$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146246.roa File: AS146246.roa (raw, json) Hash identifier: 5ytqB0btnRUZEJj3FIBOReqgyNC65Qv3kBY7Zz2jbm8= Subject key identifier: 41:5E:5A:06:25:72:E8:7C:75:DD:E4:E1:64:79:2E:31:8A:E2:80:C0 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0A4248B7D84FE0FAAE7F08392BA63D72237527AD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146246.roa Signing time: Wed 04 Mar 2026 06:33:51 +0000 ROA not before: Wed 04 Mar 2026 06:28:51 +0000 ROA not after: Wed 03 Mar 2027 06:33:51 +0000 asID: 146246 IP address blocks: 240a:ae0c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:42:48:b7:d8:4f:e0:fa:ae:7f:08:39:2b:a6:3d:72:23:75:27:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:51 2026 GMT Not After : Mar 3 06:33:51 2027 GMT Subject: CN=415E5A062572E87C75DDE4E164792E318AE280C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:18:ae:5b:34:2f:82:55:e4:8f:04:ef:d4:fe: be:58:cb:a0:8b:a8:e0:10:a4:fe:2f:7d:ba:ac:62: 76:b2:a1:a2:f0:5b:0f:e2:61:09:c7:57:e5:43:04: 16:b2:7d:4e:f2:32:b4:dd:c1:ec:14:53:9a:68:31: 73:c7:ca:35:63:18:77:01:c1:20:02:63:9b:97:a2: 45:42:1f:d0:37:ad:69:2a:69:a4:67:cb:c5:8d:5c: 8e:fb:95:28:82:d4:17:be:e4:32:89:cc:e0:8c:09: 46:83:84:44:62:1e:93:c8:d8:a9:12:62:e4:48:da: 74:9b:83:88:bb:49:25:8e:2e:10:a2:d3:1a:5e:14: 6c:60:ee:67:80:78:6d:e4:4c:d2:b4:98:20:f2:3a: fc:7a:2e:7d:36:a8:27:b4:04:77:e8:54:e9:52:5d: 81:00:b9:4f:79:ad:96:c7:e3:f6:ad:61:0a:f4:8f: b7:c0:34:ff:77:ba:ed:c3:1c:09:af:17:e4:d3:1f: 61:10:5d:e5:66:88:84:32:cc:ae:12:80:65:42:13: 81:d0:3a:a2:c0:7a:8a:21:0a:7e:ba:c4:1b:a6:63: e9:b1:03:a9:4f:b5:bc:17:33:e6:15:b0:d6:a2:a0: c7:5e:be:5a:2e:b1:5f:52:67:6d:c6:73:7c:de:01: d7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5E:5A:06:25:72:E8:7C:75:DD:E4:E1:64:79:2E:31:8A:E2:80:C0 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146246.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae0c::/32 Signature Algorithm: sha256WithRSAEncryption 7b:ee:ff:02:7a:bd:c5:ab:91:bd:fb:26:68:60:9a:f5:08:22: c3:67:9f:19:5e:be:61:9d:be:01:1b:1b:32:24:0f:d7:a8:95: a8:9f:a8:09:9a:98:c7:3d:58:60:09:f3:06:71:96:99:1a:1b: 7c:64:8c:37:a1:b1:c6:72:3c:4d:b7:45:56:9d:2b:85:8c:cd: 96:99:5c:59:37:6a:b9:e0:5d:44:01:f3:e9:80:43:58:c0:15: f5:2d:6f:cf:fc:33:90:a4:9f:47:42:98:9a:00:6a:41:ff:74: 09:33:69:df:11:0d:5d:08:b3:1b:1a:a6:68:ce:d1:de:c8:96: 41:2a:2d:ee:81:13:00:15:45:da:5b:2f:82:7f:c2:87:d3:3d: f3:08:bf:be:3b:8e:9c:52:7b:51:22:27:0f:fb:36:81:a3:8b: 9a:41:81:17:fc:e2:3e:e3:95:45:d5:dc:e8:f1:37:a6:a5:af: fb:c6:75:14:4d:0f:c6:83:04:52:7b:5d:6b:82:c6:0e:79:c8: dd:32:97:89:92:49:8b:22:1e:0f:19:99:50:fc:a8:91:45:aa: 78:34:14:ac:71:cd:07:bb:50:32:d4:31:63:02:b8:3b:c4:2a: 20:0d:40:fd:eb:71:48:a8:87:5c:74:da:a4:14:c8:61:f4:f9: 24:b8:b1:2e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCkJIt9hP4Pqufwg5K6Y9ciN1J60wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg1MVoX DTI3MDMwMzA2MzM1MVowMzExMC8GA1UEAxMoNDE1RTVBMDYyNTcyRTg3Qzc1RERF NEUxNjQ3OTJFMzE4QUUyODBDMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI8Yrls0L4JV5I8E79T+vljLoIuo4BCk/i99uqxidrKhovBbD+JhCcdX5UME FrJ9TvIytN3B7BRTmmgxc8fKNWMYdwHBIAJjm5eiRUIf0DetaSpppGfLxY1cjvuV KILUF77kMonM4IwJRoOERGIek8jYqRJi5EjadJuDiLtJJY4uEKLTGl4UbGDuZ4B4 beRM0rSYIPI6/HoufTaoJ7QEd+hU6VJdgQC5T3mtlsfj9q1hCvSPt8A0/3e67cMc Ca8X5NMfYRBd5WaIhDLMrhKAZUITgdA6osB6iiEKfrrEG6Zj6bEDqU+1vBcz5hWw 1qKgx16+Wi6xX1JnbcZzfN4B17sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRBXloG JXLofHXd5OFkeS4xiuKAwDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rgwwDQYJKoZIhvcNAQELBQADggEBAHvu/wJ6vcWrkb37JmhgmvUIIsNnnxlevmGd vgEbGzIkD9eolaifqAmamMc9WGAJ8wZxlpkaG3xkjDehscZyPE23RVadK4WMzZaZ XFk3arngXUQB8+mAQ1jAFfUtb8/8M5Ckn0dCmJoAakH/dAkzad8RDV0IsxsapmjO 0d7IlkEqLe6BEwAVRdpbL4J/wofTPfMIv747jpxSe1EiJw/7NoGji5pBgRf84j7j lUXV3OjxN6alr/vGdRRND8aDBFJ7XWuCxg55yN0yl4mSSYsiHg8ZmVD8qJFFqng0 FKxxzQe7UDLUMWMCuDvEKiANQP3rcUioh1x02qQUyGH0+SS4sS4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:27 2026 by rpki-client