$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146097.roa File: AS146097.roa (raw, json) Hash identifier: 9RSEIupRVKXiyUGHqp+ZUHNoHL3LGXOLqqKZA4QVE24= Subject key identifier: B0:32:51:E7:9A:DD:E6:0C:E4:F2:03:21:7A:C9:58:D6:03:3E:A0:26 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 73B5AA398F14F3D9C45970B451DC900C58EBAA04 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146097.roa Signing time: Wed 04 Mar 2026 06:34:45 +0000 ROA not before: Wed 04 Mar 2026 06:29:45 +0000 ROA not after: Wed 03 Mar 2027 06:34:45 +0000 asID: 146097 IP address blocks: 240a:ad77::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:b5:aa:39:8f:14:f3:d9:c4:59:70:b4:51:dc:90:0c:58:eb:aa:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:45 2026 GMT Not After : Mar 3 06:34:45 2027 GMT Subject: CN=B03251E79ADDE60CE4F203217AC958D6033EA026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e7:7d:b5:a4:99:43:92:fc:a3:87:81:32:79: ad:a7:39:db:df:18:d9:52:8e:cf:8b:3e:9a:60:a0: 18:95:a5:50:e7:25:0d:42:2e:cb:70:e7:c2:02:48: 08:62:1d:15:f7:7f:8e:94:16:59:a7:47:ce:c3:28: 05:23:67:31:6f:1f:ce:07:b3:df:03:27:2d:de:4a: 4d:67:ce:26:c5:55:cc:c9:24:f0:d1:01:b7:bb:36: 31:f7:a8:15:27:ad:b8:1e:d5:ed:f5:1b:32:c8:e2: b6:c3:2a:ee:1f:75:70:48:bb:bc:46:c2:da:31:ce: 7a:bf:bf:b6:aa:e2:aa:8b:1f:16:e7:1f:1c:e0:b3: 1f:42:8a:2a:89:df:87:20:58:77:08:21:f5:25:da: 78:e2:d9:e6:4a:50:eb:f3:6d:19:bd:73:e0:fa:cf: 9a:fe:a6:8c:4f:b5:2d:2b:a0:79:ed:58:19:57:05: 41:d6:b0:fa:c9:02:a0:0e:b2:22:cf:ec:5c:86:96: c8:29:e7:36:66:af:c4:bd:e0:3a:1e:b7:89:08:ec: d7:63:d0:4a:ba:bb:e5:df:99:94:ee:58:da:a9:a5: c1:68:88:e8:9c:0c:99:ea:b9:6b:05:29:06:67:3f: 19:f4:c1:af:bb:1e:68:33:52:3c:ab:52:f6:83:fe: 49:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:32:51:E7:9A:DD:E6:0C:E4:F2:03:21:7A:C9:58:D6:03:3E:A0:26 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad77::/32 Signature Algorithm: sha256WithRSAEncryption 07:5c:36:04:63:3f:31:a0:56:4f:46:89:e2:b3:f3:fb:c7:63: a3:f9:10:95:d9:6c:f2:24:dc:7a:8b:c8:ed:72:06:52:ae:f8: b6:a0:df:e4:d2:24:d9:e1:cf:de:49:a0:f5:f5:f0:90:03:66: a2:b2:4e:16:dd:91:cb:1a:00:2c:f6:6a:1a:0f:c7:60:35:59: 1d:ac:4c:9a:74:a4:7d:89:b7:15:da:31:19:2d:bf:3c:0f:6f: e0:52:8d:80:8f:2d:a9:e4:2b:86:7e:a1:6e:3a:96:c5:5c:b5: 96:58:bf:02:b2:01:e0:55:a6:8d:92:1d:24:89:f4:0a:36:14: 22:b1:8e:84:8b:15:31:2e:ad:7b:ac:a4:8e:94:65:94:bd:82: 6a:89:16:f1:7c:a1:7b:32:ed:1a:6d:33:a4:ea:76:31:8e:22: 52:d6:af:72:3c:62:ce:9b:69:69:41:fb:55:0e:f2:84:ec:ac: 18:de:5e:20:f6:f3:1b:66:76:3e:0d:00:df:29:3e:bb:c9:aa: 08:ea:70:cc:83:5d:31:53:0d:71:4c:ef:19:d1:59:ca:a6:e1: c0:5a:81:2c:f0:7b:09:7c:e9:7a:81:fe:d5:c2:fc:b6:15:93: d8:28:8c:53:9b:cf:bf:3d:a9:74:e9:fd:e0:18:6b:86:c9:2b: d9:38:50:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUc7WqOY8U89nEWXC0UdyQDFjrqgQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0NVoX DTI3MDMwMzA2MzQ0NVowMzExMC8GA1UEAxMoQjAzMjUxRTc5QURERTYwQ0U0RjIw MzIxN0FDOTU4RDYwMzNFQTAyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTnfbWkmUOS/KOHgTJ5rac5298Y2VKOz4s+mmCgGJWlUOclDUIuy3DnwgJI CGIdFfd/jpQWWadHzsMoBSNnMW8fzgez3wMnLd5KTWfOJsVVzMkk8NEBt7s2Mfeo FSetuB7V7fUbMsjitsMq7h91cEi7vEbC2jHOer+/tqriqosfFucfHOCzH0KKKonf hyBYdwgh9SXaeOLZ5kpQ6/NtGb1z4PrPmv6mjE+1LSugee1YGVcFQdaw+skCoA6y Is/sXIaWyCnnNmavxL3gOh63iQjs12PQSrq75d+ZlO5Y2qmlwWiI6JwMmeq5awUp Bmc/GfTBr7seaDNSPKtS9oP+SYkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSwMlHn mt3mDOTyAyF6yVjWAz6gJjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjA5Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rXcwDQYJKoZIhvcNAQELBQADggEBAAdcNgRjPzGgVk9GieKz8/vHY6P5EJXZbPIk 3HqLyO1yBlKu+Lag3+TSJNnhz95JoPX18JADZqKyThbdkcsaACz2ahoPx2A1WR2s TJp0pH2JtxXaMRktvzwPb+BSjYCPLankK4Z+oW46lsVctZZYvwKyAeBVpo2SHSSJ 9Ao2FCKxjoSLFTEurXuspI6UZZS9gmqJFvF8oXsy7RptM6TqdjGOIlLWr3I8Ys6b aWlB+1UO8oTsrBjeXiD28xtmdj4NAN8pPrvJqgjqcMyDXTFTDXFM7xnRWcqm4cBa gSzwewl86XqB/tXC/LYVk9gojFObz789qXTp/eAYa4bJK9k4UAg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:47 2026 by rpki-client