$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146530.roa File: AS146530.roa (raw, json) Hash identifier: VLNTOIQW/J1Vzbg02guik16Jg+K9shf5hX00vLw7MoU= Subject key identifier: 9C:BE:0D:29:D5:D3:83:D9:3B:DE:4E:EA:B5:7C:31:F7:73:85:24:4D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 39743E0FCADD95A2D7AF51B1FD251CD340574895 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146530.roa Signing time: Wed 04 Mar 2026 06:39:32 +0000 ROA not before: Wed 04 Mar 2026 06:34:32 +0000 ROA not after: Wed 03 Mar 2027 06:39:32 +0000 asID: 146530 IP address blocks: 240a:af28::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:74:3e:0f:ca:dd:95:a2:d7:af:51:b1:fd:25:1c:d3:40:57:48:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:32 2026 GMT Not After : Mar 3 06:39:32 2027 GMT Subject: CN=9CBE0D29D5D383D93BDE4EEAB57C31F77385244D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:80:5a:88:93:44:99:71:6e:58:87:47:51:0e: 8c:20:ce:63:6c:21:75:2a:98:85:23:5b:29:4f:23: e5:be:4f:c7:92:2d:e2:50:90:5f:18:5b:2f:b7:ad: 06:91:1e:83:37:4a:ac:95:9f:2e:63:11:42:46:4f: 68:5a:fc:66:cc:6e:c9:1d:3e:aa:d3:b1:36:c8:36: 92:e9:d4:b0:b0:f0:83:ad:40:5f:a9:6e:95:af:04: e5:32:8f:24:94:d6:7a:2b:95:c6:f0:70:b7:fd:3f: 3a:40:98:7b:0c:f7:5d:65:ca:4d:6b:d8:05:5c:ab: 6e:2f:0a:d1:39:74:87:26:27:be:e2:1a:5f:3a:36: 7d:f1:6e:69:aa:ac:4e:d5:89:39:73:90:ab:1f:6c: c7:0c:32:21:4f:ad:e5:c6:72:81:e7:31:18:52:38: 80:88:5f:f8:ae:ae:bd:0d:05:86:80:ec:03:ce:b3: b6:f8:c8:e3:8e:af:f1:00:7f:11:a5:4d:cd:06:b7: f5:c0:3f:ca:dc:23:7b:d7:4b:62:96:99:9d:56:5e: ee:af:a8:ac:08:08:1f:54:0c:64:bd:38:fa:1c:0d: 11:34:3f:28:c8:fa:1d:da:cc:a0:33:91:3a:d4:93: 23:93:e7:94:6b:e7:a5:b5:82:85:6c:22:93:2d:2f: 7d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:BE:0D:29:D5:D3:83:D9:3B:DE:4E:EA:B5:7C:31:F7:73:85:24:4D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af28::/32 Signature Algorithm: sha256WithRSAEncryption 80:b1:e2:f8:44:03:1c:77:9a:ee:30:7f:ea:a3:93:01:cf:e6: 18:8a:23:e0:e3:03:29:b6:d5:eb:7f:ef:52:2b:11:7e:c2:0b: 55:9f:5a:d1:de:16:dc:a9:a2:73:7e:57:7c:fa:d3:95:a0:2d: f2:42:ed:7d:3f:51:ee:d5:05:85:e6:95:62:d3:3b:57:04:54: 24:fc:3a:78:b4:76:62:ce:d9:e0:d7:85:fc:93:3b:92:00:d5: 85:da:02:ba:8a:63:16:4a:67:6c:69:1c:21:ab:f1:61:a0:0b: ec:ae:45:f8:31:47:a6:8f:b6:e6:6f:fc:ec:22:11:23:98:e2: 4e:af:f8:96:ec:0e:9d:20:ea:49:74:5c:71:a8:90:b1:94:74: 64:17:27:f0:4c:82:13:85:24:fa:ff:92:dd:da:40:68:53:a7: a1:7b:dd:d4:f2:66:b3:a6:86:de:98:83:96:fc:d4:3b:85:f1: 56:20:43:8e:e4:9f:ed:af:3c:5d:4c:16:18:eb:d7:72:cb:31: 21:e7:32:66:1c:e5:39:bc:0d:70:9a:85:51:97:c0:22:3e:14: 94:65:5a:b1:47:d8:70:9b:fc:bf:05:6b:82:41:e2:3d:44:74: 73:f1:ae:2a:8b:71:29:32:59:79:53:da:ee:3a:61:35:ab:0d: 2c:9f:e4:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUOXQ+D8rdlaLXr1Gx/SUc00BXSJUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQzMloX DTI3MDMwMzA2MzkzMlowMzExMC8GA1UEAxMoOUNCRTBEMjlENUQzODNEOTNCREU0 RUVBQjU3QzMxRjc3Mzg1MjQ0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGAWoiTRJlxbliHR1EOjCDOY2whdSqYhSNbKU8j5b5Px5It4lCQXxhbL7et BpEegzdKrJWfLmMRQkZPaFr8ZsxuyR0+qtOxNsg2kunUsLDwg61AX6lula8E5TKP JJTWeiuVxvBwt/0/OkCYewz3XWXKTWvYBVyrbi8K0Tl0hyYnvuIaXzo2ffFuaaqs TtWJOXOQqx9sxwwyIU+t5cZygecxGFI4gIhf+K6uvQ0FhoDsA86ztvjI446v8QB/ EaVNzQa39cA/ytwje9dLYpaZnVZe7q+orAgIH1QMZL04+hwNETQ/KMj6HdrMoDOR OtSTI5PnlGvnpbWChWwiky0vfc8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBScvg0p 1dOD2TveTuq1fDH3c4UkTTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rygwDQYJKoZIhvcNAQELBQADggEBAICx4vhEAxx3mu4wf+qjkwHP5hiKI+DjAym2 1et/71IrEX7CC1WfWtHeFtyponN+V3z605WgLfJC7X0/Ue7VBYXmlWLTO1cEVCT8 Oni0dmLO2eDXhfyTO5IA1YXaArqKYxZKZ2xpHCGr8WGgC+yuRfgxR6aPtuZv/Owi ESOY4k6v+JbsDp0g6kl0XHGokLGUdGQXJ/BMghOFJPr/kt3aQGhTp6F73dTyZrOm ht6Yg5b81DuF8VYgQ47kn+2vPF1MFhjr13LLMSHnMmYc5Tm8DXCahVGXwCI+FJRl WrFH2HCb/L8Fa4JB4j1EdHPxriqLcSkyWXlT2u46YTWrDSyf5EI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:00 2026 by rpki-client