$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146060.roa File: AS146060.roa (raw, json) Hash identifier: K6E7hfl2A1kZTlxJy4ry3h+akAmAgZgos9RVARYu50c= Subject key identifier: 31:0F:C7:E7:BC:31:08:41:95:A8:55:F6:92:E2:C2:44:80:A2:40:D5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5C18D08047EC4D0EA9780EB8C0D45822F4AC3237 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146060.roa Signing time: Wed 04 Mar 2026 06:33:42 +0000 ROA not before: Wed 04 Mar 2026 06:28:42 +0000 ROA not after: Wed 03 Mar 2027 06:33:42 +0000 asID: 146060 IP address blocks: 240a:ad52::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:18:d0:80:47:ec:4d:0e:a9:78:0e:b8:c0:d4:58:22:f4:ac:32:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:42 2026 GMT Not After : Mar 3 06:33:42 2027 GMT Subject: CN=310FC7E7BC31084195A855F692E2C24480A240D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:97:f1:c4:1a:49:8c:50:59:a0:64:82:82:c9: ac:ea:bd:d1:a4:a1:55:62:3e:63:83:7e:8c:50:a1: 82:d5:38:21:04:af:37:68:e8:c5:de:74:7c:a3:4d: 9a:64:9d:f0:3c:59:a1:3f:cf:16:dc:d8:1e:c8:dd: 58:f4:91:08:7e:37:8b:5b:bb:8c:23:b4:c3:b8:87: 2c:32:9c:11:3f:70:61:b5:c7:b7:fc:77:1d:6d:47: b6:5a:fe:ca:b9:54:44:de:ad:65:a8:d7:45:c2:5f: 9a:b3:79:c0:aa:b7:bf:29:1f:bf:d8:69:59:20:a2: d1:6b:7b:2b:44:72:39:9a:ce:37:bd:6d:93:bc:14: 98:29:80:6d:c4:51:eb:41:04:42:50:37:c3:e8:72: b7:bc:ca:71:9b:d0:ba:a3:0a:75:f8:e7:61:a9:85: 1d:87:71:a0:ef:1d:08:92:f2:b3:37:df:66:38:df: d7:77:41:b3:dc:27:74:7e:6b:75:b9:18:13:b2:32: e0:da:09:89:a7:c4:b2:ed:67:1a:3b:5d:3a:85:21: 9c:55:40:38:3b:52:5c:ec:6a:0f:56:a2:43:a1:d0: c0:a0:11:12:0a:c5:97:99:f8:61:19:85:79:26:4a: f9:db:78:6b:e4:bf:32:d9:a8:4c:7d:76:fb:e6:1c: 22:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0F:C7:E7:BC:31:08:41:95:A8:55:F6:92:E2:C2:44:80:A2:40:D5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146060.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad52::/32 Signature Algorithm: sha256WithRSAEncryption 30:b9:4c:ce:63:b4:fa:ee:b2:91:d0:02:69:f2:44:60:03:80: 95:2e:61:40:56:a2:7b:6e:36:5c:f3:04:f4:85:ff:29:55:76: af:eb:83:cd:44:c5:d6:f7:10:be:10:06:46:1e:7f:a6:08:45: f1:36:ad:fa:46:0b:f3:b6:28:65:79:fa:d8:c1:18:ce:c9:e1: ca:82:81:15:ff:12:31:f8:6a:6c:0a:2f:5c:32:fd:8f:92:7d: d0:2d:9e:53:9c:a1:73:c8:28:81:2e:fe:01:fb:c4:a3:40:3e: 73:db:a6:55:ca:57:aa:68:ef:be:f5:9d:e1:35:7e:ee:6c:a7: 45:62:ee:de:38:86:79:e0:42:2e:96:11:07:1b:94:70:69:84: 45:cb:70:2f:ff:40:bc:7f:6b:58:3c:43:ee:27:78:4f:74:01: 72:8f:7f:01:41:70:7c:e1:2c:33:3e:99:d2:47:34:09:be:74: fc:0b:05:ef:18:86:91:d4:7e:68:57:c9:9b:9d:f1:30:39:85: dc:34:ba:ad:8b:6d:7b:60:b1:1c:bd:49:f8:bb:d7:ca:e5:6d: 6c:f6:c7:e1:7a:80:0e:29:43:74:3e:15:89:a0:77:dd:03:cb: c9:c8:46:b0:8f:08:8a:ad:58:1c:7f:42:84:f8:73:16:1d:d8: bb:59:ad:dc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXBjQgEfsTQ6peA64wNRYIvSsMjcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0MloX DTI3MDMwMzA2MzM0MlowMzExMC8GA1UEAxMoMzEwRkM3RTdCQzMxMDg0MTk1QTg1 NUY2OTJFMkMyNDQ4MEEyNDBENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+X8cQaSYxQWaBkgoLJrOq90aShVWI+Y4N+jFChgtU4IQSvN2joxd50fKNN mmSd8DxZoT/PFtzYHsjdWPSRCH43i1u7jCO0w7iHLDKcET9wYbXHt/x3HW1Htlr+ yrlURN6tZajXRcJfmrN5wKq3vykfv9hpWSCi0Wt7K0RyOZrON71tk7wUmCmAbcRR 60EEQlA3w+hyt7zKcZvQuqMKdfjnYamFHYdxoO8dCJLyszffZjjf13dBs9wndH5r dbkYE7Iy4NoJiafEsu1nGjtdOoUhnFVAODtSXOxqD1aiQ6HQwKAREgrFl5n4YRmF eSZK+dt4a+S/MtmoTH12++YcIoECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQxD8fn vDEIQZWoVfaS4sJEgKJA1TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA2MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rVIwDQYJKoZIhvcNAQELBQADggEBADC5TM5jtPruspHQAmnyRGADgJUuYUBWontu NlzzBPSF/ylVdq/rg81Exdb3EL4QBkYef6YIRfE2rfpGC/O2KGV5+tjBGM7J4cqC gRX/EjH4amwKL1wy/Y+SfdAtnlOcoXPIKIEu/gH7xKNAPnPbplXKV6po7771neE1 fu5sp0Vi7t44hnngQi6WEQcblHBphEXLcC//QLx/a1g8Q+4neE90AXKPfwFBcHzh LDM+mdJHNAm+dPwLBe8YhpHUfmhXyZud8TA5hdw0uq2LbXtgsRy9Sfi718rlbWz2 x+F6gA4pQ3Q+FYmgd90Dy8nIRrCPCIqtWBx/QoT4cxYd2LtZrdw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:05 2026 by rpki-client