This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142073.roa File: AS142073.roa (raw, json) Hash identifier: fjhw16Q9OsFgsH2hgPRfen86pfBA1Op5E/ri7wK6sxM= Subject key identifier: C2:1C:BA:88:35:13:54:A8:6E:35:E0:BA:96:C2:60:98:90:A1:F0:12 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 247DFD335A7FE64944722F1700A4A12BE39FF8C7 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142073.roa Signing time: Tue 20 Jan 2026 01:10:17 +0000 ROA not before: Tue 20 Jan 2026 01:05:17 +0000 ROA not after: Tue 19 Jan 2027 01:10:17 +0000 asID: 142073 IP address blocks: 2001:253:207::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:7d:fd:33:5a:7f:e6:49:44:72:2f:17:00:a4:a1:2b:e3:9f:f8:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:17 2026 GMT Not After : Jan 19 01:10:17 2027 GMT Subject: CN=C21CBA88351354A86E35E0BA96C2609890A1F012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fa:1f:7c:de:34:20:7c:bb:ca:01:96:23:61: b4:ef:56:9c:1b:dd:3e:61:9c:82:4d:53:4f:ce:17: f0:dc:18:1f:15:f5:e3:5b:83:53:80:34:75:4f:52: 0a:4d:2b:4a:de:df:3b:8c:af:00:28:b7:2d:9a:0c: e7:a6:f2:f5:d0:68:d3:48:61:e3:a9:b3:91:b5:38: 27:64:67:d7:6f:c3:4f:cd:c1:9d:10:68:6d:13:ac: bf:be:7b:0d:e1:31:db:9e:f1:0f:e9:ed:45:c2:a0: a3:b0:25:d3:91:b8:7d:00:52:04:b6:a4:2a:73:3f: a3:da:b0:64:0d:f0:ac:60:85:67:bc:0c:e4:fe:0c: 63:c0:0c:58:5b:84:30:f2:5f:65:33:24:50:3c:45: 5e:05:02:81:6c:7b:96:0d:f8:f7:25:c3:8e:36:b4: 37:4f:36:b9:5b:a4:0c:5d:c5:c5:2c:dd:67:ce:9e: fa:08:71:84:98:57:8f:75:aa:13:f8:db:54:0d:4c: 5a:d9:ed:63:eb:67:40:c2:cc:fa:69:ad:c4:95:97: 56:c5:11:15:b6:47:42:22:5b:c0:dc:ec:72:36:8e: 98:14:58:f3:15:ff:0d:39:89:b6:44:4c:e1:0c:45: b9:8d:45:6a:fa:34:1a:4c:22:d5:c9:e0:0f:45:9a: 42:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1C:BA:88:35:13:54:A8:6E:35:E0:BA:96:C2:60:98:90:A1:F0:12 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:207::/48 Signature Algorithm: sha256WithRSAEncryption c9:39:52:36:b0:71:ac:25:1f:59:47:81:a9:d4:28:46:a3:c2: 1d:61:41:eb:5a:ec:ab:a6:3f:db:99:5b:1f:61:2f:36:aa:c4: c2:4d:85:33:f9:3e:75:7b:35:13:30:d4:34:2c:67:39:84:f0: bc:22:08:2f:29:4d:d6:56:cc:8b:48:d2:7a:05:49:d5:72:10: 34:5e:6d:6e:7f:27:91:51:ce:8c:9b:9f:bf:b9:77:13:5d:17: e7:94:2a:a2:69:20:4f:63:f0:e5:e7:24:ca:56:d5:e5:50:c1: be:05:a1:4b:13:8d:f7:c2:09:e1:1d:91:57:95:dd:a9:0f:5b: dc:d8:8f:25:e9:9d:bc:38:06:76:ef:34:ff:eb:7c:d8:54:11: 8e:2a:d9:64:36:da:9f:1f:c2:b4:03:cf:aa:fd:01:04:dc:1e: 08:9a:51:87:a1:5f:e1:4f:f3:a3:c0:1d:95:2c:3d:24:c4:94: 33:c0:10:e7:f7:38:79:a7:22:be:4b:45:f8:66:2e:1e:74:14: 98:98:dd:80:99:67:28:28:35:5c:ec:4a:28:e8:38:80:ae:ad: 26:8c:ab:22:51:b8:4c:42:ce:19:5a:58:48:75:32:22:e3:9d: 73:d1:4e:b5:82:88:6d:0c:23:dc:01:f8:31:f8:34:cc:f8:8f: ac:35:58:e2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUJH39M1p/5klEci8XAKShK+Of+McwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxN1oX DTI3MDExOTAxMTAxN1owMzExMC8GA1UEAxMoQzIxQ0JBODgzNTEzNTRBODZFMzVF MEJBOTZDMjYwOTg5MEExRjAxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOX6H3zeNCB8u8oBliNhtO9WnBvdPmGcgk1TT84X8NwYHxX141uDU4A0dU9S Ck0rSt7fO4yvACi3LZoM56by9dBo00hh46mzkbU4J2Rn12/DT83BnRBobROsv757 DeEx257xD+ntRcKgo7Al05G4fQBSBLakKnM/o9qwZA3wrGCFZ7wM5P4MY8AMWFuE MPJfZTMkUDxFXgUCgWx7lg349yXDjja0N082uVukDF3FxSzdZ86e+ghxhJhXj3Wq E/jbVA1MWtntY+tnQMLM+mmtxJWXVsURFbZHQiJbwNzscjaOmBRY8xX/DTmJtkRM 4QxFuY1Favo0Gkwi1cngD0WaQqsCAwEAAaOCAccwggHDMB0GA1UdDgQWBBTCHLqI NRNUqG414LqWwmCYkKHwEjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCBzANBgkqhkiG9w0BAQsFAAOCAQEAyTlSNrBxrCUfWUeBqdQoRqPCHWFB61rs q6Y/25lbH2EvNqrEwk2FM/k+dXs1EzDUNCxnOYTwvCIILylN1lbMi0jSegVJ1XIQ NF5tbn8nkVHOjJufv7l3E10X55QqomkgT2Pw5eckylbV5VDBvgWhSxON98IJ4R2R V5XdqQ9b3NiPJemdvDgGdu80/+t82FQRjirZZDbanx/CtAPPqv0BBNweCJpRh6Ff 4U/zo8AdlSw9JMSUM8AQ5/c4eacivktF+GYuHnQUmJjdgJlnKCg1XOxKKOg4gK6t JoyrIlG4TELOGVpYSHUyIuOdc9FOtYKIbQwj3AH4Mfg0zPiPrDVY4g== -----END CERTIFICATE-----Generated at Sun Jan 25 16:42:49 2026 by rpki-client