$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146429.roa File: AS146429.roa (raw, json) Hash identifier: evYeg2WBnki/uDAg+oYh6j/MTQdn27AIAA/PdNaynTs= Subject key identifier: 7E:16:78:E6:DA:68:21:C0:38:16:EA:14:87:07:8D:E2:32:A9:98:AE Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 2CC654BCB78F23E37C81476D71DFF584C1629BBF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146429.roa Signing time: Wed 04 Mar 2026 06:33:43 +0000 ROA not before: Wed 04 Mar 2026 06:28:43 +0000 ROA not after: Wed 03 Mar 2027 06:33:43 +0000 asID: 146429 IP address blocks: 240a:aec3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c6:54:bc:b7:8f:23:e3:7c:81:47:6d:71:df:f5:84:c1:62:9b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:28:43 2026 GMT Not After : Mar 3 06:33:43 2027 GMT Subject: CN=7E1678E6DA6821C03816EA1487078DE232A998AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:47:2d:77:e4:e6:05:23:b6:93:5f:30:07:bf: df:b0:b9:7c:a2:62:e4:db:35:1d:25:f3:a8:00:b6: 3a:bf:f5:d7:38:1a:35:05:e8:e7:77:de:c6:3c:f1: be:5a:ae:19:53:3c:f3:19:c0:13:67:c9:c8:f8:71: a2:e2:5e:9f:62:f1:d8:25:26:15:e8:d6:e6:a8:9a: 2d:f4:bc:49:86:1f:d3:5b:a9:fa:0b:cd:c9:5a:52: e6:94:3d:62:f6:b2:81:f0:cb:7b:ef:21:b4:a2:bb: dd:02:2d:95:8a:95:f1:b9:43:86:c5:3c:4d:55:62: 21:33:ff:1f:25:a9:d5:4d:e5:5d:fa:b5:28:0c:37: ad:66:b2:74:6f:ec:bf:89:62:3d:a3:14:b3:46:13: f2:2b:66:e8:bc:83:70:0f:c2:a7:20:4c:a6:17:ca: 42:27:f8:91:8b:75:f6:c7:7a:5a:bb:a8:26:24:b5: b4:82:75:40:26:c8:b6:f8:46:1f:65:5b:40:4f:71: 79:44:fa:03:01:75:c8:4d:a7:ef:40:0b:c0:03:9b: c0:ab:0d:05:bc:7c:6d:f7:97:82:23:c4:9a:48:66: d7:0d:82:9d:61:fd:e8:48:e3:47:d8:fa:2d:e3:19: 0b:dc:b0:e4:af:90:7a:30:df:ee:f9:52:b6:32:81: 86:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:16:78:E6:DA:68:21:C0:38:16:EA:14:87:07:8D:E2:32:A9:98:AE X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146429.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aec3::/32 Signature Algorithm: sha256WithRSAEncryption 51:e2:92:8a:0a:be:73:c4:64:03:e1:04:71:ab:9e:d0:93:0e: 36:70:42:80:96:0a:ed:a0:79:c8:bf:27:7b:c4:85:49:36:a7: 4b:a3:b7:3f:f7:0f:cf:7d:fc:77:c7:1d:8c:f2:33:6f:67:0f: e5:45:8f:86:1d:c0:55:3c:77:ef:22:d2:28:f4:de:d7:01:21: 36:06:72:d1:7b:25:c2:54:e5:af:2d:3f:25:f9:81:be:08:92: 87:ea:20:fa:79:3a:08:c8:04:f0:59:80:be:8a:5b:79:b8:9e: a3:3d:e9:f6:49:0e:01:e4:f8:53:69:84:ab:5e:bb:bf:98:63: f8:57:bb:51:a8:7b:a6:30:ac:a9:61:14:2f:34:42:49:ee:b0: db:2f:f6:86:48:d9:21:f2:75:1b:d1:d8:08:ef:f1:62:8b:b2: 52:9a:4e:07:5d:bb:b3:11:18:69:ab:dc:b5:03:67:4f:25:91: af:c6:34:44:11:1f:fb:f6:fe:65:9e:d6:a7:2d:55:fb:7c:21: 63:b2:87:e2:97:55:ca:89:89:52:b7:55:c9:99:7f:63:72:61: d3:15:44:f5:0a:1c:f5:5f:b3:31:9d:04:61:2b:af:ff:35:45: f4:90:a5:b5:ad:88:5b:f2:00:03:01:86:ce:ed:ab:8a:c3:c0: e8:59:d9:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIULMZUvLePI+N8gUdtcd/1hMFim78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjg0M1oX DTI3MDMwMzA2MzM0M1owMzExMC8GA1UEAxMoN0UxNjc4RTZEQTY4MjFDMDM4MTZF QTE0ODcwNzhERTIzMkE5OThBRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNHLXfk5gUjtpNfMAe/37C5fKJi5Ns1HSXzqAC2Or/11zgaNQXo53fexjzx vlquGVM88xnAE2fJyPhxouJen2Lx2CUmFejW5qiaLfS8SYYf01up+gvNyVpS5pQ9 YvaygfDLe+8htKK73QItlYqV8blDhsU8TVViITP/HyWp1U3lXfq1KAw3rWaydG/s v4liPaMUs0YT8itm6LyDcA/CpyBMphfKQif4kYt19sd6WruoJiS1tIJ1QCbItvhG H2VbQE9xeUT6AwF1yE2n70ALwAObwKsNBbx8bfeXgiPEmkhm1w2CnWH96EjjR9j6 LeMZC9yw5K+QejDf7vlStjKBhl0CAwEAAaOCAcUwggHBMB0GA1UdDgQWBBR+Fnjm 2mghwDgW6hSHB43iMqmYrjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQyOS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rsMwDQYJKoZIhvcNAQELBQADggEBAFHikooKvnPEZAPhBHGrntCTDjZwQoCWCu2g eci/J3vEhUk2p0ujtz/3D899/HfHHYzyM29nD+VFj4YdwFU8d+8i0ij03tcBITYG ctF7JcJU5a8tPyX5gb4IkofqIPp5OgjIBPBZgL6KW3m4nqM96fZJDgHk+FNphKte u7+YY/hXu1Goe6YwrKlhFC80QknusNsv9oZI2SHydRvR2Ajv8WKLslKaTgddu7MR GGmr3LUDZ08lka/GNEQRH/v2/mWe1qctVft8IWOyh+KXVcqJiVK3VcmZf2NyYdMV RPUKHPVfszGdBGErr/81RfSQpbWtiFvyAAMBhs7tq4rDwOhZ2ao= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:09 2026 by rpki-client