$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146001.roa File: AS146001.roa (raw, json) Hash identifier: Rw46HEYt3sX20FvK0vX7gNxVCpez7p6WF9lSySiSy/M= Subject key identifier: 16:87:B6:02:1D:7C:45:CE:EC:B4:7B:E9:D4:A7:B4:E2:46:60:CE:E1 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6EAEA34EC9C4FF96A95236C68603EA046C2976B3 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146001.roa Signing time: Wed 04 Mar 2026 06:29:46 +0000 ROA not before: Wed 04 Mar 2026 06:24:46 +0000 ROA not after: Wed 03 Mar 2027 06:29:46 +0000 asID: 146001 IP address blocks: 240a:ad17::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ae:a3:4e:c9:c4:ff:96:a9:52:36:c6:86:03:ea:04:6c:29:76:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:24:46 2026 GMT Not After : Mar 3 06:29:46 2027 GMT Subject: CN=1687B6021D7C45CEECB47BE9D4A7B4E24660CEE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ee:cc:41:0b:67:e8:ea:05:1f:47:02:8d:9e: cb:b2:65:4e:90:30:bc:1c:48:c2:7e:97:1b:5a:b7: 6c:b0:6a:f5:88:dd:a4:8b:1b:a3:5a:76:98:cd:dd: 4f:75:aa:db:2a:fc:24:eb:cb:82:b7:c3:8e:c2:47: 7e:f9:a3:1e:b4:b1:ff:28:6e:8c:1a:dd:ef:4f:af: a3:09:c3:ad:ae:e5:18:80:1a:38:b8:fd:c8:98:1b: 3b:75:d0:85:5c:4d:39:c6:65:36:2d:32:77:88:88: bb:36:93:ff:9d:3a:24:c1:f8:2c:a1:bb:a9:4f:8a: 8f:3f:9e:36:b2:28:ef:d0:55:41:b4:ba:17:a9:84: af:d8:e4:d8:e0:71:ee:e5:26:dc:98:71:28:3b:1c: bd:8b:a9:57:31:b8:99:42:ef:34:e0:26:c8:8a:ff: 76:a6:66:39:ea:7d:58:73:7f:22:2e:4b:85:08:0a: 54:93:82:b2:55:83:9d:da:8d:69:98:49:6a:86:01: 8a:9e:a0:e7:10:7b:7b:76:44:cc:49:f4:a8:72:fb: b1:00:6c:d5:7f:d8:08:cf:7c:5f:af:89:00:1c:31: 1d:fe:5f:7d:81:e8:96:3b:a3:0a:bf:55:7e:07:4b: c4:be:94:98:09:8f:9c:43:8c:1b:1b:a7:a7:69:fc: 81:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:87:B6:02:1D:7C:45:CE:EC:B4:7B:E9:D4:A7:B4:E2:46:60:CE:E1 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146001.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad17::/32 Signature Algorithm: sha256WithRSAEncryption 73:1c:4f:f7:9e:00:d5:a0:bb:83:0d:bb:88:ea:bf:bc:2b:3e: 40:97:49:79:98:10:c2:e2:46:8f:b1:7a:56:34:dd:8b:04:f2: 70:08:ca:d2:22:14:55:33:f1:02:a6:5e:75:0b:09:03:8b:d4: 68:0d:5a:dc:17:fb:7b:70:9e:37:53:50:94:94:1a:e8:d2:37: e8:9d:65:3d:1b:5f:d4:05:07:d0:22:bf:8f:21:a4:36:40:42: ab:c9:98:01:c5:a7:1f:ff:c7:bb:ee:95:cc:a1:95:dd:55:10: 2c:e7:77:7b:ec:4c:11:6f:26:de:4e:12:b5:53:85:8b:2e:ef: 73:f6:b3:bd:dd:19:d8:f7:77:88:b3:2d:94:e8:3f:15:ce:04: 30:fa:2c:5d:e1:38:db:9d:73:81:a4:ad:43:eb:b0:29:32:fe: 7a:1a:2a:b6:be:bb:89:0c:90:b9:9e:18:01:cb:18:4d:51:d2: 23:21:1b:43:0d:f1:4b:71:5c:e2:b6:78:df:44:51:b5:2e:82: df:14:a5:3a:d5:fc:39:f6:c0:64:ec:0a:45:aa:e2:27:09:32: f3:15:0e:e9:38:b2:77:17:6c:e2:3f:6f:c4:0e:87:21:20:d3: 4d:e3:2f:34:0d:91:6b:6a:6e:3a:af:17:a8:fd:a0:c0:d4:66: 18:50:ef:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbq6jTsnE/5apUjbGhgPqBGwpdrMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjQ0NloX DTI3MDMwMzA2Mjk0NlowMzExMC8GA1UEAxMoMTY4N0I2MDIxRDdDNDVDRUVDQjQ3 QkU5RDRBN0I0RTI0NjYwQ0VFMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPuzEELZ+jqBR9HAo2ey7JlTpAwvBxIwn6XG1q3bLBq9YjdpIsbo1p2mM3d T3Wq2yr8JOvLgrfDjsJHfvmjHrSx/yhujBrd70+vownDra7lGIAaOLj9yJgbO3XQ hVxNOcZlNi0yd4iIuzaT/506JMH4LKG7qU+Kjz+eNrIo79BVQbS6F6mEr9jk2OBx 7uUm3JhxKDscvYupVzG4mULvNOAmyIr/dqZmOep9WHN/Ii5LhQgKVJOCslWDndqN aZhJaoYBip6g5xB7e3ZEzEn0qHL7sQBs1X/YCM98X6+JABwxHf5ffYHoljujCr9V fgdLxL6UmAmPnEOMGxunp2n8gUUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQWh7YC HXxFzuy0e+nUp7TiRmDO4TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjAwMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rRcwDQYJKoZIhvcNAQELBQADggEBAHMcT/eeANWgu4MNu4jqv7wrPkCXSXmYEMLi Ro+xelY03YsE8nAIytIiFFUz8QKmXnULCQOL1GgNWtwX+3twnjdTUJSUGujSN+id ZT0bX9QFB9Aiv48hpDZAQqvJmAHFpx//x7vulcyhld1VECznd3vsTBFvJt5OErVT hYsu73P2s73dGdj3d4izLZToPxXOBDD6LF3hONudc4GkrUPrsCky/noaKra+u4kM kLmeGAHLGE1R0iMhG0MN8UtxXOK2eN9EUbUugt8UpTrV/Dn2wGTsCkWq4icJMvMV Duk4sncXbOI/b8QOhyEg003jLzQNkWtqbjqvF6j9oMDUZhhQ70c= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:19 2026 by rpki-client