$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146303.roa File: AS146303.roa (raw, json) Hash identifier: tBx9Hn0LZvjl5uyBKG04E2GTcy6sa0dWyosrT3zi5z0= Subject key identifier: 95:4D:13:11:B4:84:0D:7F:08:6B:6A:12:E4:6C:CF:B3:EB:55:0E:11 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2FBA37FDA82A1656412BBF2B40EAD32414ADDB01 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146303.roa Signing time: Wed 04 Mar 2026 06:34:50 +0000 ROA not before: Wed 04 Mar 2026 06:29:50 +0000 ROA not after: Wed 03 Mar 2027 06:34:50 +0000 asID: 146303 IP address blocks: 240a:ae45::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ba:37:fd:a8:2a:16:56:41:2b:bf:2b:40:ea:d3:24:14:ad:db:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:50 2026 GMT Not After : Mar 3 06:34:50 2027 GMT Subject: CN=954D1311B4840D7F086B6A12E46CCFB3EB550E11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e2:3b:57:09:94:e0:6b:a0:4a:d2:22:72:8a: c7:41:fb:84:50:9e:ad:9c:17:3d:a5:cf:cd:c1:7c: eb:8f:2b:e2:6c:f8:20:ee:6f:89:30:cf:d1:af:08: 04:65:f6:af:fd:f4:fa:4e:1a:ad:06:7d:7a:8d:48: bd:a9:ec:e1:f8:d8:2b:d1:3c:02:7f:c3:1e:93:66: 5b:ac:6f:76:77:fa:6f:0c:a2:6c:33:47:ee:68:b8: 58:62:56:fc:04:3f:40:c8:ab:c2:61:af:64:16:b3: 39:e5:f8:ce:9c:17:67:bf:45:e7:02:2c:70:17:c9: f3:60:19:b5:fe:c0:87:e7:04:92:b2:f2:fe:04:db: 60:ac:bc:06:bd:17:be:25:ce:e7:7f:44:b5:bd:7f: 3c:a1:16:62:f4:dc:9a:ee:bc:05:53:5c:c0:65:2b: 09:a3:f9:c0:5a:07:06:55:69:68:4d:81:02:0b:b6: 12:c7:ea:b1:12:6a:ef:54:1f:38:1b:e6:e0:ea:f1: 2d:41:d7:e5:7a:68:34:69:e1:8f:07:cc:4e:ed:e7: 3f:c8:0c:e5:4f:61:44:3a:b1:1a:65:19:a9:09:30: c8:a0:87:73:f2:f3:27:ac:94:af:42:e6:db:2c:48: 32:3c:33:ce:2d:dc:a9:77:68:d7:7f:94:5f:fb:0c: c9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:4D:13:11:B4:84:0D:7F:08:6B:6A:12:E4:6C:CF:B3:EB:55:0E:11 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146303.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae45::/32 Signature Algorithm: sha256WithRSAEncryption 9d:67:90:13:6d:ac:39:9e:d2:f9:ae:ec:98:c0:4c:16:50:ae: 8b:2f:f8:8c:1b:ed:94:91:9a:ee:d3:39:ac:c3:07:92:ad:e1: d3:2a:71:7f:02:7f:c1:cd:6f:01:fc:1d:ec:16:f3:ce:cf:11: 10:2c:bc:10:b0:c7:ae:9f:05:bd:5d:da:5b:65:19:a2:86:72: 76:24:0c:1a:fc:4b:19:ec:60:c1:db:16:65:56:02:65:1a:ec: a0:90:58:31:52:c7:88:3e:08:12:0a:c7:d2:e6:1f:bb:03:1c: 58:ff:38:6d:9a:18:af:f6:78:61:e8:c6:d0:9e:1a:24:8a:ad: f3:42:54:b3:f0:7b:42:2c:12:dc:ae:eb:11:99:da:19:04:48: c9:2a:30:49:09:6a:a3:fa:45:11:05:b5:59:1e:d9:60:9f:4a: 64:c3:3d:c9:86:e3:43:7a:56:5b:b0:b6:e4:4f:b8:cf:a2:6d: 27:4b:33:c5:7e:7d:31:9c:e5:16:4c:1e:13:ca:15:ad:75:20: 6b:95:0e:9f:24:c2:26:05:36:00:b1:d3:83:bd:02:96:5b:85: 3d:0e:bd:7b:2c:7d:e4:6b:ab:37:6b:72:9f:87:ff:0c:cb:be: 96:6a:dd:60:c1:a4:8c:da:97:89:83:f0:b4:5c:f1:ef:76:bb: 00:c5:ee:98 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUL7o3/agqFlZBK78rQOrTJBSt2wEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk1MFoX DTI3MDMwMzA2MzQ1MFowMzExMC8GA1UEAxMoOTU0RDEzMTFCNDg0MEQ3RjA4NkI2 QTEyRTQ2Q0NGQjNFQjU1MEUxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANPiO1cJlOBroErSInKKx0H7hFCerZwXPaXPzcF8648r4mz4IO5viTDP0a8I BGX2r/30+k4arQZ9eo1Ivans4fjYK9E8An/DHpNmW6xvdnf6bwyibDNH7mi4WGJW /AQ/QMirwmGvZBazOeX4zpwXZ79F5wIscBfJ82AZtf7Ah+cEkrLy/gTbYKy8Br0X viXO539Etb1/PKEWYvTcmu68BVNcwGUrCaP5wFoHBlVpaE2BAgu2EsfqsRJq71Qf OBvm4OrxLUHX5XpoNGnhjwfMTu3nP8gM5U9hRDqxGmUZqQkwyKCHc/LzJ6yUr0Lm 2yxIMjwzzi3cqXdo13+UX/sMyWECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSVTRMR tIQNfwhrahLkbM+z61UOETAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjMwMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rkUwDQYJKoZIhvcNAQELBQADggEBAJ1nkBNtrDme0vmu7JjATBZQrosv+Iwb7ZSR mu7TOazDB5Kt4dMqcX8Cf8HNbwH8HewW887PERAsvBCwx66fBb1d2ltlGaKGcnYk DBr8SxnsYMHbFmVWAmUa7KCQWDFSx4g+CBIKx9LmH7sDHFj/OG2aGK/2eGHoxtCe GiSKrfNCVLPwe0IsEtyu6xGZ2hkESMkqMEkJaqP6RREFtVke2WCfSmTDPcmG40N6 VluwtuRPuM+ibSdLM8V+fTGc5RZMHhPKFa11IGuVDp8kwiYFNgCx04O9ApZbhT0O vXssfeRrqzdrcp+H/wzLvpZq3WDBpIzal4mD8LRc8e92uwDF7pg= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:45 2026 by rpki-client