$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS146435.roa File: AS146435.roa (raw, json) Hash identifier: O9e5KNZ2aLwNV+IMrr5ztg+CNZoOzdiWY3tKJ3JIt5s= Subject key identifier: 03:F5:07:54:ED:DE:45:D9:A6:54:F7:98:BD:56:8B:C3:A6:B9:3E:15 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 0F6C4E2D9BFB74170AC1ECEEA480D9098FA40DC8 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS146435.roa Signing time: Wed 04 Mar 2026 06:34:55 +0000 ROA not before: Wed 04 Mar 2026 06:29:55 +0000 ROA not after: Wed 03 Mar 2027 06:34:55 +0000 asID: 146435 IP address blocks: 240a:aec9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 22:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:6c:4e:2d:9b:fb:74:17:0a:c1:ec:ee:a4:80:d9:09:8f:a4:0d:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Mar 4 06:29:55 2026 GMT Not After : Mar 3 06:34:55 2027 GMT Subject: CN=03F50754EDDE45D9A654F798BD568BC3A6B93E15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9a:a4:15:ab:d5:51:e3:07:38:6c:ed:d1:3b: cb:20:a0:b3:9c:e8:48:0a:9b:69:15:55:b0:73:4c: 6a:a6:9e:f5:41:1c:39:5f:18:9a:8b:55:29:d0:13: cf:4f:3c:76:a8:7d:4d:e1:8b:90:41:76:43:bf:1c: b4:24:5b:c9:06:38:a0:d9:24:d8:01:d9:28:d1:4b: bd:a0:bf:83:92:c9:55:6f:14:90:4a:93:1e:c8:fe: 21:89:e3:a8:50:05:15:d3:d0:57:06:6d:9c:c1:26: ba:99:97:14:28:15:d6:7e:f8:b9:fb:1c:d2:cf:ac: d2:db:26:1e:69:fd:b7:17:3a:0c:5e:5d:3f:93:0d: 2c:07:47:fc:25:4e:21:6f:31:d9:14:1c:4b:01:96: 43:f9:f8:20:3f:05:66:4d:af:b6:25:9c:00:8f:18: 40:ae:89:1b:9c:a0:81:77:a0:0a:42:48:bb:3c:c9: 40:d3:a7:f0:7b:56:cf:85:55:a2:a2:4b:fb:62:03: 73:10:15:13:68:c3:f6:2b:95:62:b2:9c:37:ff:8f: b3:53:66:9f:f4:ce:8f:b8:65:f2:de:a5:62:c7:16: e9:ad:d9:1a:84:e3:f2:b0:0f:08:15:e9:28:90:d1: 91:88:77:50:a4:a1:60:29:ff:39:ee:54:44:94:e0: 8e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F5:07:54:ED:DE:45:D9:A6:54:F7:98:BD:56:8B:C3:A6:B9:3E:15 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS146435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:aec9::/32 Signature Algorithm: sha256WithRSAEncryption cf:73:5a:a0:2b:1b:7d:3d:5b:69:01:a1:4e:ad:ac:39:c9:f6: c6:4e:44:96:bd:de:19:3d:10:4c:8f:a9:8e:25:5a:d3:9e:c0: f5:0a:f2:d1:bf:1b:25:04:8b:9e:67:a0:46:24:47:a8:8a:17: 2e:ec:1a:81:69:bc:d7:49:22:76:9d:c4:8c:55:62:81:90:63: 32:24:fb:61:a7:16:2e:83:a2:35:30:bd:8f:1d:c4:c8:b6:f3: 27:20:03:71:d7:7f:3f:c4:a8:89:b2:0e:f8:1e:bd:ed:53:62: ac:d1:91:39:6c:15:fa:35:46:d9:17:ca:80:a9:50:5f:73:17: 7e:b0:1f:e9:a1:a7:36:a1:51:ad:e1:3a:ea:85:53:ee:a8:bb: 0a:9a:16:a2:44:3e:73:4d:42:4b:7d:63:48:1b:49:48:49:c6: 3e:1e:8f:7a:3e:4d:af:59:87:05:84:79:4b:57:14:1d:85:fe: cf:01:d7:d3:ff:3a:74:b7:12:d2:c3:16:73:91:70:6e:77:83: e6:12:8c:d2:51:cd:02:f5:da:8b:c4:0f:97:09:c9:47:16:9c: b4:d5:e0:3a:e0:18:71:73:46:1a:98:0a:b3:a2:be:06:6c:84: dc:50:7f:06:9c:93:01:80:df:2e:83:99:84:56:c3:4e:5a:98: 03:60:b1:cb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUD2xOLZv7dBcKwezupIDZCY+kDcgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDMwNDA2Mjk1NVoX DTI3MDMwMzA2MzQ1NVowMzExMC8GA1UEAxMoMDNGNTA3NTRFRERFNDVEOUE2NTRG Nzk4QkQ1NjhCQzNBNkI5M0UxNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANOapBWr1VHjBzhs7dE7yyCgs5zoSAqbaRVVsHNMaqae9UEcOV8YmotVKdAT z088dqh9TeGLkEF2Q78ctCRbyQY4oNkk2AHZKNFLvaC/g5LJVW8UkEqTHsj+IYnj qFAFFdPQVwZtnMEmupmXFCgV1n74ufsc0s+s0tsmHmn9txc6DF5dP5MNLAdH/CVO IW8x2RQcSwGWQ/n4ID8FZk2vtiWcAI8YQK6JG5yggXegCkJIuzzJQNOn8HtWz4VV oqJL+2IDcxAVE2jD9iuVYrKcN/+Ps1Nmn/TOj7hl8t6lYscW6a3ZGoTj8rAPCBXp KJDRkYh3UKShYCn/Oe5URJTgjlsCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQD9QdU 7d5F2aZU95i9VovDprk+FTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NjQzNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK rskwDQYJKoZIhvcNAQELBQADggEBAM9zWqArG309W2kBoU6trDnJ9sZORJa93hk9 EEyPqY4lWtOewPUK8tG/GyUEi55noEYkR6iKFy7sGoFpvNdJInadxIxVYoGQYzIk +2GnFi6DojUwvY8dxMi28ycgA3HXfz/EqImyDvgeve1TYqzRkTlsFfo1RtkXyoCp UF9zF36wH+mhpzahUa3hOuqFU+6ouwqaFqJEPnNNQkt9Y0gbSUhJxj4ej3o+Ta9Z hwWEeUtXFB2F/s8B19P/OnS3EtLDFnORcG53g+YSjNJRzQL12ovED5cJyUcWnLTV 4DrgGHFzRhqYCrOivgZshNxQfwackwGA3y6DmYRWw05amANgscs= -----END CERTIFICATE-----Generated at Sat Mar 28 11:42:19 2026 by rpki-client