$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146139.roa File: AS146139.roa (raw, json) Hash identifier: FyyTQtCqXx8oFOrdzBn63Uj7lfGXPO6E14ywgo4rvh4= Subject key identifier: C0:6B:31:2E:45:25:E0:F3:2F:5C:72:E4:06:6B:D9:93:B4:B2:9B:AC Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E1A810FC75906FA37611DF942E662E3E7E689A2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146139.roa Signing time: Wed 04 Mar 2026 06:33:37 +0000 ROA not before: Wed 04 Mar 2026 06:28:37 +0000 ROA not after: Wed 03 Mar 2027 06:33:37 +0000 asID: 146139 IP address blocks: 240a:ada1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:1a:81:0f:c7:59:06:fa:37:61:1d:f9:42:e6:62:e3:e7:e6:89:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:37 2026 GMT Not After : Mar 3 06:33:37 2027 GMT Subject: CN=C06B312E4525E0F32F5C72E4066BD993B4B29BAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:e6:ce:5d:15:a4:44:7c:ab:5f:38:3a:ed:b6: 86:a1:a0:ca:d1:2f:87:9e:7c:9f:97:db:eb:f8:d3: f3:36:22:bf:d7:ad:55:94:dc:86:a5:ff:69:48:0e: b8:92:aa:ff:de:2d:a5:ae:ef:2f:01:9c:75:a2:6f: 27:47:30:53:ce:7f:56:45:3b:2d:22:31:29:ce:53: e9:92:7c:11:6b:ca:a9:e7:2f:6a:58:18:a1:d7:ea: 0f:0b:11:7e:75:e2:3e:96:e9:4d:e2:36:76:43:da: 0f:b5:4c:fe:fa:7a:8f:03:07:87:ca:01:f9:3e:43: 67:85:9d:b8:a3:d0:38:7b:0d:ea:7f:52:ff:97:91: 8c:50:57:61:90:cb:e4:48:68:2e:16:25:38:88:72: 1f:d6:94:02:27:b7:0d:11:ed:90:5b:e5:66:bc:be: b3:c9:68:17:0b:36:69:1a:dd:8c:e6:70:24:d4:02: c2:05:38:40:65:b2:fd:f9:ac:e0:53:8b:19:e9:20: 24:b2:c5:ae:95:c7:07:1d:49:6c:95:a2:02:3a:fb: 71:31:01:f0:5d:33:73:67:84:2b:d3:f4:39:9b:98: b8:03:84:96:cc:cf:c8:d0:ee:df:b3:0c:5a:0c:62: be:23:6a:36:b0:4f:1d:f6:f1:ab:e3:8b:68:73:62: 6d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6B:31:2E:45:25:E0:F3:2F:5C:72:E4:06:6B:D9:93:B4:B2:9B:AC X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ada1::/32 Signature Algorithm: sha256WithRSAEncryption 81:45:a5:d9:d9:8d:31:b1:f4:03:0c:0f:9c:e7:b8:7a:1e:ee: 02:b1:27:9e:41:33:ee:cf:72:2b:a1:5e:9e:84:06:05:d2:85: 4d:b0:f6:6e:38:e5:b5:6e:71:50:3b:2f:46:3c:8b:0f:6b:8e: 6b:91:bd:13:e1:a0:3d:d7:3e:75:27:93:05:4e:05:6e:50:90: 19:c2:ca:17:0a:2c:f5:70:c8:33:54:5c:dc:3d:d4:00:cc:8a: 30:38:8d:b0:bd:2b:eb:a0:2d:89:fb:7f:f9:99:7e:bc:72:cc: 0a:9f:33:d7:b9:e9:a7:ac:5f:b9:dc:ef:e8:5e:2c:a4:41:1e: 42:89:71:cf:89:c0:43:23:3a:8d:3e:c0:51:d7:00:ac:d3:bd: e9:c7:97:d0:37:70:75:54:26:0b:94:6f:56:7e:2a:14:6e:eb: 73:b8:b6:4d:c3:18:ea:9d:23:32:bb:56:fe:ab:4b:5f:48:b3: 9b:ae:4d:1c:e7:f4:a8:32:b6:7e:e0:cf:a3:95:62:fd:ca:8f: f3:65:6c:3b:55:6a:e4:30:a7:de:0a:15:ce:a9:60:71:59:03: 46:1d:96:8c:c3:a5:82:dc:d7:ed:75:df:5d:a1:10:f0:de:4e: 3b:4f:6b:04:94:ac:1b:00:0e:f8:5a:f9:e2:cf:f8:ce:26:6c: 6f:8e:97:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPhqBD8dZBvo3YR35QuZi4+fmiaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzN1oX DTI3MDMwMzA2MzMzN1owMzExMC8GA1UEAxMoQzA2QjMxMkU0NTI1RTBGMzJGNUM3 MkU0MDY2QkQ5OTNCNEIyOUJBQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI3mzl0VpER8q184Ou22hqGgytEvh558n5fb6/jT8zYiv9etVZTchqX/aUgO uJKq/94tpa7vLwGcdaJvJ0cwU85/VkU7LSIxKc5T6ZJ8EWvKqecvalgYodfqDwsR fnXiPpbpTeI2dkPaD7VM/vp6jwMHh8oB+T5DZ4WduKPQOHsN6n9S/5eRjFBXYZDL 5EhoLhYlOIhyH9aUAie3DRHtkFvlZry+s8loFws2aRrdjOZwJNQCwgU4QGWy/fms 4FOLGekgJLLFrpXHBx1JbJWiAjr7cTEB8F0zc2eEK9P0OZuYuAOElszPyNDu37MM WgxiviNqNrBPHfbxq+OLaHNibVsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTAazEu RSXg8y9ccuQGa9mTtLKbrDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjEzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK raEwDQYJKoZIhvcNAQELBQADggEBAIFFpdnZjTGx9AMMD5znuHoe7gKxJ55BM+7P ciuhXp6EBgXShU2w9m445bVucVA7L0Y8iw9rjmuRvRPhoD3XPnUnkwVOBW5QkBnC yhcKLPVwyDNUXNw91ADMijA4jbC9K+ugLYn7f/mZfrxyzAqfM9e56aesX7nc7+he LKRBHkKJcc+JwEMjOo0+wFHXAKzTvenHl9A3cHVUJguUb1Z+KhRu63O4tk3DGOqd IzK7Vv6rS19Is5uuTRzn9Kgytn7gz6OVYv3Kj/NlbDtVauQwp94KFc6pYHFZA0Yd lozDpYLc1+11312hEPDeTjtPawSUrBsADvha+eLP+M4mbG+Ol58= -----END CERTIFICATE-----Generated at Sat Mar 28 13:10:44 2026 by rpki-client