$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146196.roa File: AS146196.roa (raw, json) Hash identifier: 2mox8P4p6UmUn3mqfMRDbuJSg9I36vX5uBCITIqsy2E= Subject key identifier: 7E:5C:46:8E:BA:A5:77:3B:7C:E2:AF:C4:31:63:C6:F1:50:4B:E9:F9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4CCBBC3FA8402D9E5CB7F8553CAAAA24C817454E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146196.roa Signing time: Wed 04 Mar 2026 06:34:29 +0000 ROA not before: Wed 04 Mar 2026 06:29:29 +0000 ROA not after: Wed 03 Mar 2027 06:34:29 +0000 asID: 146196 IP address blocks: 240a:adda::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:cb:bc:3f:a8:40:2d:9e:5c:b7:f8:55:3c:aa:aa:24:c8:17:45:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:29 2026 GMT Not After : Mar 3 06:34:29 2027 GMT Subject: CN=7E5C468EBAA5773B7CE2AFC43163C6F1504BE9F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ef:33:f5:e2:e7:45:52:d3:70:61:3c:48:cf: d7:33:96:02:e1:88:1e:bf:13:42:8f:4d:ea:08:8a: 51:51:52:1b:89:e2:69:40:70:99:eb:1d:aa:1a:b0: 7d:b8:0a:a4:bd:a7:13:c9:27:03:73:2e:7f:88:d1: 58:5b:0e:b5:08:cc:91:8a:b2:e2:13:34:fc:cf:03: 36:27:d7:b8:81:4b:66:cb:96:8b:1b:94:6e:99:71: ea:fa:ff:6e:18:8e:c1:92:3b:0a:ed:58:41:d0:3a: d8:6a:7d:68:2c:fe:e6:9a:02:86:4c:ce:8d:34:e5: 2a:a5:43:06:ef:bf:83:6c:18:77:38:65:c7:e3:fa: 01:93:f3:66:c6:bc:ca:62:07:de:19:47:00:ae:64: 4e:24:ce:db:86:cc:38:07:75:0c:49:9d:8a:af:22: 83:f9:81:d0:68:30:e8:be:93:93:b2:b3:fd:cb:aa: 6a:bd:8f:60:24:a7:80:ef:15:01:32:96:89:48:94: 17:5d:d7:9a:6d:57:3d:90:2a:f0:c8:60:db:e7:8a: ec:83:03:7a:d9:df:bf:47:d2:3a:98:b6:19:42:b3: 43:d0:02:8b:fc:e8:d2:7e:5d:a1:13:0c:a6:02:b9: 97:cf:60:54:75:42:6e:08:13:ee:9e:5a:82:e8:96: 70:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5C:46:8E:BA:A5:77:3B:7C:E2:AF:C4:31:63:C6:F1:50:4B:E9:F9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146196.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adda::/32 Signature Algorithm: sha256WithRSAEncryption af:f0:93:f2:b5:28:84:3a:e5:b6:cd:4b:7f:32:94:95:be:9a: 9d:19:92:d6:96:1f:82:96:44:e3:cc:33:d5:aa:22:d8:ae:7a: b4:01:aa:38:cd:90:10:3e:7e:c4:fe:4f:65:54:50:02:ea:bb: 5e:d7:f3:1e:83:a9:5f:9b:fb:a0:e8:a0:07:51:46:43:20:30: 27:7c:7a:84:9e:71:b7:ae:c4:19:c8:19:6a:69:5b:d9:0e:27: 76:b3:93:76:b6:36:57:0d:69:2a:0e:1b:63:74:31:6c:f3:de: 31:49:fa:19:05:84:22:c5:80:ee:1f:d0:37:6e:00:55:a4:be: 11:30:fc:b3:a8:0f:5b:9c:07:39:57:fe:ff:00:04:9a:fa:08: ce:04:64:22:6b:cc:2b:ad:e3:47:83:74:d0:28:c1:98:af:c7: 6d:0d:3b:2e:dd:9c:00:58:28:77:8c:b2:c1:d6:91:5b:1b:44: 2a:52:8e:01:fd:b8:ce:aa:5b:1e:c0:73:b8:db:64:7c:03:0f: 63:d4:06:e0:75:27:38:85:09:0a:ef:71:b7:b0:a3:e5:1c:a3: 8a:d7:68:ca:c6:22:60:dd:33:1a:41:a7:92:79:4b:72:41:97: ce:c5:d6:38:37:ad:55:de:87:56:61:0d:fe:ea:86:9f:3f:f4: 47:5f:f9:92 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUTMu8P6hALZ5ct/hVPKqqJMgXRU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkyOVoX DTI3MDMwMzA2MzQyOVowMzExMC8GA1UEAxMoN0U1QzQ2OEVCQUE1NzczQjdDRTJB RkM0MzE2M0M2RjE1MDRCRTlGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTvM/Xi50VS03BhPEjP1zOWAuGIHr8TQo9N6giKUVFSG4niaUBwmesdqhqw fbgKpL2nE8knA3Muf4jRWFsOtQjMkYqy4hM0/M8DNifXuIFLZsuWixuUbplx6vr/ bhiOwZI7Cu1YQdA62Gp9aCz+5poChkzOjTTlKqVDBu+/g2wYdzhlx+P6AZPzZsa8 ymIH3hlHAK5kTiTO24bMOAd1DEmdiq8ig/mB0Ggw6L6Tk7Kz/cuqar2PYCSngO8V ATKWiUiUF13Xmm1XPZAq8Mhg2+eK7IMDetnfv0fSOpi2GUKzQ9ACi/zo0n5doRMM pgK5l89gVHVCbggT7p5aguiWcJECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR+XEaO uqV3O3zir8QxY8bxUEvp+TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjE5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rdowDQYJKoZIhvcNAQELBQADggEBAK/wk/K1KIQ65bbNS38ylJW+mp0ZktaWH4KW ROPMM9WqItiuerQBqjjNkBA+fsT+T2VUUALqu17X8x6DqV+b+6DooAdRRkMgMCd8 eoSecbeuxBnIGWppW9kOJ3azk3a2NlcNaSoOG2N0MWzz3jFJ+hkFhCLFgO4f0Ddu AFWkvhEw/LOoD1ucBzlX/v8ABJr6CM4EZCJrzCut40eDdNAowZivx20NOy7dnABY KHeMssHWkVsbRCpSjgH9uM6qWx7Ac7jbZHwDD2PUBuB1JziFCQrvcbewo+Uco4rX aMrGImDdMxpBp5J5S3JBl87F1jg3rVXeh1ZhDf7qhp8/9Edf+ZI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:10 2026 by rpki-client