$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146695.roa File: AS146695.roa (raw, json) Hash identifier: /yMNQTh1Ujy+IZr28mTJn9KY/dtGSiwuXFjKbxFFXOg= Subject key identifier: E3:E5:33:A3:8D:2A:3B:AF:93:D8:76:A3:33:94:63:5E:91:5E:3B:4A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 203D8FC31D3F31EEDFABE773D505D85A8B229F28 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146695.roa Signing time: Wed 04 Mar 2026 06:39:46 +0000 ROA not before: Wed 04 Mar 2026 06:34:46 +0000 ROA not after: Wed 03 Mar 2027 06:39:46 +0000 asID: 146695 IP address blocks: 240a:afcd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:3d:8f:c3:1d:3f:31:ee:df:ab:e7:73:d5:05:d8:5a:8b:22:9f:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:46 2026 GMT Not After : Mar 3 06:39:46 2027 GMT Subject: CN=E3E533A38D2A3BAF93D876A33394635E915E3B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:03:c8:f8:d8:76:3d:60:d8:54:b5:61:91:0f: df:12:94:b9:33:57:a2:3b:03:97:20:1a:be:50:1b: 86:45:0d:00:f9:5a:82:cb:b2:3b:24:bb:86:c3:22: 0d:24:bb:0b:62:c7:b5:0a:a8:bb:8b:99:78:4b:57: 10:02:97:74:d2:56:e7:5c:99:f5:4b:df:43:6b:9f: 6a:0e:76:76:63:f2:c5:dc:74:2a:07:a6:b3:f6:d8: 03:df:78:8d:83:5c:3b:f3:03:58:4b:c1:fa:64:c8: d8:57:ee:be:4d:91:6d:e4:0a:97:aa:a1:c0:f9:5f: 75:39:7d:15:14:78:18:82:78:ee:50:02:ae:56:56: 10:22:55:2f:0b:5c:6e:b0:70:bf:db:11:d6:90:a0: 05:77:f4:9f:97:0a:0a:26:09:c7:28:7f:87:52:eb: 4a:2e:34:e9:0a:5b:03:97:fe:17:2a:95:70:78:b4: 52:87:a5:f5:ca:54:62:b8:30:db:28:b8:95:d9:bd: df:10:74:ad:3e:1d:87:b0:4a:f8:e5:53:ad:14:44: f7:57:18:d2:ac:2c:c7:21:df:5b:2a:de:81:bc:14: d7:48:8a:b3:0f:e3:bc:83:c5:62:12:bf:96:ba:76: 0a:d6:0c:8e:73:05:e6:4b:ee:26:78:09:a2:82:b6: bb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E5:33:A3:8D:2A:3B:AF:93:D8:76:A3:33:94:63:5E:91:5E:3B:4A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146695.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afcd::/32 Signature Algorithm: sha256WithRSAEncryption 84:13:bc:a4:75:07:cb:19:1e:1c:d5:03:e0:4a:8d:11:47:f7: 98:4b:f9:43:3d:72:e8:a8:af:bf:2d:ff:41:0b:d5:85:aa:a9: 25:ba:89:ba:21:f4:46:5b:ca:c2:6d:6a:0d:f0:d7:22:cb:82: 4c:52:52:ad:42:b7:d6:b9:d6:47:2f:c4:74:4e:42:f1:74:98: b5:be:67:51:d8:bd:bf:54:3b:1e:39:c7:a9:f6:d7:a0:e3:16: 3f:36:7f:11:b9:74:97:39:2b:7d:01:32:fb:aa:ca:f9:ff:7d: f3:b0:bf:27:42:28:62:c0:77:7d:69:82:d7:9e:b9:2e:dc:a9: eb:4f:ee:57:66:48:57:d8:3e:8b:1c:2e:a0:26:f5:cb:8a:94: 8b:64:70:ee:df:5a:e9:27:ef:28:cf:6f:e5:0c:df:84:c6:44: 2d:b3:85:35:3b:f8:b6:62:51:82:67:2c:6a:9a:44:6d:89:68: 1c:9a:8f:11:1b:88:ca:c0:58:6d:77:0d:3b:38:02:a2:47:e4: c9:59:fc:dd:e5:cb:3c:15:dc:79:13:a0:2a:8c:0d:51:ca:2b: aa:f8:f1:11:32:b3:0a:82:09:ea:38:0c:d5:a5:48:be:95:29: 95:d5:2d:2f:29:1d:ce:2f:fa:4a:4b:14:cb:e9:0d:e0:c0:5a: 30:cd:6c:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUID2Pwx0/Me7fq+dz1QXYWosinygwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0NloX DTI3MDMwMzA2Mzk0NlowMzExMC8GA1UEAxMoRTNFNTMzQTM4RDJBM0JBRjkzRDg3 NkEzMzM5NDYzNUU5MTVFM0I0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMEDyPjYdj1g2FS1YZEP3xKUuTNXojsDlyAavlAbhkUNAPlagsuyOyS7hsMi DSS7C2LHtQqou4uZeEtXEAKXdNJW51yZ9UvfQ2ufag52dmPyxdx0Kgems/bYA994 jYNcO/MDWEvB+mTI2Ffuvk2RbeQKl6qhwPlfdTl9FRR4GIJ47lACrlZWECJVLwtc brBwv9sR1pCgBXf0n5cKCiYJxyh/h1LrSi406QpbA5f+FyqVcHi0Uoel9cpUYrgw 2yi4ldm93xB0rT4dh7BK+OVTrRRE91cY0qwsxyHfWyregbwU10iKsw/jvIPFYhK/ lrp2CtYMjnMF5kvuJngJooK2u6kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTj5TOj jSo7r5PYdqMzlGNekV47SjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjY5NS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r80wDQYJKoZIhvcNAQELBQADggEBAIQTvKR1B8sZHhzVA+BKjRFH95hL+UM9cuio r78t/0EL1YWqqSW6iboh9EZbysJtag3w1yLLgkxSUq1Ct9a51kcvxHROQvF0mLW+ Z1HYvb9UOx45x6n216DjFj82fxG5dJc5K30BMvuqyvn/ffOwvydCKGLAd31pgtee uS7cqetP7ldmSFfYPoscLqAm9cuKlItkcO7fWukn7yjPb+UM34TGRC2zhTU7+LZi UYJnLGqaRG2JaByajxEbiMrAWG13DTs4AqJH5MlZ/N3lyzwV3HkToCqMDVHKK6r4 8REyswqCCeo4DNWlSL6VKZXVLS8pHc4v+kpLFMvpDeDAWjDNbJs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:10 2026 by rpki-client