This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS144703.roa File: AS144703.roa (raw, json) Hash identifier: OybWjS6EIdcc6AbnJuZza4B7uJaT0r+uoAOhUnu/0mE= Subject key identifier: 84:58:F3:01:27:CE:FF:FB:C3:BA:44:DC:44:C4:FD:99:2E:D2:F9:7D Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 295397BB67336D88FE44FD8614CC0055D4B62BEE Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS144703.roa Signing time: Tue 20 Jan 2026 01:10:25 +0000 ROA not before: Tue 20 Jan 2026 01:05:25 +0000 ROA not after: Tue 19 Jan 2027 01:10:25 +0000 asID: 144703 IP address blocks: 240a:a805::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:53:97:bb:67:33:6d:88:fe:44:fd:86:14:cc:00:55:d4:b6:2b:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:25 2026 GMT Not After : Jan 19 01:10:25 2027 GMT Subject: CN=8458F30127CEFFFBC3BA44DC44C4FD992ED2F97D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:5b:f9:87:2c:28:34:db:d8:bb:5b:b9:14: be:33:04:cd:7c:4c:93:ed:41:1e:df:12:fe:a2:b6: 95:3c:2e:a4:94:7e:33:7a:77:15:c9:a6:68:2f:e8: be:08:37:58:d4:26:8e:29:6a:18:eb:ff:4c:68:e3: 17:20:9b:70:2c:d3:34:88:2e:43:1d:12:11:1a:48: 86:78:33:48:b8:74:0b:b7:e1:bf:80:97:0c:f3:cf: e5:04:c8:6a:70:50:ce:ca:2a:98:e7:bd:4c:f6:b8: ae:27:77:0c:b0:08:3b:4f:8a:23:a7:8f:43:13:92: b5:62:0e:89:aa:b3:4d:95:2c:0c:ec:e5:70:aa:ae: c0:df:9c:db:fc:f4:54:35:1a:b4:15:16:90:25:e2: d7:f2:ca:f9:fc:16:7f:34:6c:72:9d:14:ea:87:db: f1:7c:87:08:df:e8:2b:ad:09:ea:3b:c5:03:5d:e3: df:6c:55:3e:6a:b4:02:5c:95:ef:25:15:ad:8c:5b: 45:de:be:e0:6c:52:23:a0:b1:f3:9b:7d:85:55:eb: 57:12:2e:24:03:97:b2:9a:96:d3:25:cd:6e:29:28: d7:67:cf:61:6a:fa:45:2c:84:b2:1e:6d:12:6e:b7: 9e:cd:36:93:d4:e0:eb:08:88:5d:62:6c:fc:2b:72: a8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:58:F3:01:27:CE:FF:FB:C3:BA:44:DC:44:C4:FD:99:2E:D2:F9:7D X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS144703.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a805::/32 Signature Algorithm: sha256WithRSAEncryption 92:93:2d:ef:c1:ab:27:a3:ae:fd:7d:b5:a7:4e:ee:58:0f:6b: 98:9c:09:17:8a:e5:ea:3b:13:65:f3:9d:69:7d:dc:2b:a5:66: b9:54:ce:49:4a:30:1c:5d:ff:9b:a2:82:e6:5d:4f:0d:2a:50: 2b:03:e7:ce:67:1b:51:6e:66:f2:0f:b7:2c:3b:63:25:2d:a8: d3:72:b8:d1:67:f8:a7:a6:ce:26:2a:9e:4d:68:bd:b8:a7:05: 61:b8:46:c2:fb:b0:8a:0f:5c:9a:f7:e0:35:67:6b:2f:57:83: 43:39:1b:e7:5e:cb:67:ba:b8:be:bb:06:be:70:82:3b:50:3a: ba:36:df:aa:bb:3e:3c:2f:64:22:f9:75:0f:49:85:e0:81:ac: 14:21:75:db:f6:01:27:b7:bd:e5:b3:1c:22:38:49:24:a7:ae: c4:f5:59:31:1d:d6:a9:98:ea:99:03:38:62:79:73:d4:60:a5: 9e:73:02:5c:a9:58:d0:05:db:b0:01:fb:50:3d:d0:1b:3e:e8: 7c:59:52:d0:cb:cc:2b:3e:6d:f7:43:8f:8a:78:1a:27:7a:17: 31:c1:25:da:f7:0b:bd:fb:dc:eb:b0:92:99:ac:92:45:58:50: a7:0e:46:01:a9:ed:85:8c:b9:21:6e:05:68:aa:88:c7:2a:ca: e0:e5:20:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUKVOXu2czbYj+RP2GFMwAVdS2K+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUyNVoX DTI3MDExOTAxMTAyNVowMzExMC8GA1UEAxMoODQ1OEYzMDEyN0NFRkZGQkMzQkE0 NERDNDRDNEZEOTkyRUQyRjk3RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKH9W/mHLCg029i7W7kUvjMEzXxMk+1BHt8S/qK2lTwupJR+M3p3FcmmaC/o vgg3WNQmjilqGOv/TGjjFyCbcCzTNIguQx0SERpIhngzSLh0C7fhv4CXDPPP5QTI anBQzsoqmOe9TPa4rid3DLAIO0+KI6ePQxOStWIOiaqzTZUsDOzlcKquwN+c2/z0 VDUatBUWkCXi1/LK+fwWfzRscp0U6ofb8XyHCN/oK60J6jvFA13j32xVPmq0AlyV 7yUVrYxbRd6+4GxSI6Cx85t9hVXrVxIuJAOXspqW0yXNbiko12fPYWr6RSyEsh5t Em63ns02k9Tg6wiIXWJs/CtyqMcCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBSEWPMB J87/+8O6RNxExP2ZLtL5fTAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0NDcwMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK qAUwDQYJKoZIhvcNAQELBQADggEBAJKTLe/Bqyejrv19tadO7lgPa5icCReK5eo7 E2XznWl93CulZrlUzklKMBxd/5uiguZdTw0qUCsD585nG1FuZvIPtyw7YyUtqNNy uNFn+KemziYqnk1ovbinBWG4RsL7sIoPXJr34DVnay9Xg0M5G+dey2e6uL67Br5w gjtQOro236q7PjwvZCL5dQ9JheCBrBQhddv2ASe3veWzHCI4SSSnrsT1WTEd1qmY 6pkDOGJ5c9RgpZ5zAlypWNAF27AB+1A90Bs+6HxZUtDLzCs+bfdDj4p4Gid6FzHB Jdr3C7373OuwkpmskkVYUKcORgGp7YWMuSFuBWiqiMcqyuDlIGY= -----END CERTIFICATE-----Generated at Sun Jan 25 15:17:10 2026 by rpki-client