$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146707.roa File: AS146707.roa (raw, json) Hash identifier: +wVN16ik+CxZMSF1c8xai+31Tj19hfGOAt5UgBjAIn0= Subject key identifier: 65:78:1E:E7:C6:68:50:BF:A2:50:BC:53:82:91:84:A7:FF:F4:5F:55 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7AC22C4D8F37BDDC00BAC81A89FFC2453E99782E Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146707.roa Signing time: Wed 04 Mar 2026 06:39:35 +0000 ROA not before: Wed 04 Mar 2026 06:34:35 +0000 ROA not after: Wed 03 Mar 2027 06:39:35 +0000 asID: 146707 IP address blocks: 240a:afd9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c2:2c:4d:8f:37:bd:dc:00:ba:c8:1a:89:ff:c2:45:3e:99:78:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:35 2026 GMT Not After : Mar 3 06:39:35 2027 GMT Subject: CN=65781EE7C66850BFA250BC53829184A7FFF45F55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e5:a0:c9:e9:12:fe:db:0a:b7:16:c6:06:3c: 6c:ee:49:a8:96:fc:50:ab:18:36:a1:64:f0:5a:05: 3f:f8:44:fe:44:d6:ae:4d:06:ad:e4:3b:22:2b:d3: 52:0c:44:f9:b8:1c:c5:63:4f:aa:6a:cc:e8:d7:60: 27:fc:1c:5f:d1:d5:1b:e6:f5:d8:1d:3f:e2:f3:64: 2b:71:97:c2:b6:78:c6:4a:7b:ae:56:b4:61:a1:0b: 8e:1a:aa:98:09:82:c4:45:9b:38:76:4e:ed:96:69: 53:0a:63:ac:18:a4:a3:0f:6a:0a:6e:1d:c1:6e:ce: b9:ff:63:70:b5:44:60:d8:9c:9d:20:9a:68:c4:8c: b4:6d:55:39:10:8a:75:fc:1f:2e:f8:d8:36:2c:de: 0a:65:48:26:eb:13:82:e7:de:cf:68:e7:63:92:0a: f4:a8:0f:b3:16:b4:dc:05:1c:52:80:bc:73:6b:d1: f2:87:ee:c5:3a:6d:20:76:ab:d5:a3:9a:55:ce:30: 1a:6f:0b:ff:75:62:aa:6e:ed:40:06:02:45:76:a2: aa:9f:17:3e:c4:ef:29:84:a8:38:59:db:75:c1:e0: 5b:24:aa:2c:62:f5:02:79:ea:80:ba:df:e6:4c:1d: 4f:5d:58:82:92:b6:10:8b:65:da:9a:cf:bb:a3:c0: ab:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:78:1E:E7:C6:68:50:BF:A2:50:BC:53:82:91:84:A7:FF:F4:5F:55 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146707.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afd9::/32 Signature Algorithm: sha256WithRSAEncryption d8:8b:8b:29:ea:11:eb:b1:1d:5c:63:3d:40:47:91:cd:8c:4e: 1e:9d:f4:e0:08:40:12:56:0a:86:03:31:0a:25:55:e9:80:8c: f6:bc:3f:16:da:c2:17:35:69:2c:55:e8:23:55:14:03:e7:e6: b6:03:9f:82:26:3a:05:5f:70:47:24:6a:fd:3c:ff:25:8c:5f: 20:5b:04:0c:77:b8:50:ec:a1:47:b9:a7:bb:cc:f2:06:f2:57: 71:ec:5f:0e:a5:29:d3:8a:2d:8d:25:dd:93:9e:94:77:4c:d2: 13:ef:e3:e9:9f:91:16:10:bd:f6:65:5d:08:54:54:f1:dd:d9: b7:0c:0e:07:59:53:f3:47:a7:f2:6e:85:2b:3c:b0:f7:09:ac: 9f:69:86:c6:43:66:ac:84:54:63:49:8b:74:3d:3a:d2:0a:e7: 81:13:c4:52:f5:81:3d:d7:44:32:f9:0b:2b:e8:94:71:3a:90: dc:2a:56:b3:6b:03:62:e0:23:c8:b8:35:c8:85:72:0b:1d:aa: f8:3f:ed:51:f8:42:8e:d1:6f:50:bf:4a:f3:d5:b5:e8:b7:c4: 50:77:d8:72:20:b1:5d:46:4c:3a:72:43:27:8e:30:14:bd:1f: 7e:5b:d9:30:48:4b:eb:88:31:1f:f6:7e:8e:82:4b:d2:f8:54: 7e:44:b0:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUesIsTY83vdwAusgaif/CRT6ZeC4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQzNVoX DTI3MDMwMzA2MzkzNVowMzExMC8GA1UEAxMoNjU3ODFFRTdDNjY4NTBCRkEyNTBC QzUzODI5MTg0QTdGRkY0NUY1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTloMnpEv7bCrcWxgY8bO5JqJb8UKsYNqFk8FoFP/hE/kTWrk0GreQ7IivT UgxE+bgcxWNPqmrM6NdgJ/wcX9HVG+b12B0/4vNkK3GXwrZ4xkp7rla0YaELjhqq mAmCxEWbOHZO7ZZpUwpjrBikow9qCm4dwW7Ouf9jcLVEYNicnSCaaMSMtG1VORCK dfwfLvjYNizeCmVIJusTgufez2jnY5IK9KgPsxa03AUcUoC8c2vR8ofuxTptIHar 1aOaVc4wGm8L/3Viqm7tQAYCRXaiqp8XPsTvKYSoOFnbdcHgWySqLGL1AnnqgLrf 5kwdT11YgpK2EItl2prPu6PAq7ECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRleB7n xmhQv6JQvFOCkYSn//RfVTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjcwNy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r9kwDQYJKoZIhvcNAQELBQADggEBANiLiynqEeuxHVxjPUBHkc2MTh6d9OAIQBJW CoYDMQolVemAjPa8Pxbawhc1aSxV6CNVFAPn5rYDn4ImOgVfcEckav08/yWMXyBb BAx3uFDsoUe5p7vM8gbyV3HsXw6lKdOKLY0l3ZOelHdM0hPv4+mfkRYQvfZlXQhU VPHd2bcMDgdZU/NHp/JuhSs8sPcJrJ9phsZDZqyEVGNJi3Q9OtIK54ETxFL1gT3X RDL5CyvolHE6kNwqVrNrA2LgI8i4NciFcgsdqvg/7VH4Qo7Rb1C/SvPVtei3xFB3 2HIgsV1GTDpyQyeOMBS9H35b2TBIS+uIMR/2fo6CS9L4VH5EsOo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:32 2026 by rpki-client