$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146511.roa File: AS146511.roa (raw, json) Hash identifier: wwPwEh5Pa0PhgjBViwHP/U8LGRwyFzpeIVhdPW8b/90= Subject key identifier: 51:2B:95:2B:B7:41:CA:BA:4B:B6:83:3C:AE:95:52:69:86:C8:22:9E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7471810AC20F3DE2B507E79F2233D45E13112E94 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146511.roa Signing time: Wed 04 Mar 2026 06:33:40 +0000 ROA not before: Wed 04 Mar 2026 06:28:40 +0000 ROA not after: Wed 03 Mar 2027 06:33:40 +0000 asID: 146511 IP address blocks: 240a:af15::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:71:81:0a:c2:0f:3d:e2:b5:07:e7:9f:22:33:d4:5e:13:11:2e:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:40 2026 GMT Not After : Mar 3 06:33:40 2027 GMT Subject: CN=512B952BB741CABA4BB6833CAE95526986C8229E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f5:f4:9f:95:15:96:c1:1d:c9:2f:1c:ec:8e: d2:c3:e8:1a:f4:53:b3:4e:85:f8:b5:dd:f0:cd:a8: fd:7b:38:f1:2f:c6:87:28:b0:9d:89:f9:45:9f:cd: 53:11:07:15:c7:dc:2e:0b:dc:5d:cd:b7:2c:b5:f2: 18:7f:5b:42:23:be:6a:7a:8f:b6:80:54:d1:ec:41: c6:77:d2:3e:37:18:a2:d8:65:e1:b0:1c:c5:63:a8: ce:58:49:cc:1c:6f:42:e5:ba:e3:44:0b:36:d2:ab: 3e:bb:56:4d:b8:85:1d:c3:99:ae:19:e0:5b:44:44: 65:10:3c:23:29:33:5c:bc:14:8f:93:c6:03:6b:d6: 18:f7:bd:9d:ee:d9:5a:32:1c:c3:f3:da:a9:fa:aa: 79:01:95:f7:a5:29:8c:7f:a9:66:0d:6a:f8:9b:f8: 96:9b:47:a4:27:31:9c:6b:e2:8b:05:34:04:4a:6d: 7a:4b:12:2b:52:9d:b4:42:46:cb:ce:8d:25:ee:ba: f3:b9:b5:93:4b:28:52:98:8a:e8:5e:ef:ea:35:4d: e0:d0:e6:fd:19:eb:fc:ec:7a:67:c7:e6:ba:86:cc: a4:e3:96:6a:06:72:46:bf:08:be:ab:c7:94:4a:48: a0:df:ab:40:ab:1f:31:90:45:53:73:08:14:5f:3d: b1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2B:95:2B:B7:41:CA:BA:4B:B6:83:3C:AE:95:52:69:86:C8:22:9E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146511.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af15::/32 Signature Algorithm: sha256WithRSAEncryption 6a:37:1e:a1:f8:94:68:8b:74:f6:aa:a8:3a:81:37:60:21:87: 60:54:34:f2:c9:81:6a:66:d7:04:2f:35:6a:df:f1:cb:ee:11: d7:27:7f:44:f7:f7:e1:95:85:32:c0:c7:94:86:98:58:b9:5c: 8c:58:10:9f:d0:e3:ad:e8:52:8f:c6:20:f5:dd:36:94:c7:ea: 30:66:da:1a:cf:8b:b6:e5:78:f1:91:5b:22:7b:b1:26:17:9b: cf:ab:0e:94:dd:94:a4:83:51:92:99:a6:ea:90:5e:91:a8:b7: f7:c3:09:9e:18:9c:ec:43:4b:96:e1:fb:b1:5d:bb:dc:5f:39: 82:5d:84:72:b1:d3:83:a4:ad:75:1d:21:d3:d9:54:57:24:e9: fb:7c:c2:0e:54:59:d7:a3:05:28:f5:97:7f:ed:2b:26:fd:c2: ce:c6:54:ed:cc:3d:bd:59:f9:01:ac:6a:49:15:a4:87:81:1d: 6f:ef:97:45:dd:0d:e9:70:29:92:e1:85:dc:ff:13:60:26:92: 83:f2:f5:3d:51:47:d0:1a:39:66:3c:2c:e3:16:1c:9a:6e:83: f6:ee:14:4b:5c:fe:77:98:d7:c0:ba:ee:01:7e:07:fe:e0:f9: ea:c7:1d:62:61:15:f7:3c:43:08:5b:73:ee:f8:eb:b2:97:78: 21:73:77:f3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdHGBCsIPPeK1B+efIjPUXhMRLpQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0MFoX DTI3MDMwMzA2MzM0MFowMzExMC8GA1UEAxMoNTEyQjk1MkJCNzQxQ0FCQTRCQjY4 MzNDQUU5NTUyNjk4NkM4MjI5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ/19J+VFZbBHckvHOyO0sPoGvRTs06F+LXd8M2o/Xs48S/GhyiwnYn5RZ/N UxEHFcfcLgvcXc23LLXyGH9bQiO+anqPtoBU0exBxnfSPjcYothl4bAcxWOozlhJ zBxvQuW640QLNtKrPrtWTbiFHcOZrhngW0REZRA8IykzXLwUj5PGA2vWGPe9ne7Z WjIcw/PaqfqqeQGV96UpjH+pZg1q+Jv4lptHpCcxnGviiwU0BEpteksSK1KdtEJG y86NJe6687m1k0soUpiK6F7v6jVN4NDm/Rnr/Ox6Z8fmuobMpOOWagZyRr8IvqvH lEpIoN+rQKsfMZBFU3MIFF89secCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRRK5Ur t0HKuku2gzyulVJphsginjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUxMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rxUwDQYJKoZIhvcNAQELBQADggEBAGo3HqH4lGiLdPaqqDqBN2Ahh2BUNPLJgWpm 1wQvNWrf8cvuEdcnf0T39+GVhTLAx5SGmFi5XIxYEJ/Q463oUo/GIPXdNpTH6jBm 2hrPi7blePGRWyJ7sSYXm8+rDpTdlKSDUZKZpuqQXpGot/fDCZ4YnOxDS5bh+7Fd u9xfOYJdhHKx04OkrXUdIdPZVFck6ft8wg5UWdejBSj1l3/tKyb9ws7GVO3MPb1Z +QGsakkVpIeBHW/vl0XdDelwKZLhhdz/E2AmkoPy9T1RR9AaOWY8LOMWHJpug/bu FEtc/neY18C67gF+B/7g+erHHWJhFfc8Qwhbc+7467KXeCFzd/M= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:56 2026 by rpki-client