$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146180.roa File: AS146180.roa (raw, json) Hash identifier: SQBhTiszVJuxEn4VfyNtItylim8XqM4IUpKQRIkbZ+w= Subject key identifier: 30:7C:60:08:56:10:A2:C6:8A:5B:C5:F7:3D:79:81:88:7E:E1:3C:D2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4E51FD64082F3AFD554C216846AEFEC0625E541D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146180.roa Signing time: Wed 04 Mar 2026 06:34:13 +0000 ROA not before: Wed 04 Mar 2026 06:29:13 +0000 ROA not after: Wed 03 Mar 2027 06:34:13 +0000 asID: 146180 IP address blocks: 240a:adca::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:51:fd:64:08:2f:3a:fd:55:4c:21:68:46:ae:fe:c0:62:5e:54:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:13 2026 GMT Not After : Mar 3 06:34:13 2027 GMT Subject: CN=307C60085610A2C68A5BC5F73D7981887EE13CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a2:ad:01:f9:38:00:f1:2a:02:ec:8e:86:b3: bb:14:97:b1:8d:6b:ec:26:4a:00:23:57:a2:02:48: 0b:cf:ef:b5:a9:78:f3:cf:a1:28:d5:a1:16:94:08: 35:18:2d:0e:18:33:33:e3:30:59:f6:f6:0a:7f:49: 44:a2:53:8e:67:47:fb:26:a0:1e:48:9a:b3:41:50: c3:01:19:ad:2c:d2:14:08:d6:64:a6:44:fd:79:e1: f6:e6:70:f3:54:b5:1f:b6:62:ab:53:84:ec:cf:82: 76:e1:e0:83:0e:0e:da:28:50:d1:be:3a:ac:cd:d0: 25:b9:2a:ad:00:64:dd:48:5a:1e:53:1a:e8:f2:e2: 99:99:cb:fe:c7:6e:b0:1f:65:71:bc:02:29:98:29: 34:a1:09:c5:45:47:28:68:b8:d4:5e:fa:86:61:05: ca:0c:45:89:f8:b2:53:08:6d:d7:96:27:3b:4e:40: 94:3d:ab:3a:01:48:7e:74:5b:07:70:26:cd:fa:09: 47:90:0c:74:f7:33:88:6a:b9:41:d7:31:e7:0d:1e: ec:68:20:af:4b:5b:ad:71:c1:cf:db:af:a5:16:b7: 86:b0:0d:7f:fd:ac:ef:b4:2c:a9:46:c5:15:c9:37: 14:29:68:a9:d2:bd:9a:66:19:89:66:8f:c3:5a:74: 4b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:7C:60:08:56:10:A2:C6:8A:5B:C5:F7:3D:79:81:88:7E:E1:3C:D2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146180.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adca::/32 Signature Algorithm: sha256WithRSAEncryption b0:85:01:38:d7:ec:51:6c:30:ec:c7:5f:4c:c6:11:83:93:41: c3:be:96:ac:58:f5:71:71:8a:dd:d5:24:86:14:bc:44:fc:29: aa:8c:af:75:ab:c5:2a:0d:fe:c4:bd:45:c2:5b:23:02:b9:13: 47:59:02:ab:bf:6a:fe:50:99:40:d1:e7:35:73:27:cb:4d:9d: 4d:19:e9:bb:a1:8d:69:95:c7:5e:9c:99:e4:b2:bd:35:0d:20: 82:0f:fe:9a:24:e3:be:60:58:15:ad:87:2e:a5:93:ce:d7:0c: 24:9c:71:ec:b7:30:9b:4f:ba:91:4c:3e:55:a1:c2:8f:cd:18: 7b:8c:90:f1:d1:cf:48:6f:e9:5e:17:67:68:c1:93:44:1a:7a: b8:e0:b9:d4:2b:cf:48:6a:5b:d0:16:e1:ab:3b:91:5a:88:eb: 26:d7:7f:7e:88:bf:31:fa:9c:af:aa:b5:02:06:68:a5:d6:46: 35:27:88:15:11:7a:1b:70:63:f1:35:28:4e:d3:02:c5:97:2d: b6:09:8f:b6:de:93:b8:c8:0c:0e:d5:c8:ee:d2:38:fb:78:11: bc:e0:d4:ee:06:c5:5a:3a:91:49:2f:c5:35:56:71:0d:dd:34: 33:ab:21:a3:0f:db:c9:09:7f:48:f9:02:38:bc:74:3e:3e:eb: d5:40:d3:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTlH9ZAgvOv1VTCFoRq7+wGJeVB0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkxM1oX DTI3MDMwMzA2MzQxM1owMzExMC8GA1UEAxMoMzA3QzYwMDg1NjEwQTJDNjhBNUJD NUY3M0Q3OTgxODg3RUUxM0NEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKKirQH5OADxKgLsjoazuxSXsY1r7CZKACNXogJIC8/vtal488+hKNWhFpQI NRgtDhgzM+MwWfb2Cn9JRKJTjmdH+yagHkias0FQwwEZrSzSFAjWZKZE/Xnh9uZw 81S1H7Ziq1OE7M+CduHggw4O2ihQ0b46rM3QJbkqrQBk3UhaHlMa6PLimZnL/sdu sB9lcbwCKZgpNKEJxUVHKGi41F76hmEFygxFifiyUwht15YnO05AlD2rOgFIfnRb B3AmzfoJR5AMdPcziGq5Qdcx5w0e7Gggr0tbrXHBz9uvpRa3hrANf/2s77QsqUbF Fck3FCloqdK9mmYZiWaPw1p0S50CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQwfGAI VhCixopbxfc9eYGIfuE80jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rcowDQYJKoZIhvcNAQELBQADggEBALCFATjX7FFsMOzHX0zGEYOTQcO+lqxY9XFx it3VJIYUvET8KaqMr3WrxSoN/sS9RcJbIwK5E0dZAqu/av5QmUDR5zVzJ8tNnU0Z 6buhjWmVx16cmeSyvTUNIIIP/pok475gWBWthy6lk87XDCSccey3MJtPupFMPlWh wo/NGHuMkPHRz0hv6V4XZ2jBk0QaerjgudQrz0hqW9AW4as7kVqI6ybXf36IvzH6 nK+qtQIGaKXWRjUniBURehtwY/E1KE7TAsWXLbYJj7bek7jIDA7VyO7SOPt4Ebzg 1O4GxVo6kUkvxTVWcQ3dNDOrIaMP28kJf0j5Aji8dD4+69VA08E= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:26 2026 by rpki-client