$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146705.roa File: AS146705.roa (raw, json) Hash identifier: JpwAoOQ/tN40UBZhHktw2cpi6pdVzuvbRdsjm8knHz0= Subject key identifier: B3:CF:18:5D:8E:C6:67:C2:11:ED:AE:25:A7:E8:32:20:09:F2:1E:DB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5BF400BCDA074D54E6D974C1579F87251E37A65E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146705.roa Signing time: Wed 04 Mar 2026 06:39:22 +0000 ROA not before: Wed 04 Mar 2026 06:34:22 +0000 ROA not after: Wed 03 Mar 2027 06:39:22 +0000 asID: 146705 IP address blocks: 240a:afd7::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f4:00:bc:da:07:4d:54:e6:d9:74:c1:57:9f:87:25:1e:37:a6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:22 2026 GMT Not After : Mar 3 06:39:22 2027 GMT Subject: CN=B3CF185D8EC667C211EDAE25A7E8322009F21EDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:39:53:7d:46:cb:8a:13:ce:71:9f:a7:08:66: 45:c4:0f:ac:17:5f:f2:15:17:ab:30:98:1a:8b:32: a1:c9:75:65:3a:42:d6:3a:9f:2c:38:21:27:1c:a6: 91:d8:50:92:5f:92:fc:30:cd:96:43:03:ec:fa:26: 3c:aa:ef:a1:34:92:46:68:52:dc:7a:02:39:f5:bf: 2a:9c:41:e1:bc:92:7f:02:c5:65:33:f3:b7:a4:64: 35:bb:6e:94:9d:c2:36:32:78:d6:6a:11:d7:ef:2c: 24:03:8a:bb:55:74:ae:47:c8:6a:5c:9d:79:61:c9: f5:21:ab:ca:26:81:77:16:50:bf:a2:27:fe:cc:72: fc:53:b8:cc:76:87:c7:2a:c4:3f:b2:47:98:09:ca: 36:20:1d:9e:93:e1:d0:c3:e6:8e:61:8b:6a:c7:6f: 47:2c:da:2b:31:58:d8:af:d6:16:46:17:19:07:3a: 07:8f:96:39:03:c5:1f:01:81:3d:20:8b:c3:79:2d: 9a:07:f9:9e:f3:96:cc:3f:e6:af:4e:85:f0:bf:29: e7:18:ee:3a:a5:39:46:2b:07:f8:38:10:4f:78:94: 0b:59:02:f2:96:68:37:bb:de:1b:20:8a:b0:56:35: 16:bb:8f:ed:c8:34:c4:3d:04:00:a6:ba:48:6d:c2: d4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CF:18:5D:8E:C6:67:C2:11:ED:AE:25:A7:E8:32:20:09:F2:1E:DB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146705.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afd7::/32 Signature Algorithm: sha256WithRSAEncryption b9:f2:d7:c5:26:60:76:fd:49:08:90:da:93:76:24:c7:c3:95: 35:43:e6:e0:75:7f:f4:6d:4e:19:84:02:b0:73:a9:8d:5a:cf: c2:8b:73:67:9a:75:3b:23:a5:cb:7b:af:4d:1b:a4:b6:54:8c: 35:2c:d0:5b:1e:91:5b:bd:53:8b:b1:f1:c6:d6:a9:ea:e4:aa: 62:5a:f4:ae:9c:01:e4:7f:c4:2f:42:12:b6:ee:2f:b1:89:dd: 37:29:0e:0d:fd:92:0a:f3:90:95:46:42:c2:8a:66:64:8b:32: 3f:39:d2:ab:cc:9e:87:07:d5:34:21:c2:4b:ac:0f:31:5b:99: b2:fb:58:3b:d4:37:ca:f8:d6:23:e3:40:68:a8:53:87:62:d5: 60:fb:8e:47:6c:e8:1e:ce:ff:f4:a4:76:ec:d5:f1:f2:ac:56: 03:fd:0e:0b:f8:fd:ed:f1:90:6e:1f:e8:e6:01:71:62:68:62: 0a:4a:c2:d2:1a:51:3f:aa:5f:f0:c1:6c:a4:60:fc:da:99:5e: e0:84:24:a7:fb:2f:4d:3f:29:a8:0f:4e:d6:a2:bc:51:3b:b6: f3:e1:08:3f:b2:ac:8b:37:44:43:3e:58:f8:85:79:8e:e7:a5: d9:ec:5c:b5:e0:99:d5:79:26:ae:82:7b:d1:da:e0:4c:88:11: fa:09:71:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUW/QAvNoHTVTm2XTBV5+HJR43pl4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQyMloX DTI3MDMwMzA2MzkyMlowMzExMC8GA1UEAxMoQjNDRjE4NUQ4RUM2NjdDMjExRURB RTI1QTdFODMyMjAwOUYyMUVEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALo5U31Gy4oTznGfpwhmRcQPrBdf8hUXqzCYGosyocl1ZTpC1jqfLDghJxym kdhQkl+S/DDNlkMD7PomPKrvoTSSRmhS3HoCOfW/KpxB4bySfwLFZTPzt6RkNbtu lJ3CNjJ41moR1+8sJAOKu1V0rkfIalydeWHJ9SGryiaBdxZQv6In/sxy/FO4zHaH xyrEP7JHmAnKNiAdnpPh0MPmjmGLasdvRyzaKzFY2K/WFkYXGQc6B4+WOQPFHwGB PSCLw3ktmgf5nvOWzD/mr06F8L8p5xjuOqU5RisH+DgQT3iUC1kC8pZoN7veGyCK sFY1FruP7cg0xD0EAKa6SG3C1O0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSzzxhd jsZnwhHtriWn6DIgCfIe2zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjcwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r9cwDQYJKoZIhvcNAQELBQADggEBALny18UmYHb9SQiQ2pN2JMfDlTVD5uB1f/Rt ThmEArBzqY1az8KLc2eadTsjpct7r00bpLZUjDUs0FsekVu9U4ux8cbWqerkqmJa 9K6cAeR/xC9CErbuL7GJ3TcpDg39kgrzkJVGQsKKZmSLMj850qvMnocH1TQhwkus DzFbmbL7WDvUN8r41iPjQGioU4di1WD7jkds6B7O//SkduzV8fKsVgP9Dgv4/e3x kG4f6OYBcWJoYgpKwtIaUT+qX/DBbKRg/NqZXuCEJKf7L00/KagPTtaivFE7tvPh CD+yrIs3REM+WPiFeY7npdnsXLXgmdV5Jq6Ce9Ha4EyIEfoJcVE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:15:13 2026 by rpki-client