$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146222.roa File: AS146222.roa (raw, json) Hash identifier: LTgMTEVaN0PnCaBGrQtzonHFctIeiXz7I7FAd/pb4Rk= Subject key identifier: 18:19:BE:76:41:3C:B4:6C:1A:21:CF:F1:16:EE:55:16:D0:CC:71:A3 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 180EAE2EFD09C7426365F7BB6E45820772F837D8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146222.roa Signing time: Wed 04 Mar 2026 06:34:31 +0000 ROA not before: Wed 04 Mar 2026 06:29:31 +0000 ROA not after: Wed 03 Mar 2027 06:34:31 +0000 asID: 146222 IP address blocks: 240a:adf4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:0e:ae:2e:fd:09:c7:42:63:65:f7:bb:6e:45:82:07:72:f8:37:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:31 2026 GMT Not After : Mar 3 06:34:31 2027 GMT Subject: CN=1819BE76413CB46C1A21CFF116EE5516D0CC71A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4b:92:c4:38:f3:81:b8:0e:60:5b:82:33:03: a5:bb:d0:f4:74:68:22:51:af:17:2e:81:90:9d:7f: 55:ef:65:b2:5d:07:b6:fe:9f:95:c7:97:5a:98:97: bb:60:c8:bc:b4:d6:68:39:10:ab:b1:b7:4a:0f:e4: 58:78:96:d3:21:a2:51:6d:78:70:d3:d3:6c:16:fc: 08:14:16:4d:18:0d:d1:d2:e6:cd:13:bb:19:55:f6: 4b:96:36:7d:17:7f:5c:1b:54:04:22:03:a1:88:fb: 62:72:99:72:e6:ae:0f:26:8c:ec:10:81:89:66:cc: 06:4f:70:82:9f:18:d6:02:0b:79:c2:1f:a1:01:f7: 11:fd:fc:c4:6a:3e:bb:75:18:bb:3b:bc:98:4f:1d: 11:3b:85:7f:8d:d2:2c:75:21:70:af:7a:56:55:8b: 03:b5:97:31:92:5a:d5:99:fc:92:ae:c6:25:b1:e4: 3f:31:f5:0e:e6:a6:fa:3f:2d:54:72:e4:03:dc:ed: 7d:4e:68:d9:de:6c:7c:1c:92:8c:46:3e:e7:c5:7a: cf:c6:8c:56:e8:21:ed:89:af:08:e1:8f:8e:79:27: f4:86:1b:40:6a:8d:4a:28:83:18:35:b8:da:d6:92: 5f:a5:7f:ad:b5:16:36:46:6c:99:1c:88:8e:76:7c: 08:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:19:BE:76:41:3C:B4:6C:1A:21:CF:F1:16:EE:55:16:D0:CC:71:A3 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146222.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adf4::/32 Signature Algorithm: sha256WithRSAEncryption bc:75:64:14:f6:b3:7b:6a:9b:95:09:14:51:21:cc:ad:17:fd: 93:63:16:8e:b1:7d:91:e6:8c:c7:4d:05:d6:cf:6d:06:e7:28: 7f:9c:99:bb:13:50:e8:ff:c7:a2:7e:5f:5d:f8:f6:0f:ec:09: d6:30:95:b9:8d:6c:26:d5:65:fe:12:67:58:c5:97:18:39:c3: 49:50:91:f5:c7:f8:38:0c:f2:58:03:41:3a:09:90:94:1e:76: 73:46:82:a3:25:ec:22:a9:76:d8:ca:59:1f:50:6e:d7:d5:88: 25:0a:14:06:4a:1d:80:a4:31:a8:64:a2:60:2b:21:53:7a:ac: 3a:6d:73:a8:d7:3b:af:f6:4b:a0:88:d4:5c:7b:74:cb:81:0f: 81:d0:e2:44:7f:15:93:3f:cb:6f:cb:28:68:47:31:cf:68:68: 42:88:75:20:be:9f:27:28:ce:30:94:d0:b5:8d:b4:0b:4b:6f: e4:6e:c2:5d:7d:b8:f3:4c:27:ef:8a:ec:36:09:7f:5f:d0:dc: 3a:99:ef:cd:77:12:46:73:3e:d4:ae:23:13:8e:16:0e:31:00: a4:e1:63:0e:75:3a:7b:11:58:66:74:71:e5:78:b9:76:d4:21: 78:96:75:f5:7c:b1:d2:76:74:99:a0:a6:f0:c1:98:49:1d:73: 49:1e:4d:8d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGA6uLv0Jx0JjZfe7bkWCB3L4N9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzMVoX DTI3MDMwMzA2MzQzMVowMzExMC8GA1UEAxMoMTgxOUJFNzY0MTNDQjQ2QzFBMjFD RkYxMTZFRTU1MTZEMENDNzFBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI5LksQ484G4DmBbgjMDpbvQ9HRoIlGvFy6BkJ1/Ve9lsl0Htv6flceXWpiX u2DIvLTWaDkQq7G3Sg/kWHiW0yGiUW14cNPTbBb8CBQWTRgN0dLmzRO7GVX2S5Y2 fRd/XBtUBCIDoYj7YnKZcuauDyaM7BCBiWbMBk9wgp8Y1gILecIfoQH3Ef38xGo+ u3UYuzu8mE8dETuFf43SLHUhcK96VlWLA7WXMZJa1Zn8kq7GJbHkPzH1Duam+j8t VHLkA9ztfU5o2d5sfBySjEY+58V6z8aMVugh7YmvCOGPjnkn9IYbQGqNSiiDGDW4 2taSX6V/rbUWNkZsmRyIjnZ8CHUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQYGb52 QTy0bBohz/EW7lUW0MxxozAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIyMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rfQwDQYJKoZIhvcNAQELBQADggEBALx1ZBT2s3tqm5UJFFEhzK0X/ZNjFo6xfZHm jMdNBdbPbQbnKH+cmbsTUOj/x6J+X1349g/sCdYwlbmNbCbVZf4SZ1jFlxg5w0lQ kfXH+DgM8lgDQToJkJQednNGgqMl7CKpdtjKWR9QbtfViCUKFAZKHYCkMahkomAr IVN6rDptc6jXO6/2S6CI1Fx7dMuBD4HQ4kR/FZM/y2/LKGhHMc9oaEKIdSC+nyco zjCU0LWNtAtLb+Ruwl19uPNMJ++K7DYJf1/Q3DqZ7813EkZzPtSuIxOOFg4xAKTh Yw51OnsRWGZ0ceV4uXbUIXiWdfV8sdJ2dJmgpvDBmEkdc0keTY0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:55 2026 by rpki-client