$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146410.roa File: AS146410.roa (raw, json) Hash identifier: Jc3uBf65yoK7PJGc6/r/1bOZF7dXgvcAAmDM+x54aYs= Subject key identifier: 81:1F:E1:C6:E4:44:13:E6:F4:E4:50:67:3A:B9:35:CB:B4:A3:9A:06 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 32147D9E9FDD118A8071ABC9A3B5CAACDBE6D18D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146410.roa Signing time: Wed 04 Mar 2026 06:33:48 +0000 ROA not before: Wed 04 Mar 2026 06:28:48 +0000 ROA not after: Wed 03 Mar 2027 06:33:48 +0000 asID: 146410 IP address blocks: 240a:aeb0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:14:7d:9e:9f:dd:11:8a:80:71:ab:c9:a3:b5:ca:ac:db:e6:d1:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:48 2026 GMT Not After : Mar 3 06:33:48 2027 GMT Subject: CN=811FE1C6E44413E6F4E450673AB935CBB4A39A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ea:a3:eb:92:e0:69:2b:dd:d4:db:f2:77:f3: 44:f7:f7:cb:e2:0e:0e:70:fd:3a:34:eb:70:fd:ab: 83:6b:c4:c0:33:7e:77:12:f3:00:49:a2:bf:07:c9: ce:6e:1c:b7:6b:0a:1d:16:7b:d5:30:6c:79:35:2f: e3:4f:f6:4c:3b:2f:ec:c5:65:03:f4:7c:f6:fc:21: bd:0a:0f:47:96:d2:99:02:f2:5f:c2:48:67:8d:74: d7:c3:23:f0:96:36:bb:53:32:37:7b:83:2c:98:e3: 24:dc:9c:44:cb:c0:3d:e5:ce:63:f2:95:5f:5b:db: 52:92:5d:4c:79:0b:45:21:97:39:47:9b:25:88:8c: 4f:75:05:d7:e8:a0:d5:71:70:32:0e:70:8d:6c:26: 8d:93:53:79:a6:9d:de:79:0f:28:1d:e7:e6:dd:74: 54:2e:ad:f6:59:6d:14:bb:2c:9c:73:a8:3f:bb:9b: e5:a9:ec:88:9b:c9:57:ce:8c:40:6d:b4:21:59:1a: dd:87:c3:f3:f4:65:04:67:15:d3:ef:c1:90:13:58: c6:bf:2e:67:12:d1:7f:8f:26:7e:d8:19:6d:21:ba: e6:62:9b:0a:45:08:2c:52:d2:38:53:e0:f3:d7:2d: 63:18:db:48:ae:3d:6a:a2:74:72:89:ab:68:06:7a: 17:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1F:E1:C6:E4:44:13:E6:F4:E4:50:67:3A:B9:35:CB:B4:A3:9A:06 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146410.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aeb0::/32 Signature Algorithm: sha256WithRSAEncryption 75:01:b8:02:4b:b9:76:08:5a:9f:d0:79:a3:73:de:1b:0d:ee: bf:b3:b0:bd:72:4d:48:d0:68:44:b1:48:ee:05:85:9f:3c:c7: 04:a8:59:32:6f:10:9a:b1:8d:2a:6b:c0:f9:bc:32:98:7a:5d: 8b:e1:da:7e:5a:cd:06:69:57:92:3a:5b:4e:e3:88:6c:64:37: 66:be:9a:a6:85:b4:95:d2:df:85:7f:00:bb:f5:df:5f:04:ee: 75:45:f8:cb:f3:c8:79:4e:54:ac:04:a6:53:f2:bf:86:0d:98: 91:e3:20:cd:4a:8e:c0:ab:7b:12:e0:88:39:39:99:45:51:ef: cc:e1:7f:3a:2e:3c:66:fe:e0:21:87:04:0f:8c:67:61:dc:a9: 3e:e9:39:6f:f7:c5:a7:79:01:83:69:bf:c4:cf:05:8f:b1:17: 89:39:92:09:d5:50:98:0a:19:d3:7e:7b:86:25:53:c1:33:6e: 85:f8:34:4f:55:d3:9e:5b:76:94:fb:39:96:0c:f4:c8:35:47: 43:ad:05:76:35:1f:60:7b:97:af:40:f1:8d:99:94:a2:d0:5c: 6c:cf:0a:cb:f0:a8:a3:b7:9a:d7:e8:64:4d:5f:f8:0e:43:1d: 21:b2:40:7b:73:57:7a:f4:ec:b4:d9:00:22:d4:d3:ce:4a:31: 65:69:be:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMhR9np/dEYqAcavJo7XKrNvm0Y0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0OFoX DTI3MDMwMzA2MzM0OFowMzExMC8GA1UEAxMoODExRkUxQzZFNDQ0MTNFNkY0RTQ1 MDY3M0FCOTM1Q0JCNEEzOUEwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrqo+uS4Gkr3dTb8nfzRPf3y+IODnD9OjTrcP2rg2vEwDN+dxLzAEmivwfJ zm4ct2sKHRZ71TBseTUv40/2TDsv7MVlA/R89vwhvQoPR5bSmQLyX8JIZ41018Mj 8JY2u1MyN3uDLJjjJNycRMvAPeXOY/KVX1vbUpJdTHkLRSGXOUebJYiMT3UF1+ig 1XFwMg5wjWwmjZNTeaad3nkPKB3n5t10VC6t9lltFLssnHOoP7ub5ansiJvJV86M QG20IVka3YfD8/RlBGcV0+/BkBNYxr8uZxLRf48mftgZbSG65mKbCkUILFLSOFPg 89ctYxjbSK49aqJ0comraAZ6FxcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSBH+HG 5EQT5vTkUGc6uTXLtKOaBjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rrAwDQYJKoZIhvcNAQELBQADggEBAHUBuAJLuXYIWp/QeaNz3hsN7r+zsL1yTUjQ aESxSO4FhZ88xwSoWTJvEJqxjSprwPm8Mph6XYvh2n5azQZpV5I6W07jiGxkN2a+ mqaFtJXS34V/ALv1318E7nVF+MvzyHlOVKwEplPyv4YNmJHjIM1KjsCrexLgiDk5 mUVR78zhfzouPGb+4CGHBA+MZ2HcqT7pOW/3xad5AYNpv8TPBY+xF4k5kgnVUJgK GdN+e4YlU8EzboX4NE9V055bdpT7OZYM9Mg1R0OtBXY1H2B7l69A8Y2ZlKLQXGzP CsvwqKO3mtfoZE1f+A5DHSGyQHtzV3r07LTZACLU085KMWVpvgQ= -----END CERTIFICATE-----Generated at Sat Mar 28 14:30:42 2026 by rpki-client