$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146481.roa File: AS146481.roa (raw, json) Hash identifier: NSUTf+/fX2iLjtcWLKvGkUL0VKMLJe3rB2OF9S/HPPc= Subject key identifier: 9D:DA:4B:C1:AE:42:65:25:F8:09:26:11:7D:75:3E:51:B8:AE:42:91 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 48592198BE207E8E86BF7364C02D4B2C4E7B7F91 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146481.roa Signing time: Wed 04 Mar 2026 06:34:35 +0000 ROA not before: Wed 04 Mar 2026 06:29:35 +0000 ROA not after: Wed 03 Mar 2027 06:34:35 +0000 asID: 146481 IP address blocks: 240a:aef7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:59:21:98:be:20:7e:8e:86:bf:73:64:c0:2d:4b:2c:4e:7b:7f:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:35 2026 GMT Not After : Mar 3 06:34:35 2027 GMT Subject: CN=9DDA4BC1AE426525F80926117D753E51B8AE4291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:30:08:1f:41:17:dc:ce:b7:f3:f7:f8:eb:a2: 39:f8:40:68:f4:31:0d:34:78:08:e1:5d:e1:33:9e: 93:e3:5e:02:75:18:fa:14:db:f7:df:65:ca:ea:e4: b4:55:96:28:1b:a7:2b:24:dc:5e:4b:9f:e7:47:e8: bd:1e:6e:ef:5d:94:3f:7b:36:db:ef:aa:08:11:b3: 55:86:d5:83:05:b0:cb:b4:97:20:4c:17:b3:96:44: ed:60:0a:61:a6:7a:b4:56:76:ee:7e:99:3e:99:8e: b6:12:fa:5a:0b:15:8d:a2:b8:13:ae:14:3c:40:45: 9d:ef:cc:b3:20:52:2c:b3:bf:86:15:d5:87:f5:bb: 85:c7:81:d0:8f:1a:48:a2:44:47:23:e5:4f:e5:40: 87:47:b7:8f:fc:42:0c:de:31:3f:6c:90:1c:5b:e7: 2a:a7:00:87:48:ea:e3:15:9a:d3:67:b7:70:eb:26: 36:e7:81:65:7c:de:2b:7b:67:31:e9:7c:a3:9c:db: 63:01:17:40:13:53:1e:72:03:97:ca:9e:a8:d8:a8: 29:7f:db:f6:b7:a2:d1:d3:75:c1:d6:0f:bd:f3:23: f5:c3:a0:2f:86:6a:ad:31:f7:19:61:fa:e1:6f:40: 1c:7e:57:5a:0c:db:a8:a0:92:d4:37:d9:e3:04:87: 6c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:DA:4B:C1:AE:42:65:25:F8:09:26:11:7D:75:3E:51:B8:AE:42:91 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aef7::/32 Signature Algorithm: sha256WithRSAEncryption 94:ef:55:37:bf:9c:66:27:6e:f7:d2:ab:5f:6c:34:92:4a:30: e8:84:29:da:3f:b9:1a:66:40:e3:bf:80:d8:6b:a7:d0:10:41: cd:cf:41:f4:8b:bf:50:6a:0b:0f:69:34:9a:7f:a5:db:dc:a4: c5:69:75:1f:63:3a:67:e0:d7:e2:75:b6:24:96:1e:ce:7e:74: 32:e0:07:72:3e:47:db:8c:49:d1:21:93:fe:d8:e8:6a:fd:70: f7:93:8b:fc:32:5a:b6:1f:6b:68:bc:d7:00:b3:d3:41:15:a7: 1e:b7:91:d6:9b:ac:7e:53:2b:b5:4d:13:0a:64:1e:78:4a:31: a3:8e:45:6b:2e:db:b1:67:7d:a9:ce:98:1e:16:50:67:79:59: 8e:1f:10:ab:6b:56:be:ae:3c:77:cb:0e:89:d6:6c:0f:6d:0c: 83:31:cc:5e:1b:94:c4:7c:e2:39:60:fc:ad:93:27:be:c5:02: 5d:7e:0f:bc:9f:30:45:c8:f1:b3:17:6c:ab:bd:3e:d2:34:73: 4e:79:82:4a:e7:33:75:d3:6a:8c:3f:7a:51:95:e0:3d:4a:8d: 64:61:1f:b1:5b:1d:25:b8:0b:a6:82:1b:c3:6c:37:02:ee:88: ac:7b:cb:ca:7c:86:55:0e:3f:0e:fa:6d:93:7a:a7:71:0e:6d: 51:6f:af:54 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSFkhmL4gfo6Gv3NkwC1LLE57f5EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzNVoX DTI3MDMwMzA2MzQzNVowMzExMC8GA1UEAxMoOUREQTRCQzFBRTQyNjUyNUY4MDky NjExN0Q3NTNFNTFCOEFFNDI5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKAwCB9BF9zOt/P3+OuiOfhAaPQxDTR4COFd4TOek+NeAnUY+hTb999lyurk tFWWKBunKyTcXkuf50fovR5u712UP3s22++qCBGzVYbVgwWwy7SXIEwXs5ZE7WAK YaZ6tFZ27n6ZPpmOthL6WgsVjaK4E64UPEBFne/MsyBSLLO/hhXVh/W7hceB0I8a SKJERyPlT+VAh0e3j/xCDN4xP2yQHFvnKqcAh0jq4xWa02e3cOsmNueBZXzeK3tn Mel8o5zbYwEXQBNTHnIDl8qeqNioKX/b9rei0dN1wdYPvfMj9cOgL4ZqrTH3GWH6 4W9AHH5XWgzbqKCS1DfZ4wSHbAUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSd2kvB rkJlJfgJJhF9dT5RuK5CkTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQ4MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rvcwDQYJKoZIhvcNAQELBQADggEBAJTvVTe/nGYnbvfSq19sNJJKMOiEKdo/uRpm QOO/gNhrp9AQQc3PQfSLv1BqCw9pNJp/pdvcpMVpdR9jOmfg1+J1tiSWHs5+dDLg B3I+R9uMSdEhk/7Y6Gr9cPeTi/wyWrYfa2i81wCz00EVpx63kdabrH5TK7VNEwpk HnhKMaOORWsu27FnfanOmB4WUGd5WY4fEKtrVr6uPHfLDonWbA9tDIMxzF4blMR8 4jlg/K2TJ77FAl1+D7yfMEXI8bMXbKu9PtI0c055gkrnM3XTaow/elGV4D1KjWRh H7FbHSW4C6aCG8NsNwLuiKx7y8p8hlUOPw76bZN6p3EObVFvr1Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:56 2026 by rpki-client