$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146711.roa File: AS146711.roa (raw, json) Hash identifier: ReHwMRrMIT6bhFEA6NEnwUCG191kWi8iLV4czAAmKSk= Subject key identifier: A5:F0:60:44:81:0C:1D:D4:FD:32:88:73:EE:CE:01:D9:CE:31:8F:18 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1A513BC063AD0521FB9DB1FF90BB8E46939F93D8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146711.roa Signing time: Wed 04 Mar 2026 06:39:19 +0000 ROA not before: Wed 04 Mar 2026 06:34:19 +0000 ROA not after: Wed 03 Mar 2027 06:39:19 +0000 asID: 146711 IP address blocks: 240a:afdd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:51:3b:c0:63:ad:05:21:fb:9d:b1:ff:90:bb:8e:46:93:9f:93:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:19 2026 GMT Not After : Mar 3 06:39:19 2027 GMT Subject: CN=A5F06044810C1DD4FD328873EECE01D9CE318F18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:30:d8:e4:1c:74:10:b0:4e:b3:08:d0:0e:df: 88:f3:8b:11:1f:44:13:da:49:d2:69:b8:08:67:43: 95:b1:fc:8d:f1:ec:70:1d:69:86:20:8d:f6:a9:21: cf:10:fd:3a:27:02:69:ec:50:ab:f2:5f:6f:e3:24: 9f:d5:5e:a9:eb:07:b4:4a:ab:06:b8:cb:24:3c:89: 4f:08:4c:7e:17:63:26:2a:d5:a2:4c:96:6c:62:66: ff:7e:0c:55:82:10:5f:db:a7:35:f2:ff:67:e9:e6: 5e:d1:47:e3:f0:1b:9f:89:37:c1:ab:d6:97:65:d2: b8:ec:52:a0:57:8d:9c:76:0f:ff:d7:09:90:ef:64: cc:a9:44:5c:e8:f4:73:17:20:62:d3:ed:b1:dd:8e: b9:ba:97:ea:34:3b:dc:4c:f5:0e:67:06:04:6c:67: 3f:73:fb:9d:87:ec:be:b8:9b:d3:93:c7:73:74:d4: 93:66:7b:6a:40:2b:06:87:04:43:6a:81:08:65:08: 6d:e4:99:67:08:b9:e3:30:7c:aa:d1:d4:12:97:39: 87:5f:4c:de:6a:fc:8f:bc:f6:f6:71:ce:48:2c:d0: ee:77:fa:50:1e:78:0a:34:0d:7c:41:d7:f7:81:ea: 0a:9e:f1:d6:fd:b0:e2:48:65:a9:a5:65:8c:f2:2c: cb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F0:60:44:81:0C:1D:D4:FD:32:88:73:EE:CE:01:D9:CE:31:8F:18 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146711.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:afdd::/32 Signature Algorithm: sha256WithRSAEncryption 12:f8:83:3e:a2:1f:ca:dd:1d:4c:4e:e4:ce:a5:76:f4:6c:f1: 4d:05:b2:64:d6:40:e3:51:f5:95:2f:66:1d:55:82:78:3d:f6: c9:ed:d4:12:99:dd:79:59:89:2c:9c:0f:84:b4:e4:02:db:90: 19:b6:c8:e4:f6:02:86:8e:ce:f8:88:09:23:a4:91:ff:b4:26: 1b:fd:93:c8:63:db:32:3b:74:63:f8:8f:63:12:42:5d:3d:ce: d2:bf:9d:fe:8b:aa:1b:06:20:12:95:28:56:c6:6d:ca:13:67: 3a:d0:34:55:f3:28:f4:97:2c:40:d5:21:4b:cd:3d:42:d1:8b: d3:41:46:ae:b1:69:c6:fe:87:e1:37:f2:1f:d0:ff:55:a0:43: c0:a0:ad:3b:db:e0:c8:48:38:86:db:53:b7:1c:c0:b1:a6:f5: 94:bd:46:b6:3d:f6:90:6c:da:ef:c5:a5:c0:51:2d:72:be:bd: d3:6f:d5:cf:86:87:55:ce:3d:3a:a4:14:18:5c:35:94:4f:1c: 9d:9f:ca:38:f5:9c:99:e5:c8:91:b9:35:8b:80:ea:81:f1:b5: 81:72:91:ad:11:7b:1c:36:5f:f3:56:04:19:97:c0:97:1b:1e: 7f:95:53:af:1d:37:30:2a:b9:a4:be:7a:d0:ff:4a:b6:99:93: 6c:93:09:d5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUGlE7wGOtBSH7nbH/kLuORpOfk9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQxOVoX DTI3MDMwMzA2MzkxOVowMzExMC8GA1UEAxMoQTVGMDYwNDQ4MTBDMURENEZEMzI4 ODczRUVDRTAxRDlDRTMxOEYxODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK8w2OQcdBCwTrMI0A7fiPOLER9EE9pJ0mm4CGdDlbH8jfHscB1phiCN9qkh zxD9OicCaexQq/Jfb+Mkn9VeqesHtEqrBrjLJDyJTwhMfhdjJirVokyWbGJm/34M VYIQX9unNfL/Z+nmXtFH4/Abn4k3wavWl2XSuOxSoFeNnHYP/9cJkO9kzKlEXOj0 cxcgYtPtsd2OubqX6jQ73Ez1DmcGBGxnP3P7nYfsvrib05PHc3TUk2Z7akArBocE Q2qBCGUIbeSZZwi54zB8qtHUEpc5h19M3mr8j7z29nHOSCzQ7nf6UB54CjQNfEHX 94HqCp7x1v2w4khlqaVljPIsy6UCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSl8GBE gQwd1P0yiHPuzgHZzjGPGDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjcxMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r90wDQYJKoZIhvcNAQELBQADggEBABL4gz6iH8rdHUxO5M6ldvRs8U0FsmTWQONR 9ZUvZh1Vgng99snt1BKZ3XlZiSycD4S05ALbkBm2yOT2AoaOzviICSOkkf+0Jhv9 k8hj2zI7dGP4j2MSQl09ztK/nf6LqhsGIBKVKFbGbcoTZzrQNFXzKPSXLEDVIUvN PULRi9NBRq6xacb+h+E38h/Q/1WgQ8CgrTvb4MhIOIbbU7ccwLGm9ZS9RrY99pBs 2u/FpcBRLXK+vdNv1c+Gh1XOPTqkFBhcNZRPHJ2fyjj1nJnlyJG5NYuA6oHxtYFy ka0Rexw2X/NWBBmXwJcbHn+VU68dNzAquaS+etD/SraZk2yTCdU= -----END CERTIFICATE-----Generated at Sat Mar 28 11:46:02 2026 by rpki-client