$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146280.roa File: AS146280.roa (raw, json) Hash identifier: Gk5F80O+MiTgLduWRTQR3HSObyoVu36Y2X00a+fyfSM= Subject key identifier: D6:92:D5:6A:51:5F:0A:39:DB:A9:CC:B5:AA:91:D8:2C:7D:65:0E:02 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E8752459815554EE5089772A931E37C62DE64BF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146280.roa Signing time: Wed 04 Mar 2026 06:34:45 +0000 ROA not before: Wed 04 Mar 2026 06:29:45 +0000 ROA not after: Wed 03 Mar 2027 06:34:45 +0000 asID: 146280 IP address blocks: 240a:ae2e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:87:52:45:98:15:55:4e:e5:08:97:72:a9:31:e3:7c:62:de:64:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:45 2026 GMT Not After : Mar 3 06:34:45 2027 GMT Subject: CN=D692D56A515F0A39DBA9CCB5AA91D82C7D650E02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:89:86:6a:e3:0b:13:ea:79:2d:b8:bf:3a:5a: 8f:73:52:45:7d:fb:f5:01:65:f9:8e:fa:c4:8a:20: ea:95:9d:cf:2a:1e:0d:46:5d:45:7f:62:a2:41:23: 6a:b2:77:fe:56:d9:d4:48:20:2b:1f:de:a1:31:5a: d3:5a:da:35:56:a2:3d:3d:7c:b0:95:99:8f:c4:42: 4a:31:86:11:46:c6:13:1a:e3:64:35:44:36:35:d8: 4f:15:e6:a8:de:e8:46:77:27:fb:a0:cb:08:de:4e: 31:13:3f:1a:55:f9:f6:9a:72:b2:1f:6c:fa:eb:16: ec:30:da:6a:58:f7:52:72:a7:6b:c3:ea:e3:2a:01: 3c:38:48:f2:57:86:4d:82:32:44:36:7b:fd:06:12: a4:cd:9f:4c:61:66:cb:72:a0:1c:85:6c:83:e5:30: 49:d5:26:24:eb:4d:f7:52:b4:ae:10:19:70:48:2e: ab:68:d3:c8:30:fa:63:46:9f:b5:8a:74:c3:f1:04: 2f:73:ea:2e:87:99:76:7b:9c:e7:eb:f8:b7:73:16: b9:73:64:0f:7c:e5:fa:3a:f8:40:ab:e8:c0:de:ba: aa:e1:83:16:3e:aa:ee:bb:4b:80:a0:8f:69:77:1d: cd:54:72:09:08:2f:7e:23:bc:29:d6:e0:76:8a:bc: fb:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:92:D5:6A:51:5F:0A:39:DB:A9:CC:B5:AA:91:D8:2C:7D:65:0E:02 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146280.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae2e::/32 Signature Algorithm: sha256WithRSAEncryption b6:09:ba:2f:28:1b:6d:49:86:d9:9f:d2:26:9a:43:3d:04:4d: 57:44:26:ac:1f:02:6d:40:44:9c:26:8e:4d:f5:de:f9:2e:63: e5:b4:1a:81:18:39:00:96:21:f3:62:99:02:14:6c:5b:9c:3e: 25:e7:17:5e:78:1e:8f:6a:db:4b:41:f8:05:b4:16:b9:e5:11: f9:bb:34:fb:6a:3a:22:a6:9f:79:96:a2:98:d4:5e:c8:46:bb: 9a:1a:e4:fb:b1:c3:03:f2:fd:d6:94:04:68:dd:9e:bb:ac:93: e7:02:d2:7f:89:58:1e:97:46:b5:c0:e2:c4:50:f6:17:96:00: bd:02:9a:b0:85:0a:b5:2f:e7:64:ad:a1:c2:0e:65:b9:f0:83: c7:cb:6b:f4:ab:f0:d9:c4:81:f3:32:c0:95:3c:5d:f8:bd:17: eb:1d:6c:83:62:0a:5f:05:d5:78:9f:20:fd:98:ae:42:00:bc: 19:db:09:58:d6:41:fe:7e:27:5d:2a:18:6c:c4:07:ff:6e:bd: 0c:d0:37:a2:41:22:fd:0e:13:97:30:6a:76:07:bb:0d:a6:c5: 50:28:e5:0d:8d:cf:35:77:95:f1:c6:4c:f8:64:7b:4b:7e:df: 9c:46:03:1a:2d:d6:f0:37:44:d8:39:ef:05:00:7e:04:e0:b9: 30:ea:42:95 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPodSRZgVVU7lCJdyqTHjfGLeZL8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0NVoX DTI3MDMwMzA2MzQ0NVowMzExMC8GA1UEAxMoRDY5MkQ1NkE1MTVGMEEzOURCQTlD Q0I1QUE5MUQ4MkM3RDY1MEUwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCJhmrjCxPqeS24vzpaj3NSRX379QFl+Y76xIog6pWdzyoeDUZdRX9iokEj arJ3/lbZ1EggKx/eoTFa01raNVaiPT18sJWZj8RCSjGGEUbGExrjZDVENjXYTxXm qN7oRncn+6DLCN5OMRM/GlX59ppysh9s+usW7DDaalj3UnKna8Pq4yoBPDhI8leG TYIyRDZ7/QYSpM2fTGFmy3KgHIVsg+UwSdUmJOtN91K0rhAZcEguq2jTyDD6Y0af tYp0w/EEL3PqLoeZdnuc5+v4t3MWuXNkD3zl+jr4QKvowN66quGDFj6q7rtLgKCP aXcdzVRyCQgvfiO8Kdbgdoq8+0ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTWktVq UV8KOdupzLWqkdgsfWUOAjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ri4wDQYJKoZIhvcNAQELBQADggEBALYJui8oG21Jhtmf0iaaQz0ETVdEJqwfAm1A RJwmjk313vkuY+W0GoEYOQCWIfNimQIUbFucPiXnF154Ho9q20tB+AW0FrnlEfm7 NPtqOiKmn3mWopjUXshGu5oa5PuxwwPy/daUBGjdnrusk+cC0n+JWB6XRrXA4sRQ 9heWAL0CmrCFCrUv52StocIOZbnwg8fLa/Sr8NnEgfMywJU8Xfi9F+sdbINiCl8F 1XifIP2YrkIAvBnbCVjWQf5+J10qGGzEB/9uvQzQN6JBIv0OE5cwanYHuw2mxVAo 5Q2NzzV3lfHGTPhke0t+35xGAxot1vA3RNg57wUAfgTguTDqQpU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:50 2026 by rpki-client