$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146478.roa File: AS146478.roa (raw, json) Hash identifier: HfTCrjnwi9U07x37KDKAT6m7cD+nVNla3g50CHAcTU4= Subject key identifier: 55:35:E8:A0:A5:5C:FD:E3:0F:74:52:52:85:D3:6E:47:A3:9F:68:53 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7217A92D1090E606B6E8F72FA46D013D2060A8C9 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146478.roa Signing time: Wed 04 Mar 2026 06:34:00 +0000 ROA not before: Wed 04 Mar 2026 06:29:00 +0000 ROA not after: Wed 03 Mar 2027 06:34:00 +0000 asID: 146478 IP address blocks: 240a:aef4::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:17:a9:2d:10:90:e6:06:b6:e8:f7:2f:a4:6d:01:3d:20:60:a8:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:00 2026 GMT Not After : Mar 3 06:34:00 2027 GMT Subject: CN=5535E8A0A55CFDE30F74525285D36E47A39F6853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5b:96:b6:e2:9a:94:95:8d:93:28:f8:57:4f: 97:57:17:97:43:3e:d6:be:f9:1f:5b:fc:71:17:5d: 94:73:d0:5f:f4:6a:f7:67:eb:01:d0:fd:b8:58:5c: b2:33:c3:7c:a6:31:cb:84:9c:ca:56:c9:ab:0c:3d: 1c:56:b3:ad:83:cf:8e:26:c9:a7:19:1e:4d:bb:b5: 17:7d:ea:8a:79:a1:c8:8f:53:22:a0:1a:f8:f1:c3: 77:11:7d:8e:bb:09:2b:19:34:6b:f5:ba:7a:af:61: 1a:9c:56:09:10:6d:4e:6a:5b:c6:15:c6:35:f0:d0: 42:e7:d2:25:17:5f:1b:ff:d5:30:2e:86:a0:60:c6: 87:8e:8e:bf:18:fa:80:b6:c0:be:2d:58:7a:db:d7: ca:2b:30:bc:17:4c:ec:5b:da:42:1f:f0:35:ee:84: 02:af:9b:c2:bd:df:da:73:4d:ef:01:a2:55:f0:98: 48:aa:03:b7:9a:1b:f4:39:e6:29:6b:dd:e4:47:39: 50:2d:94:af:87:ea:e6:6c:d1:8f:ee:ef:26:f9:70: 6a:1d:e8:4d:92:57:ef:61:3f:8d:4b:a6:d9:c9:60: 1a:2f:8a:0f:f1:69:4e:7a:75:2b:e1:da:47:bc:17: 71:7a:63:c8:64:8d:a6:aa:dc:21:ae:5e:30:c6:0c: 44:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:35:E8:A0:A5:5C:FD:E3:0F:74:52:52:85:D3:6E:47:A3:9F:68:53 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146478.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aef4::/32 Signature Algorithm: sha256WithRSAEncryption 15:6c:b6:6d:76:ef:3d:d5:03:5d:fa:57:d5:af:65:62:1c:f7: cb:3e:f8:62:61:e4:7d:80:9c:d1:b1:d0:4b:7c:f7:18:25:4b: 22:84:02:fc:81:24:53:cb:d6:a0:3d:e4:3d:53:15:b1:bd:69: 2a:6c:48:a2:2c:81:ae:e1:4c:8b:d9:c1:c6:9f:2d:1e:27:4f: a5:ca:ff:25:3b:ab:ad:e3:e6:2a:0f:80:85:08:12:1e:3a:a6: 83:7c:4d:69:04:11:f7:15:87:a9:fa:2d:70:56:52:81:66:b9: b5:36:49:88:13:3c:b3:d2:ba:ef:87:fa:83:91:f5:2c:f0:65: e3:c7:77:8b:ce:b3:c5:7f:09:4b:4c:be:fb:db:9b:8b:f5:c9: 14:55:2a:3c:b1:3a:59:f1:71:bb:ae:a6:ca:aa:5e:c3:66:f2: 63:10:c1:44:76:62:25:04:2b:53:98:ee:89:d7:fe:d7:12:c6: 4a:1a:f2:8e:a2:eb:82:27:f0:e2:3c:f0:58:0b:7e:50:81:0a: 57:7b:d0:3c:7c:c0:b8:de:f7:fc:e2:12:62:8d:78:25:a9:6c: 5c:47:41:1f:36:11:7b:dd:4d:f2:61:e8:f1:9f:a6:5b:d9:79: 72:0a:b5:85:d3:fa:fc:87:18:ec:59:f9:31:33:76:db:f4:bc: cd:c0:8c:a2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUchepLRCQ5ga26PcvpG0BPSBgqMkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwMFoX DTI3MDMwMzA2MzQwMFowMzExMC8GA1UEAxMoNTUzNUU4QTBBNTVDRkRFMzBGNzQ1 MjUyODVEMzZFNDdBMzlGNjg1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZblrbimpSVjZMo+FdPl1cXl0M+1r75H1v8cRddlHPQX/Rq92frAdD9uFhc sjPDfKYxy4ScylbJqww9HFazrYPPjibJpxkeTbu1F33qinmhyI9TIqAa+PHDdxF9 jrsJKxk0a/W6eq9hGpxWCRBtTmpbxhXGNfDQQufSJRdfG//VMC6GoGDGh46Ovxj6 gLbAvi1YetvXyiswvBdM7FvaQh/wNe6EAq+bwr3f2nNN7wGiVfCYSKoDt5ob9Dnm KWvd5Ec5UC2Ur4fq5mzRj+7vJvlwah3oTZJX72E/jUum2clgGi+KD/FpTnp1K+Ha R7wXcXpjyGSNpqrcIa5eMMYMRFECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRVNeig pVz94w90UlKF025Ho59oUzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQ3OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rvQwDQYJKoZIhvcNAQELBQADggEBABVstm127z3VA136V9WvZWIc98s++GJh5H2A nNGx0Et89xglSyKEAvyBJFPL1qA95D1TFbG9aSpsSKIsga7hTIvZwcafLR4nT6XK /yU7q63j5ioPgIUIEh46poN8TWkEEfcVh6n6LXBWUoFmubU2SYgTPLPSuu+H+oOR 9SzwZePHd4vOs8V/CUtMvvvbm4v1yRRVKjyxOlnxcbuupsqqXsNm8mMQwUR2YiUE K1OY7onX/tcSxkoa8o6i64In8OI88FgLflCBCld70Dx8wLje9/ziEmKNeCWpbFxH QR82EXvdTfJh6PGfplvZeXIKtYXT+vyHGOxZ+TEzdtv0vM3AjKI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:10 2026 by rpki-client