$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146219.roa File: AS146219.roa (raw, json) Hash identifier: NCQ36ttIE6qXa9KyiCFkIZIce9MKBYf/DQxOjbNcSqc= Subject key identifier: 75:4A:CC:F9:29:3B:AF:EF:C4:68:71:A3:3A:48:A0:BF:B9:5B:27:AB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0783D32167C38DE8EA0C0558C759D4B18755D87E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146219.roa Signing time: Wed 04 Mar 2026 06:33:45 +0000 ROA not before: Wed 04 Mar 2026 06:28:45 +0000 ROA not after: Wed 03 Mar 2027 06:33:45 +0000 asID: 146219 IP address blocks: 240a:adf1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:83:d3:21:67:c3:8d:e8:ea:0c:05:58:c7:59:d4:b1:87:55:d8:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:45 2026 GMT Not After : Mar 3 06:33:45 2027 GMT Subject: CN=754ACCF9293BAFEFC46871A33A48A0BFB95B27AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:f1:46:be:ae:93:15:0e:9e:ad:6c:2b:fb: 4a:cf:7e:80:64:15:e9:b8:ea:22:09:d6:1b:b6:2c: c7:df:5d:fe:2f:0a:53:49:8e:78:13:ee:13:1e:cf: 9b:2b:cb:91:b2:8c:95:4f:38:1d:1c:87:cd:cd:81: b4:b0:e6:56:e1:37:a7:3f:7b:95:89:a5:65:01:1e: 0b:75:2c:73:2d:80:0c:28:59:b4:d3:84:d9:1b:65: df:69:70:12:80:90:67:f6:ab:4c:7d:28:ef:65:67: aa:e0:2d:ec:90:5f:d9:e8:30:ff:5a:fc:2b:3b:a6: dc:6d:08:ea:76:ac:05:e8:26:10:6e:e7:c1:73:1d: 93:d5:09:38:8b:85:c6:71:8f:99:07:6d:74:fc:15: 00:99:0b:88:50:9a:11:a2:8b:01:d4:a7:13:16:44: 2a:ab:c6:72:b2:6a:03:0d:ed:14:cf:84:bc:4b:0c: 97:4e:5c:a6:f0:c1:eb:28:a6:fa:db:1f:39:2d:2c: 8c:a2:21:c7:4d:31:40:94:d7:80:13:af:20:ad:09: 39:da:f5:33:95:9f:ee:de:2d:e9:43:86:34:39:2f: 44:d7:37:b4:63:00:2e:0f:98:a5:6b:12:29:86:7c: 0b:1c:aa:2d:8e:34:82:eb:39:0f:00:26:bc:76:3a: 04:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4A:CC:F9:29:3B:AF:EF:C4:68:71:A3:3A:48:A0:BF:B9:5B:27:AB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146219.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adf1::/32 Signature Algorithm: sha256WithRSAEncryption 8d:e1:f8:e2:47:3f:72:b8:2c:29:dd:7d:70:b1:77:f9:64:05: 92:92:b4:be:da:74:5b:7d:e5:32:e8:02:fd:4a:2e:11:b0:d5: 6b:c7:c6:3f:13:4b:63:08:1c:67:66:15:0b:f5:47:8d:57:26: 53:8a:d1:85:3e:1b:6c:b2:a4:61:81:b8:f2:1c:25:46:03:d4: 9f:61:04:48:b9:4c:19:be:12:8f:d2:6f:01:4b:33:5f:df:55: 84:bb:38:3d:b3:bf:6b:bc:77:2c:64:1e:91:63:1f:1f:ec:09: e3:69:3b:d6:6d:e5:21:ea:bb:a1:6a:f5:c7:47:38:3c:76:d6: b6:09:3a:b8:87:a9:71:ac:0c:09:dd:78:34:c7:6c:50:11:b1: 81:3b:ef:44:0d:82:c0:a7:ec:c8:a6:e6:a1:cd:a5:48:13:ce: c8:cd:16:b2:a3:f9:45:ad:b8:c8:b6:04:a3:25:1c:0b:02:63: cd:a6:94:15:20:2a:18:14:0d:21:b0:9f:88:40:a4:6e:ad:e5: 00:87:cd:9f:cb:ac:84:70:d5:a3:df:6f:32:b3:df:5a:a5:2f: bc:58:ab:d7:fe:b6:a9:14:a6:19:81:5e:d6:1a:90:bc:e7:59: a6:11:9d:9f:09:48:dc:84:73:ac:f3:e8:37:0f:bb:32:90:8d: df:3f:f7:94 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUB4PTIWfDjejqDAVYx1nUsYdV2H4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0NVoX DTI3MDMwMzA2MzM0NVowMzExMC8GA1UEAxMoNzU0QUNDRjkyOTNCQUZFRkM0Njg3 MUEzM0E0OEEwQkZCOTVCMjdBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKg8Ua+rpMVDp6tbCv7Ss9+gGQV6bjqIgnWG7Ysx99d/i8KU0mOeBPuEx7P myvLkbKMlU84HRyHzc2BtLDmVuE3pz97lYmlZQEeC3Uscy2ADChZtNOE2Rtl32lw EoCQZ/arTH0o72VnquAt7JBf2egw/1r8Kzum3G0I6nasBegmEG7nwXMdk9UJOIuF xnGPmQdtdPwVAJkLiFCaEaKLAdSnExZEKqvGcrJqAw3tFM+EvEsMl05cpvDB6yim +tsfOS0sjKIhx00xQJTXgBOvIK0JOdr1M5Wf7t4t6UOGNDkvRNc3tGMALg+YpWsS KYZ8CxyqLY40gus5DwAmvHY6BG8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR1Ssz5 KTuv78RocaM6SKC/uVsnqzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIxOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rfEwDQYJKoZIhvcNAQELBQADggEBAI3h+OJHP3K4LCndfXCxd/lkBZKStL7adFt9 5TLoAv1KLhGw1WvHxj8TS2MIHGdmFQv1R41XJlOK0YU+G2yypGGBuPIcJUYD1J9h BEi5TBm+Eo/SbwFLM1/fVYS7OD2zv2u8dyxkHpFjHx/sCeNpO9Zt5SHqu6Fq9cdH ODx21rYJOriHqXGsDAndeDTHbFARsYE770QNgsCn7Mim5qHNpUgTzsjNFrKj+UWt uMi2BKMlHAsCY82mlBUgKhgUDSGwn4hApG6t5QCHzZ/LrIRw1aPfbzKz31qlL7xY q9f+tqkUphmBXtYakLznWaYRnZ8JSNyEc6zz6DcPuzKQjd8/95Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:43 2026 by rpki-client