$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146272.roa File: AS146272.roa (raw, json) Hash identifier: HMoWeAd7gjYitcsAOyhVGFVN1EDwfGczYhdQfcEyn8g= Subject key identifier: 5A:00:D2:1F:51:7F:CD:2F:C0:52:80:1D:D5:43:E5:2B:8A:BB:8B:5C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 01C6973910D4E560CF76F598FB061156C68B2334 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146272.roa Signing time: Wed 04 Mar 2026 06:35:08 +0000 ROA not before: Wed 04 Mar 2026 06:30:08 +0000 ROA not after: Wed 03 Mar 2027 06:35:08 +0000 asID: 146272 IP address blocks: 240a:ae26::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c6:97:39:10:d4:e5:60:cf:76:f5:98:fb:06:11:56:c6:8b:23:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:30:08 2026 GMT Not After : Mar 3 06:35:08 2027 GMT Subject: CN=5A00D21F517FCD2FC052801DD543E52B8ABB8B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7d:e8:de:83:34:c9:88:34:c8:69:ee:b9:39: d0:ae:a7:a5:53:6f:b8:32:16:84:8b:36:11:01:95: 17:3a:b1:86:ad:5d:cd:bd:ab:5d:84:e3:eb:d3:56: 2b:0a:31:b9:ef:ea:dd:af:9b:80:16:0c:8b:a5:e3: 33:a2:04:3a:38:b2:e3:c0:08:45:3b:6a:26:08:eb: 9a:4f:eb:37:9d:cf:03:62:b8:69:e0:06:c9:a9:2e: 83:68:0a:86:c7:24:20:62:61:a2:5a:be:e1:7d:66: 38:cc:9f:e3:fb:f8:07:98:c6:66:1e:ad:31:f1:6c: 99:7d:b8:90:28:0c:c8:00:06:ab:cd:e7:ab:b2:78: 47:b0:b6:66:2f:3b:a1:44:7a:3f:dd:5a:db:de:9f: 7c:3d:3d:bc:ff:5e:7b:75:64:5e:a3:27:53:7a:04: a7:bf:84:11:25:49:0c:b1:07:bf:5f:04:ef:7d:2d: 70:db:04:18:93:72:a9:68:79:5a:a0:95:ce:06:cd: 91:f5:e7:83:9c:b0:c1:91:4f:7a:46:46:04:5e:c9: ef:1d:1d:8c:25:d8:98:0b:fd:eb:4f:f3:8b:64:8a: 02:73:e5:16:32:ff:c0:47:31:b2:97:e4:bf:29:87: 62:3c:c6:08:99:9d:45:8c:c5:a1:96:4e:da:d5:ba: ea:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:00:D2:1F:51:7F:CD:2F:C0:52:80:1D:D5:43:E5:2B:8A:BB:8B:5C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae26::/32 Signature Algorithm: sha256WithRSAEncryption 04:d7:f7:d3:ec:9a:8d:3b:6b:76:e3:14:3e:1b:fe:fa:05:7f: 0c:41:4f:f6:75:e6:0f:14:d7:8e:5d:8d:fa:15:5d:4b:0f:ac: b6:e0:b3:b4:fe:84:7d:fb:89:bb:e2:89:17:59:ae:6f:41:86: 42:6b:82:0d:48:2e:db:37:a4:b1:4d:23:ec:99:b5:d7:8f:17: 83:f6:7b:41:c2:e1:f8:a1:32:84:69:d1:cf:1b:04:16:c1:c4: d4:d5:59:0a:c2:0a:eb:e5:52:db:83:60:c9:34:46:8f:56:59: f5:2e:c6:72:a9:8b:ea:a6:cd:3c:90:0c:a2:84:c8:45:ba:d9: 5e:80:cc:02:4a:b2:c8:ef:d6:62:d9:aa:cb:3c:bf:9b:ac:ed: a2:41:e7:79:35:6e:de:c6:b0:37:7f:61:8c:f3:77:86:cc:15: 22:36:8e:cc:65:95:d4:7c:13:df:48:29:a3:4d:13:7b:f6:82: b3:97:4b:1d:c3:f4:c6:60:0e:80:77:c2:4a:e9:30:9b:2a:54: fc:43:f3:70:6a:b5:b6:1b:48:fe:70:14:28:dd:62:24:d9:7c: e4:6f:f7:88:47:87:f0:78:59:9f:f1:0f:70:08:64:2c:df:0c: eb:5f:ad:5c:05:8e:41:d0:cc:88:20:15:b5:ae:b4:ce:b1:7e: 1c:63:c9:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUAcaXORDU5WDPdvWY+wYRVsaLIzQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzAwOFoX DTI3MDMwMzA2MzUwOFowMzExMC8GA1UEAxMoNUEwMEQyMUY1MTdGQ0QyRkMwNTI4 MDFERDU0M0U1MkI4QUJCOEI1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO996N6DNMmINMhp7rk50K6npVNvuDIWhIs2EQGVFzqxhq1dzb2rXYTj69NW Kwoxue/q3a+bgBYMi6XjM6IEOjiy48AIRTtqJgjrmk/rN53PA2K4aeAGyakug2gK hsckIGJholq+4X1mOMyf4/v4B5jGZh6tMfFsmX24kCgMyAAGq83nq7J4R7C2Zi87 oUR6P91a296ffD09vP9ee3VkXqMnU3oEp7+EESVJDLEHv18E730tcNsEGJNyqWh5 WqCVzgbNkfXng5ywwZFPekZGBF7J7x0djCXYmAv960/zi2SKAnPlFjL/wEcxspfk vymHYjzGCJmdRYzFoZZO2tW66t8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRaANIf UX/NL8BSgB3VQ+UriruLXDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK riYwDQYJKoZIhvcNAQELBQADggEBAATX99Psmo07a3bjFD4b/voFfwxBT/Z15g8U 145djfoVXUsPrLbgs7T+hH37ibviiRdZrm9BhkJrgg1ILts3pLFNI+yZtdePF4P2 e0HC4fihMoRp0c8bBBbBxNTVWQrCCuvlUtuDYMk0Ro9WWfUuxnKpi+qmzTyQDKKE yEW62V6AzAJKssjv1mLZqss8v5us7aJB53k1bt7GsDd/YYzzd4bMFSI2jsxlldR8 E99IKaNNE3v2grOXSx3D9MZgDoB3wkrpMJsqVPxD83BqtbYbSP5wFCjdYiTZfORv 94hHh/B4WZ/xD3AIZCzfDOtfrVwFjkHQzIggFbWutM6xfhxjyaI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:53 2026 by rpki-client