$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146150.roa File: AS146150.roa (raw, json) Hash identifier: IXdC7A0zBYhcMUCCxMDo0HNKgfsPZq+65edhrQItAek= Subject key identifier: D6:5E:83:83:1E:68:7A:4B:0C:C8:51:23:45:5B:A9:19:53:FE:6A:77 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 24BE9967FAE21E0E2D2E7ED3DAE6B7EC86409CFA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146150.roa Signing time: Wed 04 Mar 2026 06:33:48 +0000 ROA not before: Wed 04 Mar 2026 06:28:48 +0000 ROA not after: Wed 03 Mar 2027 06:33:48 +0000 asID: 146150 IP address blocks: 240a:adac::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:be:99:67:fa:e2:1e:0e:2d:2e:7e:d3:da:e6:b7:ec:86:40:9c:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:48 2026 GMT Not After : Mar 3 06:33:48 2027 GMT Subject: CN=D65E83831E687A4B0CC85123455BA91953FE6A77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a6:30:67:57:2a:a1:a2:e7:e3:ab:c1:15:eb: 64:dd:b5:68:95:5f:f0:8e:7e:5e:10:e7:ea:ab:0f: 0d:b4:03:0e:f1:79:c6:ef:5f:4a:fc:28:56:ee:51: 3c:ee:80:b3:aa:41:af:53:f4:78:dd:c7:42:f0:09: 69:55:bb:ca:b0:c1:dd:53:d7:78:51:3e:f3:c7:47: 80:02:03:53:95:b2:36:64:44:62:a9:0a:d1:34:b1: 04:72:d1:cc:2f:43:32:66:8e:74:c3:89:ee:ad:f5: 09:d8:18:eb:a0:df:59:ab:04:dd:df:5e:6b:08:3d: 95:53:e6:50:9c:97:3f:88:03:4d:45:c6:65:a5:6e: c3:23:22:fb:b8:8a:c3:22:ce:bf:fe:cc:7d:d6:13: 55:5d:a7:57:8c:83:15:21:c2:ca:d5:51:50:45:e8: c9:d7:34:d9:27:dd:b2:35:e9:18:ac:7e:2b:9b:66: 91:dd:44:9a:f0:50:58:e8:e3:ac:c1:0e:d6:6b:43: 1f:98:71:17:3a:69:52:b7:6a:af:b3:94:5d:0a:f7: 30:88:b5:ac:df:d2:9f:b3:7a:6b:0d:ff:54:54:c0: 6c:97:9e:7b:1d:f6:05:1a:f2:3c:d5:c4:e5:87:cc: 6e:a8:26:3c:5c:18:49:d6:7a:4c:3f:aa:f7:48:c8: 5b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5E:83:83:1E:68:7A:4B:0C:C8:51:23:45:5B:A9:19:53:FE:6A:77 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146150.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adac::/32 Signature Algorithm: sha256WithRSAEncryption 03:da:b8:9b:cd:e8:8c:a7:68:b3:87:72:88:bc:2b:66:89:e3: 7e:e8:a1:1f:a6:05:a2:3b:3b:80:0b:a7:24:d4:2e:6b:42:9b: 02:98:56:77:cd:d1:1d:5c:87:8a:72:1f:26:8f:7b:f6:8a:ae: a9:d7:62:49:50:0d:1f:9f:ec:39:5f:05:e2:f2:eb:08:85:ae: 95:af:fb:0b:c3:4e:98:85:2a:87:60:21:13:0a:09:57:19:eb: 90:6c:94:43:32:7a:31:bc:73:2c:67:af:3b:b9:a0:01:7d:5f: 98:3a:62:6e:89:28:25:22:bb:fe:5d:88:a4:5d:86:0d:42:69: 88:41:69:58:e2:bb:46:7d:6f:b9:cd:6d:b8:29:88:e2:ff:ef: a3:21:e0:8d:15:94:c0:0e:55:17:dd:83:c1:bd:27:ae:0b:8c: e5:60:bf:6a:fc:34:08:97:0f:c8:90:db:55:e7:3c:4c:6b:f4: 1e:03:52:85:0b:57:01:65:ef:2d:6e:d5:bb:e9:6b:71:ae:92: 61:30:cb:3a:c2:8f:8e:37:15:f3:4a:e2:4b:b9:26:07:90:a6: 06:3f:d6:96:7e:42:c5:28:d1:3a:77:f6:f7:c9:e2:7d:8d:1c: 4a:3f:57:9f:cd:5d:af:bc:d3:6e:6b:56:ea:f5:21:4d:bf:6d: 81:eb:a7:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJL6ZZ/riHg4tLn7T2ua37IZAnPowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0OFoX DTI3MDMwMzA2MzM0OFowMzExMC8GA1UEAxMoRDY1RTgzODMxRTY4N0E0QjBDQzg1 MTIzNDU1QkE5MTk1M0ZFNkE3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWmMGdXKqGi5+OrwRXrZN21aJVf8I5+XhDn6qsPDbQDDvF5xu9fSvwoVu5R PO6As6pBr1P0eN3HQvAJaVW7yrDB3VPXeFE+88dHgAIDU5WyNmREYqkK0TSxBHLR zC9DMmaOdMOJ7q31CdgY66DfWasE3d9eawg9lVPmUJyXP4gDTUXGZaVuwyMi+7iK wyLOv/7MfdYTVV2nV4yDFSHCytVRUEXoydc02SfdsjXpGKx+K5tmkd1EmvBQWOjj rMEO1mtDH5hxFzppUrdqr7OUXQr3MIi1rN/Sn7N6aw3/VFTAbJeeex32BRryPNXE 5YfMbqgmPFwYSdZ6TD+q90jIW9MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTWXoOD Hmh6SwzIUSNFW6kZU/5qdzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE1MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rawwDQYJKoZIhvcNAQELBQADggEBAAPauJvN6IynaLOHcoi8K2aJ437ooR+mBaI7 O4ALpyTULmtCmwKYVnfN0R1ch4pyHyaPe/aKrqnXYklQDR+f7DlfBeLy6wiFrpWv +wvDTpiFKodgIRMKCVcZ65BslEMyejG8cyxnrzu5oAF9X5g6Ym6JKCUiu/5diKRd hg1CaYhBaVjiu0Z9b7nNbbgpiOL/76Mh4I0VlMAOVRfdg8G9J64LjOVgv2r8NAiX D8iQ21XnPExr9B4DUoULVwFl7y1u1bvpa3GukmEwyzrCj443FfNK4ku5JgeQpgY/ 1pZ+QsUo0Tp39vfJ4n2NHEo/V5/NXa+8025rVur1IU2/bYHrp4I= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:06 2026 by rpki-client