$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146620.roa File: AS146620.roa (raw, json) Hash identifier: P+j8aTXfhdBTBAMV81cB4l892TDpBE4sKoF8//U0jC4= Subject key identifier: AA:26:81:E4:7B:93:43:66:F5:68:BA:1A:AD:8B:E2:FD:BC:EF:E0:62 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6E69348F54C72A1B39BAD31C75A096A4D2A318C8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146620.roa Signing time: Wed 04 Mar 2026 06:39:31 +0000 ROA not before: Wed 04 Mar 2026 06:34:31 +0000 ROA not after: Wed 03 Mar 2027 06:39:31 +0000 asID: 146620 IP address blocks: 240a:af82::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:69:34:8f:54:c7:2a:1b:39:ba:d3:1c:75:a0:96:a4:d2:a3:18:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:31 2026 GMT Not After : Mar 3 06:39:31 2027 GMT Subject: CN=AA2681E47B934366F568BA1AAD8BE2FDBCEFE062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bd:d1:9e:db:79:97:99:26:ab:2e:de:5d:ed: 64:30:24:10:50:77:bc:0e:19:04:1f:25:38:33:9e: d2:4d:0c:88:c7:96:3a:64:c6:76:73:65:64:32:72: a8:ae:ed:a4:07:be:7f:50:48:60:7e:af:9c:e9:02: b8:7a:53:98:93:1b:31:01:97:bb:ec:38:42:9c:43: dc:99:01:09:c5:78:20:89:e0:e7:24:5c:48:f6:24: 88:f0:d2:45:f7:3d:fb:85:03:50:74:0b:65:0b:1a: d4:03:fa:fe:49:4f:b0:15:1b:d4:38:02:cd:ea:f7: 3a:6c:a7:d6:1b:df:d4:19:71:c5:5d:23:b0:1a:4d: 47:e8:dd:ab:73:3d:59:77:95:e6:34:5f:af:2f:d3: 8e:dd:1a:93:e1:44:91:76:3e:10:66:58:e7:4d:28: 99:04:c6:a0:e6:66:fe:89:81:1f:01:27:fc:ea:b1: d7:51:6d:ae:5a:9d:25:0e:6b:f7:e4:af:79:12:8b: cc:d8:ea:6c:3c:ac:07:32:ed:12:1d:14:fa:0f:e1: 2d:18:16:88:94:2a:9b:16:02:e2:42:42:1d:c2:75: 91:16:ac:2f:87:b3:a4:71:22:52:7f:d4:91:85:66: 37:ce:2c:70:8f:e4:47:45:ea:26:54:f2:27:b6:2c: 62:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:26:81:E4:7B:93:43:66:F5:68:BA:1A:AD:8B:E2:FD:BC:EF:E0:62 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146620.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af82::/32 Signature Algorithm: sha256WithRSAEncryption 92:b0:f6:62:a8:c1:6b:da:8e:e2:ca:03:05:88:77:f3:8a:ce: 6d:e2:0c:c2:50:d3:6f:eb:30:c6:23:10:17:af:98:d3:62:6b: 77:5b:95:81:de:3c:34:ac:f1:b1:60:11:93:88:64:0a:11:9c: 71:75:07:52:ae:2e:0b:ba:dd:4d:45:41:30:69:d0:ad:a5:ad: 98:0d:ef:d6:47:07:90:97:10:72:59:1b:0b:4f:2d:a6:32:9c: c3:d4:65:3e:f7:39:c8:8e:ea:99:5e:2a:aa:c5:28:eb:ae:96: 9e:96:73:ab:bc:ae:a9:87:a0:bd:93:5e:6c:3e:01:f5:40:21: 29:9c:95:42:20:37:e5:27:5f:41:df:14:c3:bc:1b:9f:b6:03: 83:f8:d4:b4:2a:63:06:92:4e:d4:1f:55:25:31:f1:f4:08:81: 00:b3:86:01:78:9c:d7:68:bd:fd:50:67:9d:ff:42:97:00:3d: ac:0c:be:21:e6:fe:bf:58:b5:2f:bf:57:34:76:c5:4c:12:60: d4:ac:c9:a1:e9:1b:7d:61:58:7f:18:9b:15:de:a1:4d:e3:98: 04:bd:77:59:3b:c5:32:89:f6:15:98:99:c0:a2:a4:54:69:0c: c4:b1:0f:e5:5b:42:9f:6f:c8:d1:b2:6d:af:9f:a1:35:d6:a2: 20:11:a9:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUbmk0j1THKhs5utMcdaCWpNKjGMgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQzMVoX DTI3MDMwMzA2MzkzMVowMzExMC8GA1UEAxMoQUEyNjgxRTQ3QjkzNDM2NkY1NjhC QTFBQUQ4QkUyRkRCQ0VGRTA2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJq90Z7beZeZJqsu3l3tZDAkEFB3vA4ZBB8lODOe0k0MiMeWOmTGdnNlZDJy qK7tpAe+f1BIYH6vnOkCuHpTmJMbMQGXu+w4QpxD3JkBCcV4IIng5yRcSPYkiPDS Rfc9+4UDUHQLZQsa1AP6/klPsBUb1DgCzer3Omyn1hvf1BlxxV0jsBpNR+jdq3M9 WXeV5jRfry/Tjt0ak+FEkXY+EGZY500omQTGoOZm/omBHwEn/Oqx11FtrlqdJQ5r 9+SveRKLzNjqbDysBzLtEh0U+g/hLRgWiJQqmxYC4kJCHcJ1kRasL4ezpHEiUn/U kYVmN84scI/kR0XqJlTyJ7YsYmUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSqJoHk e5NDZvVouhqti+L9vO/gYjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjYyMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r4IwDQYJKoZIhvcNAQELBQADggEBAJKw9mKowWvajuLKAwWId/OKzm3iDMJQ02/r MMYjEBevmNNia3dblYHePDSs8bFgEZOIZAoRnHF1B1KuLgu63U1FQTBp0K2lrZgN 79ZHB5CXEHJZGwtPLaYynMPUZT73OciO6pleKqrFKOuulp6Wc6u8rqmHoL2TXmw+ AfVAISmclUIgN+UnX0HfFMO8G5+2A4P41LQqYwaSTtQfVSUx8fQIgQCzhgF4nNdo vf1QZ53/QpcAPawMviHm/r9YtS+/VzR2xUwSYNSsyaHpG31hWH8YmxXeoU3jmAS9 d1k7xTKJ9hWYmcCipFRpDMSxD+VbQp9vyNGyba+foTXWoiARqa8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:51 2026 by rpki-client