$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146369.roa File: AS146369.roa (raw, json) Hash identifier: xPjabzRVpma/1vMchsrLkD/tXvgnmCZpC1C/APFveXY= Subject key identifier: 7A:CC:00:BF:E5:2C:AA:6E:8B:44:F8:C0:42:55:4B:F7:6F:5D:91:B5 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0C8D1181282C52AC15ED18C43EC321770DF1FE47 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146369.roa Signing time: Wed 04 Mar 2026 06:34:05 +0000 ROA not before: Wed 04 Mar 2026 06:29:05 +0000 ROA not after: Wed 03 Mar 2027 06:34:05 +0000 asID: 146369 IP address blocks: 240a:ae87::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8d:11:81:28:2c:52:ac:15:ed:18:c4:3e:c3:21:77:0d:f1:fe:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:05 2026 GMT Not After : Mar 3 06:34:05 2027 GMT Subject: CN=7ACC00BFE52CAA6E8B44F8C042554BF76F5D91B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5d:30:d9:5b:40:08:a1:2e:bf:a3:b0:63:62: 31:e0:81:33:58:ec:73:00:48:8e:b9:6a:76:de:44: 46:b1:a9:42:27:d2:63:e7:14:b9:a9:8d:92:d9:75: d3:39:01:f3:58:50:7b:02:90:a8:9b:d7:f1:2e:d9: 22:17:b3:4e:70:1c:c7:37:65:18:89:c2:31:ad:99: 9b:c6:c8:76:c6:fb:81:27:3a:b7:b8:7d:01:3e:d0: 80:47:03:4a:03:13:fe:fc:17:08:49:0a:df:29:e3: 97:c8:8c:0b:03:d3:5e:7a:ec:84:a1:7b:43:5b:81: 0e:5f:03:0c:fa:e9:4e:55:3d:98:d3:ad:db:86:71: 3c:d2:c6:d7:24:83:95:e6:5d:c8:26:21:3d:57:06: f8:b5:10:35:ef:bc:dc:1a:4b:4f:64:ec:e9:50:a4: 42:42:01:08:1e:fd:0d:b3:ef:fd:a3:8e:3e:9b:4b: 79:66:7d:57:cb:83:01:71:6a:d4:90:75:ba:5d:1a: a1:cb:bd:65:e8:de:08:04:42:fe:5f:fa:80:2d:33: 77:a7:90:4b:49:69:e4:64:a6:31:d7:10:44:af:1f: 1f:c5:d5:c4:b0:7f:5e:55:be:fa:08:4c:17:d7:69: 47:50:b5:f3:a6:86:20:56:48:bc:de:d2:f2:c1:34: be:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:CC:00:BF:E5:2C:AA:6E:8B:44:F8:C0:42:55:4B:F7:6F:5D:91:B5 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146369.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:ae87::/32 Signature Algorithm: sha256WithRSAEncryption 11:39:dd:c0:5a:e7:f3:18:7b:f1:5e:e1:3b:05:11:03:06:16: 90:44:5e:6e:de:ca:c4:0e:b3:38:76:a3:52:c6:9b:16:64:3c: d0:e6:d3:14:0d:13:76:3d:b2:00:7e:d9:8d:be:7a:a7:a5:c5: c9:b0:b7:03:d1:5f:fd:5b:56:73:15:c8:81:db:78:83:66:c2: 2f:19:52:28:91:10:c7:6f:ea:cc:2d:e7:59:d4:f2:88:2c:89: fe:08:02:4a:29:3f:d8:f4:c3:8f:6a:54:1d:11:31:40:ba:4c: 8c:1c:56:00:a8:85:c5:c8:84:22:1a:1e:8b:e9:02:75:6e:92: 8e:35:cb:58:03:01:99:9d:6c:cc:a1:5b:fe:48:55:5a:19:48: ed:68:4f:42:b4:aa:0e:ec:68:98:7c:8e:a5:04:48:9d:eb:a4: e3:6c:54:dc:7f:4b:47:6b:d8:7c:e9:38:ef:2f:02:01:81:80: 42:71:74:b7:eb:0a:55:b2:84:7e:ea:1d:53:50:4a:31:60:b5: ad:08:dc:f9:1f:19:18:29:b1:f0:70:91:d4:48:a8:99:20:43: ec:1a:a0:65:7f:a6:c5:d8:c2:ab:69:c9:e7:11:26:ef:58:9a: 3f:ba:cc:92:e1:40:a8:9c:65:35:92:c6:23:bc:e2:f5:8c:7d: fa:a8:16:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUDI0RgSgsUqwV7RjEPsMhdw3x/kcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkwNVoX DTI3MDMwMzA2MzQwNVowMzExMC8GA1UEAxMoN0FDQzAwQkZFNTJDQUE2RThCNDRG OEMwNDI1NTRCRjc2RjVEOTFCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpdMNlbQAihLr+jsGNiMeCBM1jscwBIjrlqdt5ERrGpQifSY+cUuamNktl1 0zkB81hQewKQqJvX8S7ZIhezTnAcxzdlGInCMa2Zm8bIdsb7gSc6t7h9AT7QgEcD SgMT/vwXCEkK3ynjl8iMCwPTXnrshKF7Q1uBDl8DDPrpTlU9mNOt24ZxPNLG1ySD leZdyCYhPVcG+LUQNe+83BpLT2Ts6VCkQkIBCB79DbPv/aOOPptLeWZ9V8uDAXFq 1JB1ul0aocu9ZejeCARC/l/6gC0zd6eQS0lp5GSmMdcQRK8fH8XVxLB/XlW++ghM F9dpR1C186aGIFZIvN7S8sE0vuUCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR6zAC/ 5SyqbotE+MBCVUv3b12RtTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjM2OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rocwDQYJKoZIhvcNAQELBQADggEBABE53cBa5/MYe/Fe4TsFEQMGFpBEXm7eysQO szh2o1LGmxZkPNDm0xQNE3Y9sgB+2Y2+eqelxcmwtwPRX/1bVnMVyIHbeINmwi8Z UiiREMdv6swt51nU8ogsif4IAkopP9j0w49qVB0RMUC6TIwcVgCohcXIhCIaHovp AnVuko41y1gDAZmdbMyhW/5IVVoZSO1oT0K0qg7saJh8jqUESJ3rpONsVNx/S0dr 2HzpOO8vAgGBgEJxdLfrClWyhH7qHVNQSjFgta0I3PkfGRgpsfBwkdRIqJkgQ+wa oGV/psXYwqtpyecRJu9Ymj+6zJLhQKicZTWSxiO84vWMffqoFuM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:44:56 2026 by rpki-client