$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146159.roa File: AS146159.roa (raw, json) Hash identifier: 4FON20tt4q0LdWjZy32AND8+0jo+8m9fZhuP0CbFprM= Subject key identifier: 7A:3D:3C:39:3A:BF:52:E9:4C:05:58:17:40:A7:D0:AF:A4:31:FC:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6B8BECF427132E5E2CF6086692C908074000A5 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146159.roa Signing time: Wed 04 Mar 2026 06:34:06 +0000 ROA not before: Wed 04 Mar 2026 06:29:06 +0000 ROA not after: Wed 03 Mar 2027 06:34:06 +0000 asID: 146159 IP address blocks: 240a:adb5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:8b:ec:f4:27:13:2e:5e:2c:f6:08:66:92:c9:08:07:40:00:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:06 2026 GMT Not After : Mar 3 06:34:06 2027 GMT Subject: CN=7A3D3C393ABF52E94C05581740A7D0AFA431FC7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:86:83:26:99:c6:1b:08:fc:23:4a:a2:fc:51: 44:73:f6:5d:99:a5:91:a6:b2:5b:09:72:8c:43:fe: e4:34:11:0d:d6:82:6e:f5:70:20:27:e6:6b:d6:fb: f7:2b:10:d1:2d:b6:78:e5:11:01:a4:45:f6:3c:99: 0d:85:dc:c5:78:f4:28:63:81:d3:08:78:df:81:1c: 8c:65:b1:21:ff:f9:56:a9:66:58:b7:d6:4a:8e:39: ce:00:a2:4f:6d:41:51:36:61:61:34:61:ab:fc:4d: 39:c5:db:80:97:3c:75:0f:67:54:0f:26:0d:a8:d8: 55:5d:dc:25:82:99:9a:ed:3e:15:92:ae:e3:4c:54: 76:91:04:3c:91:58:92:7a:e4:c5:f6:f7:c0:26:38: d8:dc:ec:77:39:a0:7e:31:c5:b0:0c:9b:7f:ab:b5: 9b:fc:60:05:a1:c6:e1:32:1a:d8:28:b3:0a:71:bb: 83:53:1b:6f:01:87:7c:e9:42:97:5b:ae:07:ce:a1: 7f:d8:6c:e6:2b:f6:6c:3e:99:07:0c:ea:f6:be:0d: 28:e0:66:d4:f7:83:64:86:6d:58:b0:7c:29:17:c8: 82:97:5d:94:f2:23:58:27:55:49:a4:88:0c:bb:7f: 38:7b:cb:e2:f0:e2:88:94:09:cb:b4:fc:82:b1:c1: ae:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3D:3C:39:3A:BF:52:E9:4C:05:58:17:40:A7:D0:AF:A4:31:FC:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146159.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adb5::/32 Signature Algorithm: sha256WithRSAEncryption af:69:73:1a:dd:a2:e9:a0:1a:6f:f5:47:61:70:71:15:58:b6: bb:91:c3:4a:f2:97:75:95:33:16:96:88:09:fb:17:c3:6e:a0: 4c:5e:5c:99:3a:c7:03:4e:a2:35:10:3e:b5:d1:79:5a:79:ac: cb:4b:ae:9c:27:8f:76:44:a3:14:78:47:7f:87:f5:e2:f9:47: 1e:8f:a4:fa:e8:42:8f:15:8c:c4:5a:9f:71:e4:51:b9:28:01: 6a:20:37:d6:3a:c3:06:59:80:06:f9:e4:ca:55:90:0d:e3:45: 5a:97:0e:e9:4e:8a:78:89:3b:3b:79:a4:e6:ec:e7:93:b1:c6: f1:94:84:13:86:22:6f:9f:98:11:b3:36:8a:f6:99:30:2b:83: 5b:23:19:7e:8e:00:e0:9e:83:f0:c4:22:ce:ea:c3:e7:1f:92: a5:99:f7:d0:d5:f8:8e:ed:cc:c7:fa:ba:6e:24:d4:dc:01:48: dc:a1:7b:a9:65:e2:a3:4a:eb:bd:2b:84:4c:29:a4:2a:44:0c: 1a:b5:3f:25:37:98:ea:4a:2e:ea:06:ca:4e:67:76:b8:ad:83: 03:2f:dc:68:ef:11:5a:60:e9:95:54:ef:bf:6b:0c:5e:53:b3: 32:34:ae:b2:45:4c:4f:c8:3c:a1:d5:c0:66:30:72:36:73:02: d6:0d:af:4c -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgITa4vs9CcTLl4s9ghmkskIB0AApTANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDDAxBOTFFNUQ2MTAwMDExMTAvBgNVBAUTKDA1RkM5QzVCODg1 MDZGN0MwRDNGODYyQzg4OTVCRUQ2N0U5RjhFQkEwHhcNMjYwMzA0MDYyOTA2WhcN MjcwMzAzMDYzNDA2WjAzMTEwLwYDVQQDEyg3QTNEM0MzOTNBQkY1MkU5NEMwNTU4 MTc0MEE3RDBBRkE0MzFGQzdEMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkIaDJpnGGwj8I0qi/FFEc/ZdmaWRprJbCXKMQ/7kNBEN1oJu9XAgJ+Zr1vv3 KxDRLbZ45REBpEX2PJkNhdzFePQoY4HTCHjfgRyMZbEh//lWqWZYt9ZKjjnOAKJP bUFRNmFhNGGr/E05xduAlzx1D2dUDyYNqNhVXdwlgpma7T4Vkq7jTFR2kQQ8kViS euTF9vfAJjjY3Ox3OaB+McWwDJt/q7Wb/GAFocbhMhrYKLMKcbuDUxtvAYd86UKX W64HzqF/2GzmK/ZsPpkHDOr2vg0o4GbU94Nkhm1YsHwpF8iCl12U8iNYJ1VJpIgM u384e8vi8OKIlAnLtPyCscGulwIDAQABo4IBxTCCAcEwHQYDVR0OBBYEFHo9PDk6 v1LpTAVYF0Cn0K+kMfx9MB8GA1UdIwQYMBaAFAX8nFuIUG98DT+GLIiVvtZ+n466 MA4GA1UdDwEB/wQEAwIHgDBjBgNVHR8EXDBaMFigVqBUhlJyc3luYzovL3Jwa2ku Y2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wLzA1RkM5QzVCODg1MDZGN0MwRDNGODYy Qzg4OTVCRUQ2N0U5RjhFQkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcw AoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0JmeWNXNGhRYjN3TlA0WXNpSlctMW42Zmpy by5jZXIwTgYIKwYBBQUHAQsEQjBAMD4GCCsGAQUFBzALhjJyc3luYzovL3Jwa2ku Y2VybmV0Lm5ldC9yZXBvL2Nlcm5ldC8wL0FTMTQ2MTU5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAqt tTANBgkqhkiG9w0BAQsFAAOCAQEAr2lzGt2i6aAab/VHYXBxFVi2u5HDSvKXdZUz FpaICfsXw26gTF5cmTrHA06iNRA+tdF5Wnmsy0uunCePdkSjFHhHf4f14vlHHo+k +uhCjxWMxFqfceRRuSgBaiA31jrDBlmABvnkylWQDeNFWpcO6U6KeIk7O3mk5uzn k7HG8ZSEE4Yib5+YEbM2ivaZMCuDWyMZfo4A4J6D8MQizurD5x+SpZn30NX4ju3M x/q6biTU3AFI3KF7qWXio0rrvSuETCmkKkQMGrU/JTeY6kou6gbKTmd2uK2DAy/c aO8RWmDplVTvv2sMXlOzMjSuskVMT8g8odXAZjByNnMC1g2vTA== -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:30 2026 by rpki-client