$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146576.roa File: AS146576.roa (raw, json) Hash identifier: lBgsOz5wfxkCNuIg2PXWrdtamxqldokuEGQS4ldC5c4= Subject key identifier: 51:82:CC:11:05:08:1D:3C:18:26:FB:AB:C5:73:BA:03:4B:24:84:BD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 200B7F9F4766AE1EC18EE9C112FF1C8481D79E88 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146576.roa Signing time: Wed 04 Mar 2026 06:39:42 +0000 ROA not before: Wed 04 Mar 2026 06:34:42 +0000 ROA not after: Wed 03 Mar 2027 06:39:42 +0000 asID: 146576 IP address blocks: 240a:af56::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:0b:7f:9f:47:66:ae:1e:c1:8e:e9:c1:12:ff:1c:84:81:d7:9e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:42 2026 GMT Not After : Mar 3 06:39:42 2027 GMT Subject: CN=5182CC1105081D3C1826FBABC573BA034B2484BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b9:54:3a:44:8d:0d:c3:9e:9e:1d:1e:9d:2b: 7d:cf:2c:2a:25:80:0a:41:f3:d8:e2:03:8f:61:e3: b1:f5:d4:6a:8d:ee:2f:e6:0c:47:cb:58:70:8e:75: 48:04:d4:ea:b0:95:cc:1f:d7:52:67:2e:99:90:2c: 28:91:e6:1f:d9:f0:39:c5:4e:87:31:2e:6d:6a:96: 17:df:fe:4c:01:ba:3d:c6:93:78:53:04:9a:b0:19: 9f:8e:4f:3c:b5:fb:a9:27:ed:33:e6:2d:c2:6d:6f: c1:c9:e8:be:65:56:6a:32:f4:8f:19:b5:91:e9:70: 29:d6:ce:ce:9d:1b:19:1c:2f:a3:b7:24:5d:d1:d2: f0:7b:b5:2c:f6:8f:69:97:54:cc:cc:a7:73:d4:6a: 58:c7:e0:c0:a9:b7:05:b2:2f:f9:06:0c:34:94:6d: bb:40:9b:0a:62:af:a4:e2:6a:56:cb:57:30:06:c0: 36:d1:ef:d5:25:8a:95:cd:33:39:b8:a3:00:15:88: d2:8e:06:bf:4b:84:6b:83:ca:c1:27:83:cf:65:81: d5:3c:47:4b:5e:e1:ef:a7:03:90:91:9e:d7:6b:21: 43:69:a5:08:1f:01:78:ab:16:cd:23:6d:f5:6f:a5: 0e:56:db:a9:01:cd:c0:53:0f:a6:3e:a5:96:af:95: f3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:82:CC:11:05:08:1D:3C:18:26:FB:AB:C5:73:BA:03:4B:24:84:BD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af56::/32 Signature Algorithm: sha256WithRSAEncryption 04:f9:33:bd:11:f2:23:2e:1b:e1:26:f6:95:f8:1e:33:c6:57: b5:d1:23:40:63:68:d4:d5:ae:51:0e:a8:6f:31:e6:1d:2f:d7: d9:06:cf:64:13:24:64:0a:67:47:a1:5a:e5:c9:16:79:b8:ee: ec:3d:2f:22:2f:f2:74:10:48:bb:00:4f:27:83:80:07:25:d2: 05:f0:fe:69:10:9e:3c:78:27:72:08:c9:2e:bd:4b:93:88:85: 27:ce:2b:d4:b5:b6:ef:03:89:c6:2e:09:07:96:29:d4:34:d7: d1:ad:a9:e7:48:71:c4:9e:2f:18:9f:14:da:4c:cd:9a:46:39: 52:55:f8:ed:c8:e2:08:f6:0d:47:ef:b2:bf:a2:91:75:1d:69: 68:09:7e:e7:c9:19:58:e8:01:f9:25:84:81:cc:78:5b:5b:e4: fa:a9:e5:4b:54:62:aa:f8:2d:2e:9f:8d:8f:cf:ed:b3:a1:ab: 33:b8:32:de:c1:94:f0:2f:46:77:89:e2:eb:f5:1b:33:3d:55: 39:4b:bf:b4:14:82:81:05:97:34:73:7d:d8:f0:fd:ca:3d:db: f9:2f:a7:c1:ec:22:ff:a9:bb:8c:c3:84:b0:8e:b7:94:d3:8c: 9a:a2:fa:c4:70:5c:a2:67:e9:11:e5:fc:d1:50:8b:4a:09:13: b1:0c:c6:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUIAt/n0dmrh7BjunBEv8chIHXnogwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0MloX DTI3MDMwMzA2Mzk0MlowMzExMC8GA1UEAxMoNTE4MkNDMTEwNTA4MUQzQzE4MjZG QkFCQzU3M0JBMDM0QjI0ODRCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALe5VDpEjQ3Dnp4dHp0rfc8sKiWACkHz2OIDj2HjsfXUao3uL+YMR8tYcI51 SATU6rCVzB/XUmcumZAsKJHmH9nwOcVOhzEubWqWF9/+TAG6PcaTeFMEmrAZn45P PLX7qSftM+Ytwm1vwcnovmVWajL0jxm1kelwKdbOzp0bGRwvo7ckXdHS8Hu1LPaP aZdUzMync9RqWMfgwKm3BbIv+QYMNJRtu0CbCmKvpOJqVstXMAbANtHv1SWKlc0z ObijABWI0o4Gv0uEa4PKwSeDz2WB1TxHS17h76cDkJGe12shQ2mlCB8BeKsWzSNt 9W+lDlbbqQHNwFMPpj6llq+V85UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRRgswR BQgdPBgm+6vFc7oDSySEvTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjU3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r1YwDQYJKoZIhvcNAQELBQADggEBAAT5M70R8iMuG+Em9pX4HjPGV7XRI0BjaNTV rlEOqG8x5h0v19kGz2QTJGQKZ0ehWuXJFnm47uw9LyIv8nQQSLsATyeDgAcl0gXw /mkQnjx4J3IIyS69S5OIhSfOK9S1tu8DicYuCQeWKdQ019GtqedIccSeLxifFNpM zZpGOVJV+O3I4gj2DUfvsr+ikXUdaWgJfufJGVjoAfklhIHMeFtb5Pqp5UtUYqr4 LS6fjY/P7bOhqzO4Mt7BlPAvRneJ4uv1GzM9VTlLv7QUgoEFlzRzfdjw/co92/kv p8HsIv+pu4zDhLCOt5TTjJqi+sRwXKJn6RHl/NFQi0oJE7EMxn8= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:01 2026 by rpki-client