This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142068.roa File: AS142068.roa (raw, json) Hash identifier: X0dHbUdVYNHEjcBzVc/p/Zi7V2Hu610QmvSjKNuUKJk= Subject key identifier: DB:5D:9E:6E:D8:19:DE:D7:83:F7:C7:FE:C9:71:83:6E:C7:B2:16:28 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 6E7F245A767CAA56D2C92E2438BE60202ACC1F4D Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142068.roa Signing time: Tue 02 Dec 2025 08:47:52 +0000 ROA not before: Tue 02 Dec 2025 08:42:52 +0000 ROA not after: Tue 01 Dec 2026 08:47:52 +0000 asID: 142068 IP address blocks: 2001:253:202::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:7f:24:5a:76:7c:aa:56:d2:c9:2e:24:38:be:60:20:2a:cc:1f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:52 2025 GMT Not After : Dec 1 08:47:52 2026 GMT Subject: CN=DB5D9E6ED819DED783F7C7FEC971836EC7B21628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:73:11:3d:df:ce:b9:df:97:5e:b5:15:7d:73: 41:78:2c:8c:ad:4e:29:17:1d:c6:ce:91:43:50:fb: 44:48:33:74:e1:3d:df:0b:30:87:85:8f:19:4a:00: 23:11:2b:19:e3:7e:c5:9c:fb:ba:a7:ba:e1:72:37: ca:d4:18:df:80:06:3a:21:4f:4d:6a:b9:b9:10:14: 5e:1d:b5:91:93:a8:60:a6:86:df:26:2e:95:97:58: dc:58:f6:43:60:25:6b:7c:4d:a9:f2:08:c8:a0:38: 42:4e:c7:87:0a:08:24:29:da:0f:03:b3:64:8f:a1: 68:04:1b:5f:8e:6d:e5:e6:a5:59:1f:93:43:af:48: e7:c3:f8:d2:6e:af:c3:86:db:64:bd:cd:fb:4d:fd: 41:f8:67:76:35:45:ef:ec:fd:d2:0a:9b:dd:9e:75: fa:09:b8:98:b5:2e:29:34:2b:7d:4d:8b:87:5c:93: c6:3f:4c:fe:cd:15:a7:ad:20:5d:16:b1:e6:de:a2: 89:94:20:98:63:a8:f6:07:29:b3:65:df:7b:08:91: 47:e6:cb:d6:f8:66:96:7c:cf:71:2e:02:d7:f0:a7: 19:9f:99:be:1e:58:04:ef:e8:8a:aa:8d:54:2e:de: 08:83:1d:46:b1:1e:55:98:c0:67:a8:77:89:5d:91: 09:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5D:9E:6E:D8:19:DE:D7:83:F7:C7:FE:C9:71:83:6E:C7:B2:16:28 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142068.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:202::/48 Signature Algorithm: sha256WithRSAEncryption 8d:41:d7:b9:62:36:6b:d0:91:29:7d:f1:54:d3:b5:97:09:7b: d3:b6:48:29:48:a1:24:ef:70:8c:cb:c5:71:62:13:0a:e1:1c: a0:fd:63:ce:c4:db:fc:99:94:4a:45:51:be:bc:8e:aa:f1:a1: 4e:e1:f1:35:3d:f7:43:4c:08:2e:b7:54:e1:71:06:83:7a:6f: bc:8b:fa:60:b2:67:b1:2d:7c:61:d4:84:36:7c:f0:dc:95:4b: 12:13:00:3f:8d:52:5f:12:6e:16:5f:29:83:c0:5a:a7:86:43: cc:6d:25:02:1f:3d:63:61:30:7c:03:90:f6:74:f9:cf:02:e4: bb:50:78:b2:11:a3:94:88:37:d8:fb:50:dd:d3:c8:7e:24:27: 3c:74:1a:ec:cf:66:ba:3d:6c:61:fb:05:95:cc:14:ee:84:47: eb:41:1a:50:22:14:ee:5f:d1:c1:00:0b:1d:d1:b4:9b:11:27: 1b:30:5f:14:b5:53:f7:bb:e0:f8:33:aa:99:12:83:03:77:7d: 7d:0f:8d:9a:23:34:0e:88:18:99:30:ec:44:2e:90:25:85:6a: 90:0c:50:8b:0b:bf:45:c6:4b:dd:f2:7c:4d:d8:93:7b:d0:5a: 16:f8:52:09:9a:7f:4d:bc:76:d5:90:c4:a5:44:ac:7b:a9:8a: e0:50:74:17 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUbn8kWnZ8qlbSyS4kOL5gICrMH00wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI1MloX DTI2MTIwMTA4NDc1MlowMzExMC8GA1UEAxMoREI1RDlFNkVEODE5REVENzgzRjdD N0ZFQzk3MTgzNkVDN0IyMTYyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORzET3fzrnfl161FX1zQXgsjK1OKRcdxs6RQ1D7REgzdOE93wswh4WPGUoA IxErGeN+xZz7uqe64XI3ytQY34AGOiFPTWq5uRAUXh21kZOoYKaG3yYulZdY3Fj2 Q2Ala3xNqfIIyKA4Qk7HhwoIJCnaDwOzZI+haAQbX45t5ealWR+TQ69I58P40m6v w4bbZL3N+039QfhndjVF7+z90gqb3Z51+gm4mLUuKTQrfU2Lh1yTxj9M/s0Vp60g XRax5t6iiZQgmGOo9gcps2XfewiRR+bL1vhmlnzPcS4C1/CnGZ+Zvh5YBO/oiqqN VC7eCIMdRrEeVZjAZ6h3iV2RCbECAwEAAaOCAccwggHDMB0GA1UdDgQWBBTbXZ5u 2Bne14P3x/7JcYNux7IWKDAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA2OC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCAjANBgkqhkiG9w0BAQsFAAOCAQEAjUHXuWI2a9CRKX3xVNO1lwl707ZIKUih JO9wjMvFcWITCuEcoP1jzsTb/JmUSkVRvryOqvGhTuHxNT33Q0wILrdU4XEGg3pv vIv6YLJnsS18YdSENnzw3JVLEhMAP41SXxJuFl8pg8Bap4ZDzG0lAh89Y2EwfAOQ 9nT5zwLku1B4shGjlIg32PtQ3dPIfiQnPHQa7M9muj1sYfsFlcwU7oRH60EaUCIU 7l/RwQALHdG0mxEnGzBfFLVT97vg+DOqmRKDA3d9fQ+NmiM0DogYmTDsRC6QJYVq kAxQiwu/RcZL3fJ8TdiTe9BaFvhSCZp/Tbx21ZDEpUSse6mK4FB0Fw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:27 2025 by rpki-client