$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146005.roa File: AS146005.roa (raw, json) Hash identifier: 7VJRMQcW0KG0lgtRYnygON0wCoWjZUROL2VLdqlNvQo= Subject key identifier: F1:C4:F3:7E:4B:CB:74:FC:32:A9:6B:F6:A4:EF:40:89:B7:FB:5C:43 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 304CD40CD495B50F6703638638988B68FBB88502 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146005.roa Signing time: Wed 04 Mar 2026 06:30:50 +0000 ROA not before: Wed 04 Mar 2026 06:25:50 +0000 ROA not after: Wed 03 Mar 2027 06:30:50 +0000 asID: 146005 IP address blocks: 240a:ad1b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4c:d4:0c:d4:95:b5:0f:67:03:63:86:38:98:8b:68:fb:b8:85:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:25:50 2026 GMT Not After : Mar 3 06:30:50 2027 GMT Subject: CN=F1C4F37E4BCB74FC32A96BF6A4EF4089B7FB5C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6c:d2:c8:20:45:39:df:32:0a:f3:aa:a0:a2: b1:06:00:29:19:ea:5c:ba:9d:e0:fe:aa:91:2b:44: bc:9f:d3:00:82:26:80:cb:1c:f3:76:ca:02:5b:fe: e0:38:a6:45:3e:72:51:41:ea:48:90:76:e4:0e:18: ee:88:96:3a:10:96:61:77:6f:51:f4:c8:67:0a:40: 1e:66:10:b8:15:aa:40:8a:f8:6e:07:d6:e6:07:4e: a1:c6:a4:93:6a:84:93:ad:05:c1:e0:be:dd:f3:3b: 7f:01:c3:02:46:bd:77:bd:a9:c6:a6:a4:fd:b5:98: 31:c2:49:d7:88:2b:f0:36:ef:ad:df:45:2f:a7:1b: 9a:31:0f:cb:a1:8f:3e:b5:9e:6a:15:89:fb:68:93: 72:03:22:7e:ce:3c:28:6b:63:84:0c:da:d2:5f:6b: 1f:dc:4c:8a:e9:04:b0:b9:8b:f7:75:ee:a1:52:9e: d0:6a:16:f8:5f:f3:ec:4c:8e:ec:64:2d:f0:19:aa: d8:33:e7:36:ee:19:3a:cc:1b:ab:41:c0:25:71:cb: 3b:79:d6:af:04:01:e9:3b:70:c1:e4:66:28:84:8a: 6b:0f:42:3b:90:dd:44:de:2e:41:23:e2:30:89:d0: 71:9d:69:19:ce:a6:b5:86:e7:d7:f7:c0:4b:15:cb: 35:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C4:F3:7E:4B:CB:74:FC:32:A9:6B:F6:A4:EF:40:89:B7:FB:5C:43 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146005.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad1b::/32 Signature Algorithm: sha256WithRSAEncryption 6c:c7:52:b9:6f:42:94:76:07:66:d2:ed:26:61:ed:ed:d2:ea: 93:88:58:e7:53:13:a9:f7:a1:45:a9:cb:5b:c6:8a:24:d0:03: ac:17:cb:32:6d:0f:f7:a8:54:34:cd:3f:21:a9:f3:aa:e7:b8: eb:97:6a:5f:bb:a7:95:84:e0:83:dc:4e:e1:d9:99:a2:2e:52: e4:7a:2d:db:01:91:3b:08:d9:a8:8a:1d:7f:04:f4:dc:98:49: a3:bd:62:20:2a:42:18:98:dc:53:cc:57:97:26:37:f6:9f:75: 22:8d:a0:e9:7d:91:b3:c1:c8:08:71:e3:ca:e3:d5:92:22:37: 9e:be:db:00:c8:da:71:33:c9:01:ae:db:37:e7:db:d7:bc:7b: 69:a4:5f:58:94:10:c6:39:1b:67:57:2e:45:24:3e:4a:a7:5d: 5e:df:e0:e8:21:ba:71:2d:7b:39:8e:ab:87:1d:4b:68:e9:d7: 18:ed:9f:3e:23:73:1b:5d:a9:fc:77:e8:08:91:0c:4f:55:2f: 1c:98:a9:3b:07:d5:f7:0e:80:fd:09:ab:f5:2f:a4:8c:50:59: df:e9:c0:04:26:6a:bf:33:3d:db:cb:63:09:82:86:38:cc:df: 12:47:b4:37:f2:e0:0b:20:59:77:c4:7f:77:df:d1:16:62:8b: 2e:d5:b1:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMEzUDNSVtQ9nA2OGOJiLaPu4hQIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjU1MFoX DTI3MDMwMzA2MzA1MFowMzExMC8GA1UEAxMoRjFDNEYzN0U0QkNCNzRGQzMyQTk2 QkY2QTRFRjQwODlCN0ZCNUM0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1s0sggRTnfMgrzqqCisQYAKRnqXLqd4P6qkStEvJ/TAIImgMsc83bKAlv+ 4DimRT5yUUHqSJB25A4Y7oiWOhCWYXdvUfTIZwpAHmYQuBWqQIr4bgfW5gdOocak k2qEk60FweC+3fM7fwHDAka9d72pxqak/bWYMcJJ14gr8Dbvrd9FL6cbmjEPy6GP PrWeahWJ+2iTcgMifs48KGtjhAza0l9rH9xMiukEsLmL93XuoVKe0GoW+F/z7EyO 7GQt8Bmq2DPnNu4ZOswbq0HAJXHLO3nWrwQB6TtwweRmKISKaw9CO5DdRN4uQSPi MInQcZ1pGc6mtYbn1/fASxXLNd8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTxxPN+ S8t0/DKpa/ak70CJt/tcQzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjAwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rRswDQYJKoZIhvcNAQELBQADggEBAGzHUrlvQpR2B2bS7SZh7e3S6pOIWOdTE6n3 oUWpy1vGiiTQA6wXyzJtD/eoVDTNPyGp86rnuOuXal+7p5WE4IPcTuHZmaIuUuR6 LdsBkTsI2aiKHX8E9NyYSaO9YiAqQhiY3FPMV5cmN/afdSKNoOl9kbPByAhx48rj 1ZIiN56+2wDI2nEzyQGu2zfn29e8e2mkX1iUEMY5G2dXLkUkPkqnXV7f4OghunEt ezmOq4cdS2jp1xjtnz4jcxtdqfx36AiRDE9VLxyYqTsH1fcOgP0Jq/UvpIxQWd/p wAQmar8zPdvLYwmChjjM3xJHtDfy4AsgWXfEf3ff0RZiiy7VsUw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:42 2026 by rpki-client