$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146690.roa File: AS146690.roa (raw, json) Hash identifier: zSgybGIcIrbmKWS5TRR/SFeZQaO4KWDPyMqIoLIVHRY= Subject key identifier: CB:9E:E1:99:3E:38:2E:84:07:82:77:4F:BA:35:FD:7E:25:15:73:12 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 300E962832FB9A20D96EEE88D5F7589A4ACCCC41 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146690.roa Signing time: Wed 04 Mar 2026 06:39:46 +0000 ROA not before: Wed 04 Mar 2026 06:34:46 +0000 ROA not after: Wed 03 Mar 2027 06:39:46 +0000 asID: 146690 IP address blocks: 240a:afc8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:0e:96:28:32:fb:9a:20:d9:6e:ee:88:d5:f7:58:9a:4a:cc:cc:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:46 2026 GMT Not After : Mar 3 06:39:46 2027 GMT Subject: CN=CB9EE1993E382E840782774FBA35FD7E25157312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:38:e5:b3:02:71:16:27:34:8c:21:30:f5:fb: 2c:aa:9c:6f:e4:01:65:a8:5f:e8:18:8c:d1:aa:39: 52:3c:19:1c:82:5f:c9:0c:23:60:da:39:f8:50:dc: 73:cb:2b:39:3f:66:10:46:fc:c2:d6:48:d4:2b:49: 8c:ea:83:3c:04:e2:e5:05:60:a9:0d:ba:92:c2:45: fe:e9:19:10:4c:13:30:ab:9a:c4:46:4e:c2:1c:9b: 3a:43:9f:f1:a2:c2:72:de:91:15:86:91:6f:7e:e7: 56:65:9c:e1:1f:1c:73:0b:6c:ca:48:ca:fe:bd:5f: 84:a9:ff:40:a7:11:9c:2a:a6:3f:f5:33:2f:b3:41: ef:d3:36:8c:78:ef:39:6d:8c:a7:2f:92:60:0e:81: f9:d5:ab:8f:90:ce:9c:69:a2:80:81:2f:3b:99:73: 59:12:0b:20:9f:a9:a7:95:46:f2:7b:44:31:4a:24: 1b:23:9e:69:3c:26:1a:6d:f2:73:a3:cc:c8:9f:ea: 07:a1:0f:41:c7:07:06:42:4e:0d:a9:a7:3b:6e:7d: 46:c6:3f:14:16:1b:10:f2:7b:77:7a:6c:2b:56:89: d2:19:b2:7f:9a:96:b9:78:fc:27:f7:49:1c:e1:f7: ea:28:4e:b2:ec:81:69:cb:9f:82:5a:f6:36:2c:29: 17:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9E:E1:99:3E:38:2E:84:07:82:77:4F:BA:35:FD:7E:25:15:73:12 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146690.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afc8::/32 Signature Algorithm: sha256WithRSAEncryption 78:28:36:35:90:54:d3:8f:5a:ed:25:60:72:09:eb:bd:c2:ef: ed:71:80:34:32:4a:cd:87:a9:aa:b6:e5:a3:42:db:db:85:0f: 7d:ce:bf:95:57:b1:38:23:41:6f:1e:18:ea:be:03:cf:90:fb: b0:7f:48:30:5f:36:95:29:6c:fe:b9:ce:b4:b4:f1:c9:35:6c: 31:f5:c4:17:d2:5d:22:12:84:8e:b2:a1:c5:b4:14:82:66:9e: 9b:34:01:41:93:5f:83:b3:68:ce:6c:55:39:ee:30:23:29:11: 7b:dd:54:56:4c:c6:44:30:c9:c7:e8:39:5d:53:fa:0b:9d:b2: a4:e5:d8:b0:c4:50:9b:41:48:51:78:f2:e6:39:f6:c2:46:b0: a5:4d:3d:83:d5:83:35:db:af:a1:c4:96:91:15:23:94:20:d3: 0b:2a:f1:35:34:1d:94:89:e6:5e:c3:13:e0:42:33:9a:43:ca: eb:c0:db:90:12:f4:ea:b0:bc:9f:99:69:ba:2a:01:9f:86:2b: ba:0c:99:c9:a0:c0:57:0e:30:f3:b5:85:50:13:1f:5f:f0:fc: da:3a:b6:6d:13:2f:df:24:af:a1:65:91:62:d5:35:b8:6b:8a: e8:3d:97:71:fb:6c:be:0e:6f:f8:6c:f9:51:ee:ee:7e:7f:96: 7a:c3:45:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMA6WKDL7miDZbu6I1fdYmkrMzEEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0NloX DTI3MDMwMzA2Mzk0NlowMzExMC8GA1UEAxMoQ0I5RUUxOTkzRTM4MkU4NDA3ODI3 NzRGQkEzNUZEN0UyNTE1NzMxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALM45bMCcRYnNIwhMPX7LKqcb+QBZahf6BiM0ao5UjwZHIJfyQwjYNo5+FDc c8srOT9mEEb8wtZI1CtJjOqDPATi5QVgqQ26ksJF/ukZEEwTMKuaxEZOwhybOkOf 8aLCct6RFYaRb37nVmWc4R8ccwtsykjK/r1fhKn/QKcRnCqmP/UzL7NB79M2jHjv OW2Mpy+SYA6B+dWrj5DOnGmigIEvO5lzWRILIJ+pp5VG8ntEMUokGyOeaTwmGm3y c6PMyJ/qB6EPQccHBkJODamnO259RsY/FBYbEPJ7d3psK1aJ0hmyf5qWuXj8J/dJ HOH36ihOsuyBacufglr2NiwpF48CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTLnuGZ PjguhAeCd0+6Nf1+JRVzEjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjY5MC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r8gwDQYJKoZIhvcNAQELBQADggEBAHgoNjWQVNOPWu0lYHIJ673C7+1xgDQySs2H qaq25aNC29uFD33Ov5VXsTgjQW8eGOq+A8+Q+7B/SDBfNpUpbP65zrS08ck1bDH1 xBfSXSIShI6yocW0FIJmnps0AUGTX4OzaM5sVTnuMCMpEXvdVFZMxkQwycfoOV1T +gudsqTl2LDEUJtBSFF48uY59sJGsKVNPYPVgzXbr6HElpEVI5Qg0wsq8TU0HZSJ 5l7DE+BCM5pDyuvA25AS9OqwvJ+ZaboqAZ+GK7oMmcmgwFcOMPO1hVATH1/w/No6 tm0TL98kr6FlkWLVNbhriug9l3H7bL4Ob/hs+VHu7n5/lnrDRZ8= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:44 2026 by rpki-client