$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146259.roa File: AS146259.roa (raw, json) Hash identifier: ivWwTEWmhRSEnsBBYUTmV6BSIo2q2MqysBonN4pNm70= Subject key identifier: 6A:1B:B7:23:89:6A:7E:37:6E:50:97:9F:DD:5B:61:C4:A7:D4:10:4D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5C4148FA77E333EB8408A7044A54B0FE4087E75F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146259.roa Signing time: Wed 04 Mar 2026 06:34:01 +0000 ROA not before: Wed 04 Mar 2026 06:29:01 +0000 ROA not after: Wed 03 Mar 2027 06:34:01 +0000 asID: 146259 IP address blocks: 240a:ae19::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:41:48:fa:77:e3:33:eb:84:08:a7:04:4a:54:b0:fe:40:87:e7:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:01 2026 GMT Not After : Mar 3 06:34:01 2027 GMT Subject: CN=6A1BB723896A7E376E50979FDD5B61C4A7D4104D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e0:67:dc:58:8e:27:fa:5c:64:40:5d:0f:48: 1a:e2:ea:9a:b5:73:bf:6c:cd:b4:72:e0:3b:f4:db: e9:c8:54:51:c2:36:b7:8f:5c:e5:79:06:c3:40:74: 0e:2b:cf:fc:38:82:b5:6a:a8:27:26:23:3f:d0:5f: 2e:88:c2:f0:71:eb:b4:3d:51:63:59:63:52:65:49: 72:9f:51:ac:67:b9:c2:54:e1:d5:ef:23:d0:18:77: 5f:85:db:77:24:39:58:fa:f6:e4:46:d6:ff:de:f2: ff:14:59:18:f4:cb:96:bc:1c:b0:27:68:82:11:a6: b0:0d:4d:d6:a1:f2:d1:5d:c1:38:37:7c:35:92:60: a4:e8:77:9b:ab:d0:bd:b3:13:99:41:04:e3:09:aa: 94:53:99:9e:e8:a6:d1:64:f7:c0:7a:39:11:ba:8b: 0d:93:bf:cc:0a:f7:93:93:07:31:92:c5:e8:86:fd: 0c:b0:8a:3d:fe:c5:e6:57:ac:b0:d3:95:6f:ea:d1: a5:9a:e2:9a:ea:17:03:79:73:c8:d0:cc:8a:f6:78: a1:8f:c2:8c:a4:e4:48:af:59:cf:c2:05:c1:d7:ab: 71:9b:14:ee:c0:03:a7:b6:f2:6d:48:29:7b:fd:43: f1:95:72:33:4e:68:4c:d3:60:84:82:86:7c:ef:62: 3e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1B:B7:23:89:6A:7E:37:6E:50:97:9F:DD:5B:61:C4:A7:D4:10:4D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146259.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae19::/32 Signature Algorithm: sha256WithRSAEncryption 91:45:19:c3:ff:28:a0:b8:fc:8c:69:44:02:ef:30:2d:80:18: fc:53:a0:cc:ff:42:89:bd:64:ae:a6:ab:78:f4:3e:61:bb:96: 06:12:14:fb:eb:47:57:7d:76:ff:e8:d9:82:cb:4f:ac:c7:60: ae:7d:e9:33:08:28:0d:46:ce:bd:b8:f3:2d:e2:31:03:63:79: da:f6:87:c5:a2:a8:64:71:b3:ea:a6:35:1a:c4:f9:c7:e8:5d: e1:b6:8e:d7:ab:0a:83:9f:a7:1d:b6:b0:b4:1a:92:56:30:71: 4c:33:60:cf:a6:38:eb:6f:82:fc:17:1a:1d:32:60:29:18:b3: 36:24:b1:b5:bb:32:10:d0:6c:65:37:52:ca:90:75:ed:cf:8a: d7:1d:a0:00:ac:f6:6e:24:34:38:fd:ae:08:ee:1e:41:be:1c: ef:7f:57:96:3c:db:57:3a:f2:f1:3e:05:78:27:46:4a:fd:8b: 54:08:41:67:dc:31:6f:4f:80:e1:b2:e5:27:1e:e5:77:65:8f: d3:7e:6f:66:3d:0f:37:a2:16:3c:a0:51:7a:72:3e:7e:b7:a8: 29:f3:a9:b4:2e:b1:78:ff:7d:1d:55:7e:b5:f6:4e:74:f1:dc: 07:90:37:4e:f2:51:81:b6:92:fa:0f:94:92:f1:d0:e8:b5:e3: f6:32:e8:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXEFI+nfjM+uECKcESlSw/kCH518wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwMVoX DTI3MDMwMzA2MzQwMVowMzExMC8GA1UEAxMoNkExQkI3MjM4OTZBN0UzNzZFNTA5 NzlGREQ1QjYxQzRBN0Q0MTA0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOTgZ9xYjif6XGRAXQ9IGuLqmrVzv2zNtHLgO/Tb6chUUcI2t49c5XkGw0B0 DivP/DiCtWqoJyYjP9BfLojC8HHrtD1RY1ljUmVJcp9RrGe5wlTh1e8j0Bh3X4Xb dyQ5WPr25EbW/97y/xRZGPTLlrwcsCdoghGmsA1N1qHy0V3BODd8NZJgpOh3m6vQ vbMTmUEE4wmqlFOZnuim0WT3wHo5EbqLDZO/zAr3k5MHMZLF6Ib9DLCKPf7F5les sNOVb+rRpZrimuoXA3lzyNDMivZ4oY/CjKTkSK9Zz8IFwdercZsU7sADp7bybUgp e/1D8ZVyM05oTNNghIKGfO9iPhcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRqG7cj iWp+N25Ql5/dW2HEp9QQTTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI1OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rhkwDQYJKoZIhvcNAQELBQADggEBAJFFGcP/KKC4/IxpRALvMC2AGPxToMz/Qom9 ZK6mq3j0PmG7lgYSFPvrR1d9dv/o2YLLT6zHYK596TMIKA1Gzr248y3iMQNjedr2 h8WiqGRxs+qmNRrE+cfoXeG2jterCoOfpx22sLQaklYwcUwzYM+mOOtvgvwXGh0y YCkYszYksbW7MhDQbGU3UsqQde3PitcdoACs9m4kNDj9rgjuHkG+HO9/V5Y821c6 8vE+BXgnRkr9i1QIQWfcMW9PgOGy5Sce5Xdlj9N+b2Y9DzeiFjygUXpyPn63qCnz qbQusXj/fR1VfrX2TnTx3AeQN07yUYG2kvoPlJLx0Oi14/Yy6JY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:35 2026 by rpki-client