$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146464.roa File: AS146464.roa (raw, json) Hash identifier: BEqsvDkbSMnOAtPFO3od0TxgodvVSyLC+0mmg1Fzhms= Subject key identifier: 83:7D:A4:9D:C5:B0:2D:D6:03:54:E9:2A:19:EC:37:C3:94:CE:89:08 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 197152721FB771398E974F86B92B83EC93852A2A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146464.roa Signing time: Wed 04 Mar 2026 06:33:32 +0000 ROA not before: Wed 04 Mar 2026 06:28:32 +0000 ROA not after: Wed 03 Mar 2027 06:33:32 +0000 asID: 146464 IP address blocks: 240a:aee6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:71:52:72:1f:b7:71:39:8e:97:4f:86:b9:2b:83:ec:93:85:2a:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:32 2026 GMT Not After : Mar 3 06:33:32 2027 GMT Subject: CN=837DA49DC5B02DD60354E92A19EC37C394CE8908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:e6:8d:4e:a6:f6:9d:17:a3:01:7e:40:bb: bc:29:3d:cf:ea:da:9e:44:dd:8b:02:39:79:b9:84: 6a:eb:ec:7d:7f:2f:a8:8a:a9:e1:be:da:8b:42:ae: c6:7a:f8:f0:ab:db:00:b8:81:75:54:15:bb:86:3c: 49:bc:2a:3a:9d:ec:c9:e2:82:68:5a:23:62:21:25: 9c:64:61:4c:ec:90:30:cd:b0:7a:3a:3f:f1:0f:a5: e3:e1:a6:1a:6b:85:cf:8c:ea:71:24:02:7c:e8:ba: 7b:9d:62:27:79:4b:05:3b:c7:51:74:47:92:a8:f3: 32:c1:01:2f:a8:7d:72:fc:a0:57:a3:ac:fd:4f:79: b9:a3:00:45:62:63:0f:58:39:61:c4:ed:92:7b:6e: 09:17:0d:fe:e9:4d:af:73:0b:4c:07:b3:1d:00:6f: e9:8e:50:c1:ee:09:b6:d6:7d:24:dd:96:8a:7e:f1: 78:05:45:5e:b8:b5:10:04:f6:26:9a:81:6f:93:d9: 03:c1:5d:b4:28:63:61:e2:ef:fd:58:fa:42:da:87: ed:2f:0d:fd:ab:8b:0c:65:31:35:df:3f:2d:0f:25: 03:03:93:e7:77:75:7b:02:63:e2:41:3e:52:e1:37: bc:9c:5a:41:f3:db:d0:e1:11:47:2d:4f:90:ec:fb: 36:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7D:A4:9D:C5:B0:2D:D6:03:54:E9:2A:19:EC:37:C3:94:CE:89:08 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146464.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aee6::/32 Signature Algorithm: sha256WithRSAEncryption 5b:7e:29:18:d1:0d:d9:5a:4e:0d:ab:14:d1:2f:86:27:07:d0: 8c:79:10:04:8d:c3:d1:55:e2:5e:98:01:cf:b9:85:7f:eb:58: 4c:a0:b7:cf:55:af:83:2d:ce:38:cf:1f:4a:ce:47:a8:9c:25: cd:8f:75:2d:4a:56:8a:98:4d:8e:eb:5d:48:39:31:5d:59:ca: 02:7a:f1:26:ad:5a:5d:3f:7c:cc:1f:96:ba:c7:a9:01:15:f4: fd:17:b0:52:4b:ae:ba:41:06:b6:16:50:79:03:32:76:53:db: 75:1a:66:c1:a9:25:4f:32:ac:f6:20:28:fa:7d:d0:99:0c:1b: 05:7c:5e:38:ca:33:c7:6d:d5:ba:e6:7b:f5:16:69:40:6a:2a: 32:7c:20:28:b6:71:9a:ae:f6:32:5d:b6:75:5d:f0:93:45:84: fc:ce:b5:4f:82:31:cd:41:f4:e5:e3:21:ae:3f:7b:a8:2c:18: 54:f1:49:48:b7:37:cc:4a:4f:70:9b:79:75:24:cf:69:a5:80: e4:f3:6f:e6:41:2a:32:89:1e:08:11:bf:fd:dc:ea:9a:4f:68: 18:26:68:4a:9a:65:56:f2:82:88:7f:b9:28:91:2f:8b:67:92: 2e:eb:dc:10:85:6b:a1:4c:88:44:d1:3e:56:b8:f7:78:43:25: aa:74:1a:86 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGXFSch+3cTmOl0+GuSuD7JOFKiowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzMloX DTI3MDMwMzA2MzMzMlowMzExMC8GA1UEAxMoODM3REE0OURDNUIwMkRENjAzNTRF OTJBMTlFQzM3QzM5NENFODkwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgX5o1OpvadF6MBfkC7vCk9z+rankTdiwI5ebmEauvsfX8vqIqp4b7ai0Ku xnr48KvbALiBdVQVu4Y8SbwqOp3syeKCaFojYiElnGRhTOyQMM2wejo/8Q+l4+Gm GmuFz4zqcSQCfOi6e51iJ3lLBTvHUXRHkqjzMsEBL6h9cvygV6Os/U95uaMARWJj D1g5YcTtkntuCRcN/ulNr3MLTAezHQBv6Y5Qwe4JttZ9JN2Win7xeAVFXri1EAT2 JpqBb5PZA8FdtChjYeLv/Vj6QtqH7S8N/auLDGUxNd8/LQ8lAwOT53d1ewJj4kE+ UuE3vJxaQfPb0OERRy1PkOz7NmkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSDfaSd xbAt1gNU6SoZ7DfDlM6JCDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQ2NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ruYwDQYJKoZIhvcNAQELBQADggEBAFt+KRjRDdlaTg2rFNEvhicH0Ix5EASNw9FV 4l6YAc+5hX/rWEygt89Vr4MtzjjPH0rOR6icJc2PdS1KVoqYTY7rXUg5MV1ZygJ6 8SatWl0/fMwflrrHqQEV9P0XsFJLrrpBBrYWUHkDMnZT23UaZsGpJU8yrPYgKPp9 0JkMGwV8XjjKM8dt1brme/UWaUBqKjJ8ICi2cZqu9jJdtnVd8JNFhPzOtU+CMc1B 9OXjIa4/e6gsGFTxSUi3N8xKT3CbeXUkz2mlgOTzb+ZBKjKJHggRv/3c6ppPaBgm aEqaZVbygoh/uSiRL4tnki7r3BCFa6FMiETRPla493hDJap0GoY= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:18 2026 by rpki-client