$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146314.roa File: AS146314.roa (raw, json) Hash identifier: Z2YmZhcXINrgzstS2WxaynLkXTXJP2a+M6JhiRYrBbs= Subject key identifier: 16:B8:0B:5C:C0:F9:18:88:06:D2:84:0B:8B:43:BB:3F:9F:6E:BA:17 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 1BAA62C35DB2361DE12C060ECD4ECC09E25A5137 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146314.roa Signing time: Wed 04 Mar 2026 06:33:59 +0000 ROA not before: Wed 04 Mar 2026 06:28:59 +0000 ROA not after: Wed 03 Mar 2027 06:33:59 +0000 asID: 146314 IP address blocks: 240a:ae50::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:aa:62:c3:5d:b2:36:1d:e1:2c:06:0e:cd:4e:cc:09:e2:5a:51:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:59 2026 GMT Not After : Mar 3 06:33:59 2027 GMT Subject: CN=16B80B5CC0F9188806D2840B8B43BB3F9F6EBA17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6e:8f:fe:92:b8:5a:49:fe:97:4f:31:1a:5e: d9:76:34:8b:d3:31:17:de:27:af:a1:c5:85:f7:27: aa:06:92:35:ca:a3:ab:28:8f:80:12:8f:48:58:2c: dc:ff:b5:6e:2f:62:f4:d6:75:94:ee:47:c0:4b:67: d2:03:3a:57:d7:9f:20:9b:43:64:c7:11:43:59:ff: 33:a8:31:72:a8:56:2f:55:14:8c:50:22:0b:f9:56: 5d:d5:07:9c:f9:90:f4:78:94:b1:f0:fb:82:59:0c: a6:19:4b:a4:88:9d:99:13:a6:10:02:15:a9:74:a0: 60:9c:de:ea:be:29:fc:b1:33:3d:d6:7b:1a:0e:c0: 79:b3:58:f9:0a:ad:9b:1d:0f:0e:ab:66:7d:86:76: d2:bc:62:81:93:5c:2f:07:b1:4a:37:ab:f3:c6:53: ae:dc:d9:8c:c8:b8:f0:72:02:fd:62:b0:df:65:8d: 23:24:41:da:b5:7e:8d:bd:ab:46:ff:10:49:62:83: 58:05:d8:73:6d:9e:ee:03:8e:14:b1:97:1a:db:68: eb:88:cb:34:2b:46:fc:53:47:ba:35:d6:2f:66:2e: 04:08:ff:c7:17:39:d1:7a:9b:a9:89:3a:c3:22:30: 22:7c:dc:5c:31:bd:1a:c5:b8:90:97:71:86:8c:a9: 27:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B8:0B:5C:C0:F9:18:88:06:D2:84:0B:8B:43:BB:3F:9F:6E:BA:17 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146314.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae50::/32 Signature Algorithm: sha256WithRSAEncryption 22:c5:06:ef:34:c7:59:31:1c:ff:2e:bd:6e:bb:13:45:77:44: ea:28:2f:68:90:1d:50:c0:76:ae:97:b0:ed:c2:87:99:2d:46: 19:52:cf:3e:59:15:d8:76:74:48:37:1c:e6:cd:56:5d:44:1f: 4e:8d:f7:65:ce:63:9d:33:dd:88:54:14:58:68:03:40:30:ce: f6:ba:ce:87:8e:5f:32:f1:7f:d8:e0:f5:f7:df:71:ff:6e:38: 65:38:e0:05:b7:46:56:fd:34:2c:24:b6:3a:df:82:6d:ec:68: 99:f2:64:20:4d:8f:10:d8:87:00:cb:37:48:ba:73:13:ea:6d: 3b:7b:88:d8:7e:27:37:4b:79:28:0c:2d:ca:c5:73:a3:47:71: 28:c0:47:79:b2:b4:94:81:8c:c2:78:00:3e:ef:98:ba:3d:2c: 8b:ad:c5:79:41:1c:c2:ce:5a:b2:fd:89:9a:1d:5b:7e:c2:3c: 56:68:51:60:50:df:f3:ec:19:5c:bb:22:6a:e9:49:db:c7:3f: 3e:fb:4e:87:79:e8:2f:46:ed:ed:18:0c:43:f3:cf:25:70:01: 63:4b:3a:6f:b5:02:f8:2b:7a:6d:b9:63:62:da:b6:cd:5d:3a: b9:1e:f8:af:3c:7a:e5:cc:c4:3f:dd:1c:a4:68:f1:a5:55:08: 93:9c:3c:81 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUG6piw12yNh3hLAYOzU7MCeJaUTcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg1OVoX DTI3MDMwMzA2MzM1OVowMzExMC8GA1UEAxMoMTZCODBCNUNDMEY5MTg4ODA2RDI4 NDBCOEI0M0JCM0Y5RjZFQkExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJuj/6SuFpJ/pdPMRpe2XY0i9MxF94nr6HFhfcnqgaSNcqjqyiPgBKPSFgs 3P+1bi9i9NZ1lO5HwEtn0gM6V9efIJtDZMcRQ1n/M6gxcqhWL1UUjFAiC/lWXdUH nPmQ9HiUsfD7glkMphlLpIidmROmEAIVqXSgYJze6r4p/LEzPdZ7Gg7AebNY+Qqt mx0PDqtmfYZ20rxigZNcLwexSjer88ZTrtzZjMi48HIC/WKw32WNIyRB2rV+jb2r Rv8QSWKDWAXYc22e7gOOFLGXGtto64jLNCtG/FNHujXWL2YuBAj/xxc50XqbqYk6 wyIwInzcXDG9GsW4kJdxhoypJy0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQWuAtc wPkYiAbShAuLQ7s/n266FzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjMxNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rlAwDQYJKoZIhvcNAQELBQADggEBACLFBu80x1kxHP8uvW67E0V3ROooL2iQHVDA dq6XsO3Ch5ktRhlSzz5ZFdh2dEg3HObNVl1EH06N92XOY50z3YhUFFhoA0Awzva6 zoeOXzLxf9jg9fffcf9uOGU44AW3Rlb9NCwktjrfgm3saJnyZCBNjxDYhwDLN0i6 cxPqbTt7iNh+JzdLeSgMLcrFc6NHcSjAR3mytJSBjMJ4AD7vmLo9LIutxXlBHMLO WrL9iZodW37CPFZoUWBQ3/PsGVy7ImrpSdvHPz77Tod56C9G7e0YDEPzzyVwAWNL Om+1Avgrem25Y2Lats1dOrke+K88euXMxD/dHKRo8aVVCJOcPIE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:02 2026 by rpki-client