$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146616.roa File: AS146616.roa (raw, json) Hash identifier: MdNSIWQrFeRumr3EGBM8JE9ULstHi0REev1SDcFD9rc= Subject key identifier: C5:30:35:F4:19:72:A6:14:E9:BA:DB:C0:CF:67:D0:15:9C:78:51:12 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1F3F7B981F3B7746C2BAB5498A8FC2A3FDC866DE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146616.roa Signing time: Wed 04 Mar 2026 06:39:26 +0000 ROA not before: Wed 04 Mar 2026 06:34:26 +0000 ROA not after: Wed 03 Mar 2027 06:39:26 +0000 asID: 146616 IP address blocks: 240a:af7e::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:3f:7b:98:1f:3b:77:46:c2:ba:b5:49:8a:8f:c2:a3:fd:c8:66:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:26 2026 GMT Not After : Mar 3 06:39:26 2027 GMT Subject: CN=C53035F41972A614E9BADBC0CF67D0159C785112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:41:7e:f4:ac:6e:5b:ac:30:3e:c6:c0:35: 11:f9:41:87:22:9f:b3:a3:c3:f0:ec:dc:d9:aa:2c: bf:d6:ef:5e:ff:4b:af:c9:0c:02:e6:2a:1b:e8:3a: 68:57:bb:7a:c9:0b:d9:d5:c7:11:aa:fa:63:68:6c: 71:a8:1d:c9:75:42:40:13:55:62:aa:b6:ac:5a:7e: fc:e6:1e:90:7c:08:1a:4c:19:d7:96:97:b8:6a:fa: 9f:20:7d:60:6e:bd:4b:8d:c8:3a:55:85:ca:92:c7: 0b:4c:d4:e9:ed:df:6f:6f:bf:95:39:91:15:3a:d8: 35:07:04:87:05:82:49:94:87:d9:64:33:93:36:59: bb:b0:04:9e:51:19:27:c1:55:cf:2a:ad:c3:77:0b: ad:79:7d:a0:6f:8f:be:1f:6d:aa:d8:c8:35:37:59: 60:e8:b5:52:87:7e:56:be:30:d6:25:a2:6f:bc:a6: f9:e2:2d:dd:98:14:82:99:a2:7c:60:ef:5b:64:bc: fd:3b:e0:64:4d:97:38:c2:5e:d3:b3:2a:a0:e2:f6: ad:23:4d:28:79:c8:11:99:b5:04:87:44:34:3b:94: dd:42:20:08:ee:84:66:0f:90:54:11:5a:ba:13:d3: b0:91:04:9f:ce:d7:d7:81:4a:3e:52:c7:63:f6:95: c3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:30:35:F4:19:72:A6:14:E9:BA:DB:C0:CF:67:D0:15:9C:78:51:12 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146616.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af7e::/32 Signature Algorithm: sha256WithRSAEncryption a7:ef:56:86:79:03:ea:a2:ad:9a:5e:7b:67:01:e4:61:7c:c0: 5a:72:46:08:42:4d:4b:57:43:5f:c4:74:85:66:4d:20:ff:c0: d7:06:21:7d:df:27:5e:b0:83:8a:f8:e8:d5:53:3f:88:b0:9b: 58:4a:3c:44:78:12:9a:15:43:1f:4a:7a:e1:94:a6:62:9f:f9: 00:9f:2a:a0:ff:56:d7:0a:21:da:f6:ad:39:2e:11:93:e9:f0: 5c:9e:33:8b:52:d0:33:81:84:7c:f6:6a:51:d9:77:93:59:b3: 5f:2f:fb:7e:f8:46:34:b7:f8:31:6e:06:0e:75:0a:e8:9b:72: 03:9d:ab:27:46:db:40:e8:c2:d0:32:c4:34:7c:28:77:68:61: 1d:37:5f:41:a2:ef:98:81:a6:8b:14:1d:6f:31:70:0a:5e:11: 50:45:d5:c6:71:d7:6b:7a:26:61:52:17:13:50:da:62:1d:3e: c0:31:86:56:47:39:f6:60:39:73:c8:7a:d8:f3:59:0a:18:e9: 51:3b:c0:fd:4c:8c:4b:c2:63:bc:59:0d:1a:ad:c5:9e:eb:a0: 7f:70:d9:76:ce:0e:eb:7b:48:2d:d3:12:e5:65:28:2f:aa:0e: d2:b2:a3:3f:bb:9d:2c:6b:be:94:1e:87:d5:a9:b0:8e:b0:a2: c8:fd:b2:41 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUHz97mB87d0bCurVJio/Co/3IZt4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQyNloX DTI3MDMwMzA2MzkyNlowMzExMC8GA1UEAxMoQzUzMDM1RjQxOTcyQTYxNEU5QkFE QkMwQ0Y2N0QwMTU5Qzc4NTExMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM73QX70rG5brDA+xsA1EflBhyKfs6PD8Ozc2aosv9bvXv9Lr8kMAuYqG+g6 aFe7eskL2dXHEar6Y2hscagdyXVCQBNVYqq2rFp+/OYekHwIGkwZ15aXuGr6nyB9 YG69S43IOlWFypLHC0zU6e3fb2+/lTmRFTrYNQcEhwWCSZSH2WQzkzZZu7AEnlEZ J8FVzyqtw3cLrXl9oG+Pvh9tqtjINTdZYOi1Uod+Vr4w1iWib7ym+eIt3ZgUgpmi fGDvW2S8/TvgZE2XOMJe07MqoOL2rSNNKHnIEZm1BIdENDuU3UIgCO6EZg+QVBFa uhPTsJEEn87X14FKPlLHY/aVw4MCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTFMDX0 GXKmFOm628DPZ9AVnHhREjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjYxNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r34wDQYJKoZIhvcNAQELBQADggEBAKfvVoZ5A+qirZpee2cB5GF8wFpyRghCTUtX Q1/EdIVmTSD/wNcGIX3fJ16wg4r46NVTP4iwm1hKPER4EpoVQx9KeuGUpmKf+QCf KqD/VtcKIdr2rTkuEZPp8FyeM4tS0DOBhHz2alHZd5NZs18v+374RjS3+DFuBg51 CuibcgOdqydG20DowtAyxDR8KHdoYR03X0Gi75iBposUHW8xcApeEVBF1cZx12t6 JmFSFxNQ2mIdPsAxhlZHOfZgOXPIetjzWQoY6VE7wP1MjEvCY7xZDRqtxZ7roH9w 2XbODut7SC3TEuVlKC+qDtKyoz+7nSxrvpQeh9WpsI6wosj9skE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:50:06 2026 by rpki-client