$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146396.roa File: AS146396.roa (raw, json) Hash identifier: nbYA7PXiY3VklVpiKOu22wSab2cbgONvc3uOBve91kA= Subject key identifier: AC:BC:A5:CE:51:80:10:C0:20:88:10:7D:97:DA:F7:BC:27:7B:54:1D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 31E715A0848DE11DB79D59E415BFF59F9BD6E0DE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146396.roa Signing time: Wed 04 Mar 2026 06:33:52 +0000 ROA not before: Wed 04 Mar 2026 06:28:52 +0000 ROA not after: Wed 03 Mar 2027 06:33:52 +0000 asID: 146396 IP address blocks: 240a:aea2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e7:15:a0:84:8d:e1:1d:b7:9d:59:e4:15:bf:f5:9f:9b:d6:e0:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:52 2026 GMT Not After : Mar 3 06:33:52 2027 GMT Subject: CN=ACBCA5CE518010C02088107D97DAF7BC277B541D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7f:66:49:69:e3:61:5f:89:d3:3c:ad:58:6f: 05:57:b9:0b:6f:75:2f:2d:66:94:ed:f8:14:75:2a: 62:54:35:d2:f1:c0:e5:15:c1:35:cf:9e:72:60:0d: 06:22:5f:9a:10:3c:11:73:18:de:57:63:e5:03:27: 3c:a3:3d:99:b1:1a:ce:df:27:c3:cd:a5:52:33:c1: f7:1b:da:98:e4:37:c7:85:79:15:97:11:a7:e4:41: 87:12:14:7c:0b:1c:c3:c1:75:77:5e:0b:9b:bb:de: 56:ab:99:18:96:85:5d:96:31:85:7a:df:19:74:0a: 42:99:07:a6:69:48:cc:24:9f:1d:7b:0a:35:df:5e: b5:b3:5d:ef:eb:a9:6b:2d:25:b3:4d:51:b8:87:a0: ec:14:2c:4a:7d:61:bc:38:75:73:9e:97:ba:19:22: 7c:d8:f1:75:58:bd:f7:ce:d8:e4:45:60:4e:d6:a7: d0:29:39:7b:3d:57:c4:f2:33:5b:25:9a:8d:21:e5: 23:74:51:66:41:a1:22:2f:d7:cb:54:b1:ff:59:22: 54:ba:4d:56:14:ec:2b:1a:a8:20:55:e2:50:34:82: aa:8a:c7:96:db:80:bb:9b:3f:15:81:c3:f9:58:83: 38:1a:1f:8f:75:0a:8f:48:35:d7:36:12:33:a4:de: f9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BC:A5:CE:51:80:10:C0:20:88:10:7D:97:DA:F7:BC:27:7B:54:1D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146396.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aea2::/32 Signature Algorithm: sha256WithRSAEncryption 1c:ba:31:39:a2:7f:99:63:e7:f3:42:b3:4d:88:ab:f9:b9:ba: 51:eb:4d:2f:39:7f:f1:64:5b:0c:87:b0:0e:c5:52:c4:69:d3: 32:bf:e4:09:df:f1:b0:a7:18:1a:bf:9f:d2:28:f4:15:a1:c4: c7:13:cb:ee:25:c7:25:27:e8:e3:d3:79:f8:9c:ce:5e:07:9f: 79:76:c1:d3:3b:cf:b0:94:fb:84:10:22:cd:1c:cb:d5:35:3e: 89:01:b2:d0:94:6a:76:8e:8c:f8:2b:8d:fe:30:6a:72:f6:80: ef:3b:ee:ae:6c:28:70:6a:4e:d5:da:4a:72:f0:ad:bf:39:4e: bb:bf:ba:89:a2:52:68:42:6d:20:84:55:60:ba:18:d9:3f:b7: e1:7c:38:f7:28:a3:5d:c9:fb:4b:a6:2b:24:70:fd:9b:2f:cb: c0:7c:98:d7:62:51:a7:cd:2b:1f:bc:80:c6:9f:c4:af:44:34: 30:ae:92:b7:59:f0:cf:0d:bd:77:04:4e:5f:8a:33:d6:0f:52: a9:aa:d4:d0:a9:b4:c9:48:8d:8e:70:5e:c9:53:16:e2:1e:7b: e0:fb:4b:e0:9d:33:ed:46:bb:19:a7:1d:92:51:70:7d:3b:97: ea:49:20:fe:bb:4a:99:f0:14:5e:e5:58:68:91:f4:da:1f:72: 41:14:72:c3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUMecVoISN4R23nVnkFb/1n5vW4N4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg1MloX DTI3MDMwMzA2MzM1MlowMzExMC8GA1UEAxMoQUNCQ0E1Q0U1MTgwMTBDMDIwODgx MDdEOTdEQUY3QkMyNzdCNTQxRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMh/Zklp42FfidM8rVhvBVe5C291Ly1mlO34FHUqYlQ10vHA5RXBNc+ecmAN BiJfmhA8EXMY3ldj5QMnPKM9mbEazt8nw82lUjPB9xvamOQ3x4V5FZcRp+RBhxIU fAscw8F1d14Lm7veVquZGJaFXZYxhXrfGXQKQpkHpmlIzCSfHXsKNd9etbNd7+up ay0ls01RuIeg7BQsSn1hvDh1c56XuhkifNjxdVi9987Y5EVgTtan0Ck5ez1XxPIz WyWajSHlI3RRZkGhIi/Xy1Sx/1kiVLpNVhTsKxqoIFXiUDSCqorHltuAu5s/FYHD +ViDOBofj3UKj0g11zYSM6Te+bECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSsvKXO UYAQwCCIEH2X2ve8J3tUHTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjM5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rqIwDQYJKoZIhvcNAQELBQADggEBABy6MTmif5lj5/NCs02Iq/m5ulHrTS85f/Fk WwyHsA7FUsRp0zK/5Anf8bCnGBq/n9Io9BWhxMcTy+4lxyUn6OPTeficzl4Hn3l2 wdM7z7CU+4QQIs0cy9U1PokBstCUanaOjPgrjf4wanL2gO877q5sKHBqTtXaSnLw rb85Tru/uomiUmhCbSCEVWC6GNk/t+F8OPcoo13J+0umKyRw/Zsvy8B8mNdiUafN Kx+8gMafxK9ENDCukrdZ8M8NvXcETl+KM9YPUqmq1NCptMlIjY5wXslTFuIee+D7 S+CdM+1GuxmnHZJRcH07l+pJIP67SpnwFF7lWGiR9NofckEUcsM= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:20 2026 by rpki-client