$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146529.roa File: AS146529.roa (raw, json) Hash identifier: SSGNM4m8U349Mlx11+9+Es99hdKOLIr+SDx87XQfL2M= Subject key identifier: EE:9A:C1:2E:AF:54:32:D9:F1:D5:56:7D:CC:2D:86:E1:01:D7:65:E1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4255192301554EA7FD15A73944410BB27B57498F Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146529.roa Signing time: Wed 04 Mar 2026 06:39:14 +0000 ROA not before: Wed 04 Mar 2026 06:34:14 +0000 ROA not after: Wed 03 Mar 2027 06:39:14 +0000 asID: 146529 IP address blocks: 240a:af27::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:55:19:23:01:55:4e:a7:fd:15:a7:39:44:41:0b:b2:7b:57:49:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:14 2026 GMT Not After : Mar 3 06:39:14 2027 GMT Subject: CN=EE9AC12EAF5432D9F1D5567DCC2D86E101D765E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4a:57:0d:00:6a:5b:eb:e3:0c:f3:02:7f:e9: 20:3e:72:4b:70:fa:f5:ae:74:1b:3c:eb:bd:4e:62: fa:68:9b:d0:4e:51:fa:08:08:5f:d4:b4:ff:3b:5a: 7e:87:bb:70:e4:cd:d2:e1:de:71:8c:f1:a0:85:a5: ad:a8:12:97:1f:97:8b:e7:36:82:46:9f:74:25:ec: f4:a6:cf:c9:3a:f0:9c:e7:d1:88:05:b1:eb:e0:fd: d8:96:25:03:e1:d2:33:46:16:7a:00:48:5e:15:0c: 32:dc:97:9d:4f:7f:77:df:06:ad:4d:02:2d:9b:9c: ad:67:07:dc:b7:88:21:2e:83:f4:1b:17:55:4e:df: 6c:46:1b:7a:1a:fa:6d:5b:14:0b:68:0a:d2:5f:3e: c6:22:cd:2b:20:5a:58:a5:99:81:bd:b0:2f:2d:a2: b6:85:f1:08:07:6d:44:b0:4f:b8:9f:c3:6c:a9:43: f1:66:66:07:1c:9d:a5:4f:7e:c8:97:c2:11:c3:04: 3a:cb:16:d9:ff:81:72:29:26:c0:b2:fd:a9:58:6b: 35:a8:5d:d8:77:a7:37:bd:da:e9:ba:f6:5d:ee:21: 88:79:c5:34:0e:20:fe:c5:93:b1:62:c3:8c:5c:86: 09:bf:e8:ff:44:73:d5:a6:29:19:05:a1:99:bc:b8: d0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9A:C1:2E:AF:54:32:D9:F1:D5:56:7D:CC:2D:86:E1:01:D7:65:E1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146529.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af27::/32 Signature Algorithm: sha256WithRSAEncryption a9:bb:59:12:a5:70:e2:68:16:a7:c1:0a:2c:9f:5f:1f:95:91: ae:e2:2e:22:e9:ae:e1:db:16:bc:65:9b:1a:51:7d:d1:f7:9f: a2:82:84:62:5e:9c:29:ad:8a:3f:84:68:0d:46:5a:61:d4:fc: 82:c1:32:4f:aa:af:d4:0b:ca:ed:8e:50:87:37:85:13:ef:7c: ff:30:12:5e:17:f6:49:3a:27:b1:22:ee:bf:cd:4f:1d:1b:00: fa:f9:6f:57:d7:01:24:32:5d:26:32:bd:b8:b4:4f:fb:8f:af: e4:8a:aa:e9:d2:e0:ec:a7:41:c9:56:05:09:0f:1d:a0:73:de: 52:c0:b4:e8:0e:c5:45:bf:eb:aa:5e:f9:1d:b0:ea:48:41:32: 29:a4:c0:4d:f8:c9:ae:5b:3b:fc:8b:1a:36:00:e5:db:06:26: 9e:c0:40:37:e5:98:c7:0c:1b:c0:30:b2:06:72:d2:97:12:db: 9d:ad:1b:02:d3:20:1b:f6:ea:2f:7f:74:c1:eb:e6:97:11:dc: 0e:92:3b:40:b5:a5:90:46:1a:ff:52:82:c4:e2:c8:b3:ef:7e: 88:87:71:1c:ee:fc:a6:bc:d9:33:20:7c:98:8e:ea:1c:48:4e: 88:8a:66:34:a8:eb:55:b3:18:70:36:89:3c:07:7d:0d:61:b4: 77:e9:ae:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQlUZIwFVTqf9Fac5REELsntXSY8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQxNFoX DTI3MDMwMzA2MzkxNFowMzExMC8GA1UEAxMoRUU5QUMxMkVBRjU0MzJEOUYxRDU1 NjdEQ0MyRDg2RTEwMUQ3NjVFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1KVw0Aalvr4wzzAn/pID5yS3D69a50GzzrvU5i+mib0E5R+ggIX9S0/zta foe7cOTN0uHecYzxoIWlragSlx+Xi+c2gkafdCXs9KbPyTrwnOfRiAWx6+D92JYl A+HSM0YWegBIXhUMMtyXnU9/d98GrU0CLZucrWcH3LeIIS6D9BsXVU7fbEYbehr6 bVsUC2gK0l8+xiLNKyBaWKWZgb2wLy2itoXxCAdtRLBPuJ/DbKlD8WZmBxydpU9+ yJfCEcMEOssW2f+BcikmwLL9qVhrNahd2HenN73a6br2Xe4hiHnFNA4g/sWTsWLD jFyGCb/o/0Rz1aYpGQWhmby40LcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTumsEu r1Qy2fHVVn3MLYbhAddl4TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUyOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rycwDQYJKoZIhvcNAQELBQADggEBAKm7WRKlcOJoFqfBCiyfXx+Vka7iLiLpruHb FrxlmxpRfdH3n6KChGJenCmtij+EaA1GWmHU/ILBMk+qr9QLyu2OUIc3hRPvfP8w El4X9kk6J7Ei7r/NTx0bAPr5b1fXASQyXSYyvbi0T/uPr+SKqunS4OynQclWBQkP HaBz3lLAtOgOxUW/66pe+R2w6khBMimkwE34ya5bO/yLGjYA5dsGJp7AQDflmMcM G8AwsgZy0pcS252tGwLTIBv26i9/dMHr5pcR3A6SO0C1pZBGGv9SgsTiyLPvfoiH cRzu/Ka82TMgfJiO6hxIToiKZjSo61WzGHA2iTwHfQ1htHfprnw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:48 2026 by rpki-client