZM5 hCrUGIlY99hVPvEyLHKBhvt5zUfDF5cONz08FogWCzV8mDXZbH4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:34 2026 by rpki-client