$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146330.roa File: AS146330.roa (raw, json) Hash identifier: XFvJ8goeqn9Y7cXaKcRo7I7AUIf0HIRJhzrGCWmQspc= Subject key identifier: F7:F3:DD:D3:ED:2F:60:E6:1B:AC:9E:5E:DB:A9:B2:9C:9A:42:8E:7C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 33AEF1519D9FB79E06C0D078576C1327DE3CF599 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146330.roa Signing time: Wed 04 Mar 2026 06:34:05 +0000 ROA not before: Wed 04 Mar 2026 06:29:05 +0000 ROA not after: Wed 03 Mar 2027 06:34:05 +0000 asID: 146330 IP address blocks: 240a:ae60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ae:f1:51:9d:9f:b7:9e:06:c0:d0:78:57:6c:13:27:de:3c:f5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:05 2026 GMT Not After : Mar 3 06:34:05 2027 GMT Subject: CN=F7F3DDD3ED2F60E61BAC9E5EDBA9B29C9A428E7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:fa:02:30:f7:2c:bd:64:ef:17:4b:d5:08: 55:9b:df:21:38:54:ce:e1:0a:0b:b1:31:f3:17:16: 87:f1:26:32:c9:ac:1e:0a:21:73:47:28:2f:13:4c: a5:63:eb:0d:7b:bd:3b:b6:8c:01:e3:b8:e1:53:b4: 04:9d:31:df:85:60:34:23:1c:80:65:54:8b:99:bf: 87:04:fd:bd:c7:2f:ca:75:b4:ed:eb:d7:c7:0d:e6: 59:a0:88:33:08:e3:25:b9:97:07:a0:4f:1c:74:67: 50:c2:cf:a9:dd:be:5d:0e:23:0a:98:74:fc:c0:19: a2:a8:d8:63:eb:e3:88:d2:ea:6a:3d:f2:88:2d:f1: 84:96:4a:f7:5f:72:d9:db:53:af:27:b8:bc:a5:2f: 5a:b1:27:78:75:f6:3b:40:9c:18:71:52:fd:6e:b1: f1:b8:4c:36:9f:f2:d6:ba:7c:70:9b:03:b2:b0:6a: 84:fa:58:6d:47:11:00:98:1b:6f:ba:81:25:e0:d2: 46:ab:e1:36:d4:8d:f6:68:50:ef:02:95:dd:99:c1: 19:88:d2:73:f5:71:57:11:dd:41:3a:5f:60:71:c7: a8:13:64:54:08:4b:a3:0b:a7:63:44:45:cd:0a:10: 91:b2:b8:43:2c:73:b0:1c:3a:34:63:d3:79:4f:d5: 5d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F3:DD:D3:ED:2F:60:E6:1B:AC:9E:5E:DB:A9:B2:9C:9A:42:8E:7C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae60::/32 Signature Algorithm: sha256WithRSAEncryption 4b:5d:0f:48:db:df:ed:e0:68:6a:5c:75:dc:c0:83:72:6a:b4: 0f:f4:16:9d:05:00:d4:9c:2e:a2:ee:08:a2:95:c8:3f:be:65: f3:c5:41:e0:f7:82:cc:ed:2e:4a:3d:5a:42:eb:9d:33:3c:10: 10:25:f0:12:2b:b4:c9:bb:60:7f:c4:7c:32:66:dc:ff:a1:0f: 89:44:e3:28:59:80:f9:bd:d6:2c:a0:3f:a0:9d:75:78:b4:05: a9:50:2a:20:2d:68:c7:11:2b:0a:05:84:21:f7:c5:b2:46:69: 72:da:0d:a4:c4:7b:83:b9:8b:d8:27:3e:81:12:7f:1a:02:f3: 15:cd:01:34:58:5a:42:1e:c2:36:69:61:8f:ba:50:a7:a9:cb: 9b:98:ae:1d:45:43:b9:ff:25:2a:d7:35:a6:0c:2f:8a:74:b6: 98:17:93:d4:6a:9e:e2:3c:c3:18:ff:5a:d5:59:4d:05:18:15: 3c:5e:9f:9f:96:e3:8b:d9:cd:ce:c5:d7:fb:31:dd:5c:ca:29: 00:17:a1:5a:f3:1b:b0:36:6c:52:b9:dd:4a:c3:5a:a3:c6:4a: cb:95:4b:aa:8c:5f:fe:41:d7:de:a2:71:67:ea:80:15:f3:1b: 75:6c:5f:af:1a:fa:99:f2:2d:50:b5:79:4e:04:28:07:e7:23: c5:ed:02:d0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUM67xUZ2ft54GwNB4V2wTJ9489ZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwNVoX DTI3MDMwMzA2MzQwNVowMzExMC8GA1UEAxMoRjdGM0RERDNFRDJGNjBFNjFCQUM5 RTVFREJBOUIyOUM5QTQyOEU3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuM+gIw9yy9ZO8XS9UIVZvfIThUzuEKC7Ex8xcWh/EmMsmsHgohc0coLxNM pWPrDXu9O7aMAeO44VO0BJ0x34VgNCMcgGVUi5m/hwT9vccvynW07evXxw3mWaCI MwjjJbmXB6BPHHRnUMLPqd2+XQ4jCph0/MAZoqjYY+vjiNLqaj3yiC3xhJZK919y 2dtTrye4vKUvWrEneHX2O0CcGHFS/W6x8bhMNp/y1rp8cJsDsrBqhPpYbUcRAJgb b7qBJeDSRqvhNtSN9mhQ7wKV3ZnBGYjSc/VxVxHdQTpfYHHHqBNkVAhLowunY0RF zQoQkbK4QyxzsBw6NGPTeU/VXZUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT3893T 7S9g5husnl7bqbKcmkKOfDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjMzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rmAwDQYJKoZIhvcNAQELBQADggEBAEtdD0jb3+3gaGpcddzAg3JqtA/0Fp0FANSc LqLuCKKVyD++ZfPFQeD3gsztLko9WkLrnTM8EBAl8BIrtMm7YH/EfDJm3P+hD4lE 4yhZgPm91iygP6CddXi0BalQKiAtaMcRKwoFhCH3xbJGaXLaDaTEe4O5i9gnPoES fxoC8xXNATRYWkIewjZpYY+6UKepy5uYrh1FQ7n/JSrXNaYML4p0tpgXk9RqnuI8 wxj/WtVZTQUYFTxen5+W44vZzc7F1/sx3VzKKQAXoVrzG7A2bFK53UrDWqPGSsuV S6qMX/5B196icWfqgBXzG3VsX68a+pnyLVC1eU4EKAfnI8XtAtA= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:43 2026 by rpki-client