$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146143.roa File: AS146143.roa (raw, json) Hash identifier: dbhED5XMvudlRjwKVNXpcxsMmItEni5Zawq5GVzwFpI= Subject key identifier: D0:14:80:6F:A3:4F:C2:CB:6D:52:CE:BD:5E:34:C6:39:A7:1C:13:A7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7403496A53FE9B9316BC869DE0BD6B60059F4804 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146143.roa Signing time: Wed 04 Mar 2026 06:34:01 +0000 ROA not before: Wed 04 Mar 2026 06:29:01 +0000 ROA not after: Wed 03 Mar 2027 06:34:01 +0000 asID: 146143 IP address blocks: 240a:ada5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:03:49:6a:53:fe:9b:93:16:bc:86:9d:e0:bd:6b:60:05:9f:48:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:01 2026 GMT Not After : Mar 3 06:34:01 2027 GMT Subject: CN=D014806FA34FC2CB6D52CEBD5E34C639A71C13A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:a4:97:f1:d8:47:8e:99:48:b6:27:d6:51: 6e:3a:74:71:24:84:91:ea:29:17:42:53:d1:8d:c7: 37:d1:8f:8b:c8:4c:3b:ef:05:5a:28:6b:61:da:5a: 10:9b:20:d4:cb:f5:9a:0d:3f:09:f6:5f:89:2b:fe: 8f:5e:0d:d8:f8:85:b7:2d:be:9e:7e:32:41:97:a2: 1f:15:74:e2:cd:c9:8e:16:39:5a:aa:50:93:3c:a6: 05:92:ed:27:c1:ba:31:62:d7:a4:96:0a:69:a7:e6: f3:7a:f3:8a:82:53:a1:5b:f0:05:b7:c4:12:bd:dc: ca:c2:4e:e9:a9:8a:8f:f4:0d:78:14:37:15:b7:10: a5:1f:fc:1c:41:17:84:10:ba:a4:ca:cd:23:97:e1: 30:5e:06:02:e2:9c:93:1c:1d:fa:5d:f2:15:b4:a3: b8:79:fb:74:ee:e3:1d:47:00:23:86:1f:14:a3:b5: 34:4d:56:36:e3:2c:6b:13:f9:c6:35:37:d8:a0:06: a3:7f:2d:3c:d0:ea:2b:2d:9a:a7:a6:56:d9:b8:e6: 4d:4f:17:8a:65:dc:2d:4a:15:06:94:73:67:d2:64: f5:b3:f9:7b:48:a0:a7:38:21:91:70:38:98:64:f2: 6b:bb:67:6b:d3:a6:b3:ee:08:ea:74:43:f9:6a:2a: 06:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:14:80:6F:A3:4F:C2:CB:6D:52:CE:BD:5E:34:C6:39:A7:1C:13:A7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146143.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ada5::/32 Signature Algorithm: sha256WithRSAEncryption 0a:54:43:50:80:5c:18:4b:80:b4:a7:5f:d5:0b:35:b7:25:de: d5:85:3d:4c:7e:22:22:87:ab:54:31:16:6e:e2:b6:e0:da:c3: df:be:40:a5:9c:fe:3f:1e:bd:75:07:79:fa:c1:8e:b2:01:01: e7:8b:5e:9f:f6:1f:dd:be:30:78:c2:e2:9d:4d:81:7b:00:f3: 6d:11:80:0e:7c:eb:00:6a:a7:43:08:3c:0b:63:24:b8:c0:9a: d8:6f:cd:7f:17:34:69:bc:1c:83:cf:79:fc:67:c1:c9:f5:3f: 15:99:41:68:cb:0b:ea:fa:5b:24:a6:ed:82:e2:59:16:f8:16: 89:ab:7f:d5:f4:e9:c0:44:4d:fd:c7:bf:fc:bc:f6:59:ec:96: 58:9a:1d:b6:37:24:bd:a4:5f:b8:74:65:69:ac:41:ed:1c:bd: b1:9f:92:1e:16:55:b1:8a:28:52:e4:d1:0f:66:a7:31:54:37: e7:4f:1b:3c:42:08:31:cb:8d:24:ec:d2:02:90:90:9b:0d:1e: 6f:cd:68:fd:08:db:74:3d:4c:2e:96:56:e4:f1:56:16:0e:c0: 6f:ac:ad:a3:d6:68:b9:b7:41:b2:40:47:c3:26:47:de:cb:93: e3:f9:fc:41:e1:9d:6b:29:b9:18:3e:db:21:c6:dd:33:af:88: bc:27:f7:46 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdANJalP+m5MWvIad4L1rYAWfSAQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwMVoX DTI3MDMwMzA2MzQwMVowMzExMC8GA1UEAxMoRDAxNDgwNkZBMzRGQzJDQjZENTJD RUJENUUzNEM2MzlBNzFDMTNBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxgpJfx2EeOmUi2J9ZRbjp0cSSEkeopF0JT0Y3HN9GPi8hMO+8FWihrYdpa EJsg1Mv1mg0/CfZfiSv+j14N2PiFty2+nn4yQZeiHxV04s3JjhY5WqpQkzymBZLt J8G6MWLXpJYKaafm83rzioJToVvwBbfEEr3cysJO6amKj/QNeBQ3FbcQpR/8HEEX hBC6pMrNI5fhMF4GAuKckxwd+l3yFbSjuHn7dO7jHUcAI4YfFKO1NE1WNuMsaxP5 xjU32KAGo38tPNDqKy2ap6ZW2bjmTU8XimXcLUoVBpRzZ9Jk9bP5e0igpzghkXA4 mGTya7tna9Oms+4I6nRD+WoqBpcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTQFIBv o0/Cy21Szr1eNMY5pxwTpzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE0My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK raUwDQYJKoZIhvcNAQELBQADggEBAApUQ1CAXBhLgLSnX9ULNbcl3tWFPUx+IiKH q1QxFm7ituDaw9++QKWc/j8evXUHefrBjrIBAeeLXp/2H92+MHjC4p1NgXsA820R gA586wBqp0MIPAtjJLjAmthvzX8XNGm8HIPPefxnwcn1PxWZQWjLC+r6WySm7YLi WRb4Fomrf9X06cBETf3Hv/y89lnslliaHbY3JL2kX7h0ZWmsQe0cvbGfkh4WVbGK KFLk0Q9mpzFUN+dPGzxCCDHLjSTs0gKQkJsNHm/NaP0I23Q9TC6WVuTxVhYOwG+s raPWaLm3QbJAR8MmR97Lk+P5/EHhnWspuRg+2yHG3TOviLwn90Y= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:03 2026 by rpki-client