$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146361.roa File: AS146361.roa (raw, json) Hash identifier: rVPPYiIDsyIOXRHwIf0ZfQRIZHMymwbCTNsG0B6ZX5A= Subject key identifier: 96:4B:30:45:C4:1B:98:C3:4F:8C:8F:2D:EE:51:49:0F:7D:79:5B:8C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 27FAC7AFA4285B6056B8B6CAED534A358EB6860C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146361.roa Signing time: Wed 04 Mar 2026 06:35:08 +0000 ROA not before: Wed 04 Mar 2026 06:30:08 +0000 ROA not after: Wed 03 Mar 2027 06:35:08 +0000 asID: 146361 IP address blocks: 240a:ae7f::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:fa:c7:af:a4:28:5b:60:56:b8:b6:ca:ed:53:4a:35:8e:b6:86:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:30:08 2026 GMT Not After : Mar 3 06:35:08 2027 GMT Subject: CN=964B3045C41B98C34F8C8F2DEE51490F7D795B8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:57:49:0d:4d:bf:b4:2d:f4:bc:5a:d3:3b: 9b:f2:26:90:91:25:75:be:80:a6:ca:f6:a0:ed:00: cb:87:6c:a9:7e:3f:01:7f:a6:7b:78:39:13:0a:74: b4:16:30:78:7e:41:aa:46:7e:ed:1c:82:55:12:cb: fc:4b:11:86:0f:28:5d:98:d7:ee:5a:2d:82:24:dd: 99:82:47:f0:dc:b2:10:b8:03:59:6b:8f:84:60:0f: a2:5e:1e:ba:13:10:e7:ec:b9:d3:21:35:3b:41:ae: 78:4b:2e:48:d7:bd:43:c0:dd:6a:61:60:8f:23:88: cd:0c:88:24:bc:fb:15:a5:1e:ca:9b:e9:04:3a:90: c1:b0:aa:6d:83:01:d8:54:15:da:8f:37:92:95:2f: 64:51:91:a6:f5:31:50:ad:c9:54:fc:0a:8b:3d:a1: 89:2f:4a:c6:77:f1:58:ed:d6:fe:7b:13:63:80:23: a1:7d:c6:35:1f:b2:39:40:46:07:76:84:25:11:57: 3d:b9:99:f2:8d:fb:bc:db:16:89:b0:68:f8:b9:c3: 62:f9:e3:46:d8:bb:e3:cd:8b:a2:85:03:77:83:bc: 0d:f1:b4:58:87:d8:bf:df:3a:9a:2b:d2:f9:0f:3a: b8:07:36:57:07:02:f4:7f:dc:3c:23:75:f8:2c:6f: 87:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:4B:30:45:C4:1B:98:C3:4F:8C:8F:2D:EE:51:49:0F:7D:79:5B:8C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146361.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae7f::/32 Signature Algorithm: sha256WithRSAEncryption 6b:03:19:1f:62:79:66:a2:56:fd:9d:26:0a:ae:7a:ec:ca:5c: 16:ef:03:c5:be:d7:ba:9a:5f:82:5b:f5:7a:e7:51:2e:58:5a: f2:26:02:86:78:ef:e0:00:8f:1c:1e:8d:8c:91:58:a2:32:40: 9d:aa:65:39:56:21:7f:98:37:7d:79:f2:7b:53:d8:79:f9:66: 31:a3:e6:23:5b:7b:71:61:ba:02:81:49:f2:8c:92:46:40:2a: 52:27:f4:98:9d:a3:56:9a:ad:15:04:79:55:9b:0f:34:08:74: b1:23:0c:76:00:ec:0b:53:27:e7:09:7c:15:11:79:fe:ed:e2: 8f:c8:07:2b:cf:49:99:cb:8d:f3:5c:70:10:94:11:d9:a9:c5: 93:0c:f4:27:36:f0:0b:6f:c2:bd:bb:02:d6:ff:e6:b2:c6:2b: a3:96:d3:8e:d7:7f:d2:99:d2:ff:61:77:5c:c9:68:2d:30:91: a1:76:93:bc:1b:e4:18:7c:d7:7b:99:dd:e7:01:7d:d8:f4:13: af:c8:86:7e:8a:a0:fc:e8:f2:52:3c:ce:6b:ab:74:6d:9f:20: e4:97:21:1b:9c:f4:47:45:ed:0d:37:6e:ff:71:03:d5:fc:20: 20:d2:aa:8f:8f:13:89:13:ab:a7:78:65:9a:9b:a2:d4:25:0d: 91:e8:ff:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJ/rHr6QoW2BWuLbK7VNKNY62hgwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MzAwOFoX DTI3MDMwMzA2MzUwOFowMzExMC8GA1UEAxMoOTY0QjMwNDVDNDFCOThDMzRGOEM4 RjJERUU1MTQ5MEY3RDc5NUI4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6PV0kNTb+0LfS8WtM7m/ImkJEldb6Apsr2oO0Ay4dsqX4/AX+me3g5Ewp0 tBYweH5BqkZ+7RyCVRLL/EsRhg8oXZjX7lotgiTdmYJH8NyyELgDWWuPhGAPol4e uhMQ5+y50yE1O0GueEsuSNe9Q8DdamFgjyOIzQyIJLz7FaUeypvpBDqQwbCqbYMB 2FQV2o83kpUvZFGRpvUxUK3JVPwKiz2hiS9KxnfxWO3W/nsTY4AjoX3GNR+yOUBG B3aEJRFXPbmZ8o37vNsWibBo+LnDYvnjRti7482LooUDd4O8DfG0WIfYv986mivS +Q86uAc2VwcC9H/cPCN1+CxvhwUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSWSzBF xBuYw0+Mjy3uUUkPfXlbjDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjM2MS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rn8wDQYJKoZIhvcNAQELBQADggEBAGsDGR9ieWaiVv2dJgqueuzKXBbvA8W+17qa X4Jb9XrnUS5YWvImAoZ47+AAjxwejYyRWKIyQJ2qZTlWIX+YN3158ntT2Hn5ZjGj 5iNbe3FhugKBSfKMkkZAKlIn9Jido1aarRUEeVWbDzQIdLEjDHYA7AtTJ+cJfBUR ef7t4o/IByvPSZnLjfNccBCUEdmpxZMM9Cc28Atvwr27Atb/5rLGK6OW047Xf9KZ 0v9hd1zJaC0wkaF2k7wb5Bh813uZ3ecBfdj0E6/Ihn6KoPzo8lI8zmurdG2fIOSX IRuc9EdF7Q03bv9xA9X8ICDSqo+PE4kTq6d4ZZqbotQlDZHo/5o= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:38 2026 by rpki-client