$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146551.roa File: AS146551.roa (raw, json) Hash identifier: fIa38PsRTK/OCT+gSt539L+fygJe292hO3u9MDZVfp8= Subject key identifier: B4:00:16:DE:CA:5A:DF:7D:CC:5B:CA:24:65:F7:F6:EA:B1:FC:1F:40 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3B4BBE56FEF9CDA5F1F2413E84D56BB5DABC29A7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146551.roa Signing time: Wed 04 Mar 2026 06:39:43 +0000 ROA not before: Wed 04 Mar 2026 06:34:43 +0000 ROA not after: Wed 03 Mar 2027 06:39:43 +0000 asID: 146551 IP address blocks: 240a:af3d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4b:be:56:fe:f9:cd:a5:f1:f2:41:3e:84:d5:6b:b5:da:bc:29:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:43 2026 GMT Not After : Mar 3 06:39:43 2027 GMT Subject: CN=B40016DECA5ADF7DCC5BCA2465F7F6EAB1FC1F40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8b:45:a2:dc:cc:e0:4b:90:25:ae:07:66:04: bc:90:99:c3:38:9d:24:88:f3:32:37:bf:46:0b:3a: ca:e3:ce:ac:10:9d:34:46:33:02:20:f8:0c:e1:8e: a3:8c:1e:f8:aa:38:9e:7a:dc:b0:a6:ee:5a:e6:62: a1:8e:d2:b0:9e:99:e9:92:f7:0f:00:48:b5:87:59: 66:10:22:55:b0:de:5c:0d:17:ca:69:3b:a5:11:5a: 2d:bd:38:30:f7:ec:43:be:19:0e:e9:db:59:cd:b8: ff:04:7b:95:1e:45:38:59:e4:ac:f6:31:28:73:82: 2c:c7:61:22:42:43:1f:6f:31:ae:6d:bb:0e:56:b9: 50:6c:de:16:ee:60:9d:38:64:69:a9:a9:9c:30:ea: 9d:cc:9a:46:8c:25:97:f8:56:ae:cb:15:ea:06:64: f9:51:9c:40:68:84:0a:bd:1f:8a:44:b2:7b:bf:59: 4d:ea:1a:04:bf:6b:13:bf:4f:5f:25:ea:a2:30:2f: c1:fe:63:32:e3:5f:8c:41:ab:d6:b6:7e:9a:1d:7a: a4:96:3e:1a:e5:11:e4:54:a2:47:a3:71:42:b0:61: de:60:8d:c3:93:43:d8:8a:32:da:ce:4f:4c:b6:1a: d4:50:74:27:91:57:40:fc:42:5b:6b:13:b6:9c:5f: 69:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:00:16:DE:CA:5A:DF:7D:CC:5B:CA:24:65:F7:F6:EA:B1:FC:1F:40 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146551.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af3d::/32 Signature Algorithm: sha256WithRSAEncryption a1:6d:11:f8:ec:74:47:de:50:8e:6a:eb:ca:22:f1:4c:0b:28: 11:df:3c:b6:da:4f:44:34:98:3d:e1:57:32:e9:84:1c:32:4c: 7b:68:59:aa:e4:2c:f7:34:f9:ac:0a:aa:ee:eb:0d:c4:8f:15: 7e:92:da:7b:8a:1d:1e:60:5b:4d:d9:12:7c:4a:4f:44:5f:90: 5d:18:81:5a:96:84:3b:50:fa:4f:42:83:23:15:19:a8:f9:5b: 58:65:99:9b:66:a6:fe:12:ce:9c:25:83:3c:ee:8b:16:52:f1: 8a:80:41:10:36:d6:56:d6:c5:c9:a3:3a:c2:1b:e8:c9:fb:61: dc:aa:ab:6b:71:22:88:67:67:39:af:f7:44:f6:e3:cc:ef:83: b5:f9:f4:8a:23:df:67:01:4c:dc:ba:1f:cd:81:a3:28:e2:ee: 8b:18:b8:9e:4a:74:53:04:80:5e:81:09:98:3a:73:a2:45:99: f2:80:b9:b5:e3:f1:b1:c0:64:fd:4f:2f:90:d8:0f:9e:8b:17: 26:b5:87:e5:e3:d4:6d:ff:30:82:3f:48:9d:e3:d3:33:76:18: 41:a3:45:70:74:e0:ee:c5:2c:fb:50:40:3b:4a:45:c3:10:ac: 4a:a0:e3:f3:b6:ea:bc:c0:c3:c8:55:ff:81:03:c6:43:26:0d: 5b:96:1b:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUO0u+Vv75zaXx8kE+hNVrtdq8KacwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0M1oX DTI3MDMwMzA2Mzk0M1owMzExMC8GA1UEAxMoQjQwMDE2REVDQTVBREY3RENDNUJD QTI0NjVGN0Y2RUFCMUZDMUY0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqLRaLczOBLkCWuB2YEvJCZwzidJIjzMje/Rgs6yuPOrBCdNEYzAiD4DOGO o4we+Ko4nnrcsKbuWuZioY7SsJ6Z6ZL3DwBItYdZZhAiVbDeXA0Xymk7pRFaLb04 MPfsQ74ZDunbWc24/wR7lR5FOFnkrPYxKHOCLMdhIkJDH28xrm27Dla5UGzeFu5g nThkaampnDDqncyaRowll/hWrssV6gZk+VGcQGiECr0fikSye79ZTeoaBL9rE79P XyXqojAvwf5jMuNfjEGr1rZ+mh16pJY+GuUR5FSiR6NxQrBh3mCNw5ND2Ioy2s5P TLYa1FB0J5FXQPxCW2sTtpxfackCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS0ABbe ylrffcxbyiRl9/bqsfwfQDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjU1MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rz0wDQYJKoZIhvcNAQELBQADggEBAKFtEfjsdEfeUI5q68oi8UwLKBHfPLbaT0Q0 mD3hVzLphBwyTHtoWarkLPc0+awKqu7rDcSPFX6S2nuKHR5gW03ZEnxKT0RfkF0Y gVqWhDtQ+k9CgyMVGaj5W1hlmZtmpv4SzpwlgzzuixZS8YqAQRA21lbWxcmjOsIb 6Mn7Ydyqq2txIohnZzmv90T248zvg7X59Ioj32cBTNy6H82Boyji7osYuJ5KdFME gF6BCZg6c6JFmfKAubXj8bHAZP1PL5DYD56LFya1h+Xj1G3/MII/SJ3j0zN2GEGj RXB04O7FLPtQQDtKRcMQrEqg4/O26rzAw8hV/4EDxkMmDVuWGxA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:45 2026 by rpki-client