$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146293.roa File: AS146293.roa (raw, json) Hash identifier: eF1mOVrTLsFG8HXpjViXXbeAd+X6WhbC8SXMx0Y06A8= Subject key identifier: A3:D0:9C:CE:EB:53:9D:B6:29:D9:EC:89:9C:EF:90:CF:E1:F6:F1:74 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2D95BCE6F9CCEA15082F0C843257AD8E185844EB Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146293.roa Signing time: Wed 04 Mar 2026 06:34:44 +0000 ROA not before: Wed 04 Mar 2026 06:29:44 +0000 ROA not after: Wed 03 Mar 2027 06:34:44 +0000 asID: 146293 IP address blocks: 240a:ae3b::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:95:bc:e6:f9:cc:ea:15:08:2f:0c:84:32:57:ad:8e:18:58:44:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:44 2026 GMT Not After : Mar 3 06:34:44 2027 GMT Subject: CN=A3D09CCEEB539DB629D9EC899CEF90CFE1F6F174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:c3:b8:e8:80:85:ae:2e:85:69:89:6f:95: ca:1e:dd:7b:6b:f3:fa:5f:09:9f:6f:b1:52:c0:db: 73:85:b7:cc:b3:05:7b:f4:6a:95:ba:a3:ee:12:3f: c7:22:c1:ee:36:bf:02:c7:7f:6f:7e:c8:ba:ff:19: 57:31:ba:d1:e9:51:4b:92:30:9e:d5:18:10:a8:f6: 55:eb:08:27:5e:ad:72:4e:4c:99:6d:d2:d1:9f:84: 49:d4:9d:12:09:d0:9f:93:0d:fc:14:96:ae:8f:4c: 8a:20:46:4e:2b:26:79:a5:58:80:84:b0:53:c9:58: a7:0c:51:af:b1:ed:93:d9:24:88:cf:17:60:c9:df: 7c:b5:16:43:35:85:b1:a1:e8:df:2c:79:c6:b0:c0: 97:6a:0d:0e:35:83:bf:1b:3c:31:32:58:0d:e7:8b: ec:e3:c8:b2:92:ad:e2:1b:c5:b1:0b:f8:32:64:cd: ca:94:23:e2:8c:9f:3b:03:c3:78:b8:b5:74:85:29: b2:1e:0e:7c:56:66:19:00:8c:26:2c:f3:31:c8:d0: 44:80:1c:46:36:55:e6:87:84:f2:13:ec:e7:16:69: 5b:f6:50:d7:21:fb:03:af:97:81:ed:bf:4d:3b:f6: 22:36:5f:58:e9:28:47:f9:9a:fc:d8:26:e9:20:52: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D0:9C:CE:EB:53:9D:B6:29:D9:EC:89:9C:EF:90:CF:E1:F6:F1:74 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146293.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae3b::/32 Signature Algorithm: sha256WithRSAEncryption 3b:70:b4:61:78:6e:ec:78:21:e8:7e:5a:e0:05:91:dc:30:ca: 20:18:79:ff:bf:bf:11:58:35:e7:99:ad:0e:11:0c:af:03:a5: e1:ca:d6:23:9b:5c:7f:26:01:19:58:50:98:1d:2e:2b:35:90: 43:d9:78:6e:1a:f3:a1:a7:f9:df:eb:1a:38:67:da:67:c6:62: 41:af:53:db:88:86:fe:f4:ff:fe:5d:ea:89:00:80:b7:7c:13: 2b:35:04:52:dc:9d:34:38:81:16:e9:ac:15:b0:61:82:a7:a3: 9a:b8:03:c8:af:16:54:93:bb:7b:6d:2c:9a:ca:62:82:a5:6a: 57:ed:25:9f:86:7b:47:a8:4e:cd:6a:62:4c:76:b3:71:a4:ff: 26:1b:fa:b0:63:b8:e7:2d:ca:7e:0e:d3:dc:86:9b:40:40:27: b7:4b:5a:8e:05:78:2f:a3:19:9e:1e:b5:9e:ea:15:aa:d0:74: 22:07:e0:d4:1c:2e:f1:14:99:7e:45:89:65:2c:31:52:bd:fd: 94:14:a4:8b:18:de:cb:b8:93:18:48:18:0c:cd:b5:51:58:4c: 87:73:87:81:8f:bb:3e:ed:c2:d5:eb:da:b9:65:81:01:5e:02: 6d:19:9f:2a:e4:29:f6:d8:48:68:6c:d6:48:e9:54:d8:7c:c3: 3a:d0:b4:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULZW85vnM6hUILwyEMletjhhYROswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk0NFoX DTI3MDMwMzA2MzQ0NFowMzExMC8GA1UEAxMoQTNEMDlDQ0VFQjUzOURCNjI5RDlF Qzg5OUNFRjkwQ0ZFMUY2RjE3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALsVw7jogIWuLoVpiW+Vyh7de2vz+l8Jn2+xUsDbc4W3zLMFe/Rqlbqj7hI/ xyLB7ja/Asd/b37Iuv8ZVzG60elRS5IwntUYEKj2VesIJ16tck5MmW3S0Z+ESdSd EgnQn5MN/BSWro9MiiBGTismeaVYgISwU8lYpwxRr7Htk9kkiM8XYMnffLUWQzWF saHo3yx5xrDAl2oNDjWDvxs8MTJYDeeL7OPIspKt4hvFsQv4MmTNypQj4oyfOwPD eLi1dIUpsh4OfFZmGQCMJizzMcjQRIAcRjZV5oeE8hPs5xZpW/ZQ1yH7A6+Xge2/ TTv2IjZfWOkoR/ma/Ngm6SBSWrMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSj0JzO 61OdtinZ7Imc75DP4fbxdDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI5My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rjswDQYJKoZIhvcNAQELBQADggEBADtwtGF4bux4Ieh+WuAFkdwwyiAYef+/vxFY NeeZrQ4RDK8DpeHK1iObXH8mARlYUJgdLis1kEPZeG4a86Gn+d/rGjhn2mfGYkGv U9uIhv70//5d6okAgLd8Eys1BFLcnTQ4gRbprBWwYYKno5q4A8ivFlSTu3ttLJrK YoKlalftJZ+Ge0eoTs1qYkx2s3Gk/yYb+rBjuOctyn4O09yGm0BAJ7dLWo4FeC+j GZ4etZ7qFarQdCIH4NQcLvEUmX5FiWUsMVK9/ZQUpIsY3su4kxhIGAzNtVFYTIdz h4GPuz7twtXr2rllgQFeAm0ZnyrkKfbYSGhs1kjpVNh8wzrQtBs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:42 2026 by rpki-client