$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146315.roa File: AS146315.roa (raw, json) Hash identifier: U9t+pG82pFfPgolHpK2DBiPivUzD52cswsqxt3AI4tw= Subject key identifier: 9B:E6:07:CD:1F:33:B8:1D:DB:38:34:65:74:7D:BB:9C:50:E9:FC:F7 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 478E802B802DA8C3ADDC45F9275E7B430DF9B53A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146315.roa Signing time: Wed 04 Mar 2026 06:33:34 +0000 ROA not before: Wed 04 Mar 2026 06:28:34 +0000 ROA not after: Wed 03 Mar 2027 06:33:34 +0000 asID: 146315 IP address blocks: 240a:ae51::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8e:80:2b:80:2d:a8:c3:ad:dc:45:f9:27:5e:7b:43:0d:f9:b5:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:34 2026 GMT Not After : Mar 3 06:33:34 2027 GMT Subject: CN=9BE607CD1F33B81DDB383465747DBB9C50E9FCF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:98:e2:47:51:57:00:9d:8d:46:fc:cc:00:ec: d0:a0:05:87:03:eb:5a:16:67:df:16:fd:3a:df:cb: 00:ca:f5:85:d1:4f:55:1f:6e:27:ce:b1:f9:d9:31: 87:41:7e:a9:ae:9d:e6:14:b6:de:80:b4:1a:5f:74: 84:18:dc:5a:3e:fb:29:2c:a5:37:8b:45:20:6d:b6: 40:59:91:8c:3c:75:80:d7:fe:df:99:b2:39:94:b2: 01:f5:dc:72:75:3b:5b:de:e7:5b:41:4a:d3:10:63: da:52:51:e6:4f:dc:6b:34:d8:9b:cb:c0:a7:ff:f5: 5b:de:03:f2:bd:7a:f1:49:28:7c:78:79:9b:79:dd: 43:5d:4e:cd:1a:10:5c:de:95:2f:17:50:2d:46:73: 78:36:19:54:05:86:75:88:3e:f6:2c:9f:54:16:10: 0b:3c:d2:03:d4:df:5d:e6:75:e1:bf:2b:e9:bf:29: bd:a7:7f:70:af:9f:9e:ce:ae:56:49:b9:5e:ba:25: c1:09:ff:09:36:91:ba:3c:17:dc:2c:c7:63:1d:2e: 6a:f1:42:bc:7e:eb:1a:ae:e4:1a:79:4f:ef:d5:13: 97:9e:85:bd:5e:e4:29:87:5d:48:fa:0e:e7:fe:82: 22:42:dd:49:90:0f:8c:aa:24:ad:da:48:a9:21:9f: d0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E6:07:CD:1F:33:B8:1D:DB:38:34:65:74:7D:BB:9C:50:E9:FC:F7 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146315.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae51::/32 Signature Algorithm: sha256WithRSAEncryption 52:77:40:fa:b2:21:29:a6:87:79:c6:c0:c5:e4:b1:dc:b0:e9: a4:7a:11:11:80:47:2d:ed:12:de:6d:ce:49:08:36:83:e1:31: f2:92:10:2d:7f:ec:e3:1f:13:cc:a4:48:2d:1c:31:30:a1:a8: 46:84:34:1e:2b:83:da:25:d7:bd:3f:8f:e8:99:72:98:fb:6c: 7b:17:87:a7:6f:fd:e5:84:62:92:69:54:94:50:8e:75:72:0c: 2d:6a:62:6b:21:f4:f6:e4:2e:89:82:a0:ff:68:bc:3c:ea:32: e1:f8:e1:8b:e6:b7:87:6c:3e:0e:c4:61:9b:82:9a:06:1b:ed: 7e:b3:c4:83:71:e7:16:4d:2b:0e:7e:04:ab:bb:f0:70:a8:ab: 65:99:18:83:46:ca:12:81:48:c1:45:82:88:0c:eb:21:a9:a5: 12:77:bc:87:df:00:4b:c5:a8:a7:9b:6e:d2:60:61:72:b6:50: 08:67:41:e6:71:6d:99:1a:ab:7e:7a:1d:44:c8:a3:72:60:df: 22:c5:06:10:9a:d2:b6:fe:93:a2:9b:23:ab:1f:0f:c7:7d:eb: fd:1b:92:1e:7a:c6:1b:41:46:2f:db:d0:86:72:28:2c:ad:36: 1a:17:64:85:b9:46:8f:5f:57:dc:23:77:ed:19:0d:1a:c9:9b: f4:a2:6d:5e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUR46AK4AtqMOt3EX5J157Qw35tTowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjgzNFoX DTI3MDMwMzA2MzMzNFowMzExMC8GA1UEAxMoOUJFNjA3Q0QxRjMzQjgxRERCMzgz NDY1NzQ3REJCOUM1MEU5RkNGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSY4kdRVwCdjUb8zADs0KAFhwPrWhZn3xb9Ot/LAMr1hdFPVR9uJ86x+dkx h0F+qa6d5hS23oC0Gl90hBjcWj77KSylN4tFIG22QFmRjDx1gNf+35myOZSyAfXc cnU7W97nW0FK0xBj2lJR5k/cazTYm8vAp//1W94D8r168UkofHh5m3ndQ11OzRoQ XN6VLxdQLUZzeDYZVAWGdYg+9iyfVBYQCzzSA9TfXeZ14b8r6b8pvad/cK+fns6u Vkm5XrolwQn/CTaRujwX3CzHYx0uavFCvH7rGq7kGnlP79UTl56FvV7kKYddSPoO 5/6CIkLdSZAPjKokrdpIqSGf0HMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSb5gfN HzO4Hds4NGV0fbucUOn89zAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjMxNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rlEwDQYJKoZIhvcNAQELBQADggEBAFJ3QPqyISmmh3nGwMXksdyw6aR6ERGARy3t Et5tzkkINoPhMfKSEC1/7OMfE8ykSC0cMTChqEaENB4rg9ol170/j+iZcpj7bHsX h6dv/eWEYpJpVJRQjnVyDC1qYmsh9PbkLomCoP9ovDzqMuH44Yvmt4dsPg7EYZuC mgYb7X6zxINx5xZNKw5+BKu78HCoq2WZGINGyhKBSMFFgogM6yGppRJ3vIffAEvF qKebbtJgYXK2UAhnQeZxbZkaq356HUTIo3Jg3yLFBhCa0rb+k6KbI6sfD8d96/0b kh56xhtBRi/b0IZyKCytNhoXZIW5Ro9fV9wjd+0ZDRrJm/SibV4= -----END CERTIFICATE-----Generated at Sat Mar 28 11:45:06 2026 by rpki-client