$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146710.roa File: AS146710.roa (raw, json) Hash identifier: uL7l5Vr0Vdw6G325r58tVPAhswjKusKf4E5vxTF5Sx8= Subject key identifier: DE:99:C1:02:FD:43:F8:1A:D4:B1:60:5E:54:87:42:02:4C:5B:0A:8D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 42B90D916103E2822D9C149BBC47DD1EEB564A2D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146710.roa Signing time: Wed 04 Mar 2026 06:39:18 +0000 ROA not before: Wed 04 Mar 2026 06:34:18 +0000 ROA not after: Wed 03 Mar 2027 06:39:18 +0000 asID: 146710 IP address blocks: 240a:afdc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b9:0d:91:61:03:e2:82:2d:9c:14:9b:bc:47:dd:1e:eb:56:4a:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:18 2026 GMT Not After : Mar 3 06:39:18 2027 GMT Subject: CN=DE99C102FD43F81AD4B1605E548742024C5B0A8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:54:ce:76:5d:15:be:07:cd:ff:3f:6f:e8:23: 88:d5:bc:0c:71:ca:87:c1:ef:6d:a7:5e:d3:d5:b7: 19:00:a4:a2:db:f5:30:ae:13:07:e7:2c:80:93:b4: 15:fc:7e:dd:bc:6f:32:54:fa:fa:e1:6c:1a:be:4b: 7e:ca:33:85:f9:dc:90:df:c2:09:7e:92:c7:69:a1: 78:c3:36:9c:97:b3:ab:da:e7:a4:b2:10:52:ab:a7: 87:b1:36:3c:f5:a9:39:1f:c6:fd:44:5f:a4:c7:05: 81:7f:d1:46:4d:3e:df:8b:ee:0b:59:f2:ea:7f:44: cc:30:10:2c:56:4a:2a:87:14:22:9d:fa:56:54:82: 68:7f:f8:d3:ed:63:30:74:b4:0c:6d:e4:13:35:e0: 19:fe:04:dd:54:34:fd:09:f0:0f:cf:c5:d5:39:9f: b0:7d:e6:59:60:0c:a9:2f:87:bb:8e:69:bb:d6:d0: ca:fc:e3:0f:14:be:90:c8:62:18:a0:ee:ed:d0:07: d7:ac:e5:e8:4e:e6:74:b9:f3:4f:01:2a:6b:73:77: f6:dc:04:bd:11:6b:4b:66:d8:29:e6:44:ed:35:67: 42:a3:40:ee:17:ad:6c:87:e4:ca:c2:16:bb:cd:80: 76:92:d4:59:39:17:e9:c2:7b:ac:3b:f2:e6:b2:f1: e9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:99:C1:02:FD:43:F8:1A:D4:B1:60:5E:54:87:42:02:4C:5B:0A:8D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146710.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afdc::/32 Signature Algorithm: sha256WithRSAEncryption 5c:94:35:4e:04:0b:a2:9a:cb:9c:9c:4a:6e:31:67:50:a1:bd: 6d:d8:1e:a0:31:8e:32:3d:07:fc:37:78:4e:d7:15:68:93:25: 07:6b:40:7d:40:3a:77:43:88:00:07:08:bc:f4:09:7e:56:3f: 41:19:18:c8:0b:63:d3:9d:e1:02:91:7b:6d:b1:f9:b8:b5:03: 15:61:0a:d1:37:00:0e:0f:a1:c4:d7:15:22:a4:be:88:da:47: 49:f7:62:0c:23:15:83:2e:48:fd:32:f4:64:29:b3:37:a5:6e: 73:70:a8:5a:d7:4f:89:18:fb:19:44:60:0f:57:82:91:d2:ce: 81:a8:7c:5e:f6:4c:e2:50:db:9f:01:fd:a7:91:95:76:f6:58: ae:e5:68:ad:d0:d5:7e:71:9b:e4:e5:c4:2e:06:f3:e8:19:29: 3c:59:41:fa:80:f5:9f:32:ba:58:e5:9d:eb:b3:09:34:fa:d4: 53:6e:0e:80:d4:15:d0:c1:c8:f3:3d:34:a9:90:a0:d7:8a:69: 56:6b:27:8f:0a:01:18:3e:2e:45:12:18:f4:9e:4a:af:ae:00: aa:69:94:24:4a:ef:c8:5e:4b:74:4e:2b:9c:6c:51:3e:f5:0e: b6:ae:0f:34:a6:8d:7a:47:d9:32:df:49:e6:1e:be:e0:7c:89: 6b:9e:31:90 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQrkNkWED4oItnBSbvEfdHutWSi0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQxOFoX DTI3MDMwMzA2MzkxOFowMzExMC8GA1UEAxMoREU5OUMxMDJGRDQzRjgxQUQ0QjE2 MDVFNTQ4NzQyMDI0QzVCMEE4RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKNUznZdFb4Hzf8/b+gjiNW8DHHKh8Hvbade09W3GQCkotv1MK4TB+csgJO0 Ffx+3bxvMlT6+uFsGr5LfsozhfnckN/CCX6Sx2mheMM2nJezq9rnpLIQUqunh7E2 PPWpOR/G/URfpMcFgX/RRk0+34vuC1ny6n9EzDAQLFZKKocUIp36VlSCaH/40+1j MHS0DG3kEzXgGf4E3VQ0/QnwD8/F1TmfsH3mWWAMqS+Hu45pu9bQyvzjDxS+kMhi GKDu7dAH16zl6E7mdLnzTwEqa3N39twEvRFrS2bYKeZE7TVnQqNA7hetbIfkysIW u82AdpLUWTkX6cJ7rDvy5rLx6ZcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBTemcEC /UP4GtSxYF5Uh0ICTFsKjTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjcxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r9wwDQYJKoZIhvcNAQELBQADggEBAFyUNU4EC6Kay5ycSm4xZ1ChvW3YHqAxjjI9 B/w3eE7XFWiTJQdrQH1AOndDiAAHCLz0CX5WP0EZGMgLY9Od4QKRe22x+bi1AxVh CtE3AA4PocTXFSKkvojaR0n3YgwjFYMuSP0y9GQpszelbnNwqFrXT4kY+xlEYA9X gpHSzoGofF72TOJQ258B/aeRlXb2WK7laK3Q1X5xm+TlxC4G8+gZKTxZQfqA9Z8y uljlneuzCTT61FNuDoDUFdDByPM9NKmQoNeKaVZrJ48KARg+LkUSGPSeSq+uAKpp lCRK78heS3ROK5xsUT71DrauDzSmjXpH2TLfSeYevuB8iWueMZA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:58 2026 by rpki-client