This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144702.roa File: AS144702.roa (raw, json) Hash identifier: yQrg+H4fCKWC+01dC+xtFm5r44KamcVdBk07W6hyrrQ= Subject key identifier: 30:0E:FB:91:E5:9C:27:19:09:31:A6:BE:81:60:8A:53:B2:87:41:1A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 5C965B05FDF92FBBF8B44E1F834CBFE3B989E5AA Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144702.roa Signing time: Tue 20 Jan 2026 01:10:23 +0000 ROA not before: Tue 20 Jan 2026 01:05:23 +0000 ROA not after: Tue 19 Jan 2027 01:10:23 +0000 asID: 144702 IP address blocks: 240a:a804::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:96:5b:05:fd:f9:2f:bb:f8:b4:4e:1f:83:4c:bf:e3:b9:89:e5:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:23 2026 GMT Not After : Jan 19 01:10:23 2027 GMT Subject: CN=300EFB91E59C27190931A6BE81608A53B287411A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:52:3b:85:6a:bd:32:3a:78:c8:65:f6:8e:71: 17:f0:e2:48:ef:10:2e:72:4b:6f:9c:e1:6d:75:da: 8c:aa:35:e9:5a:27:d0:0b:f3:e8:b8:3d:11:3f:43: d2:7f:a2:37:11:7a:4b:f5:ac:59:51:8b:f7:e0:c7: 08:78:10:36:68:b5:e6:9b:d1:07:d0:9b:99:48:b0: 49:b1:ed:e0:ee:42:b8:26:97:2c:66:f1:a2:a5:64: a5:d3:2f:b0:af:a0:a8:6c:f1:92:b0:0f:2a:23:37: e3:b3:e7:27:6c:0c:78:a7:0d:7e:1a:8d:9b:51:b3: c2:82:7e:3a:19:e3:b8:15:2b:dd:6f:9f:56:9a:6d: 31:95:70:c0:f9:6e:43:b6:b3:1e:23:a6:83:63:20: 82:80:7b:5a:f0:e5:61:cc:17:f5:5d:1e:b8:b2:e2: 48:21:5f:2a:c9:6a:5c:50:cc:01:40:35:25:54:5c: 8d:32:56:cb:7e:d2:b4:69:27:f7:49:97:25:51:29: e8:2c:ec:97:aa:ef:6f:c7:a8:4c:2d:32:7e:9c:4b: 53:38:4a:54:9e:1d:d6:ec:5c:b6:49:c6:42:45:fe: 30:bf:a1:88:b0:8e:40:d0:a1:9a:ff:95:ce:50:92: d9:df:22:65:b0:ab:68:ea:e3:67:3e:3b:e2:54:40: 58:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0E:FB:91:E5:9C:27:19:09:31:A6:BE:81:60:8A:53:B2:87:41:1A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144702.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a804::/32 Signature Algorithm: sha256WithRSAEncryption 89:fc:41:0f:fa:94:b0:99:65:ad:91:13:b3:97:88:3e:89:4b: 79:4b:ab:56:d6:1e:b4:5a:d1:fc:d0:d7:60:f5:90:73:79:93: a5:12:2c:4a:8b:b8:f8:4e:8c:a2:54:7f:3d:00:3e:ef:ed:25: f3:f5:b3:dd:e3:50:87:16:de:a5:b9:d7:da:5d:23:2e:3e:77: bd:95:fb:1e:88:ff:6b:d4:83:bc:f5:3b:e3:15:df:b3:8a:97: 51:be:c4:ab:e3:67:fe:19:04:6e:ee:24:46:06:82:7d:48:7b: 8a:2b:31:b6:2e:74:df:f9:6e:07:e4:f7:99:11:ae:04:1b:98: ec:78:cd:e6:f4:c1:26:9e:92:31:89:1c:8b:98:6e:6b:5f:f5: c9:6e:2b:be:84:71:a3:37:63:a3:23:ca:3a:b8:31:60:7b:5e: fa:8e:dc:2e:30:90:d8:6d:dd:3a:ee:4c:dc:3d:0a:68:02:82: eb:91:5b:7b:60:47:11:0e:43:d1:d1:75:6c:18:a2:b8:39:47: c5:6e:22:81:ca:9e:9e:a6:a9:13:66:5e:3b:63:33:dd:68:7a: da:9e:1a:eb:42:8f:9c:d0:47:47:3a:88:d0:e1:bf:3b:0c:d9: 9c:25:c6:80:0d:bd:68:39:c3:b8:69:14:57:c5:60:29:bd:50: 17:f5:e8:dd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUXJZbBf35L7v4tE4fg0y/47mJ5aowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUyM1oX DTI3MDExOTAxMTAyM1owMzExMC8GA1UEAxMoMzAwRUZCOTFFNTlDMjcxOTA5MzFB NkJFODE2MDhBNTNCMjg3NDExQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1SO4VqvTI6eMhl9o5xF/DiSO8QLnJLb5zhbXXajKo16Von0Avz6Lg9ET9D 0n+iNxF6S/WsWVGL9+DHCHgQNmi15pvRB9CbmUiwSbHt4O5CuCaXLGbxoqVkpdMv sK+gqGzxkrAPKiM347PnJ2wMeKcNfhqNm1GzwoJ+OhnjuBUr3W+fVpptMZVwwPlu Q7azHiOmg2MggoB7WvDlYcwX9V0euLLiSCFfKslqXFDMAUA1JVRcjTJWy37StGkn 90mXJVEp6Czsl6rvb8eoTC0yfpxLUzhKVJ4d1uxctknGQkX+ML+hiLCOQNChmv+V zlCS2d8iZbCraOrjZz474lRAWMkCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQwDvuR 5ZwnGQkxpr6BYIpTsodBGjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDcwMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qAQwDQYJKoZIhvcNAQELBQADggEBAIn8QQ/6lLCZZa2RE7OXiD6JS3lLq1bWHrRa 0fzQ12D1kHN5k6USLEqLuPhOjKJUfz0APu/tJfP1s93jUIcW3qW519pdIy4+d72V +x6I/2vUg7z1O+MV37OKl1G+xKvjZ/4ZBG7uJEYGgn1Ie4orMbYudN/5bgfk95kR rgQbmOx4zeb0wSaekjGJHIuYbmtf9cluK76EcaM3Y6Mjyjq4MWB7XvqO3C4wkNht 3TruTNw9CmgCguuRW3tgRxEOQ9HRdWwYorg5R8VuIoHKnp6mqRNmXjtjM91oetqe GutCj5zQR0c6iNDhvzsM2ZwlxoANvWg5w7hpFFfFYCm9UBf16N0= -----END CERTIFICATE-----Generated at Sun Jan 25 13:35:03 2026 by rpki-client