$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146267.roa File: AS146267.roa (raw, json) Hash identifier: SiyVtouY+IX+jwnwqRLklVOZbUxRh4XTlosj8ckX3rc= Subject key identifier: 73:07:6F:E9:4B:4D:F7:08:FD:4B:5C:77:7D:F3:B8:07:58:A2:B0:EA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6C79AED322A941DFE409ECF2B4C62072BF594484 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146267.roa Signing time: Wed 04 Mar 2026 06:34:36 +0000 ROA not before: Wed 04 Mar 2026 06:29:36 +0000 ROA not after: Wed 03 Mar 2027 06:34:36 +0000 asID: 146267 IP address blocks: 240a:ae21::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:79:ae:d3:22:a9:41:df:e4:09:ec:f2:b4:c6:20:72:bf:59:44:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:36 2026 GMT Not After : Mar 3 06:34:36 2027 GMT Subject: CN=73076FE94B4DF708FD4B5C777DF3B80758A2B0EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:8c:c5:ec:28:7c:47:9c:d0:22:2c:97:df: 18:cd:70:1c:4f:f2:42:2f:5a:6d:43:bb:f2:8e:ca: ea:2a:34:50:ad:ac:be:f6:7a:92:48:48:83:9c:18: e5:7d:28:c6:6e:59:d2:2c:ed:21:ad:7f:22:0d:aa: 5c:3b:9d:9f:d9:dc:63:99:86:77:46:2d:67:7d:e1: b3:a4:c2:fd:fa:7d:f7:d3:93:aa:24:5a:e5:b2:e6: 20:60:6d:10:41:9a:6f:99:82:e7:47:ea:06:28:bd: 87:8e:15:88:64:de:5d:7a:1c:ef:53:b5:9d:46:c7: 65:72:56:28:f9:0b:6b:5e:90:9b:bd:dd:bb:a2:8e: 9d:5e:64:9c:60:cd:95:82:89:94:17:70:f6:7b:33: 2f:14:04:4a:af:d6:57:7b:41:6b:08:d7:96:ff:96: a7:c7:f2:81:16:30:3b:51:94:2c:a6:ed:08:66:7d: a9:75:a7:db:bc:ba:11:75:73:77:23:fe:cf:a6:bc: c3:f1:5e:17:6d:98:09:e2:28:dd:ed:99:7a:3d:70: ff:46:0a:32:d6:4c:d3:49:19:d5:d9:13:1b:fc:43: c2:81:75:2b:7e:2a:db:ff:f7:a8:97:b7:bb:49:67: d1:fa:ad:8b:64:77:6f:45:66:14:4d:ec:76:3d:29: 6d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:07:6F:E9:4B:4D:F7:08:FD:4B:5C:77:7D:F3:B8:07:58:A2:B0:EA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae21::/32 Signature Algorithm: sha256WithRSAEncryption 4e:4c:64:33:38:73:40:dd:0d:40:2b:78:c0:08:87:96:89:17: 07:ac:56:4e:1d:1b:c4:cb:38:c0:55:f2:45:9e:33:02:ca:1a: a5:a9:ac:e2:b1:81:80:80:22:eb:9e:9b:2b:34:11:4c:a4:08: 33:06:2b:ad:f6:3c:0c:7b:46:e9:f4:dc:bd:dc:86:f9:e2:8b: 2b:2e:af:1c:19:d4:3f:f8:1d:aa:1e:34:cd:b5:aa:b8:33:9c: d1:cc:ba:d9:f6:16:af:bf:6d:25:2c:fb:9c:27:23:4c:92:1e: e7:ac:95:28:1c:46:ad:a0:d5:7e:0c:ee:f3:16:8f:2d:5f:fb: 0b:f0:b9:aa:4a:54:92:f0:12:ad:58:34:b7:32:e1:a9:8e:95: 86:47:6d:92:6a:cf:58:40:a8:69:19:da:46:9d:e2:8e:35:48: a7:67:d7:e4:c8:e9:cd:ec:03:bb:40:34:99:8a:f0:58:e2:eb: ad:24:4f:56:38:e2:02:8a:e2:ea:bb:b6:7f:40:48:5c:1c:53: 2e:f0:97:6f:e0:21:ee:62:99:b7:4b:fa:30:c8:ad:37:87:e7: c7:b3:25:58:7b:ed:a1:f8:b3:9c:bf:cf:0f:1a:58:d0:ff:72: 73:d5:a0:3a:2c:53:31:eb:cc:f3:ac:c9:5b:2a:0c:4b:88:bd: 8e:f2:03:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbHmu0yKpQd/kCezytMYgcr9ZRIQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzNloX DTI3MDMwMzA2MzQzNlowMzExMC8GA1UEAxMoNzMwNzZGRTk0QjRERjcwOEZENEI1 Qzc3N0RGM0I4MDc1OEEyQjBFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANB9jMXsKHxHnNAiLJffGM1wHE/yQi9abUO78o7K6io0UK2svvZ6kkhIg5wY 5X0oxm5Z0iztIa1/Ig2qXDudn9ncY5mGd0YtZ33hs6TC/fp999OTqiRa5bLmIGBt EEGab5mC50fqBii9h44ViGTeXXoc71O1nUbHZXJWKPkLa16Qm73du6KOnV5knGDN lYKJlBdw9nszLxQESq/WV3tBawjXlv+Wp8fygRYwO1GULKbtCGZ9qXWn27y6EXVz dyP+z6a8w/FeF22YCeIo3e2Zej1w/0YKMtZM00kZ1dkTG/xDwoF1K34q2//3qJe3 u0ln0fqti2R3b0VmFE3sdj0pbccCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRzB2/p S033CP1LXHd987gHWKKw6jAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI2Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK riEwDQYJKoZIhvcNAQELBQADggEBAE5MZDM4c0DdDUAreMAIh5aJFwesVk4dG8TL OMBV8kWeMwLKGqWprOKxgYCAIuuemys0EUykCDMGK632PAx7Run03L3chvniiysu rxwZ1D/4HaoeNM21qrgznNHMutn2Fq+/bSUs+5wnI0ySHueslSgcRq2g1X4M7vMW jy1f+wvwuapKVJLwEq1YNLcy4amOlYZHbZJqz1hAqGkZ2kad4o41SKdn1+TI6c3s A7tANJmK8Fji660kT1Y44gKK4uq7tn9ASFwcUy7wl2/gIe5imbdL+jDIrTeH58ez JVh77aH4s5y/zw8aWND/cnPVoDosUzHrzPOsyVsqDEuIvY7yAxI= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:37 2026 by rpki-client