$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146156.roa File: AS146156.roa (raw, json) Hash identifier: 7P3TFitd4LB2C0gAofjBi9vggZBMG/NnlKkb8rvcO2w= Subject key identifier: 2E:DF:46:18:13:D0:E3:89:6D:C1:82:54:27:7D:EB:A3:13:52:A6:DE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 20ABF584C264F379221081F7E2F4D815688A022F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146156.roa Signing time: Wed 04 Mar 2026 06:33:34 +0000 ROA not before: Wed 04 Mar 2026 06:28:34 +0000 ROA not after: Wed 03 Mar 2027 06:33:34 +0000 asID: 146156 IP address blocks: 240a:adb2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ab:f5:84:c2:64:f3:79:22:10:81:f7:e2:f4:d8:15:68:8a:02:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:34 2026 GMT Not After : Mar 3 06:33:34 2027 GMT Subject: CN=2EDF461813D0E3896DC18254277DEBA31352A6DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c7:de:74:23:a9:a9:42:48:ee:25:ba:71:35: eb:a2:c8:6f:27:dc:43:18:26:6c:a8:54:19:f3:78: d1:01:e2:fe:5d:26:71:41:13:11:79:ea:8d:00:19: ed:3f:61:63:37:58:44:f1:e5:7b:82:33:be:39:92: 03:e5:fa:4d:2c:e4:a0:07:4b:ab:7f:1f:ef:b6:01: ad:2c:c0:33:69:f8:3e:fc:59:9c:76:1b:ad:ae:f4: 60:8d:27:e6:73:98:93:2a:bb:aa:bc:fe:2b:c4:d2: 0d:55:d7:15:2c:af:13:2b:f1:2b:17:32:35:5a:bd: 17:a1:8e:9e:b6:91:18:c8:cc:9d:9c:7f:8f:9d:d0: 06:df:33:b4:ff:38:9c:8f:3c:d8:a1:1a:4f:f5:be: f8:00:ab:3d:69:c5:6e:a2:60:36:07:6d:1a:a4:2f: d6:42:65:4b:f3:6e:8d:7b:cd:6b:36:50:e5:12:b1: 13:14:f1:d5:34:77:26:45:30:f6:14:1a:b1:1e:ac: 6c:51:96:80:6f:fe:3e:9f:b5:17:6f:6a:13:3d:b3: 62:24:70:14:0d:59:f5:d7:02:a7:67:8f:a1:01:7e: d6:bf:28:62:30:99:37:f0:c4:ce:05:7c:94:47:db: 47:4b:d3:1d:2f:6f:62:c4:bf:7b:95:fd:35:a9:80: 4f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:DF:46:18:13:D0:E3:89:6D:C1:82:54:27:7D:EB:A3:13:52:A6:DE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146156.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adb2::/32 Signature Algorithm: sha256WithRSAEncryption 39:88:53:4f:b3:55:c5:9b:4d:4b:8b:ce:be:02:49:99:7c:79: 0f:db:aa:15:86:92:5c:6b:ea:f5:32:d8:55:f7:4d:47:18:86: 4b:65:c6:73:85:b3:83:bf:08:05:54:2a:f5:78:c8:3f:8c:c7: 4f:b8:ac:84:e4:86:2d:4c:e4:7f:7f:2a:7f:a9:c0:e0:b4:89: 19:e9:3e:33:9a:5c:79:5c:e7:9c:fd:0c:5f:00:5c:66:72:f4: f4:39:05:ef:ab:23:6e:09:c9:96:af:80:13:cd:96:e6:af:51: 67:27:60:cb:4a:b3:44:ac:a0:a4:2c:35:16:ff:cd:19:ee:e7: 6d:00:a9:ac:6d:1a:33:0a:f0:10:e1:c8:6a:05:b6:2b:e0:5a: 29:21:df:df:65:b2:49:b9:f9:3f:a7:44:9c:8a:9e:cc:5a:7b: fa:8d:66:df:a0:8a:58:18:96:ff:7f:61:1f:5f:2e:17:04:d4: 0b:98:7e:f1:7a:d9:3f:59:ee:85:ab:d1:6d:be:cf:ea:8c:8f: bb:4c:f9:62:ef:4e:6e:b6:c6:06:58:d6:32:78:f4:f8:33:a2: 90:4a:b2:c3:94:71:83:31:e7:cc:18:b6:5e:31:c1:cb:10:82: 8d:cf:bd:67:c1:ca:24:8f:22:f1:c3:f4:65:42:b8:c1:e2:6b: 7f:74:cb:64 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIKv1hMJk83kiEIH34vTYFWiKAi8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzNFoX DTI3MDMwMzA2MzMzNFowMzExMC8GA1UEAxMoMkVERjQ2MTgxM0QwRTM4OTZEQzE4 MjU0Mjc3REVCQTMxMzUyQTZERTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIzH3nQjqalCSO4lunE166LIbyfcQxgmbKhUGfN40QHi/l0mcUETEXnqjQAZ 7T9hYzdYRPHle4IzvjmSA+X6TSzkoAdLq38f77YBrSzAM2n4PvxZnHYbra70YI0n 5nOYkyq7qrz+K8TSDVXXFSyvEyvxKxcyNVq9F6GOnraRGMjMnZx/j53QBt8ztP84 nI882KEaT/W++ACrPWnFbqJgNgdtGqQv1kJlS/NujXvNazZQ5RKxExTx1TR3JkUw 9hQasR6sbFGWgG/+Pp+1F29qEz2zYiRwFA1Z9dcCp2ePoQF+1r8oYjCZN/DEzgV8 lEfbR0vTHS9vYsS/e5X9NamAT/cCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQu30YY E9DjiW3BglQnfeujE1Km3jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE1Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rbIwDQYJKoZIhvcNAQELBQADggEBADmIU0+zVcWbTUuLzr4CSZl8eQ/bqhWGklxr 6vUy2FX3TUcYhktlxnOFs4O/CAVUKvV4yD+Mx0+4rITkhi1M5H9/Kn+pwOC0iRnp PjOaXHlc55z9DF8AXGZy9PQ5Be+rI24JyZavgBPNluavUWcnYMtKs0SsoKQsNRb/ zRnu520AqaxtGjMK8BDhyGoFtivgWikh399lskm5+T+nRJyKnsxae/qNZt+gilgY lv9/YR9fLhcE1AuYfvF62T9Z7oWr0W2+z+qMj7tM+WLvTm62xgZY1jJ49PgzopBK ssOUcYMx58wYtl4xwcsQgo3PvWfByiSPIvHD9GVCuMHia390y2Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:06 2026 by rpki-client