$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146242.roa File: AS146242.roa (raw, json) Hash identifier: B1GboEF/mbVU9PQUrOa8nUqOYqTYI3q9mAW6/AUdSkU= Subject key identifier: 21:2F:10:A9:08:4F:3E:FE:B3:82:61:CB:5A:DB:F0:A2:55:2D:D0:FA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 285DDC465D4919BD91C4B24F5B7A41EA1DEAD9DE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146242.roa Signing time: Wed 04 Mar 2026 06:35:06 +0000 ROA not before: Wed 04 Mar 2026 06:30:06 +0000 ROA not after: Wed 03 Mar 2027 06:35:06 +0000 asID: 146242 IP address blocks: 240a:ae08::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5d:dc:46:5d:49:19:bd:91:c4:b2:4f:5b:7a:41:ea:1d:ea:d9:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:30:06 2026 GMT Not After : Mar 3 06:35:06 2027 GMT Subject: CN=212F10A9084F3EFEB38261CB5ADBF0A2552DD0FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a3:8b:a2:85:6c:f1:73:e0:ed:38:42:f2:8b: 02:bd:b3:07:91:b3:ce:de:4b:ca:37:8d:40:3e:51: 79:3a:05:fd:de:be:0f:41:a2:2d:83:e7:d2:4c:db: ee:b4:f1:07:3d:dc:ad:7c:12:5c:7b:76:a2:c9:6a: fb:74:2a:da:8f:3c:2f:4c:29:16:c3:c1:8e:97:a3: 80:c1:db:5f:a0:76:40:99:6b:49:6d:8e:e8:b4:84: b6:6c:b1:80:ac:15:76:b4:d1:64:64:54:6f:bd:d0: cc:af:dd:1b:60:f3:7a:07:e3:7c:74:9e:c3:89:37: c0:0f:4c:0b:bf:92:52:80:3e:e6:c1:87:bf:cf:4b: 2e:b5:d6:f7:43:23:8b:5e:9d:c1:57:89:97:07:78: 90:88:7a:7d:86:8b:e7:c7:31:9e:38:0a:6c:ad:d1: 72:3e:e3:46:88:af:ef:07:26:27:29:d6:fb:54:94: 3d:b4:2d:a0:d1:0a:3e:01:4c:23:78:b0:ce:c6:93: 5a:80:a8:00:07:14:32:e9:5b:09:57:77:8b:e8:55: 8f:84:9f:18:d9:e2:fc:6c:55:d8:8b:3a:ac:c2:b8: 86:d5:c8:fc:e5:7f:48:7e:27:90:ed:2f:64:fb:ca: 15:79:ef:38:ef:0b:bd:c8:3d:16:be:28:d1:a5:54: 66:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2F:10:A9:08:4F:3E:FE:B3:82:61:CB:5A:DB:F0:A2:55:2D:D0:FA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae08::/32 Signature Algorithm: sha256WithRSAEncryption bd:b9:40:a8:af:14:8c:69:5f:20:a7:fd:16:99:7e:8d:7f:00: 8d:78:41:04:5b:eb:49:66:f6:24:06:34:27:17:d9:3b:df:5f: d8:d2:ad:80:78:bb:4a:80:d9:ab:c4:db:d9:dc:8e:61:c6:72: f3:61:ad:a9:26:44:04:43:b3:06:7d:07:0c:64:56:03:f2:7a: 9e:46:c1:08:6f:03:99:7b:51:77:73:7c:ab:31:c7:52:8f:5d: e6:2e:51:0c:dc:57:65:19:bd:d0:d6:f9:4d:88:83:85:cd:c2: c9:10:22:dc:89:43:b9:01:a6:9b:8d:5a:1e:b0:b5:04:b0:79: f4:c1:a0:5a:d8:76:e1:f9:8c:e3:d5:e3:94:5a:71:17:54:92: b1:d4:ad:d1:82:d3:e0:32:1c:4d:3b:3a:52:70:fa:53:0c:bb: 43:46:c7:de:78:31:a3:32:c1:08:de:55:88:30:0a:34:89:35: c6:e0:f3:fd:b4:f1:ad:04:d5:5f:d9:c8:4c:c5:cb:e3:7f:43: e2:85:98:cb:af:6f:30:91:6b:1c:cc:40:91:d6:53:eb:66:be: 8c:cb:79:6c:11:ec:4e:87:a4:ce:67:7d:b8:33:40:02:63:f9: 1b:75:23:bd:9a:4b:ab:98:3c:65:47:14:82:66:64:d5:8a:09: a0:63:94:5d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKF3cRl1JGb2RxLJPW3pB6h3q2d4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzAwNloX DTI3MDMwMzA2MzUwNlowMzExMC8GA1UEAxMoMjEyRjEwQTkwODRGM0VGRUIzODI2 MUNCNUFEQkYwQTI1NTJERDBGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmji6KFbPFz4O04QvKLAr2zB5Gzzt5LyjeNQD5ReToF/d6+D0GiLYPn0kzb 7rTxBz3crXwSXHt2oslq+3Qq2o88L0wpFsPBjpejgMHbX6B2QJlrSW2O6LSEtmyx gKwVdrTRZGRUb73QzK/dG2DzegfjfHSew4k3wA9MC7+SUoA+5sGHv89LLrXW90Mj i16dwVeJlwd4kIh6fYaL58cxnjgKbK3Rcj7jRoiv7wcmJynW+1SUPbQtoNEKPgFM I3iwzsaTWoCoAAcUMulbCVd3i+hVj4SfGNni/GxV2Is6rMK4htXI/OV/SH4nkO0v ZPvKFXnvOO8Lvcg9Fr4o0aVUZtsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQhLxCp CE8+/rOCYcta2/CiVS3Q+jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI0Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rggwDQYJKoZIhvcNAQELBQADggEBAL25QKivFIxpXyCn/RaZfo1/AI14QQRb60lm 9iQGNCcX2TvfX9jSrYB4u0qA2avE29ncjmHGcvNhrakmRARDswZ9BwxkVgPyep5G wQhvA5l7UXdzfKsxx1KPXeYuUQzcV2UZvdDW+U2Ig4XNwskQItyJQ7kBppuNWh6w tQSwefTBoFrYduH5jOPV45RacRdUkrHUrdGC0+AyHE07OlJw+lMMu0NGx954MaMy wQjeVYgwCjSJNcbg8/208a0E1V/ZyEzFy+N/Q+KFmMuvbzCRaxzMQJHWU+tmvozL eWwR7E6HpM5nfbgzQAJj+Rt1I72aS6uYPGVHFIJmZNWKCaBjlF0= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:04 2026 by rpki-client