$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146534.roa File: AS146534.roa (raw, json) Hash identifier: dAh087Di205DffMxSNj64O5e4ixTympvE5XpM/h7Tv0= Subject key identifier: B0:9E:BB:C7:45:6D:84:43:D5:76:03:42:81:58:33:E5:64:02:27:05 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41A9B53D9F47908BE4B3809CEA217B53F055A679 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146534.roa Signing time: Wed 04 Mar 2026 06:39:51 +0000 ROA not before: Wed 04 Mar 2026 06:34:51 +0000 ROA not after: Wed 03 Mar 2027 06:39:51 +0000 asID: 146534 IP address blocks: 240a:af2c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a9:b5:3d:9f:47:90:8b:e4:b3:80:9c:ea:21:7b:53:f0:55:a6:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:51 2026 GMT Not After : Mar 3 06:39:51 2027 GMT Subject: CN=B09EBBC7456D8443D5760342815833E564022705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:71:55:4c:e7:58:5b:c6:3b:e3:a2:23:16:c9: 39:9e:df:e8:f0:99:41:a6:a0:5e:d5:ca:9c:71:3f: 97:ce:66:23:7a:15:90:05:72:03:6a:5c:8f:4b:b7: e8:d7:dc:85:62:d4:24:0f:94:d8:1e:b1:39:94:08: 5f:de:87:7a:df:31:61:c9:bc:39:b6:d7:c4:13:15: d6:bd:47:ea:66:88:f7:21:29:35:75:07:90:ce:55: b6:68:71:68:eb:1b:19:3c:5a:2d:3a:e1:c1:be:0c: 17:42:da:c4:48:1b:b5:ed:aa:e0:83:93:cd:e2:2e: 52:41:e5:b7:6e:20:1c:c6:87:dd:c0:ab:0a:26:21: 4d:7b:3b:18:b7:85:a0:67:79:6f:5e:13:a9:4f:16: d2:40:e9:7d:f0:ee:1e:d6:55:03:a5:05:35:25:e7: 94:26:7c:d4:5c:70:6a:5a:fe:c8:e7:2a:f9:74:74: 3e:b8:d8:e8:1b:86:88:33:65:84:c7:dd:99:d8:76: 64:1e:6d:00:25:11:79:30:96:42:e3:f3:22:c4:aa: 87:81:26:bd:34:89:47:6c:80:e2:96:7b:b8:a9:08: 45:2e:71:78:d3:f5:a7:df:43:cd:cd:0d:70:21:fa: 18:b3:e7:d0:6d:43:f8:21:14:9f:fc:0f:41:fe:2e: a4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:9E:BB:C7:45:6D:84:43:D5:76:03:42:81:58:33:E5:64:02:27:05 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af2c::/32 Signature Algorithm: sha256WithRSAEncryption 38:b5:8c:60:32:e3:60:d5:3f:fd:4b:c2:70:f2:c1:ed:69:b3: 9e:93:1f:13:8e:c6:8b:fb:e5:d3:67:fe:41:65:e6:cd:82:cd: 8c:08:2e:79:b7:86:50:98:ba:33:24:41:e2:34:a4:a3:c7:37: 2d:3c:93:30:0e:b0:cc:69:68:17:2a:e6:13:c3:65:3b:11:6e: 85:f7:ed:f9:18:d2:69:61:4d:52:f7:1b:ae:0b:df:35:a4:95: 0a:48:d8:f7:75:33:9e:32:a1:24:3e:92:fb:c0:17:89:0c:69: fc:4b:ec:b0:8c:09:ad:df:c2:e0:4e:ed:ca:c4:b4:bc:d6:eb: 05:45:8f:90:6b:33:2e:7d:91:4e:42:39:33:7e:ec:96:d7:77: bd:5a:4c:76:56:50:ed:33:d5:0d:65:24:01:12:cb:c7:ad:68: bb:70:1a:31:4a:57:eb:52:d4:2f:e3:54:80:22:17:e0:03:54: e3:59:4a:1a:c5:2d:e9:92:94:0e:73:a0:52:e1:7a:5a:a6:ce: 5c:9e:5c:b0:32:9e:74:2c:7b:c1:bb:3b:93:5e:86:4b:57:fa: 06:11:fd:4a:9e:3a:22:5c:88:c4:bb:b6:9b:88:1a:2f:dc:43: f3:b1:24:c7:c3:a2:67:fc:a4:94:4b:d2:64:4b:02:e0:0b:1e: d9:0d:7c:44 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQam1PZ9HkIvks4Cc6iF7U/BVpnkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ1MVoX DTI3MDMwMzA2Mzk1MVowMzExMC8GA1UEAxMoQjA5RUJCQzc0NTZEODQ0M0Q1NzYw MzQyODE1ODMzRTU2NDAyMjcwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOdxVUznWFvGO+OiIxbJOZ7f6PCZQaagXtXKnHE/l85mI3oVkAVyA2pcj0u3 6NfchWLUJA+U2B6xOZQIX96Het8xYcm8ObbXxBMV1r1H6maI9yEpNXUHkM5Vtmhx aOsbGTxaLTrhwb4MF0LaxEgbte2q4IOTzeIuUkHlt24gHMaH3cCrCiYhTXs7GLeF oGd5b14TqU8W0kDpffDuHtZVA6UFNSXnlCZ81Fxwalr+yOcq+XR0PrjY6BuGiDNl hMfdmdh2ZB5tACUReTCWQuPzIsSqh4EmvTSJR2yA4pZ7uKkIRS5xeNP1p99Dzc0N cCH6GLPn0G1D+CEUn/wPQf4upLkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSwnrvH RW2EQ9V2A0KBWDPlZAInBTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjUzNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rywwDQYJKoZIhvcNAQELBQADggEBADi1jGAy42DVP/1LwnDywe1ps56THxOOxov7 5dNn/kFl5s2CzYwILnm3hlCYujMkQeI0pKPHNy08kzAOsMxpaBcq5hPDZTsRboX3 7fkY0mlhTVL3G64L3zWklQpI2Pd1M54yoSQ+kvvAF4kMafxL7LCMCa3fwuBO7crE tLzW6wVFj5BrMy59kU5COTN+7JbXd71aTHZWUO0z1Q1lJAESy8etaLtwGjFKV+tS 1C/jVIAiF+ADVONZShrFLemSlA5zoFLhelqmzlyeXLAynnQse8G7O5NehktX+gYR /UqeOiJciMS7tpuIGi/cQ/OxJMfDomf8pJRL0mRLAuALHtkNfEQ= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:57 2026 by rpki-client