$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146742.roa File: AS146742.roa (raw, json) Hash identifier: gXJLgvXlgUpVreR85FN3n4P9A2k/UXneoccMFbQi6CE= Subject key identifier: 8E:6C:43:85:96:96:FB:BB:AE:E2:06:52:E4:67:56:CC:DE:C7:7C:BA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7868A84539CE73BBE20468928C34C77D308D6E92 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146742.roa Signing time: Wed 04 Mar 2026 06:39:49 +0000 ROA not before: Wed 04 Mar 2026 06:34:49 +0000 ROA not after: Wed 03 Mar 2027 06:39:49 +0000 asID: 146742 IP address blocks: 240a:affc::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:68:a8:45:39:ce:73:bb:e2:04:68:92:8c:34:c7:7d:30:8d:6e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:34:49 2026 GMT Not After : Mar 3 06:39:49 2027 GMT Subject: CN=8E6C43859696FBBBAEE20652E46756CCDEC77CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:21:61:82:01:9f:5f:9f:73:1d:21:4b:fa:ef: 6a:9a:3d:f8:6d:ce:bc:95:1b:56:43:fc:06:be:86: af:4d:cb:8a:aa:c1:04:19:0b:73:36:d2:aa:f6:01: c3:2f:5e:87:cb:f4:65:06:e3:bf:81:73:9a:63:0f: 0e:05:90:69:c7:54:64:25:eb:82:ad:3b:a1:27:7b: ab:56:26:86:df:58:a8:b9:c9:da:18:ea:f6:6e:3e: bb:da:e1:43:f2:1d:29:66:84:18:61:f2:04:3b:da: 93:da:e1:a3:27:c8:e9:03:52:d5:6f:ba:bc:f1:a4: 14:90:af:07:2f:94:99:dc:a0:cc:fc:09:c0:ea:3a: d0:a5:53:c2:03:14:dd:50:ce:c3:87:1a:74:14:6b: ad:30:e1:9a:0b:41:d8:74:06:dc:dc:17:48:75:f2: 20:11:e6:23:5a:8c:97:17:04:c6:31:64:2b:67:a5: d1:a9:85:dc:06:86:3c:08:76:40:f3:cd:b6:b3:73: 82:b6:af:80:8e:4a:c7:10:16:35:71:c2:40:02:72: 37:9f:9c:bd:ff:64:b7:3c:26:ec:a9:0f:9c:18:42: 50:59:06:0f:d7:07:33:08:c4:fd:f7:9a:c1:97:6d: 21:57:b1:17:e3:48:1a:99:42:22:dc:6c:61:dd:6b: 07:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6C:43:85:96:96:FB:BB:AE:E2:06:52:E4:67:56:CC:DE:C7:7C:BA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146742.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:affc::/32 Signature Algorithm: sha256WithRSAEncryption d5:3c:91:88:78:7d:73:3a:23:ec:d5:08:b7:79:6b:54:e3:5c: 15:4d:a3:44:fd:f0:9c:58:ed:0b:e5:53:3f:94:20:21:f5:39: 14:e8:40:6f:79:7e:43:f8:d3:66:c0:c5:e1:66:5c:8b:78:aa: 77:80:63:f9:19:37:6b:e9:be:97:e7:79:3c:85:65:68:8d:02: f5:46:d2:3f:80:09:29:5c:15:ab:d3:9f:73:ba:db:5c:38:c0: ed:89:4b:d2:69:48:09:9a:cb:c8:4d:33:56:06:0f:60:65:78: 8d:7b:1a:d7:ec:be:93:ed:eb:00:e4:59:46:c3:58:1a:e5:a9: fa:9c:dd:af:7f:9e:fc:e6:44:fd:34:bd:6c:c9:1a:f3:a0:a2: f3:0b:2e:ac:cf:4d:20:32:d4:63:1c:01:36:d5:69:8c:41:55: 38:e5:c8:a4:99:28:c7:81:8c:a3:e9:3f:e8:d2:49:3c:1b:2d: ab:e0:f0:f7:85:46:83:af:a1:71:b0:3a:63:a5:73:f7:b1:14: db:e6:da:75:bb:ac:73:a3:2e:89:8e:67:a6:fb:c4:81:15:48: db:ea:c5:c4:06:78:8e:e8:6e:c1:af:19:f7:05:d4:9b:c3:78: ae:73:97:30:28:bc:7f:35:99:1e:76:13:cc:ca:a3:98:e0:8b: 66:aa:74:49 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUeGioRTnOc7viBGiSjDTHfTCNbpIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzQ0OVoX DTI3MDMwMzA2Mzk0OVowMzExMC8GA1UEAxMoOEU2QzQzODU5Njk2RkJCQkFFRTIw NjUyRTQ2NzU2Q0NERUM3N0NCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJwhYYIBn1+fcx0hS/rvapo9+G3OvJUbVkP8Br6Gr03LiqrBBBkLczbSqvYB wy9eh8v0ZQbjv4FzmmMPDgWQacdUZCXrgq07oSd7q1Ymht9YqLnJ2hjq9m4+u9rh Q/IdKWaEGGHyBDvak9rhoyfI6QNS1W+6vPGkFJCvBy+UmdygzPwJwOo60KVTwgMU 3VDOw4cadBRrrTDhmgtB2HQG3NwXSHXyIBHmI1qMlxcExjFkK2el0amF3AaGPAh2 QPPNtrNzgravgI5KxxAWNXHCQAJyN5+cvf9ktzwm7KkPnBhCUFkGD9cHMwjE/fea wZdtIVexF+NIGplCItxsYd1rBycCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSObEOF lpb7u67iBlLkZ1bM3sd8ujAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0Njc0Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK r/wwDQYJKoZIhvcNAQELBQADggEBANU8kYh4fXM6I+zVCLd5a1TjXBVNo0T98JxY 7QvlUz+UICH1ORToQG95fkP402bAxeFmXIt4qneAY/kZN2vpvpfneTyFZWiNAvVG 0j+ACSlcFavTn3O621w4wO2JS9JpSAmay8hNM1YGD2BleI17GtfsvpPt6wDkWUbD WBrlqfqc3a9/nvzmRP00vWzJGvOgovMLLqzPTSAy1GMcATbVaYxBVTjlyKSZKMeB jKPpP+jSSTwbLavg8PeFRoOvoXGwOmOlc/exFNvm2nW7rHOjLomOZ6b7xIEVSNvq xcQGeI7obsGvGfcF1JvDeK5zlzAovH81mR52E8zKo5jgi2aqdEk= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:58 2026 by rpki-client