$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146635.roa File: AS146635.roa (raw, json) Hash identifier: KMhzwGJsvup1dwcAfZgtJm9TB+xU+xdZ5DcvKigc/S0= Subject key identifier: E6:C5:F8:CA:83:9E:ED:2C:6E:B6:B3:56:6D:77:B5:31:6B:1B:63:5F Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3D92D8FA3A16E8B28E2BB518B0838174F0D73502 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146635.roa Signing time: Wed 04 Mar 2026 06:39:25 +0000 ROA not before: Wed 04 Mar 2026 06:34:25 +0000 ROA not after: Wed 03 Mar 2027 06:39:25 +0000 asID: 146635 IP address blocks: 240a:af91::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:92:d8:fa:3a:16:e8:b2:8e:2b:b5:18:b0:83:81:74:f0:d7:35:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:25 2026 GMT Not After : Mar 3 06:39:25 2027 GMT Subject: CN=E6C5F8CA839EED2C6EB6B3566D77B5316B1B635F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e2:8f:ab:c6:af:eb:21:22:be:fa:20:7d:ef: ac:08:75:f8:5e:8a:49:7f:fe:33:74:c9:40:8a:46: 20:b9:35:f7:a9:14:d8:19:0a:cd:c7:82:18:53:c1: 32:0f:e1:5e:a6:7b:7f:67:2a:2e:1d:00:b5:27:ca: af:5d:df:ae:68:1e:6a:12:cb:f8:5a:e2:0d:2e:95: 95:e4:50:c5:ab:d0:6e:00:fc:38:3f:0f:3a:2c:47: 20:bb:ad:ad:28:d3:1a:b4:16:cd:ec:c7:e1:4b:67: 40:17:74:29:72:75:7a:ce:26:4a:32:39:66:66:f4: 76:96:27:c1:4c:93:71:c4:de:10:f2:b7:a9:d8:79: 26:6c:fa:7a:41:9a:93:4c:00:84:dc:e4:fa:4c:6a: c6:93:42:89:f3:14:7d:e0:30:d7:a2:2b:75:38:8a: ed:f8:be:2c:a2:51:29:30:1e:08:fb:65:bd:c4:bd: 55:6a:76:0f:13:f1:15:f3:c1:ed:f2:46:3e:9d:df: 25:8c:82:b6:78:3c:b6:9c:ff:24:46:86:f0:03:6e: 40:e9:68:01:36:1a:85:46:00:b4:a2:4c:49:cf:e1: 3a:54:08:18:0b:90:58:9c:f6:2b:06:2d:c2:c2:f7: 4e:7b:8e:be:65:2a:ef:fa:d7:29:1a:ce:05:5d:fc: 41:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C5:F8:CA:83:9E:ED:2C:6E:B6:B3:56:6D:77:B5:31:6B:1B:63:5F X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:af91::/32 Signature Algorithm: sha256WithRSAEncryption 0f:31:a9:14:54:b0:39:87:0b:58:b7:a3:48:a2:e7:09:f0:98: 9b:00:02:3e:87:bd:06:4f:6c:e9:95:e5:8f:d2:09:9c:1e:8e: 8e:3e:53:cf:c6:32:5b:3a:63:9d:98:6a:a0:e0:49:33:e2:9d: a3:66:d0:72:46:0a:61:8a:32:0d:c9:e0:22:e0:03:d3:5b:05: ee:40:fa:80:ee:00:20:45:0e:50:b2:15:62:0c:29:a3:56:38: a6:4d:fc:cc:40:6f:49:bb:49:fe:65:1a:27:da:46:4e:e3:81: 49:06:f8:f0:a1:4e:a2:c6:e5:56:fe:55:23:a1:a0:00:05:54: cb:64:bc:a1:b5:7b:a0:a7:fc:f6:1e:70:f4:c3:c6:56:cc:2f: c6:91:d5:89:6f:28:1c:13:54:69:2f:54:1b:e4:93:03:66:8d: bf:78:b9:d8:3e:0a:60:ec:3c:f6:0a:e4:ec:e3:06:93:e2:35: 9a:c3:2f:2c:95:d3:c9:94:0b:d3:49:f5:b9:85:09:54:c3:fc: 03:49:a5:43:5a:bc:6f:d6:96:a9:7d:d3:8a:5d:56:22:02:39: d1:a9:29:42:bc:a7:a4:28:27:3b:05:3a:18:ee:8c:91:70:32: 7a:88:9c:63:60:b7:74:29:71:85:1d:48:4a:c4:79:94:56:75: 2e:9a:b1:57 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUPZLY+joW6LKOK7UYsIOBdPDXNQIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQyNVoX DTI3MDMwMzA2MzkyNVowMzExMC8GA1UEAxMoRTZDNUY4Q0E4MzlFRUQyQzZFQjZC MzU2NkQ3N0I1MzE2QjFCNjM1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO7ij6vGr+shIr76IH3vrAh1+F6KSX/+M3TJQIpGILk196kU2BkKzceCGFPB Mg/hXqZ7f2cqLh0AtSfKr13frmgeahLL+FriDS6VleRQxavQbgD8OD8POixHILut rSjTGrQWzezH4UtnQBd0KXJ1es4mSjI5Zmb0dpYnwUyTccTeEPK3qdh5Jmz6ekGa k0wAhNzk+kxqxpNCifMUfeAw16IrdTiK7fi+LKJRKTAeCPtlvcS9VWp2DxPxFfPB 7fJGPp3fJYyCtng8tpz/JEaG8ANuQOloATYahUYAtKJMSc/hOlQIGAuQWJz2KwYt wsL3TnuOvmUq7/rXKRrOBV38QekCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTmxfjK g57tLG62s1Ztd7UxaxtjXzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjYzNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r5EwDQYJKoZIhvcNAQELBQADggEBAA8xqRRUsDmHC1i3o0ii5wnwmJsAAj6HvQZP bOmV5Y/SCZwejo4+U8/GMls6Y52YaqDgSTPinaNm0HJGCmGKMg3J4CLgA9NbBe5A +oDuACBFDlCyFWIMKaNWOKZN/MxAb0m7Sf5lGifaRk7jgUkG+PChTqLG5Vb+VSOh oAAFVMtkvKG1e6Cn/PYecPTDxlbML8aR1YlvKBwTVGkvVBvkkwNmjb94udg+CmDs PPYK5OzjBpPiNZrDLyyV08mUC9NJ9bmFCVTD/ANJpUNavG/Wlql904pdViICOdGp KUK8p6QoJzsFOhjujJFwMnqInGNgt3QpcYUdSErEeZRWdS6asVc= -----END CERTIFICATE-----Generated at Sat Mar 28 11:43:38 2026 by rpki-client