$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146656.roa File: AS146656.roa (raw, json) Hash identifier: nEngUpfj2ZCzK/UTf0QBNrOvmG8rdf+nBPz++bXDw0g= Subject key identifier: FF:B2:43:E4:AD:A6:15:43:DE:E5:3D:DB:33:08:31:51:CD:FA:8B:B5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 638114903C84616D3CCFA3BD577770102A7A2B9A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146656.roa Signing time: Wed 04 Mar 2026 06:39:28 +0000 ROA not before: Wed 04 Mar 2026 06:34:28 +0000 ROA not after: Wed 03 Mar 2027 06:39:28 +0000 asID: 146656 IP address blocks: 240a:afa6::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:81:14:90:3c:84:61:6d:3c:cf:a3:bd:57:77:70:10:2a:7a:2b:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:28 2026 GMT Not After : Mar 3 06:39:28 2027 GMT Subject: CN=FFB243E4ADA61543DEE53DDB33083151CDFA8BB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:80:42:58:9f:7d:aa:4e:7b:7a:54:5f:a4: c9:5a:26:32:63:e3:9a:8a:f1:cb:72:0b:be:63:9b: bf:f6:46:e2:7d:96:d5:f9:fa:84:18:7c:1e:3a:da: 9e:51:f6:77:62:3a:27:cf:ea:35:98:63:11:03:8e: f9:94:d2:47:88:08:aa:91:2c:cd:69:a0:b7:c2:62: 76:f1:27:77:d9:f2:c0:d3:89:a8:f9:d5:31:4b:14: 50:a3:89:56:c8:67:43:02:1f:76:aa:7a:9a:2c:91: 87:43:49:31:4b:d9:7f:a3:8c:23:2c:5c:15:be:6e: 5e:8b:77:3d:25:53:80:1d:92:3f:3b:cd:0d:65:04: a3:24:78:b5:ff:1a:e3:7c:04:71:43:ab:30:4a:11: de:84:58:9d:59:59:51:6b:4c:39:53:24:f3:4d:5d: ec:3a:d6:b3:df:f1:df:2d:b6:bf:50:9b:c9:a6:4d: bf:9f:2e:9c:5f:c2:0a:bc:66:5e:5f:14:48:71:e8: 0c:99:41:36:1a:54:e6:1f:68:4a:22:98:3e:9d:b6: 85:a5:c8:49:31:51:8b:e0:a6:b4:78:48:f8:33:c2: 32:2d:12:5d:f0:7c:77:fb:23:18:97:09:c5:38:a2: 75:aa:e0:8d:ec:f8:d0:aa:b9:99:20:20:77:c4:37: 96:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B2:43:E4:AD:A6:15:43:DE:E5:3D:DB:33:08:31:51:CD:FA:8B:B5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146656.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afa6::/32 Signature Algorithm: sha256WithRSAEncryption 16:ac:2d:cc:ec:15:7f:42:41:88:f1:59:94:56:ef:6e:c2:d2: 30:d0:72:76:56:f1:9b:b2:b9:a3:63:bc:16:b4:2d:9c:ad:64: 70:cb:cb:15:df:67:2f:ba:22:a2:20:05:b3:00:22:fb:1c:7d: 9c:7b:9b:6b:dd:75:f1:af:5b:7e:a5:4b:99:33:d5:48:c8:38: 25:ad:87:cc:b0:e3:64:4f:6a:ad:cd:0a:43:d0:9e:1a:bd:f1: 7d:5d:30:5e:42:2b:1e:40:c1:f3:dd:6b:7f:50:3c:5f:8c:58: 3c:eb:38:eb:37:da:1a:ee:0e:ea:90:c9:a2:0a:4a:77:9e:af: 18:10:49:e6:33:08:e1:12:25:48:50:0a:94:89:3d:29:97:e8: 1b:32:71:9d:31:3c:e5:63:01:b3:d8:d5:30:6d:75:a9:a0:88: c7:d9:94:b7:b6:6d:04:f1:5f:63:48:d9:c3:1d:44:01:f4:c0: 7a:76:22:e7:98:9e:63:c2:ca:99:de:b8:42:4f:07:ab:db:b6: 2b:1b:94:8a:58:eb:59:c1:8e:2b:4d:ee:fc:4b:f5:fe:d8:72: b4:e7:9a:15:bf:36:ea:e9:ce:65:48:0f:5c:db:41:a2:3b:21: 08:37:c4:0c:87:6e:d2:8a:e2:9e:ba:1e:8e:55:2f:17:8f:82: 04:2c:43:74 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUY4EUkDyEYW08z6O9V3dwECp6K5owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQyOFoX DTI3MDMwMzA2MzkyOFowMzExMC8GA1UEAxMoRkZCMjQzRTRBREE2MTU0M0RFRTUz RERCMzMwODMxNTFDREZBOEJCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALiGgEJYn32qTnt6VF+kyVomMmPjmorxy3ILvmObv/ZG4n2W1fn6hBh8Hjra nlH2d2I6J8/qNZhjEQOO+ZTSR4gIqpEszWmgt8JidvEnd9nywNOJqPnVMUsUUKOJ VshnQwIfdqp6miyRh0NJMUvZf6OMIyxcFb5uXot3PSVTgB2SPzvNDWUEoyR4tf8a 43wEcUOrMEoR3oRYnVlZUWtMOVMk801d7DrWs9/x3y22v1CbyaZNv58unF/CCrxm Xl8USHHoDJlBNhpU5h9oSiKYPp22haXISTFRi+CmtHhI+DPCMi0SXfB8d/sjGJcJ xTiidargjez40Kq5mSAgd8Q3lp8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT/skPk raYVQ97lPdszCDFRzfqLtTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjY1Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r6YwDQYJKoZIhvcNAQELBQADggEBABasLczsFX9CQYjxWZRW727C0jDQcnZW8Zuy uaNjvBa0LZytZHDLyxXfZy+6IqIgBbMAIvscfZx7m2vddfGvW36lS5kz1UjIOCWt h8yw42RPaq3NCkPQnhq98X1dMF5CKx5AwfPda39QPF+MWDzrOOs32hruDuqQyaIK SneerxgQSeYzCOESJUhQCpSJPSmX6BsycZ0xPOVjAbPY1TBtdamgiMfZlLe2bQTx X2NI2cMdRAH0wHp2IueYnmPCypneuEJPB6vbtisblIpY61nBjitN7vxL9f7YcrTn mhW/NurpzmVID1zbQaI7IQg3xAyHbtKK4p66Ho5VLxePggQsQ3Q= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:50 2026 by rpki-client