$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146166.roa File: AS146166.roa (raw, json) Hash identifier: NLVzESsU1aYIAxL9FzxFNtkjKJ59mGl2vymMLYV0rKQ= Subject key identifier: C8:6A:A4:1D:18:BF:26:DA:F0:1D:6E:C9:91:59:18:2E:55:56:BE:93 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2DA6F6DD50DF3A7D03C03E75B31C276B7F0DCC52 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146166.roa Signing time: Wed 04 Mar 2026 06:35:07 +0000 ROA not before: Wed 04 Mar 2026 06:30:07 +0000 ROA not after: Wed 03 Mar 2027 06:35:07 +0000 asID: 146166 IP address blocks: 240a:adbc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a6:f6:dd:50:df:3a:7d:03:c0:3e:75:b3:1c:27:6b:7f:0d:cc:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:30:07 2026 GMT Not After : Mar 3 06:35:07 2027 GMT Subject: CN=C86AA41D18BF26DAF01D6EC99159182E5556BE93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4a:4d:e7:10:18:d5:6a:51:e8:5f:4c:51:56: b3:27:76:b0:bb:bd:57:5a:67:13:74:8e:77:84:b2: d1:3a:a9:f2:6c:f7:3d:08:46:9f:da:b4:4d:dd:35: 3a:92:87:96:5c:d5:02:74:6a:d9:33:25:9b:62:d2: 3a:c5:3f:87:70:68:ca:b0:96:07:7c:bc:9c:c0:d4: 5a:c2:52:42:0f:84:7b:80:3c:11:be:5f:f5:3c:bb: ea:ef:a9:0c:fc:95:9d:c3:1e:0a:b2:d9:72:00:90: f6:3d:0a:ed:00:4a:57:ac:65:4f:e8:d0:aa:1a:a5: f2:53:60:a6:9b:ae:ce:ac:8a:5f:79:ba:62:a3:71: dd:dd:ee:28:d3:49:52:d7:9c:8e:cd:24:28:7a:90: 0a:c4:af:c8:19:96:45:af:76:38:c5:20:60:ec:bb: 8a:3a:af:65:f5:b1:3f:f0:81:76:a1:79:1b:cf:01: b0:c1:af:6b:a2:54:a6:2e:00:63:42:81:44:58:8b: ec:96:81:9a:51:02:42:a1:1a:a7:60:65:38:32:b1: 22:02:68:fa:a4:e1:d1:ce:22:43:fe:4b:a8:5e:7c: 5e:99:f1:e2:07:84:0f:79:c4:29:99:bc:b9:8b:5f: e9:bf:f2:78:52:64:81:5e:b7:49:92:d7:82:15:f2: 6d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6A:A4:1D:18:BF:26:DA:F0:1D:6E:C9:91:59:18:2E:55:56:BE:93 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146166.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adbc::/32 Signature Algorithm: sha256WithRSAEncryption c4:4a:c1:6e:0d:48:64:a5:9f:23:b0:6c:69:4f:35:43:3d:71: 41:4c:72:87:54:67:2b:d1:c7:05:3d:6e:a1:8b:91:f1:f0:21: 76:56:3f:ac:81:45:77:db:70:1c:2a:9e:5b:c0:1f:db:27:02: 15:23:34:94:f4:bb:3f:eb:30:62:9b:c3:8e:e2:df:f0:24:aa: 5b:66:12:46:dc:63:19:19:58:17:9b:87:68:0b:52:55:6a:5a: 64:22:db:e4:c7:c1:20:60:ce:37:04:66:c6:19:2e:80:94:2e: 06:7e:aa:ac:71:62:31:06:4f:45:53:b6:0e:94:d8:35:4c:bf: 68:b3:c4:97:70:c9:b4:3a:c7:d1:c2:6e:f1:77:14:2d:7a:6b: 71:81:cd:68:76:10:49:37:09:98:1a:55:cc:60:4b:f2:8c:f7: 96:3f:d9:33:66:cf:42:cc:1a:22:68:ad:c3:f1:8a:8a:e8:bc: ce:67:59:5d:1d:01:76:8c:b5:1e:8a:0a:7c:c1:26:3c:98:e2: 20:ad:a5:f4:38:b4:a9:7f:40:34:08:bf:dc:bc:1b:87:f4:2f: 23:82:c6:50:9e:ad:40:14:fa:16:fc:3b:fa:7d:2f:d9:64:78: 06:44:43:2b:23:b4:a4:70:a3:ef:1e:4b:5c:12:17:a9:7d:c4: 33:a6:1d:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULab23VDfOn0DwD51sxwna38NzFIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzAwN1oX DTI3MDMwMzA2MzUwN1owMzExMC8GA1UEAxMoQzg2QUE0MUQxOEJGMjZEQUYwMUQ2 RUM5OTE1OTE4MkU1NTU2QkU5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdKTecQGNVqUehfTFFWsyd2sLu9V1pnE3SOd4Sy0Tqp8mz3PQhGn9q0Td01 OpKHllzVAnRq2TMlm2LSOsU/h3BoyrCWB3y8nMDUWsJSQg+Ee4A8Eb5f9Ty76u+p DPyVncMeCrLZcgCQ9j0K7QBKV6xlT+jQqhql8lNgppuuzqyKX3m6YqNx3d3uKNNJ Utecjs0kKHqQCsSvyBmWRa92OMUgYOy7ijqvZfWxP/CBdqF5G88BsMGva6JUpi4A Y0KBRFiL7JaBmlECQqEap2BlODKxIgJo+qTh0c4iQ/5LqF58Xpnx4geED3nEKZm8 uYtf6b/yeFJkgV63SZLXghXybasCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTIaqQd GL8m2vAdbsmRWRguVVa+kzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE2Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rbwwDQYJKoZIhvcNAQELBQADggEBAMRKwW4NSGSlnyOwbGlPNUM9cUFMcodUZyvR xwU9bqGLkfHwIXZWP6yBRXfbcBwqnlvAH9snAhUjNJT0uz/rMGKbw47i3/Akqltm EkbcYxkZWBebh2gLUlVqWmQi2+THwSBgzjcEZsYZLoCULgZ+qqxxYjEGT0VTtg6U 2DVMv2izxJdwybQ6x9HCbvF3FC16a3GBzWh2EEk3CZgaVcxgS/KM95Y/2TNmz0LM GiJorcPxiorovM5nWV0dAXaMtR6KCnzBJjyY4iCtpfQ4tKl/QDQIv9y8G4f0LyOC xlCerUAU+hb8O/p9L9lkeAZEQysjtKRwo+8eS1wSF6l9xDOmHSc= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:41 2026 by rpki-client