$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146239.roa File: AS146239.roa (raw, json) Hash identifier: FjlOdsw5+LnIXlTT644JtGPeK2CuO6RJZ5kSzYcTvow= Subject key identifier: 27:F4:E4:76:D1:FB:FD:D7:D5:B5:21:1A:89:31:E9:CA:12:CE:5B:9A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0F14C3D5C2CB3FFF4F68614FE860B45599FE1B77 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146239.roa Signing time: Wed 04 Mar 2026 06:34:24 +0000 ROA not before: Wed 04 Mar 2026 06:29:24 +0000 ROA not after: Wed 03 Mar 2027 06:34:24 +0000 asID: 146239 IP address blocks: 240a:ae05::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:14:c3:d5:c2:cb:3f:ff:4f:68:61:4f:e8:60:b4:55:99:fe:1b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:24 2026 GMT Not After : Mar 3 06:34:24 2027 GMT Subject: CN=27F4E476D1FBFDD7D5B5211A8931E9CA12CE5B9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:8d:07:a2:60:56:85:21:41:23:a2:62:7c:82: 9f:23:2f:94:9f:90:de:e5:dd:d8:c4:0e:36:22:a0: 9a:29:f2:fc:2b:75:a4:3c:62:e1:99:72:e0:b1:72: e7:ae:76:67:71:cb:4d:c8:86:12:e4:cc:f6:34:1e: 23:88:69:08:42:f7:62:cc:c1:06:3e:e0:f5:4f:c7: b7:1a:55:15:7d:c4:ef:21:bb:01:a0:ae:8e:15:13: 39:ff:b4:3c:90:89:33:b6:81:5f:19:ff:b3:ed:3b: 76:10:b0:75:d5:fa:84:8f:3c:6a:e9:0d:20:b5:cf: 59:c2:72:5b:04:0c:62:ed:c8:b4:dc:49:0c:1e:03: db:8c:d6:2b:9d:4d:ce:1e:0c:40:e7:8b:4c:ee:72: 20:86:3a:f2:4c:97:0b:8e:64:74:5a:74:dc:06:32: 75:1e:63:4f:86:10:2e:5a:01:82:26:12:bc:09:55: 82:59:53:56:cc:95:90:b8:8e:ba:96:cc:67:fa:3d: 36:e6:47:1a:0c:61:ef:e7:c6:dc:23:64:d9:45:90: f2:fb:1d:25:31:94:02:a8:fe:4c:c8:51:e0:ac:0a: d3:c2:95:50:e0:e9:78:c4:db:a9:5f:69:8e:73:7f: 5e:e2:a1:c0:27:82:24:0b:d1:7a:ef:bf:3c:8b:bd: 7d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F4:E4:76:D1:FB:FD:D7:D5:B5:21:1A:89:31:E9:CA:12:CE:5B:9A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae05::/32 Signature Algorithm: sha256WithRSAEncryption a0:ec:63:fd:a6:74:b7:c5:0f:8c:b0:38:80:93:32:0d:bd:46: ce:f9:0f:97:58:dd:86:5d:15:db:8d:ea:b3:a2:7d:42:7e:92: b4:1d:c8:54:10:74:3c:75:6b:37:fb:5d:2f:df:c8:96:9c:4b: 04:3a:89:87:ba:8f:e7:82:66:5d:97:ee:0b:d1:71:c5:de:36: f0:b8:3d:9e:57:14:3f:5f:51:98:ce:f2:18:77:a3:df:da:77: 0d:a4:31:d9:d8:e7:1f:1c:f1:8a:6d:80:60:eb:be:de:05:7c: 62:51:ee:a6:7d:c0:06:2a:ee:43:75:12:a3:1e:e5:76:be:4e: dc:4f:c5:cb:ec:ba:5e:37:23:c6:43:62:83:ef:46:ec:2a:3e: 13:56:18:e1:95:7d:97:2f:ba:c8:8b:05:ca:68:06:ac:63:3c: 41:53:3d:a4:e5:b9:4a:28:62:78:78:d3:d4:a0:5c:b6:ed:9b: c0:9f:26:84:ad:74:43:09:c3:e4:68:48:cb:17:33:6f:fa:cf: d1:b3:23:68:0e:40:38:70:e5:7a:22:d2:35:df:8f:a4:83:ab: 9e:ad:58:41:2a:6c:0e:98:2d:1f:a5:c8:99:4c:61:83:cc:4b: 35:8b:ed:7f:d9:61:a1:68:6e:3a:0d:56:13:9a:ff:cc:59:d4: ee:08:07:00 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDxTD1cLLP/9PaGFP6GC0VZn+G3cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkyNFoX DTI3MDMwMzA2MzQyNFowMzExMC8GA1UEAxMoMjdGNEU0NzZEMUZCRkREN0Q1QjUy MTFBODkzMUU5Q0ExMkNFNUI5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJGNB6JgVoUhQSOiYnyCnyMvlJ+Q3uXd2MQONiKgminy/Ct1pDxi4Zly4LFy 5652Z3HLTciGEuTM9jQeI4hpCEL3YszBBj7g9U/HtxpVFX3E7yG7AaCujhUTOf+0 PJCJM7aBXxn/s+07dhCwddX6hI88aukNILXPWcJyWwQMYu3ItNxJDB4D24zWK51N zh4MQOeLTO5yIIY68kyXC45kdFp03AYydR5jT4YQLloBgiYSvAlVgllTVsyVkLiO upbMZ/o9NuZHGgxh7+fG3CNk2UWQ8vsdJTGUAqj+TMhR4KwK08KVUODpeMTbqV9p jnN/XuKhwCeCJAvReu+/PIu9fVUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQn9OR2 0fv919W1IRqJMenKEs5bmjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIzOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rgUwDQYJKoZIhvcNAQELBQADggEBAKDsY/2mdLfFD4ywOICTMg29Rs75D5dY3YZd FduN6rOifUJ+krQdyFQQdDx1azf7XS/fyJacSwQ6iYe6j+eCZl2X7gvRccXeNvC4 PZ5XFD9fUZjO8hh3o9/adw2kMdnY5x8c8YptgGDrvt4FfGJR7qZ9wAYq7kN1EqMe 5Xa+TtxPxcvsul43I8ZDYoPvRuwqPhNWGOGVfZcvusiLBcpoBqxjPEFTPaTluUoo Ynh409SgXLbtm8CfJoStdEMJw+RoSMsXM2/6z9GzI2gOQDhw5Xoi0jXfj6SDq56t WEEqbA6YLR+lyJlMYYPMSzWL7X/ZYaFobjoNVhOa/8xZ1O4IBwA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:42 2026 by rpki-client