$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146651.roa File: AS146651.roa (raw, json) Hash identifier: 5KnAg9QP4O4z/E0ev88yHtrBkr7enDomcbQxY9l8xS0= Subject key identifier: 35:BC:C9:ED:E2:29:D9:41:49:57:C3:5C:B7:74:58:5A:F3:F6:04:DF Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 03F504AED19C8E9152DCA760A1E38DA5A96271C6 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146651.roa Signing time: Wed 04 Mar 2026 06:39:48 +0000 ROA not before: Wed 04 Mar 2026 06:34:48 +0000 ROA not after: Wed 03 Mar 2027 06:39:48 +0000 asID: 146651 IP address blocks: 240a:afa1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f5:04:ae:d1:9c:8e:91:52:dc:a7:60:a1:e3:8d:a5:a9:62:71:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:48 2026 GMT Not After : Mar 3 06:39:48 2027 GMT Subject: CN=35BCC9EDE229D9414957C35CB774585AF3F604DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:37:65:5c:12:d0:b6:78:c6:d1:da:5b:77:27: 26:cf:99:15:f7:cd:7c:33:d6:9d:3d:da:10:c9:30: 82:e2:9c:26:5b:62:b2:56:44:28:67:0a:bb:87:c7: c0:04:2b:64:45:ee:a9:8a:db:14:ba:39:39:dc:3e: 6d:0a:19:28:02:23:a3:eb:92:8f:2c:2e:3c:a5:2c: 5a:19:63:fd:3c:7a:94:7f:4c:c3:2d:72:95:72:ca: 32:0e:be:ad:aa:bc:2d:2b:38:ca:cd:37:78:41:c9: ba:fc:fa:57:51:d6:cd:08:b3:56:92:09:5d:b2:04: c8:ed:c3:b8:18:7f:de:25:92:99:eb:9b:99:06:66: 30:e2:7d:0b:41:fb:ad:d2:c8:20:25:37:0b:ff:cf: b6:35:28:6a:05:b7:15:3c:0d:d6:14:16:73:8a:a4: 64:b1:5f:a5:53:18:6c:aa:c7:69:ab:72:f3:ea:d1: a3:74:b8:f2:fe:8a:4d:b5:f1:13:85:6c:bc:c9:7b: d6:17:94:88:42:e6:a1:98:93:0d:61:1b:31:b9:62: cc:ba:83:41:41:7a:55:46:95:32:76:79:78:9d:0f: 8c:86:d3:eb:d7:61:19:14:b6:a2:af:aa:cd:fd:34: 83:13:7b:a3:e5:84:fa:da:9e:68:3c:19:17:20:a4: 7d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BC:C9:ED:E2:29:D9:41:49:57:C3:5C:B7:74:58:5A:F3:F6:04:DF X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146651.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afa1::/32 Signature Algorithm: sha256WithRSAEncryption 01:94:43:13:46:da:92:0d:20:e2:0b:04:23:6e:f9:cd:88:05: 95:1d:00:ab:ea:79:91:cf:2e:e3:01:99:fb:2e:1a:35:f6:c2: b8:92:0d:75:35:c8:16:40:92:09:6b:a4:ee:3d:e0:ab:ad:76: 4e:89:7e:8a:72:9d:f1:aa:41:88:34:9d:1f:8f:24:53:f0:a9: 38:59:d6:2e:13:b8:1f:8b:06:4b:8f:9d:f9:29:4f:34:9d:c5: e1:7e:53:0d:69:3c:43:3a:15:bf:b8:4a:bc:2d:b8:6d:e9:6f: 26:24:62:4f:a6:6e:17:02:cf:90:e0:c1:6e:1b:7f:cf:70:cf: f8:45:9e:6b:5c:69:b1:8a:dc:e6:c9:3e:2e:d4:81:fc:5b:20: d5:3b:61:ca:72:0c:42:39:33:7a:76:86:8a:ac:b7:57:97:a3: b5:fe:4a:c6:bc:f1:2e:60:e8:69:36:a0:f3:22:9b:0f:e3:e8: fb:a1:2c:ad:8d:3c:60:0b:43:ce:89:fb:02:73:b6:73:a4:4d: f9:e4:d7:b6:7f:4f:65:af:41:c5:33:25:39:f5:45:0c:17:d3: 67:16:da:1c:8d:19:9a:8d:79:7a:e0:eb:0f:ae:ff:2f:dd:9b: 9f:5c:d7:56:9e:bc:6f:a2:a4:57:d1:8f:15:9d:b5:39:0a:55: b0:43:79:c5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUA/UErtGcjpFS3KdgoeONpaliccYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0OFoX DTI3MDMwMzA2Mzk0OFowMzExMC8GA1UEAxMoMzVCQ0M5RURFMjI5RDk0MTQ5NTdD MzVDQjc3NDU4NUFGM0Y2MDRERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJw3ZVwS0LZ4xtHaW3cnJs+ZFffNfDPWnT3aEMkwguKcJltislZEKGcKu4fH wAQrZEXuqYrbFLo5Odw+bQoZKAIjo+uSjywuPKUsWhlj/Tx6lH9Mwy1ylXLKMg6+ raq8LSs4ys03eEHJuvz6V1HWzQizVpIJXbIEyO3DuBh/3iWSmeubmQZmMOJ9C0H7 rdLIICU3C//PtjUoagW3FTwN1hQWc4qkZLFfpVMYbKrHaaty8+rRo3S48v6KTbXx E4VsvMl71heUiELmoZiTDWEbMblizLqDQUF6VUaVMnZ5eJ0PjIbT69dhGRS2oq+q zf00gxN7o+WE+tqeaDwZFyCkfbkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQ1vMnt 4inZQUlXw1y3dFha8/YE3zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjY1MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r6EwDQYJKoZIhvcNAQELBQADggEBAAGUQxNG2pINIOILBCNu+c2IBZUdAKvqeZHP LuMBmfsuGjX2wriSDXU1yBZAkglrpO494Kutdk6JfopynfGqQYg0nR+PJFPwqThZ 1i4TuB+LBkuPnfkpTzSdxeF+Uw1pPEM6Fb+4SrwtuG3pbyYkYk+mbhcCz5DgwW4b f89wz/hFnmtcabGK3ObJPi7UgfxbINU7YcpyDEI5M3p2hoqst1eXo7X+Ssa88S5g 6Gk2oPMimw/j6PuhLK2NPGALQ86J+wJztnOkTfnk17Z/T2WvQcUzJTn1RQwX02cW 2hyNGZqNeXrg6w+u/y/dm59c11aevG+ipFfRjxWdtTkKVbBDecU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:50 2026 by rpki-client