$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146310.roa File: AS146310.roa (raw, json) Hash identifier: 5IRukJfttwsGA3zrasgHcB6FOm1Z3ITtF1y7O6nzwA0= Subject key identifier: BD:6C:F9:ED:BB:8E:63:A3:29:5D:52:7D:E9:EE:5D:7B:E3:F3:BE:F7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 41CBBDE4B0382EBD2DA842FB0505BCA368AA5EEC Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146310.roa Signing time: Wed 04 Mar 2026 06:34:51 +0000 ROA not before: Wed 04 Mar 2026 06:29:51 +0000 ROA not after: Wed 03 Mar 2027 06:34:51 +0000 asID: 146310 IP address blocks: 240a:ae4c::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:cb:bd:e4:b0:38:2e:bd:2d:a8:42:fb:05:05:bc:a3:68:aa:5e:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:51 2026 GMT Not After : Mar 3 06:34:51 2027 GMT Subject: CN=BD6CF9EDBB8E63A3295D527DE9EE5D7BE3F3BEF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9b:d1:cc:8a:07:08:16:f4:75:74:bd:c5:0e: 7a:10:63:60:79:b5:da:b9:ce:d8:29:ee:9b:11:00: 77:61:67:b2:8a:33:df:42:a7:ad:18:3b:d7:39:8c: f8:01:35:eb:01:14:57:5a:00:d6:a9:06:67:79:7d: 42:21:a4:81:dd:26:c3:78:76:89:eb:7f:77:9a:cc: db:e4:08:62:5a:20:4b:9d:12:a8:b7:6a:c4:8d:60: a9:61:b6:fc:a0:06:37:2f:ab:af:28:ac:2f:bf:ae: 6c:67:0e:4b:f9:c0:30:3c:7d:9f:e5:24:1a:ac:2b: 1f:bb:06:56:10:ed:76:2a:24:98:54:88:b5:65:98: f9:b5:04:06:c2:5e:fe:a9:49:38:fe:5a:80:c8:52: c1:7d:44:e0:8e:38:b3:b5:0d:f0:9c:97:28:0d:c5: 1d:55:39:70:43:f1:78:38:e5:c1:e5:42:e6:62:a9: 62:5d:70:e7:7f:84:42:5a:94:94:9f:34:4a:7f:2d: cc:2b:2e:e0:84:3b:92:f5:41:84:eb:49:f7:04:92: 2e:2b:e1:53:75:31:6c:60:47:a4:23:f3:ba:ef:ac: ee:b0:de:46:d0:e1:98:40:9d:cb:32:c1:ca:d9:06: f0:f4:74:43:74:07:9b:07:83:f2:4f:a0:17:fa:60: c4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6C:F9:ED:BB:8E:63:A3:29:5D:52:7D:E9:EE:5D:7B:E3:F3:BE:F7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146310.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae4c::/32 Signature Algorithm: sha256WithRSAEncryption da:84:1c:b9:6d:43:f6:e9:77:25:3c:70:33:16:70:c6:d8:99: e8:ef:39:b3:5d:57:54:49:9f:e7:67:15:42:97:99:00:7b:04: 00:fc:f0:94:4f:d9:5d:ae:5e:d5:f1:58:fb:cc:86:23:aa:3b: e0:60:23:ab:3a:9f:24:02:92:c9:fd:e5:0e:0a:58:35:31:d0: 80:9e:da:a6:69:14:c5:30:d7:e5:d1:3c:37:9d:f4:96:95:7b: 66:d9:04:00:85:87:20:e9:00:41:f3:eb:bb:8e:e2:a7:21:f5: 9e:e4:c4:02:d7:d1:e9:a5:db:ae:fc:03:37:1a:24:33:43:c4: 53:c8:f5:6f:5e:9d:d3:da:71:46:88:73:04:df:cf:87:ea:0c: 8e:88:0f:28:4a:b6:04:ae:28:d6:eb:f4:6c:ca:f6:a5:64:b6: 43:8b:32:79:75:e2:a5:60:35:bd:d3:57:bb:fc:6f:30:ed:11: 63:21:06:e9:b1:a1:44:f0:f9:e7:cd:b2:3c:82:2e:d0:d0:6f: a7:84:b4:ee:23:ee:94:2d:0d:5e:36:12:39:00:94:c3:a1:5b: 6d:a4:7c:1a:ef:b0:fa:21:50:83:ad:2e:b2:8f:0f:3e:11:52: 57:bf:1a:e3:09:36:ac:79:8d:f0:c8:26:5d:6c:94:1a:fa:9d: 70:94:58:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUQcu95LA4Lr0tqEL7BQW8o2iqXuwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk1MVoX DTI3MDMwMzA2MzQ1MVowMzExMC8GA1UEAxMoQkQ2Q0Y5RURCQjhFNjNBMzI5NUQ1 MjdERTlFRTVEN0JFM0YzQkVGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKib0cyKBwgW9HV0vcUOehBjYHm12rnO2CnumxEAd2Fnsooz30KnrRg71zmM +AE16wEUV1oA1qkGZ3l9QiGkgd0mw3h2iet/d5rM2+QIYlogS50SqLdqxI1gqWG2 /KAGNy+rryisL7+ubGcOS/nAMDx9n+UkGqwrH7sGVhDtdiokmFSItWWY+bUEBsJe /qlJOP5agMhSwX1E4I44s7UN8JyXKA3FHVU5cEPxeDjlweVC5mKpYl1w53+EQlqU lJ80Sn8tzCsu4IQ7kvVBhOtJ9wSSLivhU3UxbGBHpCPzuu+s7rDeRtDhmECdyzLB ytkG8PR0Q3QHmweD8k+gF/pgxNsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBS9bPnt u45joyldUn3p7l174/O+9zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjMxMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rkwwDQYJKoZIhvcNAQELBQADggEBANqEHLltQ/bpdyU8cDMWcMbYmejvObNdV1RJ n+dnFUKXmQB7BAD88JRP2V2uXtXxWPvMhiOqO+BgI6s6nyQCksn95Q4KWDUx0ICe 2qZpFMUw1+XRPDed9JaVe2bZBACFhyDpAEHz67uO4qch9Z7kxALX0eml2678Azca JDNDxFPI9W9endPacUaIcwTfz4fqDI6IDyhKtgSuKNbr9GzK9qVktkOLMnl14qVg Nb3TV7v8bzDtEWMhBumxoUTw+efNsjyCLtDQb6eEtO4j7pQtDV42EjkAlMOhW22k fBrvsPohUIOtLrKPDz4RUle/GuMJNqx5jfDIJl1slBr6nXCUWHI= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:26 2026 by rpki-client