This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142074.roa File: AS142074.roa (raw, json) Hash identifier: +tYX13sWJ5tXpBG1if/RtWwWqISMdyHgrp/FsKNIhJc= Subject key identifier: 53:63:09:43:28:88:AF:16:68:4C:1A:51:D7:89:B6:F0:8C:B1:1B:8A Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 555B5581D3B5EC59FBAF51539F3417D1DC34596D Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142074.roa Signing time: Tue 20 Jan 2026 01:10:19 +0000 ROA not before: Tue 20 Jan 2026 01:05:19 +0000 ROA not after: Tue 19 Jan 2027 01:10:19 +0000 asID: 142074 IP address blocks: 2001:253:208::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:5b:55:81:d3:b5:ec:59:fb:af:51:53:9f:34:17:d1:dc:34:59:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:19 2026 GMT Not After : Jan 19 01:10:19 2027 GMT Subject: CN=536309432888AF16684C1A51D789B6F08CB11B8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ab:61:b5:f3:34:6c:d5:8f:dd:59:0e:ae:97: 95:4b:9e:f8:59:12:77:7e:c8:f3:33:48:7a:60:6a: f8:fe:fb:4b:c0:a8:7a:fd:4a:74:86:fb:ad:ee:e0: 7e:16:ec:67:8f:c5:8e:2c:64:dc:7c:b3:8e:87:49: 33:1a:6b:08:9a:f4:ec:e6:7d:48:4d:26:85:9f:0a: ac:1c:5e:80:42:a7:ad:70:ba:7b:1a:a1:09:0e:38: 09:98:1d:ba:a5:b3:83:3b:a9:66:f8:6c:81:6a:d1: 4c:76:d5:6b:7e:1a:b8:90:c9:6d:48:73:89:47:eb: ae:ab:44:50:93:7b:27:93:24:95:44:96:8d:89:8a: aa:b1:9c:f8:21:20:3e:ee:58:d3:5f:b4:ce:f7:45: 39:01:9a:32:b5:a4:06:b7:8d:8c:3a:f1:b3:dd:9a: bc:9c:7e:27:00:82:ce:6b:1c:58:b2:52:a4:39:71: 06:65:8a:84:60:f9:54:bd:2a:7f:7b:19:b7:87:22: b4:a1:4d:0a:9d:69:4c:56:c4:8e:f2:79:8e:d9:a5: e2:06:c2:5e:cb:c7:82:54:96:6d:28:15:88:c8:fb: 3d:79:78:eb:e7:46:2e:a4:00:1a:68:f9:86:2e:5c: 11:3a:67:ae:5d:10:1f:5c:5d:a1:dd:6a:aa:3f:c5: c0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:63:09:43:28:88:AF:16:68:4C:1A:51:D7:89:B6:F0:8C:B1:1B:8A X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142074.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:208::/48 Signature Algorithm: sha256WithRSAEncryption cc:b5:93:07:5d:8c:32:ac:4e:8a:f0:e6:9b:4e:da:3e:ae:d0: 6b:27:1a:ce:41:f4:c4:99:1f:d3:6c:1b:d1:5b:9c:a0:3e:f2: 99:a7:f3:33:9c:ae:01:54:56:f1:3c:48:54:55:d1:04:c4:9a: 97:c7:83:c1:9f:6a:3d:16:fe:fc:37:bb:bd:93:39:47:e9:7d: df:19:27:ad:ba:c2:89:fa:69:b5:8c:a3:d2:c1:50:a9:60:7e: ee:46:59:08:17:15:80:7f:22:86:7c:3a:7a:58:61:d3:83:d6: 74:f3:10:91:78:fb:07:4c:55:b3:2f:3e:19:72:f4:63:d1:16: 65:84:9b:a4:52:3b:44:43:3c:d5:6e:0a:fe:38:80:a7:96:09: e8:60:b8:8a:79:37:8f:9c:83:16:62:33:e3:a2:04:36:6f:44: 6e:34:e2:f5:b0:2d:ed:68:ec:5b:50:df:73:7f:62:88:83:2a: ec:ae:15:2c:13:c6:74:ba:f3:11:61:e3:e4:43:8a:d2:48:fc: 41:ea:ce:85:5c:f1:c0:0a:19:40:7b:dd:76:c5:32:f6:9f:0f: 80:4e:8f:41:bf:c8:b6:79:ca:2f:61:a7:82:bd:1c:ac:54:0b: 11:20:19:6e:c8:0d:63:6b:ad:63:25:c8:9b:d6:01:ef:5d:e3: 7b:c3:a5:28 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUVVtVgdO17Fn7r1FTnzQX0dw0WW0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxOVoX DTI3MDExOTAxMTAxOVowMzExMC8GA1UEAxMoNTM2MzA5NDMyODg4QUYxNjY4NEMx QTUxRDc4OUI2RjA4Q0IxMUI4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKOrYbXzNGzVj91ZDq6XlUue+FkSd37I8zNIemBq+P77S8Coev1KdIb7re7g fhbsZ4/Fjixk3HyzjodJMxprCJr07OZ9SE0mhZ8KrBxegEKnrXC6exqhCQ44CZgd uqWzgzupZvhsgWrRTHbVa34auJDJbUhziUfrrqtEUJN7J5MklUSWjYmKqrGc+CEg Pu5Y01+0zvdFOQGaMrWkBreNjDrxs92avJx+JwCCzmscWLJSpDlxBmWKhGD5VL0q f3sZt4citKFNCp1pTFbEjvJ5jtml4gbCXsvHglSWbSgViMj7PXl46+dGLqQAGmj5 hi5cETpnrl0QH1xdod1qqj/FwG0CAwEAAaOCAccwggHDMB0GA1UdDgQWBBRTYwlD KIivFmhMGlHXibbwjLEbijAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCCDANBgkqhkiG9w0BAQsFAAOCAQEAzLWTB12MMqxOivDmm07aPq7QaycazkH0 xJkf02wb0VucoD7ymafzM5yuAVRW8TxIVFXRBMSal8eDwZ9qPRb+/De7vZM5R+l9 3xknrbrCifpptYyj0sFQqWB+7kZZCBcVgH8ihnw6elhh04PWdPMQkXj7B0xVsy8+ GXL0Y9EWZYSbpFI7REM81W4K/jiAp5YJ6GC4ink3j5yDFmIz46IENm9EbjTi9bAt 7WjsW1Dfc39iiIMq7K4VLBPGdLrzEWHj5EOK0kj8QerOhVzxwAoZQHvddsUy9p8P gE6PQb/ItnnKL2Gngr0crFQLESAZbsgNY2utYyXIm9YB713je8OlKA== -----END CERTIFICATE-----Generated at Sun Jan 25 15:17:23 2026 by rpki-client