$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146318.roa File: AS146318.roa (raw, json) Hash identifier: sA0oi+UUqL7P+IsmcQXaktWLmWLToH4QzSUBXnC7hlg= Subject key identifier: 74:4B:85:9F:CF:0B:0E:B4:26:6A:03:B6:4A:78:17:2A:61:D1:71:2E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 32C9FB8B03E2FDCFB443C0D77E4B4427E713E3F7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146318.roa Signing time: Wed 04 Mar 2026 06:34:36 +0000 ROA not before: Wed 04 Mar 2026 06:29:36 +0000 ROA not after: Wed 03 Mar 2027 06:34:36 +0000 asID: 146318 IP address blocks: 240a:ae54::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c9:fb:8b:03:e2:fd:cf:b4:43:c0:d7:7e:4b:44:27:e7:13:e3:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:36 2026 GMT Not After : Mar 3 06:34:36 2027 GMT Subject: CN=744B859FCF0B0EB4266A03B64A78172A61D1712E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:90:bc:c9:d3:9c:ce:17:14:55:35:28:8b:06: f1:35:4a:d6:27:6b:c8:8a:58:ef:a6:d0:3d:79:d6: 19:79:63:95:77:62:7c:73:40:91:89:33:14:cf:12: 7d:74:45:3b:3f:c5:ab:37:6f:d1:fc:9a:a3:c4:df: 76:bb:06:66:a9:de:ce:aa:9a:6a:58:05:cc:62:3b: 5e:e3:43:69:2a:f9:97:36:66:35:77:1d:5b:3d:3f: d3:cf:bf:5c:ca:5b:9c:7a:4c:18:b8:f7:b1:4f:8d: a6:7e:37:a5:91:ae:cf:37:fb:f5:3e:99:01:d1:8e: dc:72:7d:cf:5e:3b:f0:31:3b:14:6e:a9:73:c0:91: 36:e7:bb:1d:51:7a:fb:c1:49:23:c3:eb:31:16:df: 3f:bd:5b:0a:0c:b7:50:57:c1:28:5c:1d:f7:1b:76: e3:71:b3:f6:b3:8d:14:09:98:03:fe:6b:4e:0b:e3: 65:8b:22:1b:76:8c:50:22:d9:ab:1b:6c:30:43:aa: d0:79:42:18:78:54:af:42:12:f2:57:67:68:ad:49: cd:b7:c9:38:23:4e:26:fd:ca:92:bc:dc:03:32:e9: 56:2d:6b:a0:92:7e:7f:9d:24:53:72:82:07:62:fa: f7:fb:fa:fb:ea:a9:0f:44:e3:09:36:f1:10:08:5e: 80:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:4B:85:9F:CF:0B:0E:B4:26:6A:03:B6:4A:78:17:2A:61:D1:71:2E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146318.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae54::/32 Signature Algorithm: sha256WithRSAEncryption 95:ef:06:a2:47:d0:a6:d4:9e:f0:2b:0b:c2:c9:2c:9b:7b:5d: fb:f1:92:22:3b:8c:b7:77:9b:d4:60:98:81:87:bb:bb:ce:41: 4b:a1:58:f2:29:f6:fa:0a:c3:44:d7:42:76:d1:76:98:20:55: 05:0a:24:ee:7e:1f:77:c3:c3:a6:94:49:08:7a:dd:af:76:e0: ed:a4:8b:ce:c8:f0:60:1a:a5:60:50:d6:e4:05:ec:ec:00:1f: 48:69:5a:eb:29:9f:c1:d6:65:84:57:f4:91:1e:c4:a8:a3:83: 4b:3b:37:5a:97:1b:4a:83:34:18:90:40:02:01:75:78:67:69: 03:25:7e:be:25:13:13:33:1d:41:ca:93:a3:ee:08:e5:e1:88: e2:f7:c2:b8:f6:48:b0:1b:af:a3:13:6a:fc:7c:40:99:47:5f: 2b:35:ad:c4:16:8e:a3:6d:f3:28:cf:9a:98:e6:04:ed:f9:d6: bd:20:c1:ae:77:42:2f:14:86:86:d7:76:42:5a:d9:74:96:09: 1f:91:ac:fc:0f:aa:71:b2:f7:05:86:71:e5:c5:16:2d:59:85: e1:94:be:af:3d:06:1a:ba:37:f3:88:d0:55:09:71:3f:62:88: a6:08:3d:f4:be:b0:2a:13:43:14:45:39:4a:82:45:ea:ef:c0: 39:d2:b2:77 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMsn7iwPi/c+0Q8DXfktEJ+cT4/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkzNloX DTI3MDMwMzA2MzQzNlowMzExMC8GA1UEAxMoNzQ0Qjg1OUZDRjBCMEVCNDI2NkEw M0I2NEE3ODE3MkE2MUQxNzEyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ+QvMnTnM4XFFU1KIsG8TVK1idryIpY76bQPXnWGXljlXdifHNAkYkzFM8S fXRFOz/Fqzdv0fyao8TfdrsGZqnezqqaalgFzGI7XuNDaSr5lzZmNXcdWz0/08+/ XMpbnHpMGLj3sU+Npn43pZGuzzf79T6ZAdGO3HJ9z1478DE7FG6pc8CRNue7HVF6 +8FJI8PrMRbfP71bCgy3UFfBKFwd9xt243Gz9rONFAmYA/5rTgvjZYsiG3aMUCLZ qxtsMEOq0HlCGHhUr0IS8ldnaK1JzbfJOCNOJv3KkrzcAzLpVi1roJJ+f50kU3KC B2L69/v6++qpD0TjCTbxEAhegA0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR0S4Wf zwsOtCZqA7ZKeBcqYdFxLjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjMxOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rlQwDQYJKoZIhvcNAQELBQADggEBAJXvBqJH0KbUnvArC8LJLJt7XfvxkiI7jLd3 m9RgmIGHu7vOQUuhWPIp9voKw0TXQnbRdpggVQUKJO5+H3fDw6aUSQh63a924O2k i87I8GAapWBQ1uQF7OwAH0hpWuspn8HWZYRX9JEexKijg0s7N1qXG0qDNBiQQAIB dXhnaQMlfr4lExMzHUHKk6PuCOXhiOL3wrj2SLAbr6MTavx8QJlHXys1rcQWjqNt 8yjPmpjmBO351r0gwa53Qi8UhobXdkJa2XSWCR+RrPwPqnGy9wWGceXFFi1ZheGU vq89Bhq6N/OI0FUJcT9iiKYIPfS+sCoTQxRFOUqCRervwDnSsnc= -----END CERTIFICATE-----Generated at Sat Mar 28 13:13:22 2026 by rpki-client