$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146514.roa File: AS146514.roa (raw, json) Hash identifier: VdDgCv3S8syC3DqmIdVmpgo8rD4mUU92bJk657A2EBc= Subject key identifier: 73:E2:0B:B7:D1:5E:A7:A8:9F:AE:79:89:68:E0:13:4B:65:BF:19:D9 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 477EB658565CF5EA35AB936F99B7B1EDFF8512EF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146514.roa Signing time: Wed 04 Mar 2026 06:33:47 +0000 ROA not before: Wed 04 Mar 2026 06:28:47 +0000 ROA not after: Wed 03 Mar 2027 06:33:47 +0000 asID: 146514 IP address blocks: 240a:af18::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:7e:b6:58:56:5c:f5:ea:35:ab:93:6f:99:b7:b1:ed:ff:85:12:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:47 2026 GMT Not After : Mar 3 06:33:47 2027 GMT Subject: CN=73E20BB7D15EA7A89FAE798968E0134B65BF19D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:d7:da:32:b5:eb:a7:30:54:82:a6:b3:1c: cf:8f:2c:0e:67:87:e1:a5:46:90:3c:c8:d3:ad:b5: 06:a1:3f:12:a1:7b:cd:d3:a6:02:2b:2d:2c:d0:ca: d8:5f:b1:f8:7f:ea:0b:34:5e:6a:df:3f:5e:92:d1: 4b:a2:0c:91:0b:fb:b9:76:ee:ac:9a:ab:40:e5:17: ae:30:fd:67:b6:44:f5:d8:cd:b0:d5:59:56:f2:e3: bf:e4:cd:13:f5:44:ab:77:38:ae:85:3a:f7:4b:fd: 4a:b2:52:ec:37:9e:7f:c8:ae:8c:35:86:de:a5:51: 91:f8:c8:2d:43:d9:e9:ed:19:3e:28:0f:0a:d3:c3: 39:4f:a8:b3:5a:28:2c:7b:62:a1:93:55:a4:71:e3: 4f:d1:33:c8:83:5b:43:be:2b:e7:58:c3:3d:c1:19: 64:13:e4:35:be:d3:60:ec:73:f9:04:ac:7a:77:6d: 8f:eb:00:b5:de:b5:5b:4c:81:52:28:d9:04:53:91: 4a:7f:25:a4:65:03:0d:d0:12:21:ba:f7:5f:1d:e3: b2:69:fd:98:95:0e:df:5e:ba:6e:d3:ba:07:21:e4: 70:e3:2a:d7:43:0a:aa:a9:a1:08:56:dc:04:1c:09: ea:38:a2:6b:83:a5:71:d2:f6:9e:4c:53:81:f9:cd: 62:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E2:0B:B7:D1:5E:A7:A8:9F:AE:79:89:68:E0:13:4B:65:BF:19:D9 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146514.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af18::/32 Signature Algorithm: sha256WithRSAEncryption 61:8a:c5:0f:22:26:ca:86:30:79:4f:ae:50:71:dc:81:1e:84: 59:5a:b1:73:0e:42:23:1a:29:c4:bc:27:89:06:7b:bc:e9:f3: 65:30:9e:0d:47:db:34:4b:a4:a4:27:1e:72:69:95:5f:9f:e6: 5e:b8:b1:19:e9:e1:fc:b3:f4:c0:eb:7c:03:44:94:4f:29:b9: ea:ea:37:8f:2a:74:30:f1:cb:4e:9b:d1:d5:f5:2f:b1:95:ab: d4:72:2e:19:0a:10:14:c5:94:fa:d9:76:06:b2:55:69:5d:2c: 23:a1:d7:0e:b7:34:84:36:c0:e3:e9:57:bc:cd:a7:dc:22:88: 6a:80:a8:e7:46:e7:6c:79:6b:24:71:78:ad:ff:b3:f1:ac:d1: d7:1b:cf:4a:9a:cb:58:b0:fe:98:b1:29:f0:4e:0f:4c:d7:49: ee:d0:fc:b6:6c:1d:a2:a0:0e:85:45:92:34:8d:d3:be:60:a9: 17:a3:bd:13:ea:e5:04:71:27:05:4b:a8:21:14:e3:7d:f4:51: 8c:81:2e:d4:26:e9:09:e4:12:b4:d0:9e:5c:4a:ed:35:1a:a8: 01:15:1e:84:6c:a7:8c:47:cc:b6:05:af:8a:66:e8:e6:8e:ca: 9f:a4:6c:34:3d:ce:b3:e6:1b:35:b9:c7:c6:ec:b7:58:b5:7f: 22:a5:88:e5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUR362WFZc9eo1q5Nvmbex7f+FEu8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0N1oX DTI3MDMwMzA2MzM0N1owMzExMC8GA1UEAxMoNzNFMjBCQjdEMTVFQTdBODlGQUU3 OTg5NjhFMDEzNEI2NUJGMTlEOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyo19oyteunMFSCprMcz48sDmeH4aVGkDzI0621BqE/EqF7zdOmAistLNDK 2F+x+H/qCzReat8/XpLRS6IMkQv7uXburJqrQOUXrjD9Z7ZE9djNsNVZVvLjv+TN E/VEq3c4roU690v9SrJS7Deef8iujDWG3qVRkfjILUPZ6e0ZPigPCtPDOU+os1oo LHtioZNVpHHjT9EzyINbQ74r51jDPcEZZBPkNb7TYOxz+QSsendtj+sAtd61W0yB UijZBFORSn8lpGUDDdASIbr3Xx3jsmn9mJUO3166btO6ByHkcOMq10MKqqmhCFbc BBwJ6jiia4OlcdL2nkxTgfnNYi8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRz4gu3 0V6nqJ+ueYlo4BNLZb8Z2TAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rxgwDQYJKoZIhvcNAQELBQADggEBAGGKxQ8iJsqGMHlPrlBx3IEehFlasXMOQiMa KcS8J4kGe7zp82Uwng1H2zRLpKQnHnJplV+f5l64sRnp4fyz9MDrfANElE8puerq N48qdDDxy06b0dX1L7GVq9RyLhkKEBTFlPrZdgayVWldLCOh1w63NIQ2wOPpV7zN p9wiiGqAqOdG52x5ayRxeK3/s/Gs0dcbz0qay1iw/pixKfBOD0zXSe7Q/LZsHaKg DoVFkjSN075gqRejvRPq5QRxJwVLqCEU4330UYyBLtQm6QnkErTQnlxK7TUaqAEV HoRsp4xHzLYFr4pm6OaOyp+kbDQ9zrPmGzW5x8bst1i1fyKliOU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:07 2026 by rpki-client