$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146045.roa File: AS146045.roa (raw, json) Hash identifier: 9QnAGQAF9jiynGYPCa8P0hfliVGjdE1V/RNTOvOaxIU= Subject key identifier: 7A:05:F5:EA:E0:4A:4C:44:FC:DF:D3:2F:DF:9E:6B:B4:0A:D9:0F:CD Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 320797E113B383C253C3A96F1444BC0CB4716E32 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146045.roa Signing time: Wed 04 Mar 2026 06:34:56 +0000 ROA not before: Wed 04 Mar 2026 06:29:56 +0000 ROA not after: Wed 03 Mar 2027 06:34:56 +0000 asID: 146045 IP address blocks: 240a:ad43::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:07:97:e1:13:b3:83:c2:53:c3:a9:6f:14:44:bc:0c:b4:71:6e:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:56 2026 GMT Not After : Mar 3 06:34:56 2027 GMT Subject: CN=7A05F5EAE04A4C44FCDFD32FDF9E6BB40AD90FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:37:ba:b7:a3:0a:98:31:83:25:a6:73:4b:a7: 55:8d:5c:d2:07:b6:3e:12:2e:8b:69:16:05:a9:a3: ef:74:05:05:d9:b4:a6:59:29:ef:d5:e2:85:36:a6: c6:b6:36:1e:eb:49:c1:77:2e:10:c6:e1:e2:b5:3d: f5:3f:86:bc:be:22:a4:4b:7b:fd:5b:f3:15:fc:38: b0:08:fe:42:c3:b2:17:5f:55:b6:32:47:ee:84:ae: 3a:04:04:30:53:0e:e5:df:e6:35:e4:9d:fd:f8:d2: c7:63:67:5c:f0:f8:e1:23:7d:bf:cc:cc:96:57:59: 1e:28:a7:5b:7a:93:bd:d4:0a:a6:3c:4b:14:b6:85: e6:df:a4:31:44:15:e1:65:b7:b5:55:53:cb:9c:b7: fc:80:67:53:4f:19:1b:a6:7e:c0:8d:8e:94:bc:e5: 62:ef:37:b9:1b:9d:d4:c1:82:f8:b3:bf:47:72:7e: ce:0c:ab:9e:f9:c2:c7:e6:53:46:fd:ab:7e:6f:b0: 6a:56:9b:2a:32:38:1e:bb:4e:02:d5:58:bf:00:73: 3b:17:7f:45:a7:38:13:68:70:66:10:33:50:eb:9b: 4c:c7:f9:f7:2d:78:2e:91:30:3b:a0:ca:f4:fa:8a: 98:f6:62:e9:b5:da:99:3e:7f:3a:45:e7:e5:dc:3e: ee:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:05:F5:EA:E0:4A:4C:44:FC:DF:D3:2F:DF:9E:6B:B4:0A:D9:0F:CD X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146045.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad43::/32 Signature Algorithm: sha256WithRSAEncryption 96:7b:0e:f7:06:f6:35:b0:e4:e8:8f:b0:8f:08:94:e3:dc:63: fe:d8:2c:4d:ff:30:26:bd:9e:6b:10:32:b7:1e:e8:22:08:12: bb:e5:2b:a8:ce:e8:d3:5a:7b:87:53:72:a2:21:87:97:3e:f5: 04:3d:13:70:05:17:51:12:bf:95:77:2e:21:79:32:42:3c:ab: b5:96:21:fe:6f:18:62:9f:19:99:d6:d0:95:15:0e:87:42:93: 7c:f9:55:73:e5:80:b6:77:89:bc:ca:32:70:cf:de:34:ab:59: d0:d0:f3:ac:f6:cf:9a:fd:5c:20:e1:a1:2d:2c:ea:5c:d1:1b: 4d:ed:e4:06:a4:85:28:db:f1:68:eb:aa:8a:c2:55:04:da:f9: 34:3e:81:25:b5:43:ee:d5:31:37:bb:15:8a:dd:ab:32:f6:2f: 9b:eb:ed:7e:9f:92:ba:bb:86:05:42:a3:1f:ec:f9:92:e4:7b: 99:b2:ec:fb:1e:10:25:75:56:cd:52:8a:c2:78:16:ab:79:5c: fd:3a:a4:19:06:2c:77:90:71:30:87:7a:08:bc:87:e0:8c:63: 38:f6:32:2b:72:67:a9:b0:50:1a:c2:75:6f:f1:5d:0b:1d:38: 58:10:47:03:91:9b:08:98:94:f2:56:c1:1b:d2:02:15:a8:5d: 91:3e:5d:e5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMgeX4ROzg8JTw6lvFES8DLRxbjIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk1NloX DTI3MDMwMzA2MzQ1NlowMzExMC8GA1UEAxMoN0EwNUY1RUFFMDRBNEM0NEZDREZE MzJGREY5RTZCQjQwQUQ5MEZDRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ03urejCpgxgyWmc0unVY1c0ge2PhIui2kWBamj73QFBdm0plkp79XihTam xrY2HutJwXcuEMbh4rU99T+GvL4ipEt7/VvzFfw4sAj+QsOyF19VtjJH7oSuOgQE MFMO5d/mNeSd/fjSx2NnXPD44SN9v8zMlldZHiinW3qTvdQKpjxLFLaF5t+kMUQV 4WW3tVVTy5y3/IBnU08ZG6Z+wI2OlLzlYu83uRud1MGC+LO/R3J+zgyrnvnCx+ZT Rv2rfm+walabKjI4HrtOAtVYvwBzOxd/Rac4E2hwZhAzUOubTMf59y14LpEwO6DK 9PqKmPZi6bXamT5/OkXn5dw+7jcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR6BfXq 4EpMRPzf0y/fnmu0CtkPzTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA0NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rUMwDQYJKoZIhvcNAQELBQADggEBAJZ7DvcG9jWw5OiPsI8IlOPcY/7YLE3/MCa9 nmsQMrce6CIIErvlK6jO6NNae4dTcqIhh5c+9QQ9E3AFF1ESv5V3LiF5MkI8q7WW If5vGGKfGZnW0JUVDodCk3z5VXPlgLZ3ibzKMnDP3jSrWdDQ86z2z5r9XCDhoS0s 6lzRG03t5AakhSjb8WjrqorCVQTa+TQ+gSW1Q+7VMTe7FYrdqzL2L5vr7X6fkrq7 hgVCox/s+ZLke5my7PseECV1Vs1SisJ4Fqt5XP06pBkGLHeQcTCHegi8h+CMYzj2 MityZ6mwUBrCdW/xXQsdOFgQRwORmwiYlPJWwRvSAhWoXZE+XeU= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:32 2026 by rpki-client