$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146633.roa File: AS146633.roa (raw, json) Hash identifier: yW154ZUocaKVyunShNxFITd4VM9dcDbGIhwslZhh4N8= Subject key identifier: F9:19:4C:C6:6D:15:90:ED:0C:75:F3:0F:FA:C1:D3:6D:FE:01:F5:6E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 13A9A6A6D87ED24D1E6A03994A2001BE72F2BE4B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146633.roa Signing time: Wed 04 Mar 2026 06:39:57 +0000 ROA not before: Wed 04 Mar 2026 06:34:57 +0000 ROA not after: Wed 03 Mar 2027 06:39:57 +0000 asID: 146633 IP address blocks: 240a:af8f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:a9:a6:a6:d8:7e:d2:4d:1e:6a:03:99:4a:20:01:be:72:f2:be:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:57 2026 GMT Not After : Mar 3 06:39:57 2027 GMT Subject: CN=F9194CC66D1590ED0C75F30FFAC1D36DFE01F56E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:60:d0:33:24:8e:cb:71:a9:17:14:bf:87:20: 63:b4:24:3a:eb:b3:0f:b8:7e:b9:64:94:fb:e8:1f: e7:d4:81:73:dc:d3:60:d4:ba:44:3c:0f:8f:9d:60: 3d:de:62:b9:57:03:a8:1e:71:08:ad:67:b3:56:3e: bd:f0:43:67:f3:16:95:16:85:7b:ee:28:3d:83:54: 52:a8:c2:ff:ef:75:3e:1c:04:93:d2:f4:96:3f:ef: 1e:6f:24:43:4e:fb:e4:bf:79:df:25:a6:eb:66:35: b0:6d:10:e5:6b:e7:89:6e:3e:a2:ee:9e:0e:4d:5a: 53:3d:a3:42:67:5e:2f:8b:c5:2d:b7:18:15:4d:98: c9:d5:4c:a4:a1:e5:4e:79:d5:bd:05:8e:e8:ed:b1: de:00:a8:2c:da:12:e1:0f:78:42:8a:c6:3a:4e:d0: 83:5c:81:49:05:f3:dd:78:84:38:8a:74:60:c0:20: 33:59:a1:18:94:f6:69:fb:28:69:ef:37:56:c3:ea: a9:68:48:f8:d3:9e:d6:9c:e0:8d:6f:ba:ae:02:0e: 7d:51:53:a5:3b:68:87:d5:dc:bc:23:55:15:1b:69: 37:09:96:ae:c9:12:e5:89:10:c9:96:2c:a8:f4:ea: c3:99:3f:2e:1f:e2:e8:88:48:9c:19:37:d5:17:81: bb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:19:4C:C6:6D:15:90:ED:0C:75:F3:0F:FA:C1:D3:6D:FE:01:F5:6E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af8f::/32 Signature Algorithm: sha256WithRSAEncryption aa:29:a5:fe:68:e8:eb:1f:79:a1:85:df:ff:73:fa:34:ee:8f: fe:51:63:5e:f7:15:a0:3e:16:2a:be:91:6a:cd:97:5e:7d:e4: a8:0c:85:1c:5b:82:a9:7d:a9:b5:91:e5:f4:b7:71:78:d0:dd: 31:e5:b0:10:b2:ce:ec:b0:21:14:74:14:4e:f3:88:c4:25:09: 4b:f8:2c:13:f9:cf:1d:84:ca:4d:96:63:3f:3e:95:85:08:ba: e2:6c:46:94:dd:1b:2a:68:cb:83:1a:7b:7e:71:ae:c9:b0:0f: 98:c0:6b:25:3e:fb:7b:94:4a:cb:7d:5c:8d:6a:4e:fa:06:f2: 39:ba:78:ee:c6:45:ef:ed:7e:be:a5:56:64:a8:07:22:f1:4a: e0:ac:68:f2:79:5c:36:c6:73:a1:92:cb:63:f9:d7:8c:e5:d7: 1c:aa:44:5b:fc:a1:1c:a5:32:96:0f:47:d2:fe:52:49:87:4a: 1d:c7:71:90:d3:f2:1f:9b:00:2d:b5:fb:25:41:0a:5a:2f:7d: d7:19:9a:56:70:0f:b5:2a:38:4b:4c:da:e3:02:e3:c1:6e:09: 56:4d:66:74:76:2f:e6:95:bf:cd:f9:69:b7:3c:a3:2f:a2:72: ef:db:73:9b:fe:c7:35:36:5a:77:1a:f2:71:84:a6:1a:94:13: a7:e5:c4:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUE6mmpth+0k0eagOZSiABvnLyvkswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ1N1oX DTI3MDMwMzA2Mzk1N1owMzExMC8GA1UEAxMoRjkxOTRDQzY2RDE1OTBFRDBDNzVG MzBGRkFDMUQzNkRGRTAxRjU2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJdg0DMkjstxqRcUv4cgY7QkOuuzD7h+uWSU++gf59SBc9zTYNS6RDwPj51g Pd5iuVcDqB5xCK1ns1Y+vfBDZ/MWlRaFe+4oPYNUUqjC/+91PhwEk9L0lj/vHm8k Q0775L953yWm62Y1sG0Q5WvniW4+ou6eDk1aUz2jQmdeL4vFLbcYFU2YydVMpKHl TnnVvQWO6O2x3gCoLNoS4Q94QorGOk7Qg1yBSQXz3XiEOIp0YMAgM1mhGJT2afso ae83VsPqqWhI+NOe1pzgjW+6rgIOfVFTpTtoh9XcvCNVFRtpNwmWrskS5YkQyZYs qPTqw5k/Lh/i6IhInBk31ReBuy8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT5GUzG bRWQ7Qx18w/6wdNt/gH1bjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjYzMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r48wDQYJKoZIhvcNAQELBQADggEBAKoppf5o6OsfeaGF3/9z+jTuj/5RY173FaA+ Fiq+kWrNl1595KgMhRxbgql9qbWR5fS3cXjQ3THlsBCyzuywIRR0FE7ziMQlCUv4 LBP5zx2Eyk2WYz8+lYUIuuJsRpTdGypoy4Mae35xrsmwD5jAayU++3uUSst9XI1q TvoG8jm6eO7GRe/tfr6lVmSoByLxSuCsaPJ5XDbGc6GSy2P514zl1xyqRFv8oRyl MpYPR9L+UkmHSh3HcZDT8h+bAC21+yVBClovfdcZmlZwD7UqOEtM2uMC48FuCVZN ZnR2L+aVv835abc8oy+icu/bc5v+xzU2Wnca8nGEphqUE6flxEg= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:47 2026 by rpki-client