$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146113.roa File: AS146113.roa (raw, json) Hash identifier: aJgkq/TbDF2JCShRTsAvwz5g52MZmbuMqOWu7QeVT7k= Subject key identifier: ED:B7:4A:26:99:7F:D9:2D:A2:38:15:68:23:ED:0A:D3:7D:51:D5:97 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 67A48595D4D7C18FD15E886D52D77866948CECE1 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146113.roa Signing time: Wed 04 Mar 2026 06:34:26 +0000 ROA not before: Wed 04 Mar 2026 06:29:26 +0000 ROA not after: Wed 03 Mar 2027 06:34:26 +0000 asID: 146113 IP address blocks: 240a:ad87::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a4:85:95:d4:d7:c1:8f:d1:5e:88:6d:52:d7:78:66:94:8c:ec:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:26 2026 GMT Not After : Mar 3 06:34:26 2027 GMT Subject: CN=EDB74A26997FD92DA238156823ED0AD37D51D597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c2:26:b9:0f:e4:80:d4:da:8d:e1:21:64:c8: 89:10:e7:5a:7b:97:1c:8e:cc:bf:53:67:ff:7e:0d: e8:e3:a6:e0:fe:4f:59:e6:cf:f4:3e:fc:05:ff:54: 99:9b:d2:0b:e8:53:5d:33:8c:c0:c2:19:16:57:53: 59:1c:30:5d:3e:f2:97:84:84:3e:12:ff:15:49:32: 60:eb:5f:c0:77:11:4a:b5:7d:ea:5b:67:5b:7c:b6: 29:a7:ac:d1:3c:d6:6b:e6:7d:55:14:42:aa:ec:7c: 1a:fa:d0:43:c5:39:63:1a:70:8e:46:86:e7:a9:78: 56:46:c3:dc:e2:b6:3c:94:09:be:f8:68:7d:84:00: 2f:77:5d:ad:fe:39:86:25:3e:f9:aa:47:c9:5c:8f: fe:e0:70:91:84:79:5a:85:bf:47:ae:76:37:17:05: 1d:67:87:4f:b8:c3:d1:03:58:d1:26:d1:d9:ef:cd: 9e:40:a2:33:13:4f:cf:78:b7:f1:38:6d:53:da:32: 93:40:e5:1d:99:e8:24:b1:7a:26:24:83:41:f9:01: 53:1f:c9:51:83:f5:06:94:6a:34:ce:bd:25:f5:27: 83:c6:ab:bf:ff:4b:60:c2:b7:d3:c8:fc:56:24:7f: 8a:4a:2b:fb:01:38:93:45:8e:f5:aa:cf:a6:0f:c7: 84:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B7:4A:26:99:7F:D9:2D:A2:38:15:68:23:ED:0A:D3:7D:51:D5:97 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ad87::/32 Signature Algorithm: sha256WithRSAEncryption b4:a9:f6:4a:4a:70:c7:9a:19:1e:c4:3d:cf:eb:f3:09:fd:d2: bf:df:ac:69:6f:7d:cb:51:d1:e5:06:bd:f5:46:64:fb:44:18: 4d:17:56:ce:a2:b7:21:31:7a:bd:25:b7:e8:2e:6e:2f:2c:8a: d1:5e:02:d1:3b:ba:2b:b4:04:c5:73:c1:a2:33:7f:cd:b5:29: 94:74:98:96:dc:0f:10:74:b6:4e:da:c1:7d:de:ae:bd:e8:fc: 41:59:7e:e0:08:0c:85:74:39:0b:de:91:49:0a:a4:43:74:45: 5b:15:03:77:ea:e5:ea:c1:f2:41:eb:eb:df:cb:40:7a:c3:ae: 9f:43:51:99:42:8d:35:97:9a:6e:c8:c1:f7:33:b6:28:8d:40: 5a:33:38:d5:74:64:55:a7:d4:a0:fe:00:59:a0:f6:45:42:1a: 48:d4:0c:22:55:dc:3d:19:2b:f6:32:33:5e:30:62:e5:33:9d: 69:60:88:63:af:24:4b:38:b5:9c:9d:58:0c:08:db:b6:c9:67: fb:53:00:7a:b3:2a:20:3b:49:e8:13:59:e0:39:e5:da:db:75: a8:ce:ee:52:bc:11:28:15:25:b5:31:83:7e:bd:bf:72:ec:41: 31:00:28:3f:44:48:78:fc:ce:a1:e3:8f:5f:d7:f3:30:67:59: 0d:45:95:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUZ6SFldTXwY/RXohtUtd4ZpSM7OEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkyNloX DTI3MDMwMzA2MzQyNlowMzExMC8GA1UEAxMoRURCNzRBMjY5OTdGRDkyREEyMzgx NTY4MjNFRDBBRDM3RDUxRDU5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/CJrkP5IDU2o3hIWTIiRDnWnuXHI7Mv1Nn/34N6OOm4P5PWebP9D78Bf9U mZvSC+hTXTOMwMIZFldTWRwwXT7yl4SEPhL/FUkyYOtfwHcRSrV96ltnW3y2Kaes 0TzWa+Z9VRRCqux8GvrQQ8U5YxpwjkaG56l4VkbD3OK2PJQJvvhofYQAL3ddrf45 hiU++apHyVyP/uBwkYR5WoW/R652NxcFHWeHT7jD0QNY0SbR2e/NnkCiMxNPz3i3 8ThtU9oyk0DlHZnoJLF6JiSDQfkBUx/JUYP1BpRqNM69JfUng8arv/9LYMK308j8 ViR/ikor+wE4k0WO9arPpg/HhHUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTtt0om mX/ZLaI4FWgj7QrTfVHVlzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjExMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rYcwDQYJKoZIhvcNAQELBQADggEBALSp9kpKcMeaGR7EPc/r8wn90r/frGlvfctR 0eUGvfVGZPtEGE0XVs6ityExer0lt+gubi8sitFeAtE7uiu0BMVzwaIzf821KZR0 mJbcDxB0tk7awX3err3o/EFZfuAIDIV0OQvekUkKpEN0RVsVA3fq5erB8kHr69/L QHrDrp9DUZlCjTWXmm7IwfcztiiNQFozONV0ZFWn1KD+AFmg9kVCGkjUDCJV3D0Z K/YyM14wYuUznWlgiGOvJEs4tZydWAwI27bJZ/tTAHqzKiA7SegTWeA55drbdajO 7lK8ESgVJbUxg369v3LsQTEAKD9ESHj8zqHjj1/X8zBnWQ1FlZk= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:06 2026 by rpki-client