$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146427.roa File: AS146427.roa (raw, json) Hash identifier: HelMHkOP5PHuTwZiv3ox5d7r1jYeECNf6Y4WlFpuUik= Subject key identifier: BC:04:69:25:1C:F7:2D:03:18:58:03:9E:22:43:E0:1E:D9:D9:85:55 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1D3BEAB614A7175A81859D48DDB5E3321D967BCE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146427.roa Signing time: Wed 04 Mar 2026 06:34:40 +0000 ROA not before: Wed 04 Mar 2026 06:29:40 +0000 ROA not after: Wed 03 Mar 2027 06:34:40 +0000 asID: 146427 IP address blocks: 240a:aec1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:3b:ea:b6:14:a7:17:5a:81:85:9d:48:dd:b5:e3:32:1d:96:7b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:40 2026 GMT Not After : Mar 3 06:34:40 2027 GMT Subject: CN=BC0469251CF72D031858039E2243E01ED9D98555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:86:3f:75:cc:9d:0f:cc:e9:9f:04:f9:29:14: 57:5e:a1:3e:07:db:57:7d:aa:24:b6:28:7f:63:7c: 9e:68:72:63:45:d8:4b:d0:5c:b3:06:c2:02:0a:0c: b1:ba:25:11:d1:0b:32:be:08:fa:2c:6b:a1:ad:f4: eb:8b:8a:51:f1:35:58:3b:b2:23:6a:5b:33:40:2f: 64:8c:e8:68:4d:de:71:27:1d:15:69:dc:60:06:67: 8d:4b:ef:56:5b:cc:84:b2:59:6a:31:f5:39:82:a7: 12:32:00:c9:11:01:f6:e1:ec:e8:cb:29:0a:fe:a2: 7c:53:3b:3e:83:c2:b6:a3:30:af:dd:d8:4d:68:ce: c2:08:b9:22:46:a8:d3:c0:40:16:a2:8a:e2:ee:2e: 47:e3:9e:28:3f:8f:07:c5:9a:eb:41:84:4a:26:17: a0:89:90:97:dc:ef:d5:45:82:45:e6:da:8a:c6:95: fc:5f:d7:41:dd:46:30:57:59:55:7e:c5:68:d5:19: e6:d7:f9:0e:c2:b3:1f:e9:43:44:33:24:52:1c:05: a0:8d:1c:ea:2d:e7:3e:9f:0e:33:77:f8:5f:4f:1e: dc:02:0d:f4:07:98:ab:0c:df:7c:c1:c8:78:95:14: 51:75:3a:cd:cd:18:ae:58:43:85:09:15:1c:34:c3: 66:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:04:69:25:1C:F7:2D:03:18:58:03:9E:22:43:E0:1E:D9:D9:85:55 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aec1::/32 Signature Algorithm: sha256WithRSAEncryption 85:ef:e2:94:73:02:ee:91:0d:4b:18:82:13:2d:7b:ac:40:59: 6e:c3:b9:29:ae:19:10:eb:5b:ae:e9:b3:8b:ea:b1:79:90:60: 76:b0:90:55:a3:87:a0:8b:a0:6a:43:e2:fe:6b:af:e5:6b:53: f2:eb:b0:3b:85:7e:75:77:d0:44:16:3b:57:08:8f:28:04:79: 7a:7a:aa:5a:e0:47:c5:74:db:3c:94:0d:28:37:b6:e9:42:cb: 71:eb:85:19:24:fc:3b:e3:10:d7:cd:fc:3c:20:52:27:23:e6: 5e:00:75:5e:30:92:8e:62:34:f2:92:12:fd:7e:82:82:d0:87: c5:62:71:f7:d3:f6:6d:7a:f3:c2:91:05:75:74:04:9c:a6:a4: 39:0e:ba:80:20:c7:41:ec:f1:cf:21:eb:e9:8f:60:eb:1f:9a: c4:e9:5d:34:da:e9:09:d5:3f:a7:fe:3d:62:69:a2:a5:55:84: 23:85:ce:6d:1e:92:86:4d:86:80:4d:4c:4e:c8:77:db:63:a6: 07:ac:ad:20:b6:90:83:f8:ee:8f:37:55:7d:28:3d:b4:94:80: 99:b8:c0:16:a2:bc:9f:6a:6c:90:b3:d1:88:c1:02:51:3d:5a: a9:d0:54:5c:eb:00:2a:fe:f2:a9:5e:41:dc:80:98:a9:8a:cf: 86:b0:22:70 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHTvqthSnF1qBhZ1I3bXjMh2We84wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0MFoX DTI3MDMwMzA2MzQ0MFowMzExMC8GA1UEAxMoQkMwNDY5MjUxQ0Y3MkQwMzE4NTgw MzlFMjI0M0UwMUVEOUQ5ODU1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMiGP3XMnQ/M6Z8E+SkUV16hPgfbV32qJLYof2N8nmhyY0XYS9BcswbCAgoM sbolEdELMr4I+ixroa3064uKUfE1WDuyI2pbM0AvZIzoaE3ecScdFWncYAZnjUvv VlvMhLJZajH1OYKnEjIAyREB9uHs6MspCv6ifFM7PoPCtqMwr93YTWjOwgi5Ikao 08BAFqKK4u4uR+OeKD+PB8Wa60GESiYXoImQl9zv1UWCRebaisaV/F/XQd1GMFdZ VX7FaNUZ5tf5DsKzH+lDRDMkUhwFoI0c6i3nPp8OM3f4X08e3AIN9AeYqwzffMHI eJUUUXU6zc0YrlhDhQkVHDTDZpkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS8BGkl HPctAxhYA54iQ+Ae2dmFVTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQyNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rsEwDQYJKoZIhvcNAQELBQADggEBAIXv4pRzAu6RDUsYghMte6xAWW7DuSmuGRDr W67ps4vqsXmQYHawkFWjh6CLoGpD4v5rr+VrU/LrsDuFfnV30EQWO1cIjygEeXp6 qlrgR8V02zyUDSg3tulCy3HrhRkk/DvjENfN/DwgUicj5l4AdV4wko5iNPKSEv1+ goLQh8VicffT9m1688KRBXV0BJympDkOuoAgx0Hs8c8h6+mPYOsfmsTpXTTa6QnV P6f+PWJpoqVVhCOFzm0ekoZNhoBNTE7Id9tjpgesrSC2kIP47o83VX0oPbSUgJm4 wBaivJ9qbJCz0YjBAlE9WqnQVFzrACr+8qleQdyAmKmKz4awInA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:42 2026 by rpki-client