$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146056.roa File: AS146056.roa (raw, json) Hash identifier: iIS6A5fti1UZCTQ+pmDlr6Kp+vrc2vqtvfPFQX9L9uU= Subject key identifier: E9:13:36:BC:B6:26:38:42:AB:68:43:7B:96:82:E6:B6:6D:9A:1D:C3 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 08BFB82FB30BE3F9B691E82125726DD709F34EC4 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146056.roa Signing time: Wed 04 Mar 2026 06:34:03 +0000 ROA not before: Wed 04 Mar 2026 06:29:03 +0000 ROA not after: Wed 03 Mar 2027 06:34:03 +0000 asID: 146056 IP address blocks: 240a:ad4e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:bf:b8:2f:b3:0b:e3:f9:b6:91:e8:21:25:72:6d:d7:09:f3:4e:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:03 2026 GMT Not After : Mar 3 06:34:03 2027 GMT Subject: CN=E91336BCB6263842AB68437B9682E6B66D9A1DC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:aa:6b:a8:0d:79:b7:7c:27:e6:bf:9e:27:78: 42:5e:3e:0c:59:60:5d:05:20:08:e2:5b:ce:bc:3d: 34:52:35:66:db:b2:0c:05:0a:59:83:35:84:e7:3c: 39:12:3a:4e:ac:d4:ce:10:0f:65:d9:43:3c:cc:00: 16:be:f7:c1:bd:3b:1f:a3:f4:99:e5:5f:99:62:d3: 41:c8:eb:a5:1d:4c:47:41:e4:da:1f:f5:9d:e5:dd: 2a:00:a0:7d:a5:d9:00:28:e0:39:55:0b:ea:6a:ed: d9:38:3b:0d:4f:0b:81:f9:3b:ad:36:07:be:c4:1b: 3c:7c:42:76:d2:06:8c:e9:66:51:99:65:d9:39:27: 8c:7b:f6:df:8a:af:d9:8e:3d:7b:d8:86:42:2a:90: 79:07:cd:95:b5:f4:6e:12:d3:a2:3d:76:bd:91:95: d4:44:28:b4:35:67:68:a7:a1:d3:d3:61:35:66:11: ad:80:76:11:b1:01:98:fb:59:31:ff:7d:6e:dd:02: 2c:62:57:94:12:02:fc:71:93:31:e6:31:ca:f9:3c: 38:29:48:9a:51:7e:82:86:5c:eb:b5:d9:19:d1:77: 18:14:24:18:29:5a:f0:dd:32:91:e3:ee:82:cc:5a: f8:18:76:c8:e1:7b:c9:64:b0:9a:8b:28:fb:fc:cc: f3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:13:36:BC:B6:26:38:42:AB:68:43:7B:96:82:E6:B6:6D:9A:1D:C3 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146056.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad4e::/32 Signature Algorithm: sha256WithRSAEncryption 5b:06:0b:10:89:ea:2d:59:05:ec:51:cc:a8:3a:18:91:42:70: 0c:da:9c:c9:ec:ca:3a:03:ef:4a:99:8a:50:be:cc:27:6e:bd: 8a:6f:d4:d3:da:f9:15:6a:9c:01:a1:46:bb:57:a2:78:e1:d2: 4c:f3:cf:ab:41:59:72:15:c9:ae:08:6d:34:12:2b:ae:b4:96: 07:a8:78:4f:c7:f2:e1:fd:a9:52:19:56:a2:6e:3c:f9:6e:c1: 30:0d:58:73:96:30:eb:d6:37:06:cd:5d:96:54:15:c6:bd:ad: 45:58:4e:05:f0:1f:11:a1:70:b2:50:3d:92:25:fa:a3:4d:80: f2:79:ed:18:a1:36:b0:0b:11:53:87:e3:00:78:cd:49:1e:e7: fd:be:d1:cd:b0:58:9e:50:a3:cf:80:79:ce:57:c9:9e:89:41: a4:a5:0c:3a:6d:1d:fa:76:9c:91:af:6e:18:ed:70:bd:b1:53: de:4c:4c:ec:67:9d:25:74:5c:6d:6b:f7:66:c5:18:b6:8b:bd: d7:13:65:72:3b:f4:61:a0:10:c6:ed:9a:20:57:8a:b7:9b:dc: b9:3a:f3:39:7b:02:c8:5d:66:4d:f8:88:90:76:5b:21:b4:bb: 0e:3d:f7:d7:ef:d3:4d:08:ed:34:be:e0:dc:0b:40:98:f0:d0: cd:3e:93:d0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCL+4L7ML4/m2keghJXJt1wnzTsQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwM1oX DTI3MDMwMzA2MzQwM1owMzExMC8GA1UEAxMoRTkxMzM2QkNCNjI2Mzg0MkFCNjg0 MzdCOTY4MkU2QjY2RDlBMURDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJmqa6gNebd8J+a/nid4Ql4+DFlgXQUgCOJbzrw9NFI1ZtuyDAUKWYM1hOc8 ORI6TqzUzhAPZdlDPMwAFr73wb07H6P0meVfmWLTQcjrpR1MR0Hk2h/1neXdKgCg faXZACjgOVUL6mrt2Tg7DU8Lgfk7rTYHvsQbPHxCdtIGjOlmUZll2TknjHv234qv 2Y49e9iGQiqQeQfNlbX0bhLToj12vZGV1EQotDVnaKeh09NhNWYRrYB2EbEBmPtZ Mf99bt0CLGJXlBIC/HGTMeYxyvk8OClImlF+goZc67XZGdF3GBQkGCla8N0ykePu gsxa+Bh2yOF7yWSwmoso+/zM828CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTpEza8 tiY4QqtoQ3uWgua2bZodwzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA1Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rU4wDQYJKoZIhvcNAQELBQADggEBAFsGCxCJ6i1ZBexRzKg6GJFCcAzanMnsyjoD 70qZilC+zCduvYpv1NPa+RVqnAGhRrtXonjh0kzzz6tBWXIVya4IbTQSK660lgeo eE/H8uH9qVIZVqJuPPluwTANWHOWMOvWNwbNXZZUFca9rUVYTgXwHxGhcLJQPZIl +qNNgPJ57RihNrALEVOH4wB4zUke5/2+0c2wWJ5Qo8+Aec5XyZ6JQaSlDDptHfp2 nJGvbhjtcL2xU95MTOxnnSV0XG1r92bFGLaLvdcTZXI79GGgEMbtmiBXireb3Lk6 8zl7AshdZk34iJB2WyG0uw4999fv000I7TS+4NwLQJjw0M0+k9A= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:15 2026 by rpki-client