This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142074.roa File: AS142074.roa (raw, json) Hash identifier: P+Ie8ADd3M7wffrIgaQUdX/ePqvVxUmA70O4sWa1CRc= Subject key identifier: 64:45:DF:81:06:08:6F:C3:FE:9C:50:4C:FC:5C:41:2D:A5:45:30:73 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 3ABB927B550BAD2F8998779B8699BEC30D8BAE86 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142074.roa Signing time: Tue 02 Dec 2025 08:47:48 +0000 ROA not before: Tue 02 Dec 2025 08:42:48 +0000 ROA not after: Tue 01 Dec 2026 08:47:48 +0000 asID: 142074 IP address blocks: 2001:253:208::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bb:92:7b:55:0b:ad:2f:89:98:77:9b:86:99:be:c3:0d:8b:ae:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:48 2025 GMT Not After : Dec 1 08:47:48 2026 GMT Subject: CN=6445DF8106086FC3FE9C504CFC5C412DA5453073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e5:7d:d4:89:2a:12:2d:ab:92:5d:54:f3:b9: 4c:ec:16:b5:bc:57:97:6b:14:38:71:2f:81:59:3a: a3:fc:63:60:a8:92:0b:c3:4d:30:62:8f:ee:30:82: 0f:75:9f:09:a5:e4:74:c2:d8:2f:e7:13:37:66:61: 33:e2:9e:20:2c:d3:70:08:50:a8:a4:0f:bd:5d:13: d5:53:19:7e:08:aa:20:40:d4:40:b1:76:b2:fa:c1: 2a:19:df:38:89:52:02:ef:58:74:7e:b7:40:a2:62: 53:54:e9:fb:3e:34:c8:85:42:6e:54:16:03:2c:e1: 1a:4b:ed:30:f5:85:48:4c:56:eb:9b:32:05:ea:19: b0:23:63:03:42:7e:7c:02:6c:b7:0d:69:bf:22:3b: 02:cf:62:b8:c0:8d:69:d5:3c:c3:72:76:a7:7e:dc: de:b7:7e:de:bc:5d:3d:29:17:40:30:3c:6b:cc:39: 50:f0:98:66:28:da:d4:25:68:ae:c7:82:ae:cc:87: a7:0e:ba:a6:69:d6:7a:1b:87:a8:79:4d:35:24:05: c2:74:6a:2b:fc:f2:d2:3a:71:64:50:14:61:d7:c9: ca:5f:49:b7:79:e3:3c:16:47:a8:98:26:b2:96:64: 58:d6:4f:34:f4:97:5c:fe:c5:b7:31:9c:f4:ad:6d: fd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:45:DF:81:06:08:6F:C3:FE:9C:50:4C:FC:5C:41:2D:A5:45:30:73 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142074.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:208::/48 Signature Algorithm: sha256WithRSAEncryption 57:bb:3e:37:b6:b8:78:25:5d:4d:db:b9:53:74:71:4c:9e:d6: 52:f1:b6:f0:8b:79:6a:a5:2a:13:de:61:fe:bb:0c:e1:5a:d8: 05:37:de:22:8a:05:73:2d:ec:bd:66:25:75:de:14:68:f2:cc: 0d:aa:d5:bb:72:3a:1c:b7:9a:b6:44:0a:16:7e:51:ba:ad:3d: 69:73:7c:1f:6b:e7:1f:99:79:c7:d3:b8:31:36:b7:9e:18:bf: 35:50:82:62:d7:ee:2e:44:e4:18:f0:d9:61:3c:30:db:1a:b5: 6c:3a:44:59:43:bd:5b:b1:b3:45:05:00:a0:16:b6:0d:18:db: 92:8a:0b:ec:ae:71:7a:fb:e7:42:b6:60:b4:ac:ee:7d:2e:1f: 57:cc:d0:67:b0:5a:03:75:53:35:43:9d:72:f2:ea:dc:ed:a4: 9c:0f:4d:57:c1:68:8f:2b:bd:6d:23:50:b2:c0:51:1f:54:e0: ea:9a:43:c5:d0:1a:2f:fc:15:41:c6:34:f4:67:ff:e9:44:8e: 75:e2:0e:74:96:ac:00:b2:e6:24:33:28:ed:0f:70:eb:ee:98: 7a:c8:d5:78:df:6c:d4:f8:45:40:fc:46:58:6e:c2:be:2a:c6: 71:bd:af:cf:63:df:25:b2:9f:b9:83:93:d2:08:c0:65:65:f4: 6b:ef:15:bb -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUOruSe1ULrS+JmHebhpm+ww2LroYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0OFoX DTI2MTIwMTA4NDc0OFowMzExMC8GA1UEAxMoNjQ0NURGODEwNjA4NkZDM0ZFOUM1 MDRDRkM1QzQxMkRBNTQ1MzA3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLlfdSJKhItq5JdVPO5TOwWtbxXl2sUOHEvgVk6o/xjYKiSC8NNMGKP7jCC D3WfCaXkdMLYL+cTN2ZhM+KeICzTcAhQqKQPvV0T1VMZfgiqIEDUQLF2svrBKhnf OIlSAu9YdH63QKJiU1Tp+z40yIVCblQWAyzhGkvtMPWFSExW65syBeoZsCNjA0J+ fAJstw1pvyI7As9iuMCNadU8w3J2p37c3rd+3rxdPSkXQDA8a8w5UPCYZija1CVo rseCrsyHpw66pmnWehuHqHlNNSQFwnRqK/zy0jpxZFAUYdfJyl9Jt3njPBZHqJgm spZkWNZPNPSXXP7FtzGc9K1t/V0CAwEAAaOCAccwggHDMB0GA1UdDgQWBBRkRd+B Bghvw/6cUEz8XEEtpUUwczAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCCDANBgkqhkiG9w0BAQsFAAOCAQEAV7s+N7a4eCVdTdu5U3RxTJ7WUvG28It5 aqUqE95h/rsM4VrYBTfeIooFcy3svWYldd4UaPLMDarVu3I6HLeatkQKFn5Ruq09 aXN8H2vnH5l5x9O4MTa3nhi/NVCCYtfuLkTkGPDZYTww2xq1bDpEWUO9W7GzRQUA oBa2DRjbkooL7K5xevvnQrZgtKzufS4fV8zQZ7BaA3VTNUOdcvLq3O2knA9NV8Fo jyu9bSNQssBRH1Tg6ppDxdAaL/wVQcY09Gf/6USOdeIOdJasALLmJDMo7Q9w6+6Y esjVeN9s1PhFQPxGWG7CvirGcb2vz2PfJbKfuYOT0gjAZWX0a+8Vuw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:25 2025 by rpki-client