This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142072.roa File: AS142072.roa (raw, json) Hash identifier: d1TxYUGg8kBS/Xt5QEJHcZ6v+yT6j95DtrcbQpSQ0Ss= Subject key identifier: 42:63:8B:B8:70:6B:FA:F3:90:6E:C4:EA:4F:24:2D:36:FE:6B:E3:A7 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 63BBD948CAE8F94F9EBAA94D1403285B5AF59D01 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142072.roa Signing time: Tue 02 Dec 2025 08:47:43 +0000 ROA not before: Tue 02 Dec 2025 08:42:43 +0000 ROA not after: Tue 01 Dec 2026 08:47:43 +0000 asID: 142072 IP address blocks: 2001:253:206::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bb:d9:48:ca:e8:f9:4f:9e:ba:a9:4d:14:03:28:5b:5a:f5:9d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:43 2025 GMT Not After : Dec 1 08:47:43 2026 GMT Subject: CN=42638BB8706BFAF3906EC4EA4F242D36FE6BE3A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e5:48:f2:e8:2b:14:a3:2f:ad:23:9b:e5:ac: 4f:bc:4c:22:4a:7c:7b:20:1f:1b:62:24:b9:62:d5: 29:25:1a:b7:4e:cf:29:7f:8c:d4:4c:60:69:e7:80: 48:db:10:cf:3d:18:0b:8f:6e:21:07:99:01:97:4f: 1d:b4:63:39:ff:a9:38:41:7d:eb:b2:39:22:66:71: a6:9f:66:47:69:8d:c5:e4:a4:cf:ed:ce:a8:fa:5d: fc:0b:e2:62:7d:68:51:7c:91:74:99:a8:9b:b5:ca: 2f:e3:93:a4:f0:01:23:93:45:e0:dc:e9:d3:33:81: 0d:1d:3d:f9:04:e5:3b:3e:e1:d2:46:f8:fd:bb:ae: 24:52:53:3e:51:04:9b:03:b4:7d:ee:7d:92:6c:50: a6:54:ff:d8:14:e3:88:49:a8:99:ce:74:62:31:4f: 91:31:da:2a:16:61:44:69:bc:dc:18:51:a6:55:ff: 5f:da:75:5c:bd:54:62:16:a6:47:21:93:93:03:d8: fe:77:b1:db:1c:92:55:1a:75:25:9e:a3:4b:06:6a: 71:49:1a:78:b3:ad:f5:9d:75:95:66:8f:e1:73:d5: 63:18:f0:d1:89:f3:5a:fc:39:c5:da:e4:0a:9f:3d: af:2b:90:42:e2:ef:d7:60:3b:17:cf:5d:4f:ac:c5: 62:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:63:8B:B8:70:6B:FA:F3:90:6E:C4:EA:4F:24:2D:36:FE:6B:E3:A7 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142072.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:206::/48 Signature Algorithm: sha256WithRSAEncryption 9c:03:01:8b:9e:69:08:47:f5:59:7f:c7:a4:a7:d8:aa:f5:37: 9d:bc:98:87:d4:77:7a:b1:71:f8:bc:53:e9:ea:28:8b:0e:71: 2e:9a:b6:53:26:18:de:75:5a:b8:ea:28:46:7f:2d:e5:81:71: 98:54:46:ca:62:58:62:c0:19:96:ff:a1:cb:a0:d8:af:f7:3b: f6:67:fd:b0:8b:c0:1c:17:85:7c:d8:22:85:40:3d:e3:4d:87: 8b:26:3e:99:68:2d:9e:ad:6c:0b:e4:d4:f1:ed:be:44:e3:a8: b7:d2:c4:c3:b4:23:16:d9:79:b2:2a:13:e0:3a:48:d2:e4:0e: 99:7e:c8:76:ca:9c:8f:52:2c:fc:55:ec:b3:1a:6b:2a:69:d5: 82:d7:e2:a7:aa:05:62:14:02:69:c8:cc:62:d7:d9:79:e3:08: 00:e1:0f:82:84:92:c9:8e:70:48:51:70:84:0f:b7:fc:69:2c: d1:1d:ad:e4:9e:31:e9:b2:ce:da:39:80:0d:02:de:dd:85:7c: e0:8f:c9:e4:2f:85:86:d9:5e:c8:7e:b3:8b:2d:6a:6f:cb:22: 0a:e5:c1:84:09:a8:47:30:33:19:a5:43:52:19:c4:d7:c9:96: ed:4e:34:d2:ce:4a:63:fa:0c:0b:1c:cb:48:39:a9:f6:96:c8: 6f:ff:e8:dc -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUY7vZSMro+U+euqlNFAMoW1r1nQEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0M1oX DTI2MTIwMTA4NDc0M1owMzExMC8GA1UEAxMoNDI2MzhCQjg3MDZCRkFGMzkwNkVD NEVBNEYyNDJEMzZGRTZCRTNBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJTlSPLoKxSjL60jm+WsT7xMIkp8eyAfG2IkuWLVKSUat07PKX+M1ExgaeeA SNsQzz0YC49uIQeZAZdPHbRjOf+pOEF967I5ImZxpp9mR2mNxeSkz+3OqPpd/Avi Yn1oUXyRdJmom7XKL+OTpPABI5NF4Nzp0zOBDR09+QTlOz7h0kb4/buuJFJTPlEE mwO0fe59kmxQplT/2BTjiEmomc50YjFPkTHaKhZhRGm83BhRplX/X9p1XL1UYham RyGTkwPY/nex2xySVRp1JZ6jSwZqcUkaeLOt9Z11lWaP4XPVYxjw0YnzWvw5xdrk Cp89ryuQQuLv12A7F89dT6zFYkUCAwEAAaOCAccwggHDMB0GA1UdDgQWBBRCY4u4 cGv685BuxOpPJC02/mvjpzAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCBjANBgkqhkiG9w0BAQsFAAOCAQEAnAMBi55pCEf1WX/HpKfYqvU3nbyYh9R3 erFx+LxT6eooiw5xLpq2UyYY3nVauOooRn8t5YFxmFRGymJYYsAZlv+hy6DYr/c7 9mf9sIvAHBeFfNgihUA9402HiyY+mWgtnq1sC+TU8e2+ROOot9LEw7QjFtl5sioT 4DpI0uQOmX7Idsqcj1Is/FXssxprKmnVgtfip6oFYhQCacjMYtfZeeMIAOEPgoSS yY5wSFFwhA+3/Gks0R2t5J4x6bLO2jmADQLe3YV84I/J5C+FhtleyH6ziy1qb8si CuXBhAmoRzAzGaVDUhnE18mW7U400s5KY/oMCxzLSDmp9pbIb//o3A== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:25 2025 by rpki-client