$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146507.roa File: AS146507.roa (raw, json) Hash identifier: VkeZZnj8F/slNEBjcIc05rGPTLlHB2qKdOz9vqkUgUQ= Subject key identifier: 75:B2:C4:98:85:3A:5C:B2:A0:48:2E:9B:C8:F1:20:1E:43:04:8C:31 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 4839815E5A1C2065217566E55F4CA14A42CDAE75 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146507.roa Signing time: Wed 04 Mar 2026 06:34:43 +0000 ROA not before: Wed 04 Mar 2026 06:29:43 +0000 ROA not after: Wed 03 Mar 2027 06:34:43 +0000 asID: 146507 IP address blocks: 240a:af11::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:39:81:5e:5a:1c:20:65:21:75:66:e5:5f:4c:a1:4a:42:cd:ae:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:43 2026 GMT Not After : Mar 3 06:34:43 2027 GMT Subject: CN=75B2C498853A5CB2A0482E9BC8F1201E43048C31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bd:55:8c:d9:25:70:3e:15:2c:ba:29:97:44: e9:44:ae:ff:82:aa:83:be:ed:a3:47:ee:1c:ee:ef: 5d:cf:8c:07:a3:dd:24:14:19:8c:73:ad:23:45:80: 80:d6:50:60:ef:4f:bb:2d:56:e3:3e:b2:35:0a:da: 4e:d4:0a:d6:45:09:a4:c6:86:58:69:25:d5:a0:23: be:10:28:91:cb:98:ec:e8:e0:bc:c5:70:e6:3e:47: 1e:0d:11:5b:f0:97:84:ec:c6:bf:91:84:4a:75:78: d9:d0:86:31:23:40:81:38:00:4b:74:3d:f3:7a:47: 9a:a6:e3:23:ef:bc:7f:b9:7f:61:18:31:01:9d:d2: d3:6c:9a:4f:42:1b:6e:b2:04:87:b8:4f:92:a4:13: 7c:5c:32:7c:17:57:08:51:35:86:55:0f:ad:c9:57: ab:82:87:f2:fb:0c:83:4b:4e:60:26:3f:9b:e7:69: 1c:77:89:1a:4c:ab:46:21:a6:74:0d:14:7d:5f:29: 40:3d:f5:4b:01:71:47:35:2f:07:81:d0:17:10:7c: d4:a4:24:a3:0b:9e:e2:2c:1d:a1:08:9b:68:ad:75: 46:b3:82:ca:df:93:17:b3:7f:b6:cd:45:df:31:34: d5:7a:0f:3f:42:76:84:81:7a:1b:2f:b5:8b:42:6a: 10:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B2:C4:98:85:3A:5C:B2:A0:48:2E:9B:C8:F1:20:1E:43:04:8C:31 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146507.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af11::/32 Signature Algorithm: sha256WithRSAEncryption 18:30:87:ed:4d:1e:45:4a:04:93:94:4b:aa:d0:72:3d:12:8f: fd:f6:78:79:31:09:d5:0e:13:94:8f:82:21:cd:74:8c:dd:2e: ab:7d:e4:1f:13:e9:4a:63:26:6b:ba:0b:04:54:b3:72:38:28: f7:d0:5d:cf:d4:e6:a2:d4:0d:95:85:d3:c3:ac:d8:89:15:b1: 5d:08:cb:13:d6:9d:34:a9:9d:12:46:60:c7:05:32:dc:3e:d7: ab:de:fa:34:e7:25:d6:cc:25:3d:f0:39:40:ff:b1:4e:bd:a3: 80:61:be:37:49:0e:d7:82:5d:12:94:4d:43:d4:d4:d0:8b:91: f5:7a:93:56:cd:e7:ff:ce:4b:2f:16:c4:54:1e:6a:b0:50:aa: bc:c8:a6:1f:09:94:b0:56:02:7e:86:6d:63:e9:19:7d:f6:4b: ac:31:a2:5f:75:89:88:ba:ce:ba:28:24:3a:07:df:3a:5c:b4: 25:6f:8f:37:e7:51:26:e5:96:67:6e:bd:a0:2b:65:a2:4e:d2: 71:84:b9:95:af:a8:4e:03:85:4d:c9:3a:96:45:d4:30:9e:41: 39:9e:e8:9e:8d:dd:20:a4:06:b7:55:b7:42:2e:6e:c0:58:16: 67:a9:5b:ae:c0:9f:2f:78:0d:a2:4a:51:52:28:ae:c7:34:bb: 82:92:60:41 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUSDmBXlocIGUhdWblX0yhSkLNrnUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0M1oX DTI3MDMwMzA2MzQ0M1owMzExMC8GA1UEAxMoNzVCMkM0OTg4NTNBNUNCMkEwNDgy RTlCQzhGMTIwMUU0MzA0OEMzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALK9VYzZJXA+FSy6KZdE6USu/4Kqg77to0fuHO7vXc+MB6PdJBQZjHOtI0WA gNZQYO9Puy1W4z6yNQraTtQK1kUJpMaGWGkl1aAjvhAokcuY7OjgvMVw5j5HHg0R W/CXhOzGv5GESnV42dCGMSNAgTgAS3Q983pHmqbjI++8f7l/YRgxAZ3S02yaT0Ib brIEh7hPkqQTfFwyfBdXCFE1hlUPrclXq4KH8vsMg0tOYCY/m+dpHHeJGkyrRiGm dA0UfV8pQD31SwFxRzUvB4HQFxB81KQkowue4iwdoQibaK11RrOCyt+TF7N/ts1F 3zE01XoPP0J2hIF6Gy+1i0JqEH8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR1ssSY hTpcsqBILpvI8SAeQwSMMTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUwNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rxEwDQYJKoZIhvcNAQELBQADggEBABgwh+1NHkVKBJOUS6rQcj0Sj/32eHkxCdUO E5SPgiHNdIzdLqt95B8T6UpjJmu6CwRUs3I4KPfQXc/U5qLUDZWF08Os2IkVsV0I yxPWnTSpnRJGYMcFMtw+16ve+jTnJdbMJT3wOUD/sU69o4BhvjdJDteCXRKUTUPU 1NCLkfV6k1bN5//OSy8WxFQearBQqrzIph8JlLBWAn6GbWPpGX32S6wxol91iYi6 zrooJDoH3zpctCVvjzfnUSbllmduvaArZaJO0nGEuZWvqE4DhU3JOpZF1DCeQTme 6J6N3SCkBrdVt0IubsBYFmepW67Any94DaJKUVIorsc0u4KSYEE= -----END CERTIFICATE-----Generated at Sat Mar 28 15:54:04 2026 by rpki-client