$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146476.roa File: AS146476.roa (raw, json) Hash identifier: S0XBWofFqcruWoKfq0DtgUFVlHLhgay58zVMQFsInkE= Subject key identifier: 0F:B5:3A:4A:DB:CF:2D:71:48:CA:5C:95:FA:6F:B6:98:FE:75:C6:0F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3D2539C4D8EA0642EBB1B7F1D07D17CAE7C47FAE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146476.roa Signing time: Wed 04 Mar 2026 06:34:19 +0000 ROA not before: Wed 04 Mar 2026 06:29:19 +0000 ROA not after: Wed 03 Mar 2027 06:34:19 +0000 asID: 146476 IP address blocks: 240a:aef2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:25:39:c4:d8:ea:06:42:eb:b1:b7:f1:d0:7d:17:ca:e7:c4:7f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:19 2026 GMT Not After : Mar 3 06:34:19 2027 GMT Subject: CN=0FB53A4ADBCF2D7148CA5C95FA6FB698FE75C60F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c6:fe:64:bf:93:62:df:a0:6e:0a:2d:dd:14: e4:90:02:5d:80:8a:02:a7:1b:89:70:61:9b:41:46: 12:ac:1c:90:e8:a4:a2:51:df:02:61:5b:98:c4:f0: 7c:c7:59:1a:97:ef:87:66:80:0f:08:eb:13:bc:9e: fb:51:83:d2:aa:2f:0b:f1:21:39:19:48:e5:5d:1e: ec:5e:19:28:bc:34:5f:bb:6d:1c:c6:9b:5a:59:7f: a4:04:88:98:b2:71:ab:7a:11:6d:68:06:ae:76:f2: 22:b0:78:72:ba:6f:26:91:00:2f:e6:3c:0b:cf:94: 40:96:f5:9f:a9:5c:0c:90:97:ee:0e:d1:3d:f2:c1: 0e:90:a2:9c:02:9a:3c:d8:bf:49:f7:b3:43:7e:99: 93:ff:6d:d2:7b:0c:55:66:d1:b4:2a:32:0a:a3:ec: 19:47:71:87:9e:ef:84:0e:ea:fa:87:76:0e:c6:a0: 55:f5:22:14:74:ba:3d:ec:c9:13:eb:2f:8e:a4:42: 9b:e5:05:60:1c:4d:92:bc:46:14:89:16:22:e5:61: 26:ce:5e:ef:ad:89:c4:1c:bf:1e:3d:3b:c0:07:15: 4e:d4:1e:8b:10:04:3e:a0:bf:5d:3b:fe:91:47:25: 15:3e:0c:3f:c8:f1:a9:aa:c9:57:41:05:9c:db:1e: d3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B5:3A:4A:DB:CF:2D:71:48:CA:5C:95:FA:6F:B6:98:FE:75:C6:0F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aef2::/32 Signature Algorithm: sha256WithRSAEncryption 0a:7a:8b:0a:88:67:cf:6f:bc:29:5c:ef:a6:a5:a1:60:20:0c: 6c:6d:f1:c2:52:28:72:f6:dc:8d:4c:44:09:21:e3:7a:b2:26: e3:3c:2d:e8:f9:5f:61:ff:82:05:b6:dd:2a:37:fa:d9:09:cb: 4f:28:a7:05:98:3e:5d:0e:65:4f:20:bc:43:0e:4a:55:3a:d0: 99:10:8e:8d:f2:f9:6b:45:8d:cc:d3:b4:eb:5f:33:41:fa:46: 0c:de:2d:f4:aa:d5:10:28:ec:f9:8a:7b:73:67:d2:c3:78:fe: 1a:60:26:cc:be:3e:fb:f8:72:ac:42:01:2f:4f:5c:c7:34:1e: e3:62:57:2b:b2:6f:fc:87:1e:47:8d:08:e4:b2:42:86:3e:bd: 20:b8:f3:40:10:2b:f0:bd:36:5e:88:3f:7c:11:36:86:4d:15: 9d:39:e9:84:72:e9:52:55:c0:32:90:df:5e:ed:69:c0:8b:d6: 77:d4:07:e9:7f:cc:e4:d6:cb:6c:6b:96:f2:12:e7:91:8f:a3: c1:51:fe:cd:13:51:27:8f:b2:a6:d2:6b:05:2c:d7:c8:a4:77: b8:74:cb:bf:e2:63:09:f3:a2:8f:7b:51:7a:78:7b:db:8e:ec: 14:25:e5:98:00:02:65:4f:94:be:10:c4:8a:8d:51:65:ed:5a: 97:c0:9a:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPSU5xNjqBkLrsbfx0H0XyufEf64wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkxOVoX DTI3MDMwMzA2MzQxOVowMzExMC8GA1UEAxMoMEZCNTNBNEFEQkNGMkQ3MTQ4Q0E1 Qzk1RkE2RkI2OThGRTc1QzYwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTG/mS/k2LfoG4KLd0U5JACXYCKAqcbiXBhm0FGEqwckOikolHfAmFbmMTw fMdZGpfvh2aADwjrE7ye+1GD0qovC/EhORlI5V0e7F4ZKLw0X7ttHMabWll/pASI mLJxq3oRbWgGrnbyIrB4crpvJpEAL+Y8C8+UQJb1n6lcDJCX7g7RPfLBDpCinAKa PNi/SfezQ36Zk/9t0nsMVWbRtCoyCqPsGUdxh57vhA7q+od2DsagVfUiFHS6PezJ E+svjqRCm+UFYBxNkrxGFIkWIuVhJs5e762JxBy/Hj07wAcVTtQeixAEPqC/XTv+ kUclFT4MP8jxqarJV0EFnNse078CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQPtTpK 288tcUjKXJX6b7aY/nXGDzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQ3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rvIwDQYJKoZIhvcNAQELBQADggEBAAp6iwqIZ89vvClc76aloWAgDGxt8cJSKHL2 3I1MRAkh43qyJuM8Lej5X2H/ggW23So3+tkJy08opwWYPl0OZU8gvEMOSlU60JkQ jo3y+WtFjczTtOtfM0H6RgzeLfSq1RAo7PmKe3Nn0sN4/hpgJsy+Pvv4cqxCAS9P XMc0HuNiVyuyb/yHHkeNCOSyQoY+vSC480AQK/C9Nl6IP3wRNoZNFZ056YRy6VJV wDKQ317tacCL1nfUB+l/zOTWy2xrlvIS55GPo8FR/s0TUSePsqbSawUs18ikd7h0 y7/iYwnzoo97UXp4e9uO7BQl5ZgAAmVPlL4QxIqNUWXtWpfAmhA= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:23 2026 by rpki-client