$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146071.roa File: AS146071.roa (raw, json) Hash identifier: Wp24bThw/1rJ9NzzATLiRPKt45lK6ocUnfddEKnlD2s= Subject key identifier: C7:BA:37:5B:07:13:AB:76:68:8D:0E:B6:F8:67:4C:24:B3:E9:8C:63 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6FAA4771CC9CA07D2912F0A67149228EDD828989 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146071.roa Signing time: Wed 04 Mar 2026 06:33:34 +0000 ROA not before: Wed 04 Mar 2026 06:28:34 +0000 ROA not after: Wed 03 Mar 2027 06:33:34 +0000 asID: 146071 IP address blocks: 240a:ad5d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:aa:47:71:cc:9c:a0:7d:29:12:f0:a6:71:49:22:8e:dd:82:89:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:34 2026 GMT Not After : Mar 3 06:33:34 2027 GMT Subject: CN=C7BA375B0713AB76688D0EB6F8674C24B3E98C63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7d:7f:27:ed:ca:1e:1b:cc:d6:d9:fd:81:e4: 9a:2f:b3:b0:b5:90:ee:2a:70:a0:8e:3e:e7:1a:69: 43:da:85:00:44:70:36:96:f8:10:7e:9f:aa:e0:d0: d2:3d:76:86:69:33:f2:2e:70:20:f1:28:c9:88:9f: f7:f0:fb:35:08:16:15:26:d7:90:69:0e:5d:c7:f8: ee:a4:24:01:47:ae:e5:9a:cc:fb:6a:87:8f:52:a2: 01:39:d4:53:8c:34:b0:a4:d7:41:ae:09:71:72:71: 03:f3:d3:79:f7:5c:df:8f:a8:b9:e6:98:da:3a:d5: 92:3a:4b:d5:32:fd:7d:26:17:60:ff:c4:e5:3b:27: 7f:48:48:78:7d:12:21:13:4c:73:f4:d8:15:5b:cf: 76:84:ef:59:08:d9:06:95:0d:a0:78:15:3b:f1:ee: 79:d9:92:3a:36:d6:b0:7f:c6:c9:3c:a4:59:99:89: f3:a6:15:e8:2a:ac:ad:13:10:77:f8:5f:a4:c2:e1: 43:3a:d4:b2:8f:49:9b:cf:3c:f7:3b:f6:73:3d:5c: 2a:1d:1e:47:55:50:ea:82:c7:8c:89:ef:e0:d4:ef: 68:68:a9:36:12:75:65:28:a4:d1:dd:77:e2:1c:ce: 14:15:c1:fe:8d:13:d3:d1:ce:c1:f8:f1:0c:94:93: 0a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:BA:37:5B:07:13:AB:76:68:8D:0E:B6:F8:67:4C:24:B3:E9:8C:63 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146071.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad5d::/32 Signature Algorithm: sha256WithRSAEncryption 8f:0d:fe:91:7f:38:07:97:5c:6e:4a:bc:13:b4:7e:03:ea:cd: af:92:66:b5:4c:26:5d:57:56:f1:1d:3a:13:5d:cb:8b:44:3e: 1b:09:3d:18:02:3f:d7:1c:22:d2:ea:56:3f:6b:c9:3d:1d:60: 2e:ab:e3:0d:88:3c:da:15:0c:d6:e5:96:4a:8e:53:38:c5:a2: 42:bd:43:b8:50:30:b3:d5:6a:cd:8d:90:5c:cf:d5:c0:fb:8a: 3e:22:6d:f2:79:12:d1:06:11:36:2b:e7:ef:bd:a8:b9:f9:13: c0:12:62:9f:83:a5:d1:d5:9f:a7:49:c6:37:81:7e:d2:9d:1a: d0:7c:72:b1:ed:74:f8:db:85:17:04:6f:61:27:c2:f9:75:72: 9a:b7:84:48:fc:67:c2:05:55:04:d3:37:4c:4c:3b:3b:7c:14: 4d:c4:d2:38:74:8b:fc:d5:c3:a3:73:16:1a:50:c1:30:bc:ad: 39:5b:c3:cc:23:aa:81:92:bb:fd:a6:27:a1:a9:d9:51:d5:38: 32:1b:0c:13:33:ac:ee:40:fe:c2:ab:73:d0:55:2e:9b:69:98: e2:22:97:2c:f0:ea:67:a5:c3:87:c0:08:64:6a:72:58:40:0b: 2a:56:5d:f8:87:42:6c:79:d4:c4:a7:60:4d:6f:8b:4f:f5:79: e6:59:0f:ff -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUb6pHccycoH0pEvCmcUkijt2CiYkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzNFoX DTI3MDMwMzA2MzMzNFowMzExMC8GA1UEAxMoQzdCQTM3NUIwNzEzQUI3NjY4OEQw RUI2Rjg2NzRDMjRCM0U5OEM2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANR9fyftyh4bzNbZ/YHkmi+zsLWQ7ipwoI4+5xppQ9qFAERwNpb4EH6fquDQ 0j12hmkz8i5wIPEoyYif9/D7NQgWFSbXkGkOXcf47qQkAUeu5ZrM+2qHj1KiATnU U4w0sKTXQa4JcXJxA/PTefdc34+oueaY2jrVkjpL1TL9fSYXYP/E5Tsnf0hIeH0S IRNMc/TYFVvPdoTvWQjZBpUNoHgVO/HuedmSOjbWsH/GyTykWZmJ86YV6CqsrRMQ d/hfpMLhQzrUso9Jm8889zv2cz1cKh0eR1VQ6oLHjInv4NTvaGipNhJ1ZSik0d13 4hzOFBXB/o0T09HOwfjxDJSTCmcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTHujdb BxOrdmiNDrb4Z0wks+mMYzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA3MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rV0wDQYJKoZIhvcNAQELBQADggEBAI8N/pF/OAeXXG5KvBO0fgPqza+SZrVMJl1X VvEdOhNdy4tEPhsJPRgCP9ccItLqVj9ryT0dYC6r4w2IPNoVDNbllkqOUzjFokK9 Q7hQMLPVas2NkFzP1cD7ij4ibfJ5EtEGETYr5++9qLn5E8ASYp+DpdHVn6dJxjeB ftKdGtB8crHtdPjbhRcEb2Enwvl1cpq3hEj8Z8IFVQTTN0xMOzt8FE3E0jh0i/zV w6NzFhpQwTC8rTlbw8wjqoGSu/2mJ6Gp2VHVODIbDBMzrO5A/sKrc9BVLptpmOIi lyzw6melw4fACGRqclhACypWXfiHQmx51MSnYE1vi0/1eeZZD/8= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:00 2026 by rpki-client