$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146580.roa File: AS146580.roa (raw, json) Hash identifier: gs+BGXedmRJcd1TOTyfTtaxFi0poAP7sh9UxpAnDyDI= Subject key identifier: 93:B3:C8:E5:63:9D:6C:4B:3A:4C:D0:08:4D:B5:6B:4E:21:E8:F6:24 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0A8ED3B69849D0B7E29303042F631F3401169B00 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146580.roa Signing time: Wed 04 Mar 2026 06:39:21 +0000 ROA not before: Wed 04 Mar 2026 06:34:21 +0000 ROA not after: Wed 03 Mar 2027 06:39:21 +0000 asID: 146580 IP address blocks: 240a:af5a::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8e:d3:b6:98:49:d0:b7:e2:93:03:04:2f:63:1f:34:01:16:9b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:21 2026 GMT Not After : Mar 3 06:39:21 2027 GMT Subject: CN=93B3C8E5639D6C4B3A4CD0084DB56B4E21E8F624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dd:2c:fa:37:ed:c3:5f:a5:af:2a:18:57:32: 94:40:1f:e9:5a:ea:f3:50:37:29:d2:40:cb:ed:1a: 7b:bd:3a:a6:cf:eb:15:25:2e:ed:24:58:28:93:7a: e3:81:bd:7f:c8:56:93:26:9c:bd:00:11:29:db:b9: b0:73:fd:ed:92:14:be:89:45:af:48:8c:55:d5:d4: d1:0b:cd:9a:e4:85:de:46:58:a4:c3:5d:2d:33:14: e5:1c:30:d2:49:1b:dc:53:e5:fd:a3:a6:a8:3c:80: 46:5e:dd:f5:2b:ae:36:70:60:e0:7d:53:af:0b:ee: 75:b3:cc:0c:4b:82:54:c9:f9:84:6d:3d:f8:db:7f: f0:9a:cb:d6:fd:e3:62:4f:51:23:a0:4c:78:4b:c0: 39:9f:c1:65:19:de:0d:88:27:e5:aa:b7:6b:37:90: 21:fb:e8:c9:ae:21:a5:7d:f1:7e:e8:ff:b5:42:6b: fd:50:f7:9a:84:36:33:ab:3a:13:0a:14:75:4e:87: 56:c9:d4:96:a4:ec:29:f9:2b:90:b5:a6:59:5b:91: a1:fc:2f:79:74:a9:4f:3b:55:1e:6c:6e:aa:23:05: bf:8f:d9:af:2c:d5:3f:61:9e:f5:e7:fb:cb:28:9a: 3c:db:4b:6b:5e:f5:b5:4d:59:54:a6:fb:8d:df:bd: 99:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B3:C8:E5:63:9D:6C:4B:3A:4C:D0:08:4D:B5:6B:4E:21:E8:F6:24 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146580.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af5a::/32 Signature Algorithm: sha256WithRSAEncryption cb:f4:b2:24:04:90:02:6c:ce:a8:64:2a:17:fa:5e:3d:06:a7: b3:69:6f:5d:41:93:e7:36:f0:24:aa:8c:1c:c7:fb:87:3b:fd: c8:75:15:04:9d:1d:aa:60:26:5b:7f:b1:d2:ad:5c:28:8f:f6: 14:e3:07:d9:a2:07:d6:75:f3:40:a3:3f:d3:f0:87:ac:73:d9: ec:52:87:36:6c:ec:ca:94:c1:8d:72:fb:cc:6e:ba:49:d1:ec: be:2f:6d:78:11:e3:2b:3c:ad:d8:e8:d6:4b:ff:cc:74:18:b4: b2:ae:29:9d:a4:4a:ac:7e:b6:25:af:41:db:b4:66:6f:13:bd: 21:5b:64:fc:ac:da:40:91:21:83:91:ef:b3:5a:3a:75:5d:81: a7:67:3a:d9:0b:6f:84:33:0e:10:2c:2c:df:97:01:6c:39:e5: 87:21:15:b0:82:09:ab:bc:0b:37:45:d6:10:4d:28:c8:00:6c: e5:6f:6a:dc:c1:33:44:6c:d6:25:4f:2c:8e:4b:d7:fc:23:a0: 33:bd:07:83:cf:12:5e:eb:e7:3f:3c:64:5a:20:eb:30:9a:98: 40:74:9c:a2:b6:fa:56:07:dc:41:fb:77:ea:0c:7d:63:60:cd: e7:e5:db:88:98:b4:a3:aa:d9:7e:7b:7e:da:0f:7a:a9:ce:7d: db:8d:2a:05 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUCo7TtphJ0LfikwMEL2MfNAEWmwAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQyMVoX DTI3MDMwMzA2MzkyMVowMzExMC8GA1UEAxMoOTNCM0M4RTU2MzlENkM0QjNBNENE MDA4NERCNTZCNEUyMUU4RjYyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTdLPo37cNfpa8qGFcylEAf6Vrq81A3KdJAy+0ae706ps/rFSUu7SRYKJN6 44G9f8hWkyacvQARKdu5sHP97ZIUvolFr0iMVdXU0QvNmuSF3kZYpMNdLTMU5Rww 0kkb3FPl/aOmqDyARl7d9SuuNnBg4H1TrwvudbPMDEuCVMn5hG09+Nt/8JrL1v3j Yk9RI6BMeEvAOZ/BZRneDYgn5aq3azeQIfvoya4hpX3xfuj/tUJr/VD3moQ2M6s6 EwoUdU6HVsnUlqTsKfkrkLWmWVuRofwveXSpTztVHmxuqiMFv4/ZryzVP2Ge9ef7 yyiaPNtLa171tU1ZVKb7jd+9mX0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSTs8jl Y51sSzpM0AhNtWtOIej2JDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjU4MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r1owDQYJKoZIhvcNAQELBQADggEBAMv0siQEkAJszqhkKhf6Xj0Gp7Npb11Bk+c2 8CSqjBzH+4c7/ch1FQSdHapgJlt/sdKtXCiP9hTjB9miB9Z180CjP9Pwh6xz2exS hzZs7MqUwY1y+8xuuknR7L4vbXgR4ys8rdjo1kv/zHQYtLKuKZ2kSqx+tiWvQdu0 Zm8TvSFbZPys2kCRIYOR77NaOnVdgadnOtkLb4QzDhAsLN+XAWw55YchFbCCCau8 CzdF1hBNKMgAbOVvatzBM0Rs1iVPLI5L1/wjoDO9B4PPEl7r5z88ZFog6zCamEB0 nKK2+lYH3EH7d+oMfWNgzefl24iYtKOq2X57ftoPeqnOfduNKgU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:34 2026 by rpki-client