$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146444.roa File: AS146444.roa (raw, json) Hash identifier: gPm5nRK/ff3VEaqajaoIuQOmFjOYbJqlpAC1lOznA9U= Subject key identifier: 80:EA:DC:DB:8A:CF:52:20:84:77:84:31:B3:CD:A9:AE:F6:00:E1:6F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7C87B543EFA8853799F20141A1AFD5162844CAC8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146444.roa Signing time: Wed 04 Mar 2026 06:33:50 +0000 ROA not before: Wed 04 Mar 2026 06:28:50 +0000 ROA not after: Wed 03 Mar 2027 06:33:50 +0000 asID: 146444 IP address blocks: 240a:aed2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:87:b5:43:ef:a8:85:37:99:f2:01:41:a1:af:d5:16:28:44:ca:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:50 2026 GMT Not After : Mar 3 06:33:50 2027 GMT Subject: CN=80EADCDB8ACF522084778431B3CDA9AEF600E16F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5e:63:1d:23:f2:8e:fc:b2:99:cc:79:57:c4: 9d:0e:66:c4:c2:16:b3:db:3c:7d:0b:aa:0d:65:b5: 31:33:17:4e:34:75:5f:9f:3c:ba:d9:4a:9c:e8:0e: 21:47:50:a7:a9:5a:88:31:25:82:93:80:b5:18:1f: a5:c2:bb:6d:8d:7f:d2:72:eb:1b:df:1b:63:27:3e: 6d:7e:9f:23:69:d5:ce:38:7a:44:98:8e:5e:c4:91: 2a:c9:30:5c:f3:90:d2:73:ae:61:c4:51:c9:d0:13: de:8a:94:10:44:6d:3c:3e:5f:08:35:5e:f5:bc:53: d5:eb:84:b2:24:e0:4c:31:9b:04:b0:6e:67:f1:5a: a5:cd:ed:b0:5b:17:c4:21:b5:a9:73:41:11:02:ba: 80:10:5e:ea:f6:fa:b5:c0:1c:7e:66:e6:37:91:85: dc:1f:32:ee:fe:dc:4d:ce:2d:8f:87:99:88:72:e8: 77:ba:bb:7e:7a:af:01:79:fb:40:46:f1:92:b8:c6: 99:40:79:14:1c:0d:a8:a3:e4:ff:2c:6d:ad:3e:ea: f6:5f:06:50:d3:2f:b3:48:ca:82:76:15:2a:db:ff: d0:47:6c:de:3e:bd:5b:b1:17:d8:78:b6:d0:48:85: ed:0a:92:cc:bc:f5:cf:e6:72:8c:f1:a0:b8:77:df: 65:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:EA:DC:DB:8A:CF:52:20:84:77:84:31:B3:CD:A9:AE:F6:00:E1:6F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aed2::/32 Signature Algorithm: sha256WithRSAEncryption 8c:44:f3:e0:fc:47:e8:35:aa:f0:61:32:a7:69:a1:4a:2d:d3: c9:0a:69:db:fd:f1:90:c3:25:47:94:f2:9c:28:2f:4d:b8:e2: 37:4b:80:f9:c5:fd:b1:4f:16:d9:7f:b2:38:60:8d:ca:0a:cc: 25:4a:c9:21:82:fd:7c:06:8c:bf:02:1e:02:d1:17:30:4b:a8: 1d:7d:22:10:34:e7:ba:bb:fa:63:b0:dd:fc:72:c5:56:21:ec: 39:68:39:f3:e4:07:3c:5d:70:d8:a3:42:dc:86:14:39:f1:1a: 80:7a:59:02:ec:89:f9:c5:80:da:83:03:10:54:ae:4e:4f:fa: 8a:47:87:54:50:90:c6:70:a6:8f:bb:d7:a3:a8:ef:05:6d:d2: be:77:f3:79:20:2b:b7:ef:26:12:a8:c9:78:29:c9:5f:a7:b8: 18:d5:c3:2a:8e:d8:1a:90:bb:7e:f5:fc:39:3b:7a:b9:1b:c6: 77:6e:4c:e5:db:8c:16:54:fd:bf:6c:a7:ff:e8:1c:f6:fc:9f: b9:9d:a1:88:2d:2a:5f:77:48:85:10:f8:c5:5a:69:79:80:6d: 08:15:7a:88:9c:6f:cb:66:27:bd:63:d1:04:55:be:c0:57:4d: 63:df:d2:2f:97:71:be:96:01:ba:e3:d0:65:e4:18:fd:2e:53: 5f:36:9c:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUfIe1Q++ohTeZ8gFBoa/VFihEysgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg1MFoX DTI3MDMwMzA2MzM1MFowMzExMC8GA1UEAxMoODBFQURDREI4QUNGNTIyMDg0Nzc4 NDMxQjNDREE5QUVGNjAwRTE2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJeYx0j8o78spnMeVfEnQ5mxMIWs9s8fQuqDWW1MTMXTjR1X588utlKnOgO IUdQp6laiDElgpOAtRgfpcK7bY1/0nLrG98bYyc+bX6fI2nVzjh6RJiOXsSRKskw XPOQ0nOuYcRRydAT3oqUEERtPD5fCDVe9bxT1euEsiTgTDGbBLBuZ/Fapc3tsFsX xCG1qXNBEQK6gBBe6vb6tcAcfmbmN5GF3B8y7v7cTc4tj4eZiHLod7q7fnqvAXn7 QEbxkrjGmUB5FBwNqKPk/yxtrT7q9l8GUNMvs0jKgnYVKtv/0Eds3j69W7EX2Hi2 0EiF7QqSzLz1z+ZyjPGguHffZWUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSA6tzb is9SIIR3hDGzzamu9gDhbzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQ0NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rtIwDQYJKoZIhvcNAQELBQADggEBAIxE8+D8R+g1qvBhMqdpoUot08kKadv98ZDD JUeU8pwoL0244jdLgPnF/bFPFtl/sjhgjcoKzCVKySGC/XwGjL8CHgLRFzBLqB19 IhA057q7+mOw3fxyxVYh7DloOfPkBzxdcNijQtyGFDnxGoB6WQLsifnFgNqDAxBU rk5P+opHh1RQkMZwpo+716Oo7wVt0r5383kgK7fvJhKoyXgpyV+nuBjVwyqO2BqQ u371/Dk7erkbxnduTOXbjBZU/b9sp//oHPb8n7mdoYgtKl93SIUQ+MVaaXmAbQgV eoicb8tmJ71j0QRVvsBXTWPf0i+Xcb6WAbrj0GXkGP0uU182nHI= -----END CERTIFICATE-----Generated at Sat Mar 28 15:53:27 2026 by rpki-client