$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146496.roa File: AS146496.roa (raw, json) Hash identifier: F6ss6hJf0AgDnvMVJYXmampNsbB2b7ywIshHLWslvEA= Subject key identifier: C1:59:A3:4A:68:F3:19:B2:99:4F:62:F1:5A:CC:54:A5:C3:B6:18:6A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6F5E5EDABFD0ED2F0463BE9474B934A7872F1713 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146496.roa Signing time: Wed 04 Mar 2026 06:33:39 +0000 ROA not before: Wed 04 Mar 2026 06:28:39 +0000 ROA not after: Wed 03 Mar 2027 06:33:39 +0000 asID: 146496 IP address blocks: 240a:af06::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:5e:5e:da:bf:d0:ed:2f:04:63:be:94:74:b9:34:a7:87:2f:17:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:39 2026 GMT Not After : Mar 3 06:33:39 2027 GMT Subject: CN=C159A34A68F319B2994F62F15ACC54A5C3B6186A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:81:21:a6:49:1f:9f:e7:20:15:1f:72:ac:f2: 84:06:c3:f6:54:c0:2a:77:48:71:50:46:9c:63:10: 83:23:2e:60:2b:08:62:6e:58:35:82:07:f3:2a:c7: c4:12:c6:f7:1c:2d:d3:0a:e2:a5:9e:bb:51:f6:e9: 34:1a:b7:88:58:c9:e5:9e:38:e8:d0:87:55:04:51: d4:d9:c5:d6:88:0a:24:aa:dc:5f:fe:82:9b:5c:2e: 25:e3:77:cc:b4:d6:c1:01:c7:d3:28:d5:7b:b7:89: a5:cc:71:89:a0:49:be:40:32:4a:79:43:7a:c9:ed: 27:fe:90:7d:3a:1b:fc:98:ea:c3:48:05:b7:fe:fe: cc:3a:21:c8:9f:4f:ad:31:31:91:a0:de:56:c3:bb: 72:9d:70:ce:7e:1e:6e:21:51:e5:6b:23:17:2e:ae: 10:88:83:a1:d0:a1:0e:6d:40:43:77:7d:1d:2d:84: eb:b1:a4:2a:df:59:a8:40:14:d1:cf:17:22:aa:65: e6:8c:30:15:2b:01:2d:b6:c1:fd:69:ff:79:05:13: 9a:7d:30:cd:cd:3c:42:b2:cb:c1:0c:16:1c:d7:2d: ee:73:fc:70:48:f5:25:ed:88:1b:6f:be:95:86:12: 95:eb:4d:67:42:ca:c1:3b:b4:f3:a0:b0:f9:42:48: be:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:59:A3:4A:68:F3:19:B2:99:4F:62:F1:5A:CC:54:A5:C3:B6:18:6A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146496.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af06::/32 Signature Algorithm: sha256WithRSAEncryption 0e:c5:ab:b6:94:07:0f:c7:98:2a:fb:bb:c7:a2:e4:57:15:85: d7:5b:c1:6b:b1:b2:76:8a:45:69:41:bf:16:f4:8d:2e:96:a3: ce:e8:84:bd:6b:1d:97:88:7d:df:2c:24:61:c4:ad:3b:18:c4: d0:3a:5d:31:85:c2:f2:a5:3b:42:a0:03:ec:30:d3:ff:7d:34: a2:bf:6a:34:ff:69:ef:d4:76:b1:b9:62:5a:c8:3d:f5:b4:74: 05:dc:11:e1:26:fd:07:fa:3f:5b:80:45:bb:a2:1d:56:63:39: 33:12:63:2e:35:5f:44:e9:12:d4:bd:d4:e7:fc:3a:c4:9f:33: 4f:ba:18:ca:e2:20:2a:cf:50:93:5c:4c:5a:61:0a:50:70:ff: 89:8f:07:18:ec:ab:23:65:a9:4f:e9:42:be:04:1a:c4:ec:f6: 7f:96:6e:b2:00:0f:c4:d6:8a:44:a2:46:4e:8a:6a:e5:2c:3c: 6b:2d:60:91:2e:ce:e5:05:05:e3:a1:2a:56:8b:03:5f:5b:94: a9:f6:52:71:52:88:82:6d:d8:b7:95:02:ba:6c:76:76:d1:85: 68:e6:c6:53:61:22:9a:ac:fb:5d:79:5d:fb:7b:3d:28:9e:94: 3d:9f:52:c1:f3:69:cc:63:e0:2c:84:a2:76:d0:62:7b:01:ad: 65:5a:0a:74 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUb15e2r/Q7S8EY76UdLk0p4cvFxMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzOVoX DTI3MDMwMzA2MzMzOVowMzExMC8GA1UEAxMoQzE1OUEzNEE2OEYzMTlCMjk5NEY2 MkYxNUFDQzU0QTVDM0I2MTg2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+BIaZJH5/nIBUfcqzyhAbD9lTAKndIcVBGnGMQgyMuYCsIYm5YNYIH8yrH xBLG9xwt0wripZ67UfbpNBq3iFjJ5Z446NCHVQRR1NnF1ogKJKrcX/6Cm1wuJeN3 zLTWwQHH0yjVe7eJpcxxiaBJvkAySnlDesntJ/6QfTob/Jjqw0gFt/7+zDohyJ9P rTExkaDeVsO7cp1wzn4ebiFR5WsjFy6uEIiDodChDm1AQ3d9HS2E67GkKt9ZqEAU 0c8XIqpl5owwFSsBLbbB/Wn/eQUTmn0wzc08QrLLwQwWHNct7nP8cEj1Je2IG2++ lYYSletNZ0LKwTu086Cw+UJIvvcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTBWaNK aPMZsplPYvFazFSlw7YYajAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQ5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rwYwDQYJKoZIhvcNAQELBQADggEBAA7Fq7aUBw/HmCr7u8ei5FcVhddbwWuxsnaK RWlBvxb0jS6Wo87ohL1rHZeIfd8sJGHErTsYxNA6XTGFwvKlO0KgA+ww0/99NKK/ ajT/ae/UdrG5YlrIPfW0dAXcEeEm/Qf6P1uARbuiHVZjOTMSYy41X0TpEtS91Of8 OsSfM0+6GMriICrPUJNcTFphClBw/4mPBxjsqyNlqU/pQr4EGsTs9n+WbrIAD8TW ikSiRk6KauUsPGstYJEuzuUFBeOhKlaLA19blKn2UnFSiIJt2LeVArpsdnbRhWjm xlNhIpqs+115Xft7PSielD2fUsHzacxj4CyEonbQYnsBrWVaCnQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:25 2026 by rpki-client