This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144699.roa File: AS144699.roa (raw, json) Hash identifier: ckSCgAmVPi41wgIehUxzw/eeiY5wOQWlQXbn91H1me8= Subject key identifier: 95:E3:C1:E5:85:F5:06:92:02:E7:0B:F1:9C:E5:FF:50:E2:3D:AD:BA Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 37973D8BE01CCD19BC8DD135DC422B8A4A04311C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144699.roa Signing time: Tue 20 Jan 2026 01:10:17 +0000 ROA not before: Tue 20 Jan 2026 01:05:17 +0000 ROA not after: Tue 19 Jan 2027 01:10:17 +0000 asID: 144699 IP address blocks: 240a:a801::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:97:3d:8b:e0:1c:cd:19:bc:8d:d1:35:dc:42:2b:8a:4a:04:31:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:17 2026 GMT Not After : Jan 19 01:10:17 2027 GMT Subject: CN=95E3C1E585F5069202E70BF19CE5FF50E23DADBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a0:53:59:41:6d:b0:ef:89:9c:09:ad:bb:8c: 20:ad:bb:a5:d2:25:02:8a:2d:77:58:ee:ed:30:0a: 7a:f8:49:c1:34:c6:de:90:c1:64:8e:17:7b:2c:86: 8d:7f:e9:b7:55:e7:cf:9d:13:c1:a8:7e:94:a5:98: 3c:1c:28:66:05:2f:d3:62:48:75:12:48:f9:6e:be: 65:ec:b6:a8:b1:c6:05:34:f7:d4:0e:5a:3a:05:6a: 72:90:8a:90:b8:7a:a4:79:db:be:cd:42:31:d3:e8: 1b:27:3b:4a:76:15:4a:d2:4a:3b:75:41:16:26:3b: 9f:30:d9:31:e4:d6:67:f6:6d:a2:93:c8:dc:22:df: e1:9f:f5:14:5f:bd:8a:18:82:06:ee:a4:be:9f:43: c1:1b:97:26:38:eb:a6:af:db:c7:db:8c:fe:db:0f: fd:84:aa:84:c0:18:3b:8b:b3:2e:b0:f3:a1:0b:a5: 53:72:2d:00:60:41:31:fa:9b:b3:1f:67:fa:0c:f8: b0:c8:56:3a:a4:fb:56:fa:03:5e:0f:c8:69:1f:84: 76:70:d9:38:67:de:c1:c8:91:e9:3d:89:7d:fd:c1: 2c:34:78:dc:24:38:a8:fe:0e:cd:c7:5d:c5:ba:3b: 41:46:61:df:40:9f:67:2d:c5:19:8a:d1:f5:1e:7c: a8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E3:C1:E5:85:F5:06:92:02:E7:0B:F1:9C:E5:FF:50:E2:3D:AD:BA X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a801::/32 Signature Algorithm: sha256WithRSAEncryption 02:5b:a1:b5:42:41:53:82:b0:6c:85:44:16:0e:5d:7a:d3:5b: 75:88:6a:27:91:cf:8e:f9:77:ec:bf:63:65:07:9f:f0:1a:d7: d2:ed:40:bd:eb:97:fd:6e:1a:e2:a6:a0:bc:b8:36:60:e8:d0: de:d4:52:1f:af:95:32:a1:5d:fb:3f:25:c3:72:5f:0a:0a:1b: 5e:3d:e1:b2:63:20:7b:88:4c:a6:2b:e9:65:fb:de:83:76:ef: f8:a4:25:4e:71:7d:92:e7:fe:73:18:da:aa:48:49:bf:60:51: 39:7b:9d:ae:5e:d9:73:8d:83:b4:31:1c:43:c4:3e:bc:80:d4: 67:4a:be:e4:8c:4a:c0:25:e0:c3:24:41:54:7f:e2:45:b9:3d: 2b:d4:5b:48:fd:fd:62:4a:0e:13:6d:a5:2b:60:37:43:2c:f4: b3:04:3f:65:bc:26:88:8c:3c:d7:44:82:c7:69:2e:39:42:b6: 1e:a1:44:5d:99:8f:c8:8f:d0:ec:37:9b:12:66:02:6f:d6:f5: 52:03:b9:c3:75:1f:41:e8:25:04:19:eb:11:ef:e8:06:a4:81: 9e:2b:d4:d4:54:53:73:43:42:4c:fa:70:b2:d7:e0:b1:83:a6: d7:0b:7b:d9:75:61:d4:a9:74:4b:3c:2e:6c:3d:f7:3b:de:6d: f2:3e:41:6b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUN5c9i+AczRm8jdE13EIrikoEMRwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxN1oX DTI3MDExOTAxMTAxN1owMzExMC8GA1UEAxMoOTVFM0MxRTU4NUY1MDY5MjAyRTcw QkYxOUNFNUZGNTBFMjNEQURCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ6gU1lBbbDviZwJrbuMIK27pdIlAootd1ju7TAKevhJwTTG3pDBZI4XeyyG jX/pt1Xnz50Twah+lKWYPBwoZgUv02JIdRJI+W6+Zey2qLHGBTT31A5aOgVqcpCK kLh6pHnbvs1CMdPoGyc7SnYVStJKO3VBFiY7nzDZMeTWZ/ZtopPI3CLf4Z/1FF+9 ihiCBu6kvp9DwRuXJjjrpq/bx9uM/tsP/YSqhMAYO4uzLrDzoQulU3ItAGBBMfqb sx9n+gz4sMhWOqT7VvoDXg/IaR+EdnDZOGfewciR6T2Jff3BLDR43CQ4qP4Ozcdd xbo7QUZh30CfZy3FGYrR9R58qAECAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSV48Hl hfUGkgLnC/Gc5f9Q4j2tujAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDY5OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qAEwDQYJKoZIhvcNAQELBQADggEBAAJbobVCQVOCsGyFRBYOXXrTW3WIaieRz475 d+y/Y2UHn/Aa19LtQL3rl/1uGuKmoLy4NmDo0N7UUh+vlTKhXfs/JcNyXwoKG149 4bJjIHuITKYr6WX73oN27/ikJU5xfZLn/nMY2qpISb9gUTl7na5e2XONg7QxHEPE PryA1GdKvuSMSsAl4MMkQVR/4kW5PSvUW0j9/WJKDhNtpStgN0Ms9LMEP2W8JoiM PNdEgsdpLjlCth6hRF2Zj8iP0Ow3mxJmAm/W9VIDucN1H0HoJQQZ6xHv6AakgZ4r 1NRUU3NDQkz6cLLX4LGDptcLe9l1YdSpdEs8Lmw99zvebfI+QWs= -----END CERTIFICATE-----Generated at Sun Jan 25 13:35:01 2026 by rpki-client