$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146299.roa File: AS146299.roa (raw, json) Hash identifier: SxVvt5rO6yutccxl9eTVFM+GAzSiT3jKug20/NW2Gok= Subject key identifier: 90:3B:A9:E3:9C:CA:BF:73:54:09:71:F1:BF:F2:97:64:ED:56:BB:2C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 06739ABCC361BE7A083E10283B9CF31F0B8CDB88 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146299.roa Signing time: Wed 04 Mar 2026 06:33:46 +0000 ROA not before: Wed 04 Mar 2026 06:28:46 +0000 ROA not after: Wed 03 Mar 2027 06:33:46 +0000 asID: 146299 IP address blocks: 240a:ae41::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:73:9a:bc:c3:61:be:7a:08:3e:10:28:3b:9c:f3:1f:0b:8c:db:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:46 2026 GMT Not After : Mar 3 06:33:46 2027 GMT Subject: CN=903BA9E39CCABF73540971F1BFF29764ED56BB2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d2:42:f5:d6:fd:bf:cd:21:c0:ef:17:41:94: 4b:01:0f:08:73:80:a4:fc:5f:40:1d:25:04:22:a0: ed:93:a6:14:9f:e5:df:82:f4:b9:61:87:c9:80:2c: 6c:ee:17:ab:1d:cf:db:07:26:6d:1c:31:72:25:dd: 0c:db:4b:74:4f:6e:f9:ac:79:cb:71:9a:c5:be:78: d3:e7:6f:12:f3:bf:94:0d:87:36:9f:fc:b6:60:92: 1b:eb:0b:63:27:69:d1:b6:79:ee:30:da:ed:b2:70: 1d:40:bc:29:bb:1c:e9:12:f4:f5:ae:a8:cd:22:6c: 4f:ed:98:6b:6d:22:3a:31:24:e9:1e:43:fe:c2:52: 2c:db:56:da:c6:49:4d:a6:85:4b:50:80:5e:77:84: 6a:09:95:d2:13:c7:2e:1e:13:1c:21:bb:32:ae:4d: b3:2a:95:e8:65:3e:46:fd:00:95:54:51:bf:6f:68: b4:24:1d:f4:8d:06:c5:40:de:be:af:60:7b:7e:2f: c6:56:cd:36:e1:e8:f6:f8:25:61:a1:b4:3f:d5:e4: a8:19:83:19:ae:9c:8e:eb:59:ac:d3:c0:82:01:47: 00:bc:3e:37:3d:5d:ef:28:30:6c:45:fe:d9:0c:2b: bf:b3:3a:f6:06:43:0e:55:f8:ca:aa:df:27:44:05: d3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3B:A9:E3:9C:CA:BF:73:54:09:71:F1:BF:F2:97:64:ED:56:BB:2C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146299.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae41::/32 Signature Algorithm: sha256WithRSAEncryption b5:c0:9b:65:6e:28:63:94:06:c4:80:ba:03:ed:2c:bf:c5:12: 27:e1:8c:51:25:1f:aa:24:4f:11:c9:46:10:2c:d5:44:36:57: 6d:1b:c7:7c:94:e6:2e:21:6b:be:26:09:64:d3:10:2e:23:e5: 9e:2e:52:50:53:12:c5:f9:94:f7:87:8a:d2:70:12:70:14:12: 43:cc:30:a4:a7:c6:75:db:d2:7b:e8:c9:f1:41:04:38:ff:cf: 47:ff:90:32:60:48:9e:b4:a2:7a:28:9a:79:27:9e:e2:96:82: 2d:d5:52:98:cc:7e:15:2c:b8:35:53:1a:78:71:36:98:61:15: 5a:f8:82:71:68:7c:28:64:44:c9:13:e6:59:a6:c4:52:01:32: 98:90:a8:30:82:6d:da:1d:5f:d8:cb:97:b7:5f:c8:85:ac:c1: 43:89:05:cb:03:bc:a0:01:9a:72:36:df:45:b4:b7:65:f6:8e: b9:40:eb:e6:c4:09:60:fc:6f:23:b9:08:d2:e6:2e:83:52:e9: 16:74:e4:c1:10:bc:8b:4e:89:f4:9a:a2:4a:06:44:ba:2e:1c: db:ce:48:4a:38:50:04:10:29:2d:eb:86:f4:d6:7c:0e:a4:bb: 39:3f:f6:84:9d:12:bb:c3:40:4f:8e:f4:8f:00:ce:72:db:e6: 72:71:3f:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUBnOavMNhvnoIPhAoO5zzHwuM24gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0NloX DTI3MDMwMzA2MzM0NlowMzExMC8GA1UEAxMoOTAzQkE5RTM5Q0NBQkY3MzU0MDk3 MUYxQkZGMjk3NjRFRDU2QkIyQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzSQvXW/b/NIcDvF0GUSwEPCHOApPxfQB0lBCKg7ZOmFJ/l34L0uWGHyYAs bO4Xqx3P2wcmbRwxciXdDNtLdE9u+ax5y3Gaxb540+dvEvO/lA2HNp/8tmCSG+sL Yydp0bZ57jDa7bJwHUC8Kbsc6RL09a6ozSJsT+2Ya20iOjEk6R5D/sJSLNtW2sZJ TaaFS1CAXneEagmV0hPHLh4THCG7Mq5NsyqV6GU+Rv0AlVRRv29otCQd9I0GxUDe vq9ge34vxlbNNuHo9vglYaG0P9XkqBmDGa6cjutZrNPAggFHALw+Nz1d7ygwbEX+ 2Qwrv7M69gZDDlX4yqrfJ0QF078CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSQO6nj nMq/c1QJcfG/8pdk7Va7LDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjI5OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rkEwDQYJKoZIhvcNAQELBQADggEBALXAm2VuKGOUBsSAugPtLL/FEifhjFElH6ok TxHJRhAs1UQ2V20bx3yU5i4ha74mCWTTEC4j5Z4uUlBTEsX5lPeHitJwEnAUEkPM MKSnxnXb0nvoyfFBBDj/z0f/kDJgSJ60onoomnknnuKWgi3VUpjMfhUsuDVTGnhx NphhFVr4gnFofChkRMkT5lmmxFIBMpiQqDCCbdodX9jLl7dfyIWswUOJBcsDvKAB mnI230W0t2X2jrlA6+bECWD8byO5CNLmLoNS6RZ05MEQvItOifSaokoGRLouHNvO SEo4UAQQKS3rhvTWfA6kuzk/9oSdErvDQE+O9I8AznLb5nJxPyM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:28 2026 by rpki-client