$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146431.roa File: AS146431.roa (raw, json) Hash identifier: uDHT/g0P9Y/A+ZKGl5Npsa9bEvwbyXMKw4ierLASjG0= Subject key identifier: 56:5F:BD:83:52:C0:90:8C:B7:ED:74:6B:CC:31:C7:B5:E2:BC:0C:2D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 7A9EC86B2E93B440D024D16C93266CE7888DE1BE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146431.roa Signing time: Wed 04 Mar 2026 06:34:18 +0000 ROA not before: Wed 04 Mar 2026 06:29:18 +0000 ROA not after: Wed 03 Mar 2027 06:34:18 +0000 asID: 146431 IP address blocks: 240a:aec5::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:9e:c8:6b:2e:93:b4:40:d0:24:d1:6c:93:26:6c:e7:88:8d:e1:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:18 2026 GMT Not After : Mar 3 06:34:18 2027 GMT Subject: CN=565FBD8352C0908CB7ED746BCC31C7B5E2BC0C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:fa:30:e2:a5:83:7a:86:df:43:68:b4:d2: 6d:06:00:94:69:c5:ea:59:c8:c2:e8:6e:fa:d5:b1: 23:8c:51:5a:6c:1f:52:04:27:9b:ae:ac:e4:2c:2c: 32:57:8b:c7:c3:3e:0d:1f:77:78:d2:62:a0:fc:94: 4d:b7:57:d6:dc:ce:a5:56:b8:ad:63:75:eb:7a:8e: 99:9e:56:8f:2f:c4:83:7b:8b:5b:fe:65:8e:b3:66: fd:8b:b7:cc:56:85:8d:8f:44:a2:29:86:80:83:b3: 41:05:12:3e:bb:74:8a:1b:7c:31:b0:4b:78:7b:08: 5d:f0:9b:2f:fc:88:ff:4d:c0:67:86:5a:33:c3:ca: d6:30:fe:23:5c:fb:ba:5f:ae:c7:88:be:b0:d5:a8: fa:47:6e:1e:d4:7a:1d:eb:10:b1:6a:00:a8:1e:be: 84:de:dd:64:18:ab:cd:23:c2:3c:14:44:80:da:8b: 46:78:7e:5f:0f:a4:be:25:83:3a:ff:1e:9e:0d:81: 81:92:0b:fd:fb:e0:00:23:41:1a:2d:22:ca:03:14: 91:b5:ac:b6:db:1a:3b:88:29:7c:17:0c:41:41:72: 87:15:f2:19:9d:59:03:4d:57:6c:ee:a1:80:ba:5c: 9a:f1:a2:01:96:59:6a:c2:ee:94:8f:39:e0:fa:e0: 5e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5F:BD:83:52:C0:90:8C:B7:ED:74:6B:CC:31:C7:B5:E2:BC:0C:2D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aec5::/32 Signature Algorithm: sha256WithRSAEncryption 82:4e:1f:bc:6b:43:ba:1f:fd:04:2a:bf:d1:2d:13:8f:f3:44: af:26:0a:4c:e6:9f:be:60:fc:49:17:7e:da:e9:bd:33:1e:d8: d2:bd:dd:bc:07:9a:e1:54:8d:0d:f3:ac:71:30:e3:6b:ab:24: ad:f2:49:4e:1d:0c:84:4d:4d:cf:34:0a:09:6b:7f:7f:2d:ce: a9:33:92:4e:45:8e:7d:0d:b7:0c:2e:8f:ed:68:35:6a:75:3a: e3:d7:d6:02:89:aa:26:16:77:55:12:72:1c:96:de:3b:d7:99: 87:b5:cb:5e:55:ad:1b:81:4a:23:2a:36:86:6f:f8:e2:24:d1: b9:ea:a2:5e:19:c2:9a:57:75:8c:b5:59:4b:dd:e9:e0:4c:c9: fd:e8:05:1a:07:0f:2b:9b:b6:d7:98:21:43:d0:57:63:1b:a4: 01:fe:9f:80:06:47:2f:38:d8:6c:7d:69:46:0a:04:dd:58:da: 20:bd:d9:24:4a:df:01:b1:6d:0f:d2:0c:1d:36:d3:90:dc:f2: 07:85:46:ee:6b:d0:a7:17:e5:66:9f:8c:98:73:b6:7f:89:a4: ff:11:ad:5e:4b:8a:2b:94:96:68:3a:85:b9:07:29:a6:dd:b6: 8e:38:93:cc:2b:91:b8:ec:b1:c1:5e:c1:8d:6c:2c:02:30:81: e2:ee:9c:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUep7Iay6TtEDQJNFskyZs54iN4b4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2MjkxOFoX DTI3MDMwMzA2MzQxOFowMzExMC8GA1UEAxMoNTY1RkJEODM1MkMwOTA4Q0I3RUQ3 NDZCQ0MzMUM3QjVFMkJDMEMyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoB+jDipYN6ht9DaLTSbQYAlGnF6lnIwuhu+tWxI4xRWmwfUgQnm66s5Cws MleLx8M+DR93eNJioPyUTbdX1tzOpVa4rWN163qOmZ5Wjy/Eg3uLW/5ljrNm/Yu3 zFaFjY9EoimGgIOzQQUSPrt0iht8MbBLeHsIXfCbL/yI/03AZ4ZaM8PK1jD+I1z7 ul+ux4i+sNWo+kduHtR6HesQsWoAqB6+hN7dZBirzSPCPBREgNqLRnh+Xw+kviWD Ov8eng2BgZIL/fvgACNBGi0iygMUkbWsttsaO4gpfBcMQUFyhxXyGZ1ZA01XbO6h gLpcmvGiAZZZasLulI854PrgXvkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBRWX72D UsCQjLftdGvMMce14rwMLTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQzMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rsUwDQYJKoZIhvcNAQELBQADggEBAIJOH7xrQ7of/QQqv9EtE4/zRK8mCkzmn75g /EkXftrpvTMe2NK93bwHmuFUjQ3zrHEw42urJK3ySU4dDIRNTc80Cglrf38tzqkz kk5Fjn0Ntwwuj+1oNWp1OuPX1gKJqiYWd1USchyW3jvXmYe1y15VrRuBSiMqNoZv +OIk0bnqol4ZwppXdYy1WUvd6eBMyf3oBRoHDyubtteYIUPQV2MbpAH+n4AGRy84 2Gx9aUYKBN1Y2iC92SRK3wGxbQ/SDB0205Dc8geFRu5r0KcX5WafjJhztn+JpP8R rV5LiiuUlmg6hbkHKabdto44k8wrkbjsscFewY1sLAIwgeLunFw= -----END CERTIFICATE-----Generated at Sat Mar 28 11:41:37 2026 by rpki-client