$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146211.roa File: AS146211.roa (raw, json) Hash identifier: 2hNSQN1ffxO49EnPZfxsYRX2wI4E77hn3lrnirZmTX8= Subject key identifier: 8F:EA:C6:B9:53:28:32:42:DD:10:43:8B:0B:F2:73:40:E6:0F:E4:28 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2DE040EF236A622A7B75F0D0D6677EA47A3EFE16 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146211.roa Signing time: Wed 04 Mar 2026 06:33:38 +0000 ROA not before: Wed 04 Mar 2026 06:28:38 +0000 ROA not after: Wed 03 Mar 2027 06:33:38 +0000 asID: 146211 IP address blocks: 240a:ade9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:e0:40:ef:23:6a:62:2a:7b:75:f0:d0:d6:67:7e:a4:7a:3e:fe:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:38 2026 GMT Not After : Mar 3 06:33:38 2027 GMT Subject: CN=8FEAC6B953283242DD10438B0BF27340E60FE428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8a:99:62:cf:93:9f:ba:e3:2e:04:52:95:f7: bf:91:dc:89:03:0c:1a:20:87:43:ee:43:da:02:57: c3:fc:59:4d:5d:b7:92:2f:6d:13:3d:f0:29:1d:5c: d9:1f:d1:b6:cb:27:bd:6a:62:a6:ee:34:4d:04:1f: 4d:31:2d:82:8e:2f:13:72:c6:04:15:67:62:52:26: 88:f4:8a:f9:0a:52:f1:6e:91:78:10:8f:88:56:a8: 32:2e:e3:0e:6c:34:95:54:44:cb:b1:fc:0a:1f:d5: 6f:e3:3d:82:2a:04:b4:44:7c:4f:e9:d7:ce:ab:97: e3:61:f3:b9:2e:1e:e8:4a:cd:98:aa:ad:b6:d5:f5: 06:67:42:55:bc:7a:0e:d3:b7:54:24:29:9c:7e:b7: 79:32:91:10:76:e9:de:a7:d9:94:e3:d0:2f:45:e1: be:cc:5c:f0:2d:c4:35:13:09:ec:57:a2:f4:25:90: b2:a2:7e:ed:9d:61:cd:83:0b:97:db:04:77:84:0e: b2:67:ac:15:45:24:47:3a:96:e2:af:80:44:eb:a2: 25:96:4e:b0:45:db:f6:9a:26:0f:17:91:c2:a2:14: 0e:3f:f5:82:e6:6b:56:61:ff:f0:6b:d6:4d:cb:f6: f7:a9:bd:2d:ca:71:95:ca:47:55:20:6e:53:0b:e6: 3b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EA:C6:B9:53:28:32:42:DD:10:43:8B:0B:F2:73:40:E6:0F:E4:28 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146211.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ade9::/32 Signature Algorithm: sha256WithRSAEncryption 83:d8:00:e3:be:17:25:c4:9d:9e:4c:ba:6a:c2:b7:c0:48:f6: 5d:e8:d8:27:91:70:1c:8f:25:bc:a6:d0:3c:fc:f5:b9:0c:a7: 81:b8:7a:20:9a:5d:b8:a3:d9:da:7f:8e:92:61:c3:cc:6d:38: cc:d9:e6:7b:ce:c0:c2:f4:42:e1:1c:df:09:fd:40:9b:dc:59: 93:ac:58:9d:0f:7d:7c:2a:5a:4e:a0:5c:06:42:a9:f7:d8:b1: 3e:d1:31:59:6c:21:ac:2c:43:c0:46:db:09:87:19:31:3e:99: 77:40:07:55:35:f5:b6:bd:60:55:58:7a:46:50:8f:27:ad:b2: b7:06:0f:f3:3e:1a:8c:1f:cb:8f:0b:3b:22:6d:20:4c:10:c3: 33:df:e8:83:d2:eb:cb:59:99:cd:86:40:5f:d2:6c:74:3b:fe: 01:80:20:04:77:b6:db:16:35:06:bd:d0:84:db:a3:52:50:58: 31:f9:b4:df:4b:3f:ca:5c:9d:ec:9c:ef:ee:2a:fb:8d:f5:09: eb:e3:7d:63:6c:9f:66:d0:1a:05:82:02:68:90:02:fb:db:51: 75:75:fe:9d:85:ff:fc:d1:6d:3c:b7:ec:06:23:f8:0d:88:16: 5e:25:47:71:8c:b6:e7:c0:46:7b:30:79:22:17:a7:2c:cd:13: 8a:26:07:c7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULeBA7yNqYip7dfDQ1md+pHo+/hYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzOFoX DTI3MDMwMzA2MzMzOFowMzExMC8GA1UEAxMoOEZFQUM2Qjk1MzI4MzI0MkREMTA0 MzhCMEJGMjczNDBFNjBGRTQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6KmWLPk5+64y4EUpX3v5HciQMMGiCHQ+5D2gJXw/xZTV23ki9tEz3wKR1c 2R/RtssnvWpipu40TQQfTTEtgo4vE3LGBBVnYlImiPSK+QpS8W6ReBCPiFaoMi7j Dmw0lVREy7H8Ch/Vb+M9gioEtER8T+nXzquX42HzuS4e6ErNmKqtttX1BmdCVbx6 DtO3VCQpnH63eTKREHbp3qfZlOPQL0Xhvsxc8C3ENRMJ7Fei9CWQsqJ+7Z1hzYML l9sEd4QOsmesFUUkRzqW4q+AROuiJZZOsEXb9pomDxeRwqIUDj/1guZrVmH/8GvW Tcv296m9LcpxlcpHVSBuUwvmO1kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSP6sa5 UygyQt0QQ4sL8nNA5g/kKDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIxMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rekwDQYJKoZIhvcNAQELBQADggEBAIPYAOO+FyXEnZ5MumrCt8BI9l3o2CeRcByP Jbym0Dz89bkMp4G4eiCaXbij2dp/jpJhw8xtOMzZ5nvOwML0QuEc3wn9QJvcWZOs WJ0PfXwqWk6gXAZCqffYsT7RMVlsIawsQ8BG2wmHGTE+mXdAB1U19ba9YFVYekZQ jyetsrcGD/M+Gowfy48LOyJtIEwQwzPf6IPS68tZmc2GQF/SbHQ7/gGAIAR3ttsW NQa90ITbo1JQWDH5tN9LP8pcneyc7+4q+431CevjfWNsn2bQGgWCAmiQAvvbUXV1 /p2F//zRbTy37AYj+A2IFl4lR3GMtufARnsweSIXpyzNE4omB8c= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:32 2026 by rpki-client