$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146426.roa File: AS146426.roa (raw, json) Hash identifier: uTNlgDuyvcMeXTV9gHKea6tqk52pBi6T0Xzxf6aitcM= Subject key identifier: B1:16:49:00:C9:A0:F9:C5:9C:DC:F0:AE:2E:EA:84:F1:5A:76:78:9C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 510BBC0FF95E7935B6109D284CC934660A2A7053 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146426.roa Signing time: Wed 04 Mar 2026 06:34:43 +0000 ROA not before: Wed 04 Mar 2026 06:29:43 +0000 ROA not after: Wed 03 Mar 2027 06:34:43 +0000 asID: 146426 IP address blocks: 240a:aec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:0b:bc:0f:f9:5e:79:35:b6:10:9d:28:4c:c9:34:66:0a:2a:70:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:43 2026 GMT Not After : Mar 3 06:34:43 2027 GMT Subject: CN=B1164900C9A0F9C59CDCF0AE2EEA84F15A76789C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:e1:3d:bc:af:b5:78:a0:06:d1:49:fa:36: ef:11:a9:77:c7:99:ce:de:57:eb:ed:32:23:f0:53: 8b:51:54:49:73:fc:4d:6d:a9:de:47:7b:aa:02:1f: ae:08:51:ca:d5:f5:10:33:b5:ec:02:01:22:ab:fb: 28:b7:ee:ba:7b:6b:2a:52:05:50:f8:9d:d2:a3:e7: 2f:31:ed:58:7f:5a:66:bf:e3:e1:81:61:dd:9a:be: a4:12:e8:26:e5:87:1d:a1:6b:ac:94:9a:6c:14:ff: b6:28:b1:23:62:fb:f4:b8:3c:70:26:73:e2:cf:af: 50:dd:9f:9a:63:f1:b4:da:18:a3:cb:17:41:ed:a6: 24:7a:02:58:22:99:aa:77:8f:cc:6f:13:ab:ce:49: 04:0b:a0:89:5f:29:5e:98:7c:ca:de:29:fc:4b:b5: f5:4f:75:e0:f3:8a:7c:de:56:75:db:3d:96:9e:cd: b5:c3:50:b5:2b:9d:e9:b6:b6:0d:15:13:0a:3a:83: a4:65:a5:4f:10:0a:77:74:73:bd:29:1f:a0:57:7d: a0:0e:1c:6f:6f:8d:9f:4f:7c:b9:3b:f1:e4:31:dc: 31:0b:3d:fe:a0:95:bd:45:96:3a:6d:71:ce:7d:76: f4:89:9c:5c:c0:92:c8:48:f5:1c:c8:20:00:90:ea: d6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:16:49:00:C9:A0:F9:C5:9C:DC:F0:AE:2E:EA:84:F1:5A:76:78:9C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146426.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aec0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:c0:23:bb:7f:9e:4d:86:a0:50:c3:7f:d8:3f:18:f1:c2:4f: f0:7c:87:62:33:32:f6:50:b6:e4:64:34:2f:e8:aa:78:80:a8: 08:dc:08:21:0e:24:08:c1:fb:ac:86:59:5a:b0:e9:53:5d:eb: 8b:0e:7b:57:46:88:a1:b0:20:ce:d8:a7:18:28:2b:af:ae:c2: c8:c6:a5:2e:94:ab:9e:5f:ab:dd:24:f6:e2:8c:23:e2:e3:d2: 38:b1:5d:dc:39:09:f7:26:e9:40:2a:3d:50:16:b9:37:9b:ff: 4c:7a:28:30:ce:2f:51:6a:7b:f1:bb:28:d6:d2:ab:60:0f:de: b0:6d:aa:e4:26:b2:5a:5c:1c:c6:08:46:08:b4:b5:e8:89:9b: 62:b6:00:ac:e6:fd:fd:48:84:71:22:2f:66:66:9f:03:30:27: aa:92:9c:48:9d:9e:64:99:76:04:97:ca:38:ee:11:01:9a:74: 71:4b:16:f5:78:80:10:ef:1c:17:c3:4e:66:ac:01:b3:dd:26: 0a:33:75:c2:64:db:a7:88:80:2a:d1:db:b7:a2:85:37:06:0b: 12:ae:f8:11:ed:98:4b:70:55:8b:67:5b:a6:f8:21:8b:2d:0d: a1:77:13:49:d7:e4:31:64:db:22:cf:aa:c4:85:9e:27:3e:ad: 2f:e5:57:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUUQu8D/leeTW2EJ0oTMk0ZgoqcFMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0M1oX DTI3MDMwMzA2MzQ0M1owMzExMC8GA1UEAxMoQjExNjQ5MDBDOUEwRjlDNTlDRENG MEFFMkVFQTg0RjE1QTc2Nzg5QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALP94T28r7V4oAbRSfo27xGpd8eZzt5X6+0yI/BTi1FUSXP8TW2p3kd7qgIf rghRytX1EDO17AIBIqv7KLfuuntrKlIFUPid0qPnLzHtWH9aZr/j4YFh3Zq+pBLo JuWHHaFrrJSabBT/tiixI2L79Lg8cCZz4s+vUN2fmmPxtNoYo8sXQe2mJHoCWCKZ qnePzG8Tq85JBAugiV8pXph8yt4p/Eu19U914POKfN5Wdds9lp7NtcNQtSud6ba2 DRUTCjqDpGWlTxAKd3RzvSkfoFd9oA4cb2+Nn098uTvx5DHcMQs9/qCVvUWWOm1x zn129ImcXMCSyEj1HMggAJDq1rECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSxFkkA yaD5xZzc8K4u6oTxWnZ4nDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQyNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rsAwDQYJKoZIhvcNAQELBQADggEBAErAI7t/nk2GoFDDf9g/GPHCT/B8h2IzMvZQ tuRkNC/oqniAqAjcCCEOJAjB+6yGWVqw6VNd64sOe1dGiKGwIM7YpxgoK6+uwsjG pS6Uq55fq90k9uKMI+Lj0jixXdw5Cfcm6UAqPVAWuTeb/0x6KDDOL1Fqe/G7KNbS q2AP3rBtquQmslpcHMYIRgi0teiJm2K2AKzm/f1IhHEiL2ZmnwMwJ6qSnEidnmSZ dgSXyjjuEQGadHFLFvV4gBDvHBfDTmasAbPdJgozdcJk26eIgCrR27eihTcGCxKu +BHtmEtwVYtnW6b4IYstDaF3E0nX5DFk2yLPqsSFnic+rS/lV7A= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:09 2026 by rpki-client