$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146232.roa File: AS146232.roa (raw, json) Hash identifier: BMz89cu3W279lSBztjgrnv88qfLSuBiaWh9H56M2BIk= Subject key identifier: A1:4F:E4:51:68:48:A5:69:82:11:F4:C0:D2:65:09:C0:89:79:7D:F6 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6AC7B9A7E733002B18CB5C8912BFA8793B22339C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146232.roa Signing time: Wed 04 Mar 2026 06:34:49 +0000 ROA not before: Wed 04 Mar 2026 06:29:49 +0000 ROA not after: Wed 03 Mar 2027 06:34:49 +0000 asID: 146232 IP address blocks: 240a:adfe::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:c7:b9:a7:e7:33:00:2b:18:cb:5c:89:12:bf:a8:79:3b:22:33:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:49 2026 GMT Not After : Mar 3 06:34:49 2027 GMT Subject: CN=A14FE4516848A5698211F4C0D26509C089797DF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:90:01:71:3e:94:6c:ad:b4:ef:6c:4f:ae:33: d9:28:53:00:17:4e:d9:69:04:57:ca:98:72:b9:d6: f4:b4:86:46:07:30:6b:37:c5:58:e1:94:6f:49:e4: 0a:50:c4:f4:24:00:7d:14:b6:e6:81:fb:6c:50:88: 1a:40:14:67:bd:7a:90:cd:17:1a:25:c1:92:b7:59: a6:24:37:a9:f4:20:97:38:4e:39:f1:64:29:47:ad: 09:e5:52:80:1c:28:21:da:ab:85:df:5f:c8:c8:8a: 26:e5:52:f9:d1:30:06:5d:be:c8:e0:9b:d2:45:27: b3:51:5f:82:0c:04:c8:ec:12:8a:96:87:db:8b:eb: 13:67:1d:a9:76:58:72:ac:1d:72:2f:73:4a:2f:91: 2c:36:98:53:63:f7:76:ab:26:fe:45:c4:7d:03:f0: a7:c9:cf:47:b1:e5:02:36:5e:b5:27:69:ce:2d:fd: 3f:3b:f9:ff:16:58:b3:d8:67:21:c6:81:75:c7:16: d4:e1:f2:4e:e4:51:d4:b7:48:8a:e1:fa:da:69:50: f1:ac:5c:3b:35:25:93:45:98:51:03:ef:17:51:10: 7c:55:e0:10:97:a9:f6:9d:d9:1a:64:b0:c6:f5:81: 9e:c2:69:39:2e:b2:29:51:63:6a:ee:00:40:56:74: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:4F:E4:51:68:48:A5:69:82:11:F4:C0:D2:65:09:C0:89:79:7D:F6 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adfe::/32 Signature Algorithm: sha256WithRSAEncryption 01:48:91:82:57:9c:82:b2:6e:31:70:e8:c9:68:15:b6:47:ef: a7:e5:da:47:df:e6:18:15:51:aa:47:aa:a0:54:66:d0:e6:10: d2:9f:31:d9:ce:5a:74:71:22:15:21:3f:14:0b:c2:e3:68:2d: 9f:78:12:b1:be:c2:45:4b:52:61:79:bb:d0:7b:b5:10:01:e8: ed:51:3c:3b:d9:fc:ff:63:de:0b:ce:d7:1e:76:52:f4:8f:94: ca:7e:e4:9b:1c:a3:5a:58:82:2b:e2:b0:ff:e1:fa:3a:d5:14: 0d:c5:14:e8:59:a1:c4:7f:44:e4:24:0a:e3:9f:4d:d6:6f:0e: 81:5e:a5:39:1f:63:fa:dc:70:6b:2f:bc:cd:6e:50:98:d5:14: e5:bd:17:46:27:6a:a9:35:60:45:0a:8c:b3:3e:eb:87:40:ee: 22:a7:f1:94:4e:45:28:38:93:44:d1:59:1d:e6:51:3c:dd:05: b4:60:3c:83:87:16:27:78:dc:c7:17:fe:a1:36:9b:7d:9c:9c: 42:e8:b1:f8:59:01:c2:ca:29:c3:b3:53:a6:c8:d2:fa:d5:65: 19:79:54:41:30:15:d0:21:88:93:ef:e6:2b:d2:f8:82:2e:0c: 22:e6:d3:b9:f0:fd:d3:fe:d1:1c:cb:ab:6f:f3:ce:87:07:08: b9:f7:93:f4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUase5p+czACsYy1yJEr+oeTsiM5wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0OVoX DTI3MDMwMzA2MzQ0OVowMzExMC8GA1UEAxMoQTE0RkU0NTE2ODQ4QTU2OTgyMTFG NEMwRDI2NTA5QzA4OTc5N0RGNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWQAXE+lGyttO9sT64z2ShTABdO2WkEV8qYcrnW9LSGRgcwazfFWOGUb0nk ClDE9CQAfRS25oH7bFCIGkAUZ716kM0XGiXBkrdZpiQ3qfQglzhOOfFkKUetCeVS gBwoIdqrhd9fyMiKJuVS+dEwBl2+yOCb0kUns1FfggwEyOwSipaH24vrE2cdqXZY cqwdci9zSi+RLDaYU2P3dqsm/kXEfQPwp8nPR7HlAjZetSdpzi39Pzv5/xZYs9hn IcaBdccW1OHyTuRR1LdIiuH62mlQ8axcOzUlk0WYUQPvF1EQfFXgEJep9p3ZGmSw xvWBnsJpOS6yKVFjau4AQFZ0ahECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBShT+RR aEilaYIR9MDSZQnAiXl99jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIzMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rf4wDQYJKoZIhvcNAQELBQADggEBAAFIkYJXnIKybjFw6MloFbZH76fl2kff5hgV UapHqqBUZtDmENKfMdnOWnRxIhUhPxQLwuNoLZ94ErG+wkVLUmF5u9B7tRAB6O1R PDvZ/P9j3gvO1x52UvSPlMp+5Jsco1pYgivisP/h+jrVFA3FFOhZocR/ROQkCuOf TdZvDoFepTkfY/rccGsvvM1uUJjVFOW9F0Ynaqk1YEUKjLM+64dA7iKn8ZRORSg4 k0TRWR3mUTzdBbRgPIOHFid43McX/qE2m32cnELosfhZAcLKKcOzU6bI0vrVZRl5 VEEwFdAhiJPv5ivS+IIuDCLm07nw/dP+0RzLq2/zzocHCLn3k/Q= -----END CERTIFICATE-----Generated at Sat Mar 28 13:16:42 2026 by rpki-client