This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142073.roa File: AS142073.roa (raw, json) Hash identifier: 55at9T+6ApS0qm2W7smThKin95JfZDgN6lrk3D3G7Ac= Subject key identifier: 9C:69:18:56:6A:31:42:06:99:09:83:8C:F5:93:8F:F7:BE:3B:80:B5 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 775988C2E18EF01282BFB376462E6D681C6A8095 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142073.roa Signing time: Tue 02 Dec 2025 08:47:51 +0000 ROA not before: Tue 02 Dec 2025 08:42:51 +0000 ROA not after: Tue 01 Dec 2026 08:47:51 +0000 asID: 142073 IP address blocks: 2001:253:207::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:59:88:c2:e1:8e:f0:12:82:bf:b3:76:46:2e:6d:68:1c:6a:80:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:51 2025 GMT Not After : Dec 1 08:47:51 2026 GMT Subject: CN=9C6918566A3142069909838CF5938FF7BE3B80B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fe:99:be:fc:eb:2e:26:01:bf:8c:4f:06:4d: 2d:22:cd:cd:fe:67:dc:d5:19:4f:92:3d:fc:97:90: 62:c7:d8:c8:6d:47:c9:85:2e:64:79:a7:a9:ef:06: e7:22:09:a9:6a:93:c2:b9:b8:ee:a8:44:b1:72:b6: 02:35:05:2f:23:ca:89:28:0d:c5:7e:e6:9c:30:f7: d7:f1:0d:94:b4:2b:b6:22:d3:0a:3e:8f:e6:07:d0: ca:1d:a9:66:c6:08:12:77:da:7b:53:fc:9a:68:93: 7c:c9:79:68:48:e4:5e:1a:cd:c1:dd:0b:dd:08:e8: 14:98:e8:bf:69:4d:5d:ed:7b:50:df:53:ef:20:92: 7a:5d:8e:27:6e:81:f1:06:c9:df:14:e7:a7:c1:01: c7:7e:51:15:a4:e6:17:a1:fa:db:48:70:9f:88:b8: ff:89:b9:b6:5a:d9:ba:1a:43:20:b4:9b:f1:63:d8: 68:23:3b:c8:fc:4d:cd:4d:4e:73:aa:01:6e:f2:06: b5:f1:0c:a6:d2:75:73:75:af:53:bc:2f:12:23:95: 0a:dc:12:74:f4:a2:c6:d3:34:55:bc:a3:c6:95:3c: f4:56:d7:f9:11:73:b9:89:8a:91:94:9a:4c:88:34: d5:8f:0c:8a:76:e5:d7:0c:f8:5d:c5:b5:32:d5:7b: c8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:69:18:56:6A:31:42:06:99:09:83:8C:F5:93:8F:F7:BE:3B:80:B5 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:207::/48 Signature Algorithm: sha256WithRSAEncryption 76:60:f2:b6:30:70:e4:de:a5:2c:6f:fc:19:70:dc:7a:c7:9c: c6:0d:23:b6:d0:cb:5a:93:b9:62:8c:3e:9d:04:64:6d:37:db: fb:43:f5:16:5f:fe:1f:76:50:3b:5e:3c:7d:34:aa:a8:95:ba: 34:80:83:f7:85:27:ea:0c:57:1d:1f:ea:3c:8d:9b:4e:9f:16: 05:2a:f2:01:0f:be:4f:e3:81:90:08:24:41:c1:69:39:6a:5b: f0:af:94:b3:8c:b8:b3:cb:88:be:25:a4:29:eb:0f:4b:b9:32: 62:cc:5e:88:5d:7b:98:55:bb:d7:6a:bf:e7:eb:46:c1:5e:2b: ce:07:2e:d3:f2:59:58:1b:74:c2:15:04:2f:5a:f8:26:67:5a: b3:ec:3f:25:9d:14:db:28:9e:da:fb:e1:d2:c4:88:ba:3a:a0: ff:4f:35:be:3e:a1:92:bf:46:22:ee:6a:d3:7d:4c:3f:34:f5: e2:c0:e0:ef:d2:44:74:94:d1:b6:47:d1:2e:6a:82:19:5e:4c: 77:49:45:dc:e0:2c:fe:ad:51:b3:7b:b6:aa:d3:70:fd:e5:f4: 34:51:5d:04:7a:f3:96:bb:af:a8:28:28:e0:e0:ae:7d:8a:6c: 9c:25:f9:41:a5:01:61:5c:3d:f5:41:fb:48:64:e7:a7:f6:8a: 4b:d4:32:26 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUd1mIwuGO8BKCv7N2Ri5taBxqgJUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI1MVoX DTI2MTIwMTA4NDc1MVowMzExMC8GA1UEAxMoOUM2OTE4NTY2QTMxNDIwNjk5MDk4 MzhDRjU5MzhGRjdCRTNCODBCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAML+mb786y4mAb+MTwZNLSLNzf5n3NUZT5I9/JeQYsfYyG1HyYUuZHmnqe8G 5yIJqWqTwrm47qhEsXK2AjUFLyPKiSgNxX7mnDD31/ENlLQrtiLTCj6P5gfQyh2p ZsYIEnfae1P8mmiTfMl5aEjkXhrNwd0L3QjoFJjov2lNXe17UN9T7yCSel2OJ26B 8QbJ3xTnp8EBx35RFaTmF6H620hwn4i4/4m5tlrZuhpDILSb8WPYaCM7yPxNzU1O c6oBbvIGtfEMptJ1c3WvU7wvEiOVCtwSdPSixtM0VbyjxpU89FbX+RFzuYmKkZSa TIg01Y8Minbl1wz4XcW1MtV7yNcCAwEAAaOCAccwggHDMB0GA1UdDgQWBBScaRhW ajFCBpkJg4z1k4/3vjuAtTAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCBzANBgkqhkiG9w0BAQsFAAOCAQEAdmDytjBw5N6lLG/8GXDcesecxg0jttDL WpO5Yow+nQRkbTfb+0P1Fl/+H3ZQO148fTSqqJW6NICD94Un6gxXHR/qPI2bTp8W BSryAQ++T+OBkAgkQcFpOWpb8K+Us4y4s8uIviWkKesPS7kyYsxeiF17mFW712q/ 5+tGwV4rzgcu0/JZWBt0whUEL1r4Jmdas+w/JZ0U2yie2vvh0sSIujqg/081vj6h kr9GIu5q031MPzT14sDg79JEdJTRtkfRLmqCGV5Md0lF3OAs/q1Rs3u2qtNw/eX0 NFFdBHrzlruvqCgo4OCufYpsnCX5QaUBYVw99UH7SGTnp/aKS9QyJg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:26 2025 by rpki-client