$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146556.roa File: AS146556.roa (raw, json) Hash identifier: YsU/Y7i4iqzcW9IPFZHgMQU9/s0WaXm920h41dsqODc= Subject key identifier: 8D:D0:A3:D7:16:55:6D:B7:B6:2D:07:60:44:13:D4:4D:5B:06:59:59 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0C24732D7928916001D961B1DFDDF38F91F98183 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146556.roa Signing time: Wed 04 Mar 2026 06:39:34 +0000 ROA not before: Wed 04 Mar 2026 06:34:34 +0000 ROA not after: Wed 03 Mar 2027 06:39:34 +0000 asID: 146556 IP address blocks: 240a:af42::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:24:73:2d:79:28:91:60:01:d9:61:b1:df:dd:f3:8f:91:f9:81:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:34 2026 GMT Not After : Mar 3 06:39:34 2027 GMT Subject: CN=8DD0A3D716556DB7B62D07604413D44D5B065959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:56:af:17:e6:f7:9a:6c:7c:26:4d:88:02:97: e1:89:ba:2f:78:78:7f:0f:57:db:a5:a3:bc:77:8d: 6e:08:96:ad:76:bf:a4:19:bd:81:43:83:9e:6e:13: 3d:46:30:eb:67:fc:d0:98:c6:41:48:2d:c4:ef:e1: 5c:a7:9c:ef:be:f4:40:79:41:2e:eb:8b:80:6c:03: 6b:f0:d3:7d:e9:42:5a:4c:d3:0b:2e:29:1d:74:38: 57:4b:2c:c6:08:d0:5f:3b:01:41:11:d1:a4:8b:11: da:af:ba:3e:b5:cf:08:a9:1c:a0:b0:9c:c9:5b:2a: 69:1b:b0:1d:25:cd:dd:a4:e0:eb:f8:fd:7f:36:34: 88:35:9d:f5:2d:1d:a0:05:26:ca:9f:6d:b2:e3:10: 66:91:16:e9:83:61:46:43:e0:1b:6f:56:cb:a2:23: 9c:c6:90:cf:3e:2e:aa:15:13:0d:a5:40:0a:22:af: 70:5f:0c:52:93:cc:ca:f8:c0:29:26:24:a6:08:5a: 62:14:b0:3d:9d:02:b3:d7:1e:ed:56:97:1c:75:53: 04:47:5b:6d:5d:d0:8c:73:6d:5d:07:f5:30:6e:9b: 18:e4:bd:2f:d4:9a:3b:36:a0:1c:38:da:4d:79:0b: 08:5b:d2:59:09:72:f3:ec:11:7a:05:7e:3a:72:77: 1c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D0:A3:D7:16:55:6D:B7:B6:2D:07:60:44:13:D4:4D:5B:06:59:59 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146556.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af42::/32 Signature Algorithm: sha256WithRSAEncryption 35:94:27:9d:d4:0b:e7:72:56:07:30:24:3d:7c:dd:ae:1a:2f: 7b:d6:4f:71:4a:45:c5:3a:27:55:08:09:0c:d1:6b:84:4e:07: 94:ac:09:dd:2b:6a:3b:44:a9:d8:68:34:b4:d4:50:df:82:cf: 04:6c:0a:fe:da:41:05:3a:0b:95:02:e7:92:85:51:e5:e4:84: fa:8e:db:33:66:1b:bf:cd:35:10:f6:2d:df:19:cc:16:dc:06: 0a:35:8c:94:2f:55:1a:b0:27:3a:ef:64:dc:42:e2:85:b7:00: 5b:f8:4f:65:b6:44:40:de:c5:2c:f7:85:17:d4:02:e7:4e:22: 3b:70:c1:b0:26:76:5c:2a:27:a7:b1:14:71:0e:22:d0:a7:8c: fb:58:20:6c:e2:62:27:03:4d:03:10:a1:76:40:49:e6:09:f3: 56:60:99:8c:c0:49:c3:c9:5b:cb:cc:24:3f:48:ab:9d:7f:0a: b1:94:88:0b:2f:25:65:93:24:72:95:ad:72:93:36:b0:1b:f3: 5e:c3:ca:e6:77:af:8b:7d:1f:68:70:41:e2:bd:5d:76:44:08: a4:56:d3:d9:bf:22:79:8d:6a:8e:ea:8c:35:d9:05:cf:b2:c5: 88:b3:c9:e1:a6:91:cc:6e:e0:b3:dd:dc:50:27:e4:c2:c5:18: 4d:95:46:4c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDCRzLXkokWAB2WGx393zj5H5gYMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQzNFoX DTI3MDMwMzA2MzkzNFowMzExMC8GA1UEAxMoOEREMEEzRDcxNjU1NkRCN0I2MkQw NzYwNDQxM0Q0NEQ1QjA2NTk1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJWrxfm95psfCZNiAKX4Ym6L3h4fw9X26WjvHeNbgiWrXa/pBm9gUODnm4T PUYw62f80JjGQUgtxO/hXKec7770QHlBLuuLgGwDa/DTfelCWkzTCy4pHXQ4V0ss xgjQXzsBQRHRpIsR2q+6PrXPCKkcoLCcyVsqaRuwHSXN3aTg6/j9fzY0iDWd9S0d oAUmyp9tsuMQZpEW6YNhRkPgG29Wy6IjnMaQzz4uqhUTDaVACiKvcF8MUpPMyvjA KSYkpghaYhSwPZ0Cs9ce7VaXHHVTBEdbbV3QjHNtXQf1MG6bGOS9L9SaOzagHDja TXkLCFvSWQly8+wRegV+OnJ3HDECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSN0KPX FlVtt7YtB2BEE9RNWwZZWTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjU1Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r0IwDQYJKoZIhvcNAQELBQADggEBADWUJ53UC+dyVgcwJD183a4aL3vWT3FKRcU6 J1UICQzRa4ROB5SsCd0rajtEqdhoNLTUUN+CzwRsCv7aQQU6C5UC55KFUeXkhPqO 2zNmG7/NNRD2Ld8ZzBbcBgo1jJQvVRqwJzrvZNxC4oW3AFv4T2W2REDexSz3hRfU AudOIjtwwbAmdlwqJ6exFHEOItCnjPtYIGziYicDTQMQoXZASeYJ81ZgmYzAScPJ W8vMJD9Iq51/CrGUiAsvJWWTJHKVrXKTNrAb817DyuZ3r4t9H2hwQeK9XXZECKRW 09m/InmNao7qjDXZBc+yxYizyeGmkcxu4LPd3FAn5MLFGE2VRkw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:47 2026 by rpki-client