This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142076.roa File: AS142076.roa (raw, json) Hash identifier: nuSF9l+yuiKp5LwvJg5KUaXaLQGkfKhSnyYI/kVafeE= Subject key identifier: E1:FD:5F:C5:1F:49:3F:63:E4:D8:60:64:20:A1:1D:A8:22:B2:68:40 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 17DD8EC3D37ACAFBF2693DC467959944989C35BD Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142076.roa Signing time: Tue 20 Jan 2026 01:10:17 +0000 ROA not before: Tue 20 Jan 2026 01:05:17 +0000 ROA not after: Tue 19 Jan 2027 01:10:17 +0000 asID: 142076 IP address blocks: 2001:253:210::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:dd:8e:c3:d3:7a:ca:fb:f2:69:3d:c4:67:95:99:44:98:9c:35:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:17 2026 GMT Not After : Jan 19 01:10:17 2027 GMT Subject: CN=E1FD5FC51F493F63E4D8606420A11DA822B26840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:60:96:d6:a9:5a:da:e0:ae:a2:bd:a2:dc:ae: 85:db:3a:0c:f8:57:71:88:92:e4:fc:10:f8:75:2b: 8b:6e:59:38:56:aa:88:f4:0c:92:bd:82:61:0a:06: 1e:45:fa:42:bd:20:ce:35:03:af:26:a0:a4:38:2f: f4:da:b1:96:65:60:f1:85:00:f5:7d:b9:c0:71:b2: 25:6e:9b:d3:6c:39:ca:aa:29:96:e0:8b:85:1a:79: fa:e1:87:e1:69:de:0d:71:76:cd:23:00:4d:a2:a4: db:3e:3e:b8:ce:23:0b:b0:ed:8b:42:c3:c4:ef:42: e4:5a:f4:f8:6e:7a:7f:19:d8:51:07:4b:1f:04:85: 63:55:36:85:3f:cb:83:1c:90:f1:e6:44:25:e3:f8: f9:44:9b:33:13:5d:6d:cc:00:ee:c9:87:29:b9:bf: 27:70:2f:31:c7:26:5e:2f:66:8a:be:24:2b:b2:f2: 6c:de:ac:82:fb:7a:c8:13:b6:4f:30:73:08:58:41: 3d:d3:8b:0c:51:49:c1:39:d5:16:21:e9:3d:81:44: 9d:2a:88:a7:a6:e1:c6:62:2f:8a:fa:08:b4:e4:72: 04:6a:e4:21:e6:65:c0:63:e5:00:6e:52:b5:76:ff: 4a:d2:4f:a9:ec:00:92:2f:29:47:1d:e7:7c:ce:51: 0a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FD:5F:C5:1F:49:3F:63:E4:D8:60:64:20:A1:1D:A8:22:B2:68:40 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142076.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:210::/48 Signature Algorithm: sha256WithRSAEncryption d3:51:96:51:da:cd:8e:a4:cf:f4:41:bb:a2:15:73:2a:24:a0: 79:47:a0:c9:fe:e1:66:29:cc:5e:c8:1b:9a:22:b4:24:1e:b5: 92:d0:de:76:16:2a:2b:3b:1f:05:1c:10:88:75:54:9d:ca:03: e3:8b:0c:a0:14:5b:af:f7:42:90:a4:44:7d:e3:15:6c:0a:32: ce:ec:65:a0:cd:31:fe:73:dd:c4:6c:26:8a:eb:50:0e:3a:95: 3e:1e:22:d0:87:93:bd:46:c3:6c:48:c4:b4:56:f3:c8:57:16: 4b:e2:04:d0:ba:68:c1:03:6d:49:67:79:88:b5:43:4c:08:2f: 70:2a:1f:0b:e4:6a:4a:a7:ee:04:86:6b:25:77:90:30:ad:68: ed:07:ad:81:d3:67:e2:43:67:28:5e:04:a4:8e:a7:3b:7a:90: 4f:00:5f:99:b5:fe:0a:08:6b:fd:0a:3b:52:99:c9:5a:9c:2d: 52:ae:72:56:c6:50:41:ed:aa:49:6c:2d:62:8d:a8:ae:57:d1: 94:37:54:6a:30:9e:77:f9:2e:18:0c:8c:7c:1c:bc:d6:cf:cb: 4f:31:6c:a4:c6:43:5b:87:62:36:76:b6:e9:15:c0:83:dd:fd: 87:c2:9b:ef:11:e3:78:e5:e5:24:d8:02:85:4d:0e:1e:c0:a1: 54:59:e3:9b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUF92Ow9N6yvvyaT3EZ5WZRJicNb0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxN1oX DTI3MDExOTAxMTAxN1owMzExMC8GA1UEAxMoRTFGRDVGQzUxRjQ5M0Y2M0U0RDg2 MDY0MjBBMTFEQTgyMkIyNjg0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZgltapWtrgrqK9otyuhds6DPhXcYiS5PwQ+HUri25ZOFaqiPQMkr2CYQoG HkX6Qr0gzjUDryagpDgv9NqxlmVg8YUA9X25wHGyJW6b02w5yqopluCLhRp5+uGH 4WneDXF2zSMATaKk2z4+uM4jC7Dti0LDxO9C5Fr0+G56fxnYUQdLHwSFY1U2hT/L gxyQ8eZEJeP4+USbMxNdbcwA7smHKbm/J3AvMccmXi9mir4kK7LybN6sgvt6yBO2 TzBzCFhBPdOLDFFJwTnVFiHpPYFEnSqIp6bhxmIvivoItORyBGrkIeZlwGPlAG5S tXb/StJPqewAki8pRx3nfM5RCgECAwEAAaOCAccwggHDMB0GA1UdDgQWBBTh/V/F H0k/Y+TYYGQgoR2oIrJoQDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCEDANBgkqhkiG9w0BAQsFAAOCAQEA01GWUdrNjqTP9EG7ohVzKiSgeUegyf7h ZinMXsgbmiK0JB61ktDedhYqKzsfBRwQiHVUncoD44sMoBRbr/dCkKREfeMVbAoy zuxloM0x/nPdxGwmiutQDjqVPh4i0IeTvUbDbEjEtFbzyFcWS+IE0LpowQNtSWd5 iLVDTAgvcCofC+RqSqfuBIZrJXeQMK1o7QetgdNn4kNnKF4EpI6nO3qQTwBfmbX+ Cghr/Qo7UpnJWpwtUq5yVsZQQe2qSWwtYo2orlfRlDdUajCed/kuGAyMfBy81s/L TzFspMZDW4diNna26RXAg939h8Kb7xHjeOXlJNgChU0OHsChVFnjmw== -----END CERTIFICATE-----Generated at Sun Jan 25 13:34:59 2026 by rpki-client