$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146202.roa File: AS146202.roa (raw, json) Hash identifier: 3nrV4bCIQ5Sv0MZDrkjrHXgHsRv7o5pgLyNli70c4UY= Subject key identifier: 94:CB:6A:28:4C:77:3B:20:B4:A6:95:E6:89:F7:ED:EA:7E:C4:72:84 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3931481367252E476B9EE4816030774859575AA8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146202.roa Signing time: Wed 04 Mar 2026 06:33:49 +0000 ROA not before: Wed 04 Mar 2026 06:28:49 +0000 ROA not after: Wed 03 Mar 2027 06:33:49 +0000 asID: 146202 IP address blocks: 240a:ade0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:31:48:13:67:25:2e:47:6b:9e:e4:81:60:30:77:48:59:57:5a:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:49 2026 GMT Not After : Mar 3 06:33:49 2027 GMT Subject: CN=94CB6A284C773B20B4A695E689F7EDEA7EC47284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a1:3a:e6:94:fd:16:b4:4c:48:8d:ac:38:bb: d8:57:ec:77:24:04:08:4b:f4:ae:99:a9:b0:b8:cb: e0:56:0a:d0:9e:bb:eb:3b:c3:5d:09:04:27:a5:25: f3:f2:9d:e9:a0:27:2d:52:43:c2:9b:70:cf:65:08: dc:7a:ab:c4:d9:fa:07:72:69:83:0a:5e:c6:3d:83: b0:8e:56:ec:87:85:73:63:97:1a:b6:e8:64:ae:e5: ce:8d:bf:46:6a:7c:9d:d1:8a:01:e8:b4:ea:44:e9: 59:c1:68:6a:62:3b:2a:fc:ed:cc:ce:4e:47:37:ee: 59:8a:f0:17:3d:b0:03:f8:fd:6c:06:a9:6c:c9:63: 93:38:da:c8:70:96:7a:1a:ba:57:9f:4f:4e:51:27: ad:df:6f:a6:0a:cd:fd:e9:16:68:82:89:e4:63:bc: 2f:50:b7:ea:f8:ce:63:e0:28:33:4a:35:bb:eb:b3: ee:04:d1:e3:c1:86:9e:d2:34:de:c2:c9:38:44:2c: 58:e7:2f:f0:dd:aa:5b:79:e3:a1:43:31:16:01:c9: 6f:9f:d2:74:23:07:87:7e:89:a2:66:cf:9f:73:c1: 2c:8f:cc:78:67:15:4f:1b:13:08:57:35:a0:4b:7b: 25:ff:8b:e1:97:3a:c6:b1:b1:bd:5f:3e:b2:91:cd: 33:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:CB:6A:28:4C:77:3B:20:B4:A6:95:E6:89:F7:ED:EA:7E:C4:72:84 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146202.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ade0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:ec:e6:6a:2a:68:66:3e:23:4c:3f:1c:a4:7a:75:37:7a:44: d8:8e:ab:39:cb:49:5d:eb:cb:05:94:e0:75:50:1a:d2:78:24: e6:51:58:d1:6d:03:f8:87:fe:fe:be:db:3a:12:c7:fb:33:94: ac:b2:f5:40:a3:5d:98:e0:3b:39:9a:9e:b7:47:da:31:86:c6: e7:a3:ff:1e:85:e9:0d:ac:92:2e:59:38:a6:d5:bc:f1:d8:39: a0:ad:ec:35:ac:88:62:28:48:46:92:4f:ae:08:0a:3f:72:0d: 03:84:6d:9a:42:ef:8f:14:cb:a5:2c:7b:62:5c:10:a7:81:ef: 1b:dc:fb:dd:dd:cc:b9:50:f7:2d:a0:cc:3b:ff:1f:7a:a7:b4: 48:15:03:e2:9e:44:c4:e6:72:3d:47:5b:92:76:44:c0:8e:6d: 26:98:0d:66:66:d5:b1:38:61:22:b1:5f:a4:41:76:72:e6:54: 68:0a:00:f7:86:23:9a:d7:88:4d:27:ce:e4:07:39:61:cc:6a: 2e:d3:e0:cd:68:95:35:f0:da:a5:fc:3e:a0:d5:72:b3:da:e5: ad:fb:1c:5f:79:48:2c:fa:1a:f2:50:ea:07:71:d6:57:48:88: da:31:94:82:1a:30:4a:54:29:c1:a9:22:a0:68:f2:d6:9f:ea: 14:c6:02:02 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOTFIE2clLkdrnuSBYDB3SFlXWqgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0OVoX DTI3MDMwMzA2MzM0OVowMzExMC8GA1UEAxMoOTRDQjZBMjg0Qzc3M0IyMEI0QTY5 NUU2ODlGN0VERUE3RUM0NzI4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPehOuaU/Ra0TEiNrDi72FfsdyQECEv0rpmpsLjL4FYK0J676zvDXQkEJ6Ul 8/Kd6aAnLVJDwptwz2UI3HqrxNn6B3Jpgwpexj2DsI5W7IeFc2OXGrboZK7lzo2/ Rmp8ndGKAei06kTpWcFoamI7KvztzM5ORzfuWYrwFz2wA/j9bAapbMljkzjayHCW ehq6V59PTlEnrd9vpgrN/ekWaIKJ5GO8L1C36vjOY+AoM0o1u+uz7gTR48GGntI0 3sLJOEQsWOcv8N2qW3njoUMxFgHJb5/SdCMHh36JombPn3PBLI/MeGcVTxsTCFc1 oEt7Jf+L4Zc6xrGxvV8+spHNM8MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSUy2oo THc7ILSmleaJ9+3qfsRyhDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIwMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK reAwDQYJKoZIhvcNAQELBQADggEBAA3s5moqaGY+I0w/HKR6dTd6RNiOqznLSV3r ywWU4HVQGtJ4JOZRWNFtA/iH/v6+2zoSx/szlKyy9UCjXZjgOzmanrdH2jGGxuej /x6F6Q2ski5ZOKbVvPHYOaCt7DWsiGIoSEaST64ICj9yDQOEbZpC748Uy6Use2Jc EKeB7xvc+93dzLlQ9y2gzDv/H3qntEgVA+KeRMTmcj1HW5J2RMCObSaYDWZm1bE4 YSKxX6RBdnLmVGgKAPeGI5rXiE0nzuQHOWHMai7T4M1olTXw2qX8PqDVcrPa5a37 HF95SCz6GvJQ6gdx1ldIiNoxlIIaMEpUKcGpIqBo8taf6hTGAgI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:55 2026 by rpki-client