$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146207.roa File: AS146207.roa (raw, json) Hash identifier: UgLkrwq6nOutiLMeTvKbKHstAD0HoDU+IOyc/G4147s= Subject key identifier: 44:0B:E3:91:7D:51:D8:F7:2D:2B:AE:04:A5:FA:2B:33:C9:41:F9:D2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 619C7F14520E6B42118DCC9ADF86C80756C97F37 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146207.roa Signing time: Wed 04 Mar 2026 06:33:48 +0000 ROA not before: Wed 04 Mar 2026 06:28:48 +0000 ROA not after: Wed 03 Mar 2027 06:33:48 +0000 asID: 146207 IP address blocks: 240a:ade5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9c:7f:14:52:0e:6b:42:11:8d:cc:9a:df:86:c8:07:56:c9:7f:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:48 2026 GMT Not After : Mar 3 06:33:48 2027 GMT Subject: CN=440BE3917D51D8F72D2BAE04A5FA2B33C941F9D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b6:19:bc:6d:34:b2:1d:4f:ca:d2:8d:05:fb: 52:8b:e9:3f:27:5a:59:e5:fa:3b:af:d7:31:6f:cc: 8f:a9:46:da:82:b6:46:42:69:4e:26:02:f6:5c:32: 84:3d:f6:5e:7d:7b:73:9c:74:8b:50:78:db:3c:66: a3:38:f4:fd:c3:12:19:fb:44:8b:9c:95:51:2d:e9: a8:fb:0a:b1:b0:f6:2f:b4:1b:3e:31:dd:7b:fd:a9: f6:ac:10:34:91:3c:0a:75:7a:2f:4a:c5:a3:98:76: 54:48:23:c8:fc:a8:85:2d:7e:3a:22:78:3d:d9:9b: 7b:e5:2b:47:93:d9:5f:c4:6b:49:b7:9f:87:7b:40: e8:35:05:50:b5:ad:a2:f2:da:7e:d0:b4:f5:d5:13: f0:e2:ed:89:e8:ca:cf:15:d4:0f:47:3a:e5:d0:7b: 5c:d2:32:e8:36:9c:9f:2f:db:a0:87:f9:c6:64:77: 31:00:69:c0:07:5c:fa:41:67:77:3e:05:6e:61:40: aa:1a:e9:b3:7a:ee:f0:32:3a:b8:10:cd:a4:9e:2d: 0f:46:7b:c9:a9:5c:e0:7c:64:11:76:55:ff:63:d6: 1a:41:00:7d:ad:e2:1c:16:ef:37:d3:89:4b:5e:66: bb:b1:cb:87:49:b9:56:bb:a7:f8:ee:8b:b9:b5:f2: b3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0B:E3:91:7D:51:D8:F7:2D:2B:AE:04:A5:FA:2B:33:C9:41:F9:D2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146207.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ade5::/32 Signature Algorithm: sha256WithRSAEncryption b2:51:1b:4d:f8:19:49:04:82:d4:77:aa:c3:77:4c:38:ca:11: e5:16:87:79:06:eb:fe:c4:fe:ba:74:7f:58:8c:f6:24:bf:00: 10:db:88:c6:b3:8f:69:4e:97:c9:e5:a7:42:fd:b8:e4:f3:f6: 7b:05:a6:7a:ea:25:bf:f8:9a:f0:af:da:ae:6c:59:3e:fb:98: 98:65:0d:33:98:54:49:db:e0:52:09:97:ad:c1:27:e4:99:26: 5a:45:6d:79:f6:23:9c:a7:06:aa:14:1f:c5:4b:24:01:fd:5e: 6f:b0:87:e6:29:47:aa:7d:51:58:a5:64:e4:44:76:2c:4c:9f: 9d:48:f4:d7:70:92:5e:e2:4d:c1:79:b5:5b:37:33:6d:60:d7: eb:db:bf:60:47:e8:32:ad:5d:3e:19:f3:7b:e5:10:55:8f:d9: d3:54:bd:45:4c:f5:a6:a5:7b:ea:18:a5:10:14:2e:d5:30:39: cf:3c:bc:a3:c2:b1:c4:e1:9f:5c:cf:a7:9c:01:5b:c4:4b:16: 2f:eb:9d:ff:86:b2:91:70:4d:ad:91:4c:d3:6e:12:8d:26:05: 50:8d:ba:3c:fe:15:00:35:bb:a5:2c:b3:84:91:94:23:1a:7a: f1:eb:7e:79:5b:55:ed:83:50:e9:6b:f3:93:fb:9c:57:6d:af: c4:93:4d:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUYZx/FFIOa0IRjcya34bIB1bJfzcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0OFoX DTI3MDMwMzA2MzM0OFowMzExMC8GA1UEAxMoNDQwQkUzOTE3RDUxRDhGNzJEMkJB RTA0QTVGQTJCMzNDOTQxRjlEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIm2GbxtNLIdT8rSjQX7UovpPydaWeX6O6/XMW/Mj6lG2oK2RkJpTiYC9lwy hD32Xn17c5x0i1B42zxmozj0/cMSGftEi5yVUS3pqPsKsbD2L7QbPjHde/2p9qwQ NJE8CnV6L0rFo5h2VEgjyPyohS1+OiJ4Pdmbe+UrR5PZX8RrSbefh3tA6DUFULWt ovLaftC09dUT8OLtiejKzxXUD0c65dB7XNIy6Dacny/boIf5xmR3MQBpwAdc+kFn dz4FbmFAqhrps3ru8DI6uBDNpJ4tD0Z7yalc4HxkEXZV/2PWGkEAfa3iHBbvN9OJ S15mu7HLh0m5Vrun+O6LubXys5ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBREC+OR fVHY9y0rrgSl+iszyUH50jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIwNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK reUwDQYJKoZIhvcNAQELBQADggEBALJRG034GUkEgtR3qsN3TDjKEeUWh3kG6/7E /rp0f1iM9iS/ABDbiMazj2lOl8nlp0L9uOTz9nsFpnrqJb/4mvCv2q5sWT77mJhl DTOYVEnb4FIJl63BJ+SZJlpFbXn2I5ynBqoUH8VLJAH9Xm+wh+YpR6p9UVilZORE dixMn51I9Ndwkl7iTcF5tVs3M21g1+vbv2BH6DKtXT4Z83vlEFWP2dNUvUVM9aal e+oYpRAULtUwOc88vKPCscThn1zPp5wBW8RLFi/rnf+GspFwTa2RTNNuEo0mBVCN ujz+FQA1u6Uss4SRlCMaevHrfnlbVe2DUOlr85P7nFdtr8STTSw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:35 2026 by rpki-client