$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146217.roa File: AS146217.roa (raw, json) Hash identifier: IDL4rdA9f2zVFXeeE0fLFjePx6Cj1PP9lA+XY1TIhiM= Subject key identifier: 75:E3:A1:DC:C4:10:ED:77:CE:EC:0B:B3:74:33:5D:A6:21:D9:53:E5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6DE2B083933E60EE9BC63E581C1B633E6273D71E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146217.roa Signing time: Wed 04 Mar 2026 06:33:37 +0000 ROA not before: Wed 04 Mar 2026 06:28:37 +0000 ROA not after: Wed 03 Mar 2027 06:33:37 +0000 asID: 146217 IP address blocks: 240a:adef::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e2:b0:83:93:3e:60:ee:9b:c6:3e:58:1c:1b:63:3e:62:73:d7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:37 2026 GMT Not After : Mar 3 06:33:37 2027 GMT Subject: CN=75E3A1DCC410ED77CEEC0BB374335DA621D953E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8f:80:3c:11:c4:f5:90:9d:24:56:47:62:88: 5b:98:b3:64:05:74:7d:0e:0f:a7:39:0e:20:0f:88: 19:dd:40:00:09:64:26:6c:21:82:e9:29:89:14:68: 6c:a4:24:21:33:a1:56:ff:70:37:c2:17:b8:33:c2: c4:38:0e:7e:6b:59:3c:03:d9:6a:ad:5d:d7:43:26: 56:09:6e:6e:bf:29:6a:db:1d:4b:9d:3c:4b:41:d3: c2:5b:69:fc:1f:c4:6c:63:a8:a2:03:95:f6:a2:21: 22:00:a2:1a:0d:a5:fc:e4:50:3c:52:04:7e:0a:3a: a5:9f:ab:87:be:b3:2f:8e:91:52:b5:ac:df:19:40: b2:35:b2:f5:cc:ca:68:a1:b7:a0:b2:89:f4:66:6a: 0c:cf:66:98:7a:c7:77:e5:eb:05:0c:fc:c5:3f:dc: de:6c:5e:c4:28:60:e8:ce:35:e7:f3:aa:13:4b:f2: 0e:bb:97:02:75:82:fd:8c:48:22:9c:17:de:e9:6c: ef:cf:ea:bd:14:61:c9:1e:6a:68:f9:8f:df:4d:93: f1:26:ab:33:eb:5f:35:e7:ad:e1:6f:b8:75:5b:41: cd:97:2c:a9:35:06:bd:9e:bf:88:63:5c:70:35:6f: 1b:9b:13:26:39:e5:94:5a:c0:b1:68:07:1b:47:60: 25:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E3:A1:DC:C4:10:ED:77:CE:EC:0B:B3:74:33:5D:A6:21:D9:53:E5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146217.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:adef::/32 Signature Algorithm: sha256WithRSAEncryption 9f:92:63:40:cb:22:5d:8b:20:c6:e3:8d:b5:a9:11:71:44:2d: a1:7a:e3:63:ae:01:f1:f8:2b:40:3d:ad:41:16:89:f8:f2:30: 57:3b:63:65:55:8c:40:8a:b7:bc:eb:37:f2:57:85:9a:09:e4: 6d:fe:ac:49:de:88:d9:21:c4:8b:64:f0:92:2b:05:ed:98:f6: 24:05:47:d2:22:42:a3:b1:35:a5:c8:27:df:00:81:1f:e0:06: 7d:87:b6:05:7c:4d:25:e6:45:3e:8e:3d:03:10:f6:2c:d3:33: 09:2e:62:a4:3f:cb:33:84:0b:65:be:d1:3e:de:6f:91:66:6c: 6d:2f:bc:c3:b9:03:85:81:b8:4c:ae:b4:dc:d6:92:6d:15:26: 6d:0c:14:b1:90:9d:c0:9c:7a:67:d6:0a:fa:12:79:f4:a1:d8: d7:3d:2d:ad:49:0a:24:9f:a5:8b:d3:3a:ce:a8:65:91:89:65: 27:e5:49:39:c0:45:62:75:0f:d8:5f:9d:01:8f:35:c0:7f:25: 2e:92:a6:4c:0f:d3:c2:f3:a8:0e:3b:4e:f0:57:21:76:91:c5: 71:9c:ef:ab:06:3e:0f:b3:01:d4:6b:51:e7:95:92:cc:b0:d6: 4a:92:a7:7a:19:5c:d1:56:7d:82:4e:09:48:fc:44:ef:eb:8a: 46:92:cb:3a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbeKwg5M+YO6bxj5YHBtjPmJz1x4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzN1oX DTI3MDMwMzA2MzMzN1owMzExMC8GA1UEAxMoNzVFM0ExRENDNDEwRUQ3N0NFRUMw QkIzNzQzMzVEQTYyMUQ5NTNFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+PgDwRxPWQnSRWR2KIW5izZAV0fQ4PpzkOIA+IGd1AAAlkJmwhgukpiRRo bKQkITOhVv9wN8IXuDPCxDgOfmtZPAPZaq1d10MmVglubr8patsdS508S0HTwltp /B/EbGOoogOV9qIhIgCiGg2l/ORQPFIEfgo6pZ+rh76zL46RUrWs3xlAsjWy9czK aKG3oLKJ9GZqDM9mmHrHd+XrBQz8xT/c3mxexChg6M415/OqE0vyDruXAnWC/YxI IpwX3uls78/qvRRhyR5qaPmP302T8SarM+tfNeet4W+4dVtBzZcsqTUGvZ6/iGNc cDVvG5sTJjnllFrAsWgHG0dgJfUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR146Hc xBDtd87sC7N0M12mIdlT5TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjIxNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK re8wDQYJKoZIhvcNAQELBQADggEBAJ+SY0DLIl2LIMbjjbWpEXFELaF642OuAfH4 K0A9rUEWifjyMFc7Y2VVjECKt7zrN/JXhZoJ5G3+rEneiNkhxItk8JIrBe2Y9iQF R9IiQqOxNaXIJ98AgR/gBn2HtgV8TSXmRT6OPQMQ9izTMwkuYqQ/yzOEC2W+0T7e b5FmbG0vvMO5A4WBuEyutNzWkm0VJm0MFLGQncCcemfWCvoSefSh2Nc9La1JCiSf pYvTOs6oZZGJZSflSTnARWJ1D9hfnQGPNcB/JS6SpkwP08LzqA47TvBXIXaRxXGc 76sGPg+zAdRrUeeVksyw1kqSp3oZXNFWfYJOCUj8RO/rikaSyzo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:52 2026 by rpki-client