$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146538.roa File: AS146538.roa (raw, json) Hash identifier: IMm6Gc6+rhPvk1IN8vw6YPm39tgNo5eg80dNlMRuUvc= Subject key identifier: C1:BD:B0:46:42:00:69:22:48:F2:F2:2E:93:E1:0B:D3:01:79:B2:4B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 39DA3110C8FE79D06544581E61D35B7FF20489A2 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146538.roa Signing time: Wed 04 Mar 2026 06:39:15 +0000 ROA not before: Wed 04 Mar 2026 06:34:15 +0000 ROA not after: Wed 03 Mar 2027 06:39:15 +0000 asID: 146538 IP address blocks: 240a:af30::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:da:31:10:c8:fe:79:d0:65:44:58:1e:61:d3:5b:7f:f2:04:89:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:15 2026 GMT Not After : Mar 3 06:39:15 2027 GMT Subject: CN=C1BDB0464200692248F2F22E93E10BD30179B24B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:54:95:f6:d0:19:db:c4:ec:71:9f:81:50:e5: 21:16:5b:ed:34:95:29:53:b4:ae:73:75:d8:c7:59: 82:15:4d:ac:1c:44:17:35:3b:c0:98:42:32:f6:a0: e9:d2:32:0d:32:40:31:de:6c:2e:c0:17:11:a2:71: d3:44:a2:af:51:96:e1:78:ee:55:55:9a:08:25:41: 44:a2:40:6d:97:dd:27:9c:0a:6e:c1:37:13:f7:f9: 34:a4:0a:22:09:fd:92:ea:75:e2:40:b5:81:19:f4: be:fb:dc:34:29:1c:78:80:58:e3:4c:5b:b4:ce:98: f8:b2:41:33:67:7e:c0:fe:28:23:19:66:c5:4e:08: 59:16:ba:3f:c8:6b:50:75:74:10:4f:88:58:e1:d1: 04:07:b7:d2:9f:08:51:ea:59:fc:d0:4f:83:fa:3d: 4f:09:61:48:41:08:7c:8b:ec:6a:e7:80:07:a0:62: 8d:af:9e:cd:c4:43:3c:f1:cc:b6:3f:29:bd:89:3f: da:bd:77:94:49:23:93:8d:ba:47:03:76:44:b8:fe: 56:cd:e0:5a:4a:4b:9f:58:14:38:13:2a:98:c2:78: dd:41:c2:1d:c0:3e:fb:97:d6:54:20:27:42:4a:be: 7e:46:7f:1c:a5:7b:00:7c:b9:a1:97:a8:d5:95:52: 10:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:BD:B0:46:42:00:69:22:48:F2:F2:2E:93:E1:0B:D3:01:79:B2:4B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af30::/32 Signature Algorithm: sha256WithRSAEncryption db:c9:37:1e:cd:79:2d:05:b1:fc:64:e7:ac:e9:a9:8b:36:ed: fe:45:cc:39:4b:42:c2:3d:48:cf:0c:db:ed:10:3a:85:0c:f6: 7f:15:b7:97:e0:52:10:07:03:0d:0b:ae:2a:29:be:e6:bb:dd: 1f:41:95:77:93:ea:0a:d0:b5:a2:13:57:1d:6f:23:e4:5c:82: 56:9b:21:05:c3:3e:f5:ed:b1:bb:d1:c1:d5:08:3f:15:67:87: 25:15:f5:14:c6:b5:c1:54:8d:44:ac:1a:ca:16:ce:70:42:35: ed:2c:1b:69:a6:8f:0b:26:de:a1:e6:4e:58:b9:83:6d:a4:2c: f8:c1:8b:0c:4c:7e:6d:39:2b:ef:d1:6f:1b:d5:cf:0f:f6:7c: 0d:ab:44:b3:a7:41:84:e4:36:90:48:2f:3c:1e:57:58:b5:96: 89:79:2c:03:69:87:2a:38:8f:77:ba:a2:51:6a:15:aa:fe:fa: eb:89:2a:d2:18:b9:29:12:42:ce:da:5f:91:9b:e1:3b:17:14: c3:73:98:aa:c5:91:85:8e:39:72:8e:a7:66:ba:ce:18:0c:97: a3:05:0c:72:02:2e:bb:be:ba:1e:1d:c9:05:ef:43:53:8b:e5: a8:67:48:32:da:20:69:75:2b:72:63:60:d6:30:3c:ce:33:ac: c6:e9:6e:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOdoxEMj+edBlRFgeYdNbf/IEiaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQxNVoX DTI3MDMwMzA2MzkxNVowMzExMC8GA1UEAxMoQzFCREIwNDY0MjAwNjkyMjQ4RjJG MjJFOTNFMTBCRDMwMTc5QjI0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlUlfbQGdvE7HGfgVDlIRZb7TSVKVO0rnN12MdZghVNrBxEFzU7wJhCMvag 6dIyDTJAMd5sLsAXEaJx00Sir1GW4XjuVVWaCCVBRKJAbZfdJ5wKbsE3E/f5NKQK Ign9kup14kC1gRn0vvvcNCkceIBY40xbtM6Y+LJBM2d+wP4oIxlmxU4IWRa6P8hr UHV0EE+IWOHRBAe30p8IUepZ/NBPg/o9TwlhSEEIfIvsaueAB6Bija+ezcRDPPHM tj8pvYk/2r13lEkjk426RwN2RLj+Vs3gWkpLn1gUOBMqmMJ43UHCHcA++5fWVCAn Qkq+fkZ/HKV7AHy5oZeo1ZVSEDkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTBvbBG QgBpIkjy8i6T4QvTAXmySzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rzAwDQYJKoZIhvcNAQELBQADggEBANvJNx7NeS0Fsfxk56zpqYs27f5FzDlLQsI9 SM8M2+0QOoUM9n8Vt5fgUhAHAw0Lriopvua73R9BlXeT6grQtaITVx1vI+Rcglab IQXDPvXtsbvRwdUIPxVnhyUV9RTGtcFUjUSsGsoWznBCNe0sG2mmjwsm3qHmTli5 g22kLPjBiwxMfm05K+/RbxvVzw/2fA2rRLOnQYTkNpBILzweV1i1lol5LANphyo4 j3e6olFqFar++uuJKtIYuSkSQs7aX5Gb4TsXFMNzmKrFkYWOOXKOp2a6zhgMl6MF DHICLru+uh4dyQXvQ1OL5ahnSDLaIGl1K3JjYNYwPM4zrMbpbjc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:36 2026 by rpki-client