$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146274.roa File: AS146274.roa (raw, json) Hash identifier: 4ffEqP6wiqfp3iLpYppftoFwCkBiqEQENAyhhnZFj4Q= Subject key identifier: 8A:7B:C7:A4:D9:FF:59:94:C2:7B:8E:AF:58:09:23:CF:B6:C0:82:32 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0D5AF357E76B3F14312C05E7045DC969AF2D14BA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146274.roa Signing time: Wed 04 Mar 2026 06:34:16 +0000 ROA not before: Wed 04 Mar 2026 06:29:16 +0000 ROA not after: Wed 03 Mar 2027 06:34:16 +0000 asID: 146274 IP address blocks: 240a:ae28::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:5a:f3:57:e7:6b:3f:14:31:2c:05:e7:04:5d:c9:69:af:2d:14:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:16 2026 GMT Not After : Mar 3 06:34:16 2027 GMT Subject: CN=8A7BC7A4D9FF5994C27B8EAF580923CFB6C08232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:f2:8f:cd:33:e4:c9:ba:1d:7f:57:e2:09: b4:c3:9a:03:af:89:90:d6:eb:c5:fe:fb:f9:4e:23: 32:77:82:76:cd:86:5e:db:09:43:49:cd:de:5d:75: ac:9f:73:7d:04:10:dd:9b:15:57:1f:21:db:9a:b3: 2b:ad:49:67:fe:f9:41:d7:11:ae:bd:79:5a:28:c1: 1a:58:1c:d5:0a:e1:67:35:d5:53:f2:b4:f8:96:04: e5:20:16:97:0b:2e:78:ea:69:03:7d:a1:d0:2d:0b: 6a:4e:a4:59:c1:3b:8b:82:ba:2a:8a:93:f7:41:5c: 94:2e:ed:52:5d:cd:14:9f:83:ce:d2:83:f1:fe:9c: 4a:32:64:56:6e:74:5a:0a:3b:22:24:36:05:e5:32: aa:95:99:01:63:61:27:90:58:8a:d5:18:85:76:0f: 21:a8:62:28:ee:21:99:be:50:32:28:06:f3:5b:86: 60:bd:d1:0e:91:55:95:78:6d:56:06:1a:cc:a5:9b: 8d:83:6c:7b:dd:3e:4e:af:88:4a:0a:41:d8:41:29: 9e:0d:3a:0c:14:38:c0:a9:2e:0f:97:83:9c:36:a3: cf:7e:55:cc:9a:07:43:15:99:2b:76:77:d2:b3:db: 9b:cb:3d:73:4b:e0:c4:a1:84:b4:b1:4a:77:7b:d8: 97:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7B:C7:A4:D9:FF:59:94:C2:7B:8E:AF:58:09:23:CF:B6:C0:82:32 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146274.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae28::/32 Signature Algorithm: sha256WithRSAEncryption aa:0c:16:7d:30:68:c2:45:9a:ef:28:61:43:14:a9:ff:1b:d6: 41:73:3b:9e:cf:f8:9f:7a:3a:18:1c:9c:de:d2:5e:a9:dd:ed: 94:8d:a0:ee:36:fd:1e:4a:eb:fe:3d:11:79:b7:81:0a:15:dc: ad:83:45:f4:82:90:ed:10:fd:dd:ca:b7:08:9e:bc:e5:a0:0d: 19:a7:cc:0e:b6:5f:b3:55:a8:3b:10:8c:26:56:64:f7:68:c1: 83:48:22:01:2b:fd:d7:95:09:32:cc:2f:66:dc:46:ea:ba:72: c2:49:f2:9d:52:fd:bf:62:ed:ee:c6:a5:d9:36:59:7f:73:de: 97:a0:d2:f1:3e:6f:b6:ec:33:03:0a:bd:07:9e:c3:c9:7a:6f: 94:44:a7:84:6d:1c:0c:68:44:5a:56:de:aa:f0:7a:59:c9:88: ca:ea:59:60:49:fa:59:68:d2:78:67:a6:32:81:44:c0:e4:eb: c6:40:47:0b:c5:28:da:71:dc:f4:31:21:f0:2f:b4:30:9a:73: f0:8c:a0:52:57:d3:58:08:89:90:64:6f:af:3d:97:40:b4:18: ce:1c:3f:f7:a7:90:b1:e9:c6:b6:a0:2e:1c:bb:c7:d5:0c:d2: ef:b0:1a:da:49:29:1b:cf:0b:66:27:a1:24:02:30:57:18:39: b2:cc:7c:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDVrzV+drPxQxLAXnBF3Jaa8tFLowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkxNloX DTI3MDMwMzA2MzQxNlowMzExMC8GA1UEAxMoOEE3QkM3QTREOUZGNTk5NEMyN0I4 RUFGNTgwOTIzQ0ZCNkMwODIzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKuU8o/NM+TJuh1/V+IJtMOaA6+JkNbrxf77+U4jMneCds2GXtsJQ0nN3l11 rJ9zfQQQ3ZsVVx8h25qzK61JZ/75QdcRrr15WijBGlgc1QrhZzXVU/K0+JYE5SAW lwsueOppA32h0C0Lak6kWcE7i4K6KoqT90FclC7tUl3NFJ+DztKD8f6cSjJkVm50 Wgo7IiQ2BeUyqpWZAWNhJ5BYitUYhXYPIahiKO4hmb5QMigG81uGYL3RDpFVlXht VgYazKWbjYNse90+Tq+ISgpB2EEpng06DBQ4wKkuD5eDnDajz35VzJoHQxWZK3Z3 0rPbm8s9c0vgxKGEtLFKd3vYlwkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSKe8ek 2f9ZlMJ7jq9YCSPPtsCCMjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rigwDQYJKoZIhvcNAQELBQADggEBAKoMFn0waMJFmu8oYUMUqf8b1kFzO57P+J96 OhgcnN7SXqnd7ZSNoO42/R5K6/49EXm3gQoV3K2DRfSCkO0Q/d3KtwievOWgDRmn zA62X7NVqDsQjCZWZPdowYNIIgEr/deVCTLML2bcRuq6csJJ8p1S/b9i7e7Gpdk2 WX9z3peg0vE+b7bsMwMKvQeew8l6b5REp4RtHAxoRFpW3qrwelnJiMrqWWBJ+llo 0nhnpjKBRMDk68ZARwvFKNpx3PQxIfAvtDCac/CMoFJX01gIiZBkb689l0C0GM4c P/enkLHpxragLhy7x9UM0u+wGtpJKRvPC2YnoSQCMFcYObLMfBI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:48 2026 by rpki-client