$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146343.roa File: AS146343.roa (raw, json) Hash identifier: sBnw2M6q6ucnvPXuS7gS29aLFk3inVbot0QIoyQ8NKU= Subject key identifier: 5F:C6:DE:45:E5:74:AC:F2:84:10:CB:CB:3D:25:2F:7D:1A:82:65:74 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5ED3810773EC8F35B773FABF5BA788A01B262A45 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146343.roa Signing time: Wed 04 Mar 2026 06:34:29 +0000 ROA not before: Wed 04 Mar 2026 06:29:29 +0000 ROA not after: Wed 03 Mar 2027 06:34:29 +0000 asID: 146343 IP address blocks: 240a:ae6d::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d3:81:07:73:ec:8f:35:b7:73:fa:bf:5b:a7:88:a0:1b:26:2a:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:29 2026 GMT Not After : Mar 3 06:34:29 2027 GMT Subject: CN=5FC6DE45E574ACF28410CBCB3D252F7D1A826574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:56:9b:43:79:f6:6e:c2:b5:35:3b:e3:6b: e1:72:65:3d:42:57:5b:33:15:0c:8f:eb:27:79:19: c3:5e:3c:f7:93:d4:b3:1e:3a:03:b4:3f:73:a7:72: 4f:a6:b5:0c:48:8b:7d:32:fb:15:28:bb:d4:3a:14: 82:2a:43:b8:a5:97:0b:cc:69:0e:99:68:18:94:f5: 0b:89:d7:11:30:b7:c1:4e:0d:f9:ba:f6:85:e5:fa: 27:69:1f:71:c3:05:4f:1b:9d:30:b5:fc:ab:7b:fc: fd:28:32:9e:38:b6:13:9a:38:31:a7:7e:2f:ae:25: 3e:4d:61:7a:5e:33:2e:bd:f8:01:90:97:4d:1a:4e: 08:37:ac:e2:4b:6c:bf:1a:7a:71:d5:fc:c6:8e:ab: dd:73:1a:67:3e:8b:8f:2f:74:09:db:4a:75:b6:84: 3e:c0:dc:a0:64:84:05:0b:20:3c:09:87:61:e0:e3: 87:79:47:16:bc:81:95:a2:74:92:3d:a8:1b:36:7a: 2c:b8:56:43:38:99:bc:5b:cb:8a:21:6a:74:68:7d: 45:d3:68:af:c0:08:6f:4e:b2:fc:af:8d:5b:1a:60: d4:71:95:69:bb:a2:7f:1f:ed:71:63:c5:4e:59:2b: 00:7f:6a:cc:7d:c5:69:a3:56:d5:9c:c9:17:53:cd: 40:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C6:DE:45:E5:74:AC:F2:84:10:CB:CB:3D:25:2F:7D:1A:82:65:74 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146343.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae6d::/32 Signature Algorithm: sha256WithRSAEncryption 23:ac:77:3e:05:e6:7b:23:6e:e0:48:e7:b6:cb:07:7b:12:a5: 2a:04:85:3e:eb:0d:28:ac:e0:a6:0f:61:42:db:36:73:8e:b0: a0:be:76:b8:08:de:f2:0e:35:e8:cf:ee:e2:9e:e4:01:e7:8f: be:42:55:ba:88:40:18:25:45:73:ce:c2:25:94:db:5d:d5:6d: d1:10:f9:de:0f:9b:eb:c3:c6:16:84:b2:fe:28:72:50:e7:da: ef:42:f9:de:79:db:72:ae:c8:52:19:7b:85:b1:47:00:b3:bb: c7:fb:6b:ff:9c:11:20:df:60:b7:32:a3:7f:bc:4c:ff:56:87: e4:a0:83:ba:dc:8d:40:c1:e6:ae:ae:36:d4:93:9a:03:19:60: 02:08:0d:4a:00:b7:6d:04:e8:76:ab:5a:53:46:bc:1c:4a:55: ae:b1:90:87:65:05:b6:60:d0:95:86:0f:d4:43:09:db:e8:58: af:87:a6:13:6f:ef:2c:2d:79:bd:47:15:ee:0b:19:ee:af:93: 4f:66:4c:7c:15:07:a0:d4:3f:1d:4a:34:93:c9:df:0a:10:5c: a5:55:f9:92:78:b2:24:34:62:ec:ce:c0:4c:a7:b8:92:09:38: 28:2f:c2:fd:06:0c:46:59:ea:95:1d:36:8e:6d:5b:ea:61:1b: f4:ea:6f:6c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXtOBB3PsjzW3c/q/W6eIoBsmKkUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkyOVoX DTI3MDMwMzA2MzQyOVowMzExMC8GA1UEAxMoNUZDNkRFNDVFNTc0QUNGMjg0MTBD QkNCM0QyNTJGN0QxQTgyNjU3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKqjVptDefZuwrU1O+Nr4XJlPUJXWzMVDI/rJ3kZw14895PUsx46A7Q/c6dy T6a1DEiLfTL7FSi71DoUgipDuKWXC8xpDploGJT1C4nXETC3wU4N+br2heX6J2kf ccMFTxudMLX8q3v8/Sgynji2E5o4Mad+L64lPk1hel4zLr34AZCXTRpOCDes4kts vxp6cdX8xo6r3XMaZz6Ljy90CdtKdbaEPsDcoGSEBQsgPAmHYeDjh3lHFryBlaJ0 kj2oGzZ6LLhWQziZvFvLiiFqdGh9RdNor8AIb06y/K+NWxpg1HGVabuifx/tcWPF TlkrAH9qzH3FaaNW1ZzJF1PNQLMCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRfxt5F 5XSs8oQQy8s9JS99GoJldDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjM0My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rm0wDQYJKoZIhvcNAQELBQADggEBACOsdz4F5nsjbuBI57bLB3sSpSoEhT7rDSis 4KYPYULbNnOOsKC+drgI3vIONejP7uKe5AHnj75CVbqIQBglRXPOwiWU213VbdEQ +d4Pm+vDxhaEsv4oclDn2u9C+d5523KuyFIZe4WxRwCzu8f7a/+cESDfYLcyo3+8 TP9Wh+Sgg7rcjUDB5q6uNtSTmgMZYAIIDUoAt20E6HarWlNGvBxKVa6xkIdlBbZg 0JWGD9RDCdvoWK+HphNv7ywteb1HFe4LGe6vk09mTHwVB6DUPx1KNJPJ3woQXKVV +ZJ4siQ0YuzOwEynuJIJOCgvwv0GDEZZ6pUdNo5tW+phG/Tqb2w= -----END CERTIFICATE-----Generated at Sat Mar 28 14:26:33 2026 by rpki-client