$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146177.roa File: AS146177.roa (raw, json) Hash identifier: hs5nycgRP1QfoHeoKkNiQt1jsGZuIimrlMvEFrPjo3U= Subject key identifier: AA:D1:CA:ED:56:2D:18:A0:9A:7A:75:EE:74:CB:7A:F6:7F:DD:26:28 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4D66113CDAF65D442EA9552BAD8C77A8813F7FD8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146177.roa Signing time: Wed 04 Mar 2026 06:34:01 +0000 ROA not before: Wed 04 Mar 2026 06:29:01 +0000 ROA not after: Wed 03 Mar 2027 06:34:01 +0000 asID: 146177 IP address blocks: 240a:adc7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:66:11:3c:da:f6:5d:44:2e:a9:55:2b:ad:8c:77:a8:81:3f:7f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:01 2026 GMT Not After : Mar 3 06:34:01 2027 GMT Subject: CN=AAD1CAED562D18A09A7A75EE74CB7AF67FDD2628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2a:c6:5e:e6:88:74:b2:06:42:e9:37:cf:75: f3:a5:40:84:32:0d:54:59:02:bb:14:62:f0:31:ed: 21:aa:7f:74:5f:55:43:ec:49:dd:73:7a:70:3a:17: 6d:e4:3e:6f:ff:5e:07:fa:7d:ef:5a:5f:34:c5:18: 43:d0:24:c5:01:88:56:29:25:42:55:83:c4:f6:55: c4:5f:95:2a:7f:69:b1:d9:97:29:0f:65:8e:ce:91: a9:6e:c8:ae:77:81:a8:71:85:7a:77:11:0d:49:06: 05:11:35:75:8b:1b:24:a0:ab:2c:56:72:fe:1f:a3: 3c:df:dd:79:eb:ea:27:69:62:82:f0:88:83:27:4a: 78:62:a3:cc:0d:73:e2:08:b3:c4:e2:56:d6:a6:ea: 09:01:22:8e:2b:b5:d7:58:c2:89:cb:e8:f2:1a:3d: 0b:2d:5d:9c:1a:c3:f6:4a:ea:a1:0f:1f:17:4b:8f: 13:ac:6e:46:53:09:84:e4:b0:c9:67:fc:f8:c6:63: e8:1b:14:71:d2:4d:3a:39:ee:94:a2:68:15:94:da: 9d:1a:13:b3:08:9d:ba:3c:2f:03:4a:ea:97:40:1e: 6e:cb:83:49:43:26:8f:be:09:53:f9:a9:4c:d1:3d: dc:63:ee:f2:fa:43:5e:5a:c9:d6:23:f4:3a:5c:0b: 47:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D1:CA:ED:56:2D:18:A0:9A:7A:75:EE:74:CB:7A:F6:7F:DD:26:28 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146177.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adc7::/32 Signature Algorithm: sha256WithRSAEncryption 76:46:1f:ed:2c:45:ac:23:f7:1e:c1:8c:f3:8a:c4:e6:58:33: a8:6e:67:0a:7c:f0:dd:a8:68:2f:20:4c:ab:30:2b:e9:9e:49: 82:cc:7e:cd:12:58:13:fb:2b:15:11:2f:3c:b5:a4:5b:7e:24: bf:96:4c:64:bf:0e:cd:90:74:82:39:cb:0e:f4:ea:7d:0b:8e: 82:3b:83:fc:dc:1d:34:00:5d:c8:c5:55:e6:43:a7:af:ac:f4: 4d:3b:d8:d9:7c:97:f3:74:b0:58:36:80:3a:49:ed:d2:fe:32: 1a:98:0c:c2:67:5b:63:16:5c:8d:16:eb:b5:3a:70:1e:a3:d9: 78:c4:bc:4c:10:cf:85:d4:6f:71:2a:5f:1d:80:d0:cc:0e:34: 9c:b1:ff:5d:a1:f5:04:60:38:9f:fc:80:bf:1c:b5:dd:18:76: f7:2b:9c:34:7d:5c:9e:88:35:64:2c:11:e1:d8:21:8e:38:ce: 6e:20:e1:d1:df:48:92:b1:4f:8d:e6:d9:50:3e:4f:b0:40:51: ef:c2:c7:36:0f:16:c5:c0:e1:87:ec:bf:09:b3:18:e7:f1:2f: a4:42:5c:47:87:92:bd:67:66:e9:b9:d7:5b:ed:72:8d:5a:02: 58:e5:35:9e:c2:09:94:38:dd:75:0e:e0:22:c0:10:3a:f0:f9: ae:65:21:3a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTWYRPNr2XUQuqVUrrYx3qIE/f9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwMVoX DTI3MDMwMzA2MzQwMVowMzExMC8GA1UEAxMoQUFEMUNBRUQ1NjJEMThBMDlBN0E3 NUVFNzRDQjdBRjY3RkREMjYyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKgqxl7miHSyBkLpN89186VAhDINVFkCuxRi8DHtIap/dF9VQ+xJ3XN6cDoX beQ+b/9eB/p971pfNMUYQ9AkxQGIViklQlWDxPZVxF+VKn9psdmXKQ9ljs6RqW7I rneBqHGFencRDUkGBRE1dYsbJKCrLFZy/h+jPN/deevqJ2ligvCIgydKeGKjzA1z 4gizxOJW1qbqCQEijiu111jCicvo8ho9Cy1dnBrD9krqoQ8fF0uPE6xuRlMJhOSw yWf8+MZj6BsUcdJNOjnulKJoFZTanRoTswidujwvA0rql0AebsuDSUMmj74JU/mp TNE93GPu8vpDXlrJ1iP0OlwLR5kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSq0crt Vi0YoJp6de50y3r2f90mKDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rccwDQYJKoZIhvcNAQELBQADggEBAHZGH+0sRawj9x7BjPOKxOZYM6huZwp88N2o aC8gTKswK+meSYLMfs0SWBP7KxURLzy1pFt+JL+WTGS/Ds2QdII5yw706n0LjoI7 g/zcHTQAXcjFVeZDp6+s9E072Nl8l/N0sFg2gDpJ7dL+MhqYDMJnW2MWXI0W67U6 cB6j2XjEvEwQz4XUb3EqXx2A0MwONJyx/12h9QRgOJ/8gL8ctd0YdvcrnDR9XJ6I NWQsEeHYIY44zm4g4dHfSJKxT43m2VA+T7BAUe/CxzYPFsXA4YfsvwmzGOfxL6RC XEeHkr1nZum511vtco1aAljlNZ7CCZQ43XUO4CLAEDrw+a5lITo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:13 2026 by rpki-client