$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146363.roa File: AS146363.roa (raw, json) Hash identifier: gcJr3NAD+g8It2qNaJOqlTryfJxjjnH3H6xSk5XbwYA= Subject key identifier: 25:0F:D3:26:9A:A4:F2:75:30:47:F3:0E:38:20:F6:4D:2C:3C:0F:9E Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 54085A078A4E3C2FDF6E104E57B972830CFAFB44 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146363.roa Signing time: Wed 04 Mar 2026 06:34:10 +0000 ROA not before: Wed 04 Mar 2026 06:29:10 +0000 ROA not after: Wed 03 Mar 2027 06:34:10 +0000 asID: 146363 IP address blocks: 240a:ae81::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:08:5a:07:8a:4e:3c:2f:df:6e:10:4e:57:b9:72:83:0c:fa:fb:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:10 2026 GMT Not After : Mar 3 06:34:10 2027 GMT Subject: CN=250FD3269AA4F2753047F30E3820F64D2C3C0F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0f:cb:51:8f:8f:31:d6:62:33:b2:66:1f:1a: e3:20:76:c9:c0:7c:f1:e6:32:9f:93:8b:fc:e7:6a: f8:dd:1a:c3:9b:3b:1d:2d:2c:c8:1d:c2:d9:c9:d5: 78:73:3e:58:97:bc:f3:ef:b9:c8:4a:1f:2f:cd:21: ce:13:76:7d:e3:eb:52:d4:db:57:8a:59:0a:ef:8f: cc:c2:f8:50:d6:a2:e2:15:52:86:07:f2:3c:8c:53: 7c:1d:cb:e0:77:91:8c:d8:b0:03:2a:bf:0b:de:94: 76:fb:36:1d:19:e1:b6:91:1c:53:8e:fc:34:99:7c: 24:9c:44:b9:4a:99:d8:f7:94:e2:66:0c:38:82:09: 6f:88:aa:3c:6b:aa:32:fd:be:fc:b7:54:fe:51:d8: 2c:07:9d:1e:60:3b:2a:0f:7d:a6:d6:9c:1d:0c:71: b3:d9:78:f5:c7:a8:68:cc:09:ed:c1:f2:0b:a5:60: 65:16:87:c9:fc:07:36:ba:a6:8f:97:99:6a:a7:18: ba:ca:02:b0:bc:f7:fb:81:2c:b1:16:98:70:22:3f: 3f:18:76:28:15:81:11:57:81:1d:f1:7e:be:33:9e: 51:4c:47:57:2a:3e:f9:c6:25:80:b4:c3:a7:e8:d0: 58:59:72:9c:10:5e:c9:de:8e:7f:e0:6a:54:5c:d7: 3c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0F:D3:26:9A:A4:F2:75:30:47:F3:0E:38:20:F6:4D:2C:3C:0F:9E X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146363.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae81::/32 Signature Algorithm: sha256WithRSAEncryption 86:40:e7:20:34:2c:7a:05:27:f8:16:92:78:8b:61:22:51:fd: 2c:25:9d:3d:18:1a:34:38:3b:49:b5:11:d1:64:fe:06:30:75: 51:8e:2c:4e:4d:65:a4:c6:06:f9:2d:5f:63:36:11:b2:f3:92: 17:bd:18:85:65:76:d2:eb:4b:2d:ec:89:0c:94:2b:85:29:f7: 41:be:ba:ad:1e:83:4d:69:7f:a7:e4:84:f4:22:48:dc:59:01: 86:e6:58:04:5d:2b:5c:75:f9:c7:48:c7:c9:0d:b5:e3:e3:0d: e1:e8:f6:cc:35:f5:3f:cb:69:cc:7c:44:16:1a:62:e3:ac:49: 57:be:1d:d6:d9:e0:7d:22:41:94:36:12:4c:3c:43:2e:50:3e: f2:64:7d:94:af:d8:f9:28:59:61:7c:7f:aa:76:3e:64:cd:76: 05:ae:05:8d:d6:f0:1a:f4:a4:14:6e:51:8d:91:ba:d3:99:d2: d0:37:19:39:78:60:b7:2d:cc:b3:a6:13:17:85:14:be:11:39: 0c:a6:94:15:c3:57:8f:f1:80:39:fe:6a:46:c6:c9:32:a3:c9: 57:80:c0:0a:a4:c8:2a:05:43:7d:57:6e:2c:9c:e9:44:9d:8c: 6d:70:02:b5:6c:cc:db:56:eb:b2:26:7d:d3:95:40:74:56:60: 89:0b:8b:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUVAhaB4pOPC/fbhBOV7lygwz6+0QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkxMFoX DTI3MDMwMzA2MzQxMFowMzExMC8GA1UEAxMoMjUwRkQzMjY5QUE0RjI3NTMwNDdG MzBFMzgyMEY2NEQyQzNDMEY5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ4Py1GPjzHWYjOyZh8a4yB2ycB88eYyn5OL/Odq+N0aw5s7HS0syB3C2cnV eHM+WJe88++5yEofL80hzhN2fePrUtTbV4pZCu+PzML4UNai4hVShgfyPIxTfB3L 4HeRjNiwAyq/C96Udvs2HRnhtpEcU478NJl8JJxEuUqZ2PeU4mYMOIIJb4iqPGuq Mv2+/LdU/lHYLAedHmA7Kg99ptacHQxxs9l49ceoaMwJ7cHyC6VgZRaHyfwHNrqm j5eZaqcYusoCsLz3+4EssRaYcCI/Pxh2KBWBEVeBHfF+vjOeUUxHVyo++cYlgLTD p+jQWFlynBBeyd6Of+BqVFzXPN8CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQlD9Mm mqTydTBH8w44IPZNLDwPnjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjM2My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK roEwDQYJKoZIhvcNAQELBQADggEBAIZA5yA0LHoFJ/gWkniLYSJR/SwlnT0YGjQ4 O0m1EdFk/gYwdVGOLE5NZaTGBvktX2M2EbLzkhe9GIVldtLrSy3siQyUK4Up90G+ uq0eg01pf6fkhPQiSNxZAYbmWARdK1x1+cdIx8kNtePjDeHo9sw19T/Lacx8RBYa YuOsSVe+HdbZ4H0iQZQ2Ekw8Qy5QPvJkfZSv2PkoWWF8f6p2PmTNdgWuBY3W8Br0 pBRuUY2RutOZ0tA3GTl4YLctzLOmExeFFL4ROQymlBXDV4/xgDn+akbGyTKjyVeA wAqkyCoFQ31Xbiyc6USdjG1wArVszNtW67ImfdOVQHRWYIkLi1Y= -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:54 2026 by rpki-client