$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146545.roa File: AS146545.roa (raw, json) Hash identifier: YF0LTlAh6yY4ijNJ8MDy6r35uRQN9rHRE2O8xWOkdak= Subject key identifier: 65:D8:9E:F4:2B:F8:64:33:21:E3:E3:52:CB:D3:11:E1:23:F8:A3:9B Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 772C0B0DBAC41FF85D2A6E2E58FB950F88294C62 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146545.roa Signing time: Wed 04 Mar 2026 06:39:47 +0000 ROA not before: Wed 04 Mar 2026 06:34:47 +0000 ROA not after: Wed 03 Mar 2027 06:39:47 +0000 asID: 146545 IP address blocks: 240a:af37::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:2c:0b:0d:ba:c4:1f:f8:5d:2a:6e:2e:58:fb:95:0f:88:29:4c:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:47 2026 GMT Not After : Mar 3 06:39:47 2027 GMT Subject: CN=65D89EF42BF8643321E3E352CBD311E123F8A39B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:43:7c:aa:1e:f1:fd:74:c4:a4:be:4e:75: bc:06:8f:dd:5d:00:90:e7:0c:2b:0e:6a:4b:82:f1: 35:8a:70:c2:9c:fc:34:cc:36:a2:8b:c8:07:7a:f3: 58:27:73:ba:e6:9b:5f:fc:78:01:06:1b:2f:d8:4e: 82:4c:f9:a4:38:b3:a2:39:17:b8:31:6c:6a:fe:61: 48:c0:13:21:49:2e:ba:cd:db:5a:98:30:5e:62:32: 45:d0:37:6f:13:a2:e2:e7:1e:c3:1b:8c:35:f5:d2: d1:37:60:be:11:96:48:e3:42:b5:3b:81:ab:8a:67: 4c:20:e4:f6:71:bc:c1:52:96:41:03:55:da:96:d6: 58:fe:f0:76:4d:21:ae:e7:57:35:b4:b2:57:9c:ae: 95:47:11:31:11:4a:ea:49:8c:b1:e1:fd:cd:14:c4: db:db:f0:25:d3:a2:41:41:d7:cd:83:4d:52:9b:b7: 14:7c:c0:97:62:d5:1f:6f:e4:af:e5:de:ce:d9:02: 65:de:d5:12:86:5d:9f:69:2c:bd:f9:f5:ad:94:af: 2a:cc:37:d3:a3:d8:88:2a:77:43:eb:59:a0:d4:d5: 4e:7d:e7:a9:bb:21:75:fb:ec:a1:bb:cd:7a:08:3f: d7:73:45:74:4a:fb:68:9c:b0:6f:5b:4a:0d:b7:03: 7b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D8:9E:F4:2B:F8:64:33:21:E3:E3:52:CB:D3:11:E1:23:F8:A3:9B X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146545.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af37::/32 Signature Algorithm: sha256WithRSAEncryption 6e:7c:ff:44:15:26:18:c8:7a:26:77:cc:46:8c:14:6e:a3:08: 5d:6e:84:c1:3c:62:ea:c6:38:94:02:82:ca:f5:53:f4:5f:12: 73:2b:3e:04:74:ee:b8:a5:8f:05:a7:61:90:4c:f0:d5:9b:14: 79:85:79:7b:6c:51:de:d6:3e:92:a0:2b:15:7d:0e:93:8f:ef: 0c:a7:63:96:3e:c4:6f:ad:91:4d:6d:b9:bd:7b:6b:8f:1a:5b: 1a:4f:6f:ef:1a:74:9a:8e:94:d1:b3:01:80:9e:7b:33:dc:7f: cd:9e:b9:4e:35:a7:0f:ec:26:bf:91:ba:8b:70:79:d3:17:66: 33:8e:5f:17:0f:ed:51:35:0f:4a:33:a3:7d:7b:45:97:73:22: a3:21:bd:82:2d:8e:91:2d:42:94:9f:2d:27:19:87:17:e0:ad: bb:f5:e1:e7:73:ca:c9:06:ba:13:11:dc:68:fa:0b:75:28:de: 06:76:4c:1d:ed:6b:ed:0a:2f:03:2c:24:e4:27:b0:6c:cf:b5: 64:f5:64:d0:d6:42:70:7a:25:81:cb:49:da:44:60:12:5a:c4: c1:58:da:d6:11:fc:dc:ba:c0:f4:a4:4c:8c:30:b4:d6:d6:5c: 44:69:88:14:f2:ee:e0:d0:e8:38:a2:66:db:d6:6b:19:a6:d4: bf:8b:34:fe -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdywLDbrEH/hdKm4uWPuVD4gpTGIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0N1oX DTI3MDMwMzA2Mzk0N1owMzExMC8GA1UEAxMoNjVEODlFRjQyQkY4NjQzMzIxRTNF MzUyQ0JEMzExRTEyM0Y4QTM5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKxYQ3yqHvH9dMSkvk51vAaP3V0AkOcMKw5qS4LxNYpwwpz8NMw2oovIB3rz WCdzuuabX/x4AQYbL9hOgkz5pDizojkXuDFsav5hSMATIUkuus3bWpgwXmIyRdA3 bxOi4ucewxuMNfXS0TdgvhGWSONCtTuBq4pnTCDk9nG8wVKWQQNV2pbWWP7wdk0h rudXNbSyV5yulUcRMRFK6kmMseH9zRTE29vwJdOiQUHXzYNNUpu3FHzAl2LVH2/k r+XeztkCZd7VEoZdn2ksvfn1rZSvKsw306PYiCp3Q+tZoNTVTn3nqbshdfvsobvN egg/13NFdEr7aJywb1tKDbcDe9sCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRl2J70 K/hkMyHj41LL0xHhI/ijmzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjU0NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rzcwDQYJKoZIhvcNAQELBQADggEBAG58/0QVJhjIeiZ3zEaMFG6jCF1uhME8YurG OJQCgsr1U/RfEnMrPgR07riljwWnYZBM8NWbFHmFeXtsUd7WPpKgKxV9DpOP7wyn Y5Y+xG+tkU1tub17a48aWxpPb+8adJqOlNGzAYCeezPcf82euU41pw/sJr+Ruotw edMXZjOOXxcP7VE1D0ozo317RZdzIqMhvYItjpEtQpSfLScZhxfgrbv14edzyskG uhMR3Gj6C3Uo3gZ2TB3ta+0KLwMsJOQnsGzPtWT1ZNDWQnB6JYHLSdpEYBJaxMFY 2tYR/Ny6wPSkTIwwtNbWXERpiBTy7uDQ6DiiZtvWaxmm1L+LNP4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:10 2026 by rpki-client