$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146346.roa File: AS146346.roa (raw, json) Hash identifier: 8l0CMZQiapGWCd3iHBBD5cHjygkaW4MO6WsB7RIex5w= Subject key identifier: FC:4A:7F:32:90:09:8D:D0:10:7B:23:AB:EC:EB:90:6D:32:36:1E:39 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 26E4CD739245F473BF74AE2B275CE8DF16BDB702 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146346.roa Signing time: Wed 04 Mar 2026 06:34:05 +0000 ROA not before: Wed 04 Mar 2026 06:29:05 +0000 ROA not after: Wed 03 Mar 2027 06:34:05 +0000 asID: 146346 IP address blocks: 240a:ae70::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e4:cd:73:92:45:f4:73:bf:74:ae:2b:27:5c:e8:df:16:bd:b7:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:05 2026 GMT Not After : Mar 3 06:34:05 2027 GMT Subject: CN=FC4A7F3290098DD0107B23ABECEB906D32361E39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b2:51:43:45:03:3c:de:e4:46:d4:57:f2:0b: 73:b8:d4:ee:b5:26:72:df:83:80:aa:3b:a2:eb:e4: 35:8f:c1:1e:ed:d0:9f:a5:8c:ba:6e:a8:a4:8c:8f: 73:65:3d:37:41:d7:b1:b8:3a:7c:46:6a:47:1e:1d: 8d:ba:9b:18:59:b3:ae:81:84:f3:6b:1f:76:8a:29: d7:86:80:b3:e7:08:81:ba:b6:3f:46:ed:15:30:f9: 33:b3:66:ac:b8:cb:b4:ed:0e:e8:4c:5a:38:c8:fb: 7b:87:ca:28:e5:da:2b:3c:99:35:5c:51:09:2e:11: 17:a7:a1:a8:e5:be:b8:21:a3:78:ea:ac:33:6d:a8: 66:e2:de:0a:df:2f:6e:40:ab:7e:52:8a:8f:e5:89: b9:35:ff:1b:69:f0:d5:0d:95:e8:d7:c0:b5:84:49: 91:65:76:69:7e:bc:fc:41:be:e0:81:4f:4d:e4:a7: 01:6e:d3:c4:49:14:a4:68:f6:f0:97:dc:02:e3:8e: 63:f7:93:9f:46:a9:8e:39:29:56:07:18:1b:94:31: 9c:54:7d:bb:32:dd:96:3e:b9:d1:3f:fb:a9:32:fe: e5:ef:1e:f5:30:a2:65:49:ab:58:e1:4c:2c:b6:b7: 60:09:85:5a:ff:84:d4:99:95:ca:63:47:c2:35:41: fb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4A:7F:32:90:09:8D:D0:10:7B:23:AB:EC:EB:90:6D:32:36:1E:39 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146346.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae70::/32 Signature Algorithm: sha256WithRSAEncryption 47:0d:b5:6a:0f:f3:09:35:71:8c:21:cb:0b:6f:61:42:ba:46: d7:2e:e2:f5:28:88:39:05:9e:dd:61:f5:97:05:66:31:7f:c3: 71:d1:9b:ae:38:22:66:9b:83:f7:13:5d:88:7d:b3:d3:51:5d: da:df:cb:e7:3b:68:cc:1d:e8:fd:58:b8:7f:05:f4:4e:12:5e: fb:c5:3d:47:30:2b:3a:b1:47:c5:67:dd:06:8c:a3:d0:10:dc: b7:06:32:bf:46:8f:34:98:83:cb:33:47:9d:1a:59:3a:58:80: c0:2b:0a:88:92:b4:02:30:b2:59:22:6d:15:10:d0:19:93:b0: 99:f6:7e:2b:5b:9e:e7:5c:d0:45:1c:2f:f4:3b:5e:ea:81:81: 7b:28:98:f8:48:3c:fc:1d:29:50:12:be:73:b7:4c:b6:b1:ae: 1c:84:89:ae:ee:bd:96:26:88:a0:53:87:fb:10:6a:6c:52:d1: 42:b4:26:3a:4e:71:5e:1c:87:7b:1c:df:03:96:40:f4:7f:e5: 7c:3d:37:0c:58:24:95:54:7a:63:4a:f0:d8:39:71:48:35:d6: b9:d1:0c:a2:84:fd:a9:5f:96:de:d6:ef:8b:b0:8f:1e:db:33: 50:66:1e:14:3c:b3:10:ce:74:da:74:fd:3b:0c:57:7a:a2:66: b0:51:84:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJuTNc5JF9HO/dK4rJ1zo3xa9twIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwNVoX DTI3MDMwMzA2MzQwNVowMzExMC8GA1UEAxMoRkM0QTdGMzI5MDA5OEREMDEwN0Iy M0FCRUNFQjkwNkQzMjM2MUUzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANmyUUNFAzze5EbUV/ILc7jU7rUmct+DgKo7ouvkNY/BHu3Qn6WMum6opIyP c2U9N0HXsbg6fEZqRx4djbqbGFmzroGE82sfdoop14aAs+cIgbq2P0btFTD5M7Nm rLjLtO0O6ExaOMj7e4fKKOXaKzyZNVxRCS4RF6ehqOW+uCGjeOqsM22oZuLeCt8v bkCrflKKj+WJuTX/G2nw1Q2V6NfAtYRJkWV2aX68/EG+4IFPTeSnAW7TxEkUpGj2 8JfcAuOOY/eTn0apjjkpVgcYG5QxnFR9uzLdlj650T/7qTL+5e8e9TCiZUmrWOFM LLa3YAmFWv+E1JmVymNHwjVB+xkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBT8Sn8y kAmN0BB7I6vs65BtMjYeOTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjM0Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rnAwDQYJKoZIhvcNAQELBQADggEBAEcNtWoP8wk1cYwhywtvYUK6Rtcu4vUoiDkF nt1h9ZcFZjF/w3HRm644Imabg/cTXYh9s9NRXdrfy+c7aMwd6P1YuH8F9E4SXvvF PUcwKzqxR8Vn3QaMo9AQ3LcGMr9GjzSYg8szR50aWTpYgMArCoiStAIwslkibRUQ 0BmTsJn2fitbnudc0EUcL/Q7XuqBgXsomPhIPPwdKVASvnO3TLaxrhyEia7uvZYm iKBTh/sQamxS0UK0JjpOcV4ch3sc3wOWQPR/5Xw9NwxYJJVUemNK8Ng5cUg11rnR DKKE/alflt7W74uwjx7bM1BmHhQ8sxDOdNp0/TsMV3qiZrBRhFE= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:55 2026 by rpki-client