$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146566.roa File: AS146566.roa (raw, json) Hash identifier: HibzZ4FbgrBHVu2h/BueIy4QJ5sBMbwMUjxegN90f14= Subject key identifier: 14:21:AF:D0:53:58:E1:63:E6:00:73:E6:AE:EB:F5:54:72:E3:EA:4D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 085D66E4DEAC6DE12D28B77EED461CE30CEC4AB3 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146566.roa Signing time: Wed 04 Mar 2026 06:39:50 +0000 ROA not before: Wed 04 Mar 2026 06:34:50 +0000 ROA not after: Wed 03 Mar 2027 06:39:50 +0000 asID: 146566 IP address blocks: 240a:af4c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:5d:66:e4:de:ac:6d:e1:2d:28:b7:7e:ed:46:1c:e3:0c:ec:4a:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:50 2026 GMT Not After : Mar 3 06:39:50 2027 GMT Subject: CN=1421AFD05358E163E60073E6AEEBF55472E3EA4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:76:0f:e8:51:0e:5b:91:69:a4:40:70:b3:e5: b7:38:bb:41:12:fb:cc:f0:35:d8:8a:17:ff:6c:4a: 6c:ac:37:8f:26:a3:8e:c3:c9:e5:56:22:33:f9:60: 5a:23:22:38:35:2d:c8:9f:1c:95:05:61:34:6c:40: 57:8e:1b:6b:0e:48:eb:db:ce:fd:10:49:f3:7d:32: e6:ef:4a:1e:df:20:53:f6:db:b5:f1:65:fa:b3:7d: 44:2d:92:dc:2e:5f:23:be:f2:f5:e9:2d:b0:6c:3a: f0:e8:8a:82:13:38:5b:b9:26:9e:23:60:1b:fb:8b: e3:4d:f2:4a:fa:5f:c9:e1:88:90:b8:3e:62:a1:55: 02:50:95:64:5b:13:ea:5e:0d:48:42:65:30:0f:7f: 96:b7:0f:8a:3e:16:c7:25:94:6b:f3:55:a9:38:39: b1:a6:a2:41:d2:4b:96:fe:b7:5e:46:85:a5:31:85: be:0b:22:9c:d0:a0:28:9e:80:38:03:1b:fe:f5:cf: 4e:d0:1a:3e:1f:57:ab:30:53:ca:36:82:3d:6c:4f: 2f:c1:3a:81:2c:a5:fe:c7:5e:94:7a:bf:59:e4:4c: 80:a3:b2:12:dd:d0:8d:66:93:ca:4d:3a:45:11:ce: ee:78:03:28:22:19:ce:d5:7c:8d:40:bc:40:90:75: 57:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:21:AF:D0:53:58:E1:63:E6:00:73:E6:AE:EB:F5:54:72:E3:EA:4D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146566.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af4c::/32 Signature Algorithm: sha256WithRSAEncryption 42:50:ba:ee:48:fa:30:89:64:44:1f:1d:53:a7:fd:7d:e9:87: a6:6e:be:89:e2:61:24:fd:88:cf:f0:3f:ae:05:85:9d:15:54: 3a:fd:63:d8:32:7d:07:4e:e2:61:28:a0:76:39:84:2f:61:9f: 4a:0c:80:ac:f3:53:c6:9e:1a:71:ec:c1:6f:61:29:e6:0b:21: 5d:d4:8f:71:89:82:50:65:80:8b:b2:e0:42:8b:36:ae:67:7a: ac:f3:c7:21:12:d0:b2:bc:e9:b8:09:7d:ce:f5:2b:d9:91:02: b2:2c:ff:07:c3:54:eb:5e:04:e6:36:59:d2:eb:32:1a:33:4f: 54:34:52:e1:74:ff:48:57:10:a8:70:da:f9:bf:e3:26:d3:15: 08:ec:4a:40:8a:10:42:59:fe:7b:b3:d6:82:ab:72:bf:a8:d9: 5b:16:01:06:41:13:fe:78:1e:11:b8:80:94:4a:f3:15:7a:eb: 1c:2c:cc:0c:2e:5b:cb:ae:df:11:63:67:c2:67:fc:11:c8:c9: 92:67:ac:a1:43:44:64:f8:1a:f7:83:8f:2b:6c:13:a3:12:86: 13:87:48:42:aa:02:4f:62:e1:83:45:f6:8c:88:e9:d9:49:5c: 99:dd:98:24:a0:da:e9:b3:d6:a0:ba:c3:84:2d:be:2e:88:1d: ff:35:af:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCF1m5N6sbeEtKLd+7UYc4wzsSrMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ1MFoX DTI3MDMwMzA2Mzk1MFowMzExMC8GA1UEAxMoMTQyMUFGRDA1MzU4RTE2M0U2MDA3 M0U2QUVFQkY1NTQ3MkUzRUE0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIx2D+hRDluRaaRAcLPltzi7QRL7zPA12IoX/2xKbKw3jyajjsPJ5VYiM/lg WiMiODUtyJ8clQVhNGxAV44baw5I69vO/RBJ830y5u9KHt8gU/bbtfFl+rN9RC2S 3C5fI77y9ektsGw68OiKghM4W7kmniNgG/uL403ySvpfyeGIkLg+YqFVAlCVZFsT 6l4NSEJlMA9/lrcPij4WxyWUa/NVqTg5saaiQdJLlv63XkaFpTGFvgsinNCgKJ6A OAMb/vXPTtAaPh9XqzBTyjaCPWxPL8E6gSyl/sdelHq/WeRMgKOyEt3QjWaTyk06 RRHO7ngDKCIZztV8jUC8QJB1VzECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQUIa/Q U1jhY+YAc+au6/VUcuPqTTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjU2Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r0wwDQYJKoZIhvcNAQELBQADggEBAEJQuu5I+jCJZEQfHVOn/X3ph6ZuvoniYST9 iM/wP64FhZ0VVDr9Y9gyfQdO4mEooHY5hC9hn0oMgKzzU8aeGnHswW9hKeYLIV3U j3GJglBlgIuy4EKLNq5neqzzxyES0LK86bgJfc71K9mRArIs/wfDVOteBOY2WdLr MhozT1Q0UuF0/0hXEKhw2vm/4ybTFQjsSkCKEEJZ/nuz1oKrcr+o2VsWAQZBE/54 HhG4gJRK8xV66xwszAwuW8uu3xFjZ8Jn/BHIyZJnrKFDRGT4GveDjytsE6MShhOH SEKqAk9i4YNF9oyI6dlJXJndmCSg2umz1qC6w4Qtvi6IHf81r38= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:07 2026 by rpki-client