$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146732.roa File: AS146732.roa (raw, json) Hash identifier: nDxBOJVigoixWskBMSYgTIj9+tp2KNKE1/L6CvgFU0c= Subject key identifier: 6C:0F:8F:06:5C:EB:15:F7:BF:CD:C1:4F:C5:BE:D6:E4:6C:20:CA:60 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 749ECB20300B465CB8BF24002F9ABD6F25F4057B Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146732.roa Signing time: Wed 04 Mar 2026 06:39:56 +0000 ROA not before: Wed 04 Mar 2026 06:34:56 +0000 ROA not after: Wed 03 Mar 2027 06:39:56 +0000 asID: 146732 IP address blocks: 240a:aff2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9e:cb:20:30:0b:46:5c:b8:bf:24:00:2f:9a:bd:6f:25:f4:05:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:56 2026 GMT Not After : Mar 3 06:39:56 2027 GMT Subject: CN=6C0F8F065CEB15F7BFCDC14FC5BED6E46C20CA60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:60:dc:0b:ee:ee:94:4d:f0:6b:22:2c:91:26: 60:08:2b:75:5e:a7:ec:9f:98:3c:c3:15:d4:de:08: 6d:ef:30:c8:56:88:92:cd:0a:0c:fb:8a:f6:8b:3f: b3:ca:1a:30:ea:e2:d0:00:23:bb:40:58:80:04:56: 14:e9:33:f0:6d:ab:6c:60:57:3f:54:63:fc:e0:9d: fc:24:a9:4f:56:65:34:6c:a7:14:c2:1c:fd:81:c5: d7:6a:21:33:45:e8:b8:9f:98:74:f3:cf:ce:6e:19: a2:7a:34:f1:89:e6:9c:c4:49:78:31:9e:47:de:c1: 9f:99:07:5e:6d:e8:10:c5:08:5b:02:4d:d7:96:f1: 36:dc:09:48:a0:d0:82:66:37:9f:ae:03:8d:bb:88: a1:b0:c8:5b:ca:ea:c9:15:7d:fd:c7:65:f8:61:69: be:0b:1e:a5:e4:d6:5a:2c:7c:a8:bc:e2:32:71:0d: ff:39:e6:76:33:63:57:14:dc:65:d5:4f:b0:92:70: b7:63:00:8f:2c:20:f2:5f:32:fe:aa:92:1b:40:9a: b9:be:a5:0b:cd:bc:f0:93:26:e2:50:57:87:90:90: 75:03:2f:e2:80:21:e0:f7:74:cc:64:ac:a8:d8:0a: 08:c1:3a:c1:75:d3:87:24:0b:50:f8:f4:20:10:48: c7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:0F:8F:06:5C:EB:15:F7:BF:CD:C1:4F:C5:BE:D6:E4:6C:20:CA:60 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aff2::/32 Signature Algorithm: sha256WithRSAEncryption 4d:06:7c:3f:a0:b3:05:c9:a7:22:99:67:2c:8a:6d:38:1e:9d: 7f:62:33:34:8a:cb:44:0d:0d:95:4f:4c:0a:e0:5f:4c:43:41: 1e:3a:6d:f2:46:08:1b:66:68:14:f9:99:c3:7b:81:c3:52:f8: 15:47:71:2e:78:5c:ea:33:bc:5a:18:e4:dd:51:f4:4b:af:06: 82:73:45:54:17:34:c5:f9:57:96:16:a4:46:7c:36:c2:a5:f9: bf:97:15:f6:12:d0:26:17:d7:19:2d:07:d0:73:ae:f7:3a:24: 7b:0a:94:eb:66:e3:42:ca:5d:01:08:20:4c:76:e8:36:8b:62: f7:ca:fe:3b:73:25:64:b4:83:15:ad:ad:c1:fd:9c:07:6c:15: d5:c6:17:e3:9b:44:1d:f3:c5:a1:1d:eb:ed:1e:1f:f3:6d:37: d5:06:44:32:f2:52:b5:4e:2b:9e:da:76:27:ae:7e:76:05:d8: e7:2c:a9:8b:46:e5:c4:f2:7f:94:0d:b7:5b:ba:42:45:85:88: c2:3a:0d:8c:55:e3:8a:4f:eb:74:4b:3c:51:f9:ce:05:f0:e5: 69:ef:14:73:46:41:36:12:fa:11:07:61:48:50:95:75:4d:ac: d1:a3:86:92:f4:3e:ba:16:e7:2f:d6:f1:ab:6b:eb:13:e6:61: 0e:54:60:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUdJ7LIDALRly4vyQAL5q9byX0BXswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ1NloX DTI3MDMwMzA2Mzk1NlowMzExMC8GA1UEAxMoNkMwRjhGMDY1Q0VCMTVGN0JGQ0RD MTRGQzVCRUQ2RTQ2QzIwQ0E2MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJg3Avu7pRN8GsiLJEmYAgrdV6n7J+YPMMV1N4Ibe8wyFaIks0KDPuK9os/ s8oaMOri0AAju0BYgARWFOkz8G2rbGBXP1Rj/OCd/CSpT1ZlNGynFMIc/YHF12oh M0XouJ+YdPPPzm4Zono08YnmnMRJeDGeR97Bn5kHXm3oEMUIWwJN15bxNtwJSKDQ gmY3n64DjbuIobDIW8rqyRV9/cdl+GFpvgsepeTWWix8qLziMnEN/znmdjNjVxTc ZdVPsJJwt2MAjywg8l8y/qqSG0Caub6lC8288JMm4lBXh5CQdQMv4oAh4Pd0zGSs qNgKCME6wXXThyQLUPj0IBBIx2kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRsD48G XOsV97/NwU/FvtbkbCDKYDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjczMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r/IwDQYJKoZIhvcNAQELBQADggEBAE0GfD+gswXJpyKZZyyKbTgenX9iMzSKy0QN DZVPTArgX0xDQR46bfJGCBtmaBT5mcN7gcNS+BVHcS54XOozvFoY5N1R9EuvBoJz RVQXNMX5V5YWpEZ8NsKl+b+XFfYS0CYX1xktB9Bzrvc6JHsKlOtm40LKXQEIIEx2 6DaLYvfK/jtzJWS0gxWtrcH9nAdsFdXGF+ObRB3zxaEd6+0eH/NtN9UGRDLyUrVO K57adieufnYF2OcsqYtG5cTyf5QNt1u6QkWFiMI6DYxV44pP63RLPFH5zgXw5Wnv FHNGQTYS+hEHYUhQlXVNrNGjhpL0ProW5y/W8atr6xPmYQ5UYIo= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:40 2026 by rpki-client