This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142076.roa File: AS142076.roa (raw, json) Hash identifier: lUVjv1CLgZ0IKMDpLBYMygHjuGIu4Z7+zHhDhLh7nTU= Subject key identifier: 74:67:76:01:43:49:82:61:CF:E8:AC:D7:D7:18:34:AD:D3:6F:8F:7C Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 40A9C1BBCAA20CB3000310B01977A74907657DFB Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142076.roa Signing time: Tue 02 Dec 2025 08:47:43 +0000 ROA not before: Tue 02 Dec 2025 08:42:43 +0000 ROA not after: Tue 01 Dec 2026 08:47:43 +0000 asID: 142076 IP address blocks: 2001:253:210::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a9:c1:bb:ca:a2:0c:b3:00:03:10:b0:19:77:a7:49:07:65:7d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:43 2025 GMT Not After : Dec 1 08:47:43 2026 GMT Subject: CN=7467760143498261CFE8ACD7D71834ADD36F8F7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7f:0a:05:6e:c9:04:92:d2:76:65:06:bf:11: 53:66:a4:08:8b:cc:e0:fd:90:b3:65:69:f6:39:37: 10:c8:85:58:08:16:36:dd:9c:8c:bc:12:2b:26:4e: d3:ae:44:fb:09:ff:42:56:6e:1b:51:78:68:5c:9c: 90:6e:05:7e:95:78:05:55:c4:c0:71:c1:54:eb:13: 59:17:f5:ce:dc:cf:11:1f:e2:5c:22:6b:f5:50:80: 23:8d:60:3e:03:1a:93:ac:15:b1:1c:3e:23:4b:91: 3b:6c:fd:c0:2f:9b:10:58:36:83:a6:cd:3d:20:48: 59:d1:72:3f:27:ab:b3:d9:87:7b:9b:e9:ff:2f:81: 6a:f3:38:02:54:c2:73:06:5f:d6:34:cf:d4:1c:d5: c7:80:73:b4:2d:41:cd:00:bf:e8:14:03:e8:0d:71: 5d:29:00:f0:05:fc:07:13:41:7a:d8:72:e5:e4:3c: 6f:d0:5e:6b:ae:fd:75:3b:cc:48:63:f9:31:b0:b2: 8b:af:38:d5:c1:71:dd:87:09:ca:b9:17:f1:a1:6c: 55:d4:9c:56:38:86:00:7c:7e:12:10:20:4b:a3:b5: 48:01:ef:41:38:86:33:11:30:5f:ea:6e:94:60:ee: 8c:f6:59:1c:04:f2:68:f3:65:5f:f7:f8:da:ef:97: 7c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:67:76:01:43:49:82:61:CF:E8:AC:D7:D7:18:34:AD:D3:6F:8F:7C X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142076.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:210::/48 Signature Algorithm: sha256WithRSAEncryption 0b:69:84:e1:7a:28:55:35:aa:c5:41:9c:26:40:b3:e1:56:42: 3f:af:d3:b3:3b:30:12:de:05:30:06:a8:b0:98:74:e5:a0:48: a3:b2:99:7c:6d:5a:e7:ca:da:5c:ec:4a:49:62:17:4d:1d:12: 4d:9d:d1:92:65:67:5c:19:e4:f5:f5:00:9c:c5:23:36:b1:a3: b7:1f:e8:85:5c:2e:9f:44:aa:a9:14:8f:d5:0a:b2:9a:c0:40: 2c:70:32:1d:23:b0:2d:37:f6:3f:fb:2a:5d:97:27:79:ba:3b: fa:0a:45:d0:7d:a1:87:95:33:72:6a:ae:23:9a:f9:93:f5:38: a8:2e:03:3b:c7:5b:d8:9f:ea:43:e5:90:c0:db:29:9b:fc:55: f8:61:a3:8c:7f:80:63:f1:7b:39:bd:6b:22:ec:e7:8b:a8:db: 58:c5:57:80:a9:15:a8:60:11:d3:15:45:d9:10:eb:66:f5:f4: 13:f3:7e:24:48:10:12:f8:70:7c:ed:a7:c4:96:9d:a2:a2:7b: 78:a4:6c:cd:aa:a1:86:ac:51:6d:f2:ff:f1:27:80:e5:e4:cc: 5a:26:62:d1:12:2a:e4:b1:b6:c5:34:62:23:96:dc:6b:71:7b: 90:79:6b:82:d7:f0:36:71:af:3a:db:cf:8c:41:96:40:eb:74: 15:c9:c0:d5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUQKnBu8qiDLMAAxCwGXenSQdlffswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0M1oX DTI2MTIwMTA4NDc0M1owMzExMC8GA1UEAxMoNzQ2Nzc2MDE0MzQ5ODI2MUNGRThB Q0Q3RDcxODM0QUREMzZGOEY3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKJ/CgVuyQSS0nZlBr8RU2akCIvM4P2Qs2Vp9jk3EMiFWAgWNt2cjLwSKyZO 065E+wn/QlZuG1F4aFyckG4FfpV4BVXEwHHBVOsTWRf1ztzPER/iXCJr9VCAI41g PgMak6wVsRw+I0uRO2z9wC+bEFg2g6bNPSBIWdFyPyers9mHe5vp/y+BavM4AlTC cwZf1jTP1BzVx4BztC1BzQC/6BQD6A1xXSkA8AX8BxNBethy5eQ8b9Bea679dTvM SGP5MbCyi6841cFx3YcJyrkX8aFsVdScVjiGAHx+EhAgS6O1SAHvQTiGMxEwX+pu lGDujPZZHATyaPNlX/f42u+XfMcCAwEAAaOCAccwggHDMB0GA1UdDgQWBBR0Z3YB Q0mCYc/orNfXGDSt02+PfDAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCEDANBgkqhkiG9w0BAQsFAAOCAQEAC2mE4XooVTWqxUGcJkCz4VZCP6/Tszsw Et4FMAaosJh05aBIo7KZfG1a58raXOxKSWIXTR0STZ3RkmVnXBnk9fUAnMUjNrGj tx/ohVwun0SqqRSP1QqymsBALHAyHSOwLTf2P/sqXZcnebo7+gpF0H2hh5Uzcmqu I5r5k/U4qC4DO8db2J/qQ+WQwNspm/xV+GGjjH+AY/F7Ob1rIuzni6jbWMVXgKkV qGAR0xVF2RDrZvX0E/N+JEgQEvhwfO2nxJadoqJ7eKRszaqhhqxRbfL/8SeA5eTM WiZi0RIq5LG2xTRiI5bca3F7kHlrgtfwNnGvOtvPjEGWQOt0FcnA1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:26 2025 by rpki-client