$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146190.roa File: AS146190.roa (raw, json) Hash identifier: 8Hc03Q9TQQCrcV3hJYg3L+t/RCfNNuHQcHmvRcf+F7Y= Subject key identifier: 8B:63:AE:95:DE:FC:DF:A5:B8:B4:8D:89:8B:E2:B1:62:05:FD:51:B7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0BC4C08FD819689D8FE33F5BE10AA5A883480510 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146190.roa Signing time: Wed 04 Mar 2026 06:34:29 +0000 ROA not before: Wed 04 Mar 2026 06:29:29 +0000 ROA not after: Wed 03 Mar 2027 06:34:29 +0000 asID: 146190 IP address blocks: 240a:add4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:c4:c0:8f:d8:19:68:9d:8f:e3:3f:5b:e1:0a:a5:a8:83:48:05:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:29 2026 GMT Not After : Mar 3 06:34:29 2027 GMT Subject: CN=8B63AE95DEFCDFA5B8B48D898BE2B16205FD51B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:c9:ed:6b:6b:ff:e3:e3:c2:9a:b4:3c:74: 73:8f:84:0c:6e:f0:d8:b6:da:d3:8a:e1:a7:93:22: 32:cf:09:3d:9f:34:99:dc:88:53:04:d1:4a:a7:b6: ec:f0:7a:94:74:9f:92:a2:64:7a:39:e4:19:51:30: 5d:bf:04:ea:b6:7e:32:d1:10:29:7b:a6:74:ff:bd: 3a:88:50:38:80:70:86:b0:e8:23:1b:30:26:d5:c6: 32:8e:1b:c9:ff:44:a9:7d:f3:93:eb:99:c2:c4:29: 7f:ee:64:72:af:68:38:b3:e7:ab:89:b2:90:ee:17: c0:a9:5b:f2:e9:f1:b9:69:2b:4f:ef:dd:2d:a0:55: 3c:91:9d:43:94:90:ed:36:cd:07:5f:66:44:24:74: 54:de:46:3a:1c:99:d4:20:18:6a:48:1c:dd:e1:05: 56:81:57:d9:26:e1:79:08:c6:75:e7:8c:f0:85:35: 26:1f:e3:be:f9:58:ac:2b:0d:81:17:1c:d4:9a:d8: 58:64:8c:4f:46:33:a0:73:ff:60:f2:17:ca:97:2f: 84:62:ac:d5:4f:ca:56:b5:38:e2:07:43:8b:87:e6: f6:0d:98:df:aa:77:35:b6:7d:f9:1e:b7:9c:5b:e0: 62:f4:1c:35:f5:6b:e8:29:b3:49:ed:95:0a:1f:19: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:63:AE:95:DE:FC:DF:A5:B8:B4:8D:89:8B:E2:B1:62:05:FD:51:B7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146190.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:add4::/32 Signature Algorithm: sha256WithRSAEncryption 4c:5e:86:87:45:e3:bf:3b:98:ca:fa:9b:af:db:c9:ee:4a:93: 70:1a:13:d6:af:a0:25:0f:97:d0:98:99:3c:96:6c:e9:6d:0c: 1a:29:43:80:16:5f:9c:50:ba:3a:14:84:4a:e1:88:89:4a:0e: c1:89:1c:21:c4:3b:95:1b:e6:a3:0d:dd:1b:e9:4e:01:e8:73: f7:72:de:37:b1:c8:1d:18:98:f1:45:92:70:09:01:da:23:81: e9:eb:1a:d5:72:b2:a4:48:91:4c:59:73:b2:ff:04:61:d2:53: 08:46:d5:d2:fa:71:78:38:aa:61:1a:71:94:92:a0:5f:9f:e6: 90:a0:67:8d:cf:fa:01:7b:a5:d6:c8:de:67:20:15:2d:bf:b2: be:03:0d:67:ee:95:21:6e:92:c4:23:04:91:d0:90:0b:00:17: 1d:9d:f1:4f:8e:f9:b6:46:6a:ff:49:bf:b0:63:b6:9f:90:17: db:6d:31:2b:17:4e:e6:1a:18:e8:67:86:e6:1a:76:5c:62:d4: 97:8c:49:df:34:ac:a3:13:3f:47:37:3e:6c:77:66:d1:6a:6b: c3:19:f5:f2:13:84:0d:2a:b3:82:0e:e8:91:16:78:42:25:26: 39:6d:60:3b:e5:8a:f9:99:9b:9b:07:8b:18:df:1c:f3:03:38: b1:91:0f:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUC8TAj9gZaJ2P4z9b4QqlqINIBRAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkyOVoX DTI3MDMwMzA2MzQyOVowMzExMC8GA1UEAxMoOEI2M0FFOTVERUZDREZBNUI4QjQ4 RDg5OEJFMkIxNjIwNUZENTFCNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMB3ye1ra//j48KatDx0c4+EDG7w2Lba04rhp5MiMs8JPZ80mdyIUwTRSqe2 7PB6lHSfkqJkejnkGVEwXb8E6rZ+MtEQKXumdP+9OohQOIBwhrDoIxswJtXGMo4b yf9EqX3zk+uZwsQpf+5kcq9oOLPnq4mykO4XwKlb8unxuWkrT+/dLaBVPJGdQ5SQ 7TbNB19mRCR0VN5GOhyZ1CAYakgc3eEFVoFX2SbheQjGdeeM8IU1Jh/jvvlYrCsN gRcc1JrYWGSMT0YzoHP/YPIXypcvhGKs1U/KVrU44gdDi4fm9g2Y36p3NbZ9+R63 nFvgYvQcNfVr6CmzSe2VCh8ZZOkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSLY66V 3vzfpbi0jYmL4rFiBf1RtzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE5MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rdQwDQYJKoZIhvcNAQELBQADggEBAExehodF4787mMr6m6/bye5Kk3AaE9avoCUP l9CYmTyWbOltDBopQ4AWX5xQujoUhErhiIlKDsGJHCHEO5Ub5qMN3RvpTgHoc/dy 3jexyB0YmPFFknAJAdojgenrGtVysqRIkUxZc7L/BGHSUwhG1dL6cXg4qmEacZSS oF+f5pCgZ43P+gF7pdbI3mcgFS2/sr4DDWfulSFuksQjBJHQkAsAFx2d8U+O+bZG av9Jv7Bjtp+QF9ttMSsXTuYaGOhnhuYadlxi1JeMSd80rKMTP0c3Pmx3ZtFqa8MZ 9fIThA0qs4IO6JEWeEIlJjltYDvlivmZm5sHixjfHPMDOLGRDzc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:45 2026 by rpki-client