$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146525.roa File: AS146525.roa (raw, json) Hash identifier: 8FTTXpyfM7qWYspcTr4xktUM8IKyaGH97l9KwbX+eWI= Subject key identifier: 24:43:13:0B:D7:83:C9:C8:E1:D2:E0:F1:A3:68:23:19:55:5E:D6:FF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7DBB05ECB6ACB827B31C0BB1A28BE37DF3E0A6A1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146525.roa Signing time: Wed 04 Mar 2026 06:39:29 +0000 ROA not before: Wed 04 Mar 2026 06:34:29 +0000 ROA not after: Wed 03 Mar 2027 06:39:29 +0000 asID: 146525 IP address blocks: 240a:af23::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:bb:05:ec:b6:ac:b8:27:b3:1c:0b:b1:a2:8b:e3:7d:f3:e0:a6:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:29 2026 GMT Not After : Mar 3 06:39:29 2027 GMT Subject: CN=2443130BD783C9C8E1D2E0F1A3682319555ED6FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5c:5b:db:dc:30:b0:09:76:64:02:83:15:fe: d0:bd:7a:70:33:a1:78:ca:00:13:a7:6d:3b:a3:77: fb:c4:5f:9b:50:a0:b0:dd:57:8b:c8:81:f4:e1:1d: b9:a7:cb:37:69:5d:1e:4f:73:16:e7:02:23:7e:5f: 7e:37:82:bf:6f:10:93:b8:5f:dd:31:ab:35:71:59: 7f:bf:2e:3b:d5:4f:07:7c:56:f7:be:36:ad:10:d2: ad:82:49:5e:ef:43:48:36:0b:44:d6:0c:79:fe:20: 86:03:d2:de:b5:35:8b:7f:70:75:c5:82:f4:f1:f6: 65:d3:42:26:4f:00:be:6d:56:da:ca:d3:cb:b5:b6: 03:60:de:c5:1d:30:2f:a5:e8:e8:62:dc:b1:1e:b1: ce:22:cf:94:09:d7:be:76:2f:49:91:c6:bd:90:ad: bf:c6:ca:31:3f:66:47:a7:57:23:fb:12:d9:3f:73: 37:a1:6e:a6:45:1e:e1:0a:4f:75:2f:b0:44:ee:dd: ab:db:57:38:7c:f5:bb:a5:cc:57:63:08:3c:7d:1e: 76:fd:83:66:5f:8b:7f:c5:20:9f:fa:ad:ff:17:fe: e6:92:51:57:3d:bd:cc:6e:42:18:77:f5:94:29:5d: 7d:7b:ea:14:6b:10:3f:88:d5:ac:48:57:61:6d:c1: 0b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:43:13:0B:D7:83:C9:C8:E1:D2:E0:F1:A3:68:23:19:55:5E:D6:FF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146525.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af23::/32 Signature Algorithm: sha256WithRSAEncryption 57:84:27:45:dc:2d:a3:49:eb:37:93:c1:92:22:92:60:c5:6a: 68:1f:29:05:62:c4:4e:2b:04:72:a8:22:36:ba:96:aa:17:a2: d3:e8:fe:64:47:5d:9a:e2:85:be:8d:35:85:51:32:40:04:f7: e5:83:cf:79:a9:34:6f:7f:7d:75:4e:82:37:ab:3f:5c:cf:f0: 58:b5:cf:06:7c:ca:d8:34:17:d8:08:f8:0b:48:e6:cd:b2:9d: d3:78:36:53:27:94:e0:0a:91:83:90:d8:6b:7d:e4:36:ab:7f: 05:87:e2:3f:26:c3:e1:ab:95:1d:0e:47:52:cb:88:4f:51:41: 99:bf:2f:b5:70:18:f6:80:87:58:d0:6a:39:3a:a6:5a:a4:6e: 3a:6c:93:73:13:9f:6c:e0:aa:93:69:0f:b8:69:74:37:1c:c9: 9b:40:97:de:e1:62:a3:58:1d:03:8e:9c:ca:50:0d:6d:53:d2: e5:2f:38:89:99:c5:17:58:2f:c9:85:4e:10:9a:43:2d:66:e0: 74:a7:32:c9:17:7a:55:cb:bf:cd:14:34:31:82:81:dc:aa:ab: 3f:d7:70:5c:2e:29:55:2c:2b:a3:d9:50:75:02:72:8d:41:71: 75:b5:07:82:f3:ce:ef:7a:8c:d2:a6:dc:20:c2:e4:96:30:1f: 19:d8:00:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUfbsF7LasuCezHAuxoovjffPgpqEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQyOVoX DTI3MDMwMzA2MzkyOVowMzExMC8GA1UEAxMoMjQ0MzEzMEJENzgzQzlDOEUxRDJF MEYxQTM2ODIzMTk1NTVFRDZGRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALdcW9vcMLAJdmQCgxX+0L16cDOheMoAE6dtO6N3+8Rfm1CgsN1Xi8iB9OEd uafLN2ldHk9zFucCI35ffjeCv28Qk7hf3TGrNXFZf78uO9VPB3xW9742rRDSrYJJ Xu9DSDYLRNYMef4ghgPS3rU1i39wdcWC9PH2ZdNCJk8Avm1W2srTy7W2A2DexR0w L6Xo6GLcsR6xziLPlAnXvnYvSZHGvZCtv8bKMT9mR6dXI/sS2T9zN6FupkUe4QpP dS+wRO7dq9tXOHz1u6XMV2MIPH0edv2DZl+Lf8Ugn/qt/xf+5pJRVz29zG5CGHf1 lCldfXvqFGsQP4jVrEhXYW3BC70CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQkQxML 14PJyOHS4PGjaCMZVV7W/zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUyNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK ryMwDQYJKoZIhvcNAQELBQADggEBAFeEJ0XcLaNJ6zeTwZIikmDFamgfKQVixE4r BHKoIja6lqoXotPo/mRHXZrihb6NNYVRMkAE9+WDz3mpNG9/fXVOgjerP1zP8Fi1 zwZ8ytg0F9gI+AtI5s2yndN4NlMnlOAKkYOQ2Gt95DarfwWH4j8mw+GrlR0OR1LL iE9RQZm/L7VwGPaAh1jQajk6plqkbjpsk3MTn2zgqpNpD7hpdDccyZtAl97hYqNY HQOOnMpQDW1T0uUvOImZxRdYL8mFThCaQy1m4HSnMskXelXLv80UNDGCgdyqqz/X cFwuKVUsK6PZUHUCco1BcXW1B4Lzzu96jNKm3CDC5JYwHxnYAM8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:19 2026 by rpki-client