This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142077.roa File: AS142077.roa (raw, json) Hash identifier: q2cBBqrT0ypdL9xnehm/0ZOHYgqhq+KlqNAFz428ciA= Subject key identifier: 0F:51:93:35:1A:E0:8F:59:F5:45:C1:5E:F8:A3:3E:12:5D:2D:C4:0A Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 3403D2E4F19A99DDDFEB8808CE4CEB5D9C901251 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142077.roa Signing time: Tue 02 Dec 2025 08:47:41 +0000 ROA not before: Tue 02 Dec 2025 08:42:41 +0000 ROA not after: Tue 01 Dec 2026 08:47:41 +0000 asID: 142077 IP address blocks: 2001:253:211::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:03:d2:e4:f1:9a:99:dd:df:eb:88:08:ce:4c:eb:5d:9c:90:12:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:41 2025 GMT Not After : Dec 1 08:47:41 2026 GMT Subject: CN=0F5193351AE08F59F545C15EF8A33E125D2DC40A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:61:02:19:f2:96:e6:7b:59:e0:75:42:e9:3b: bb:f5:ca:9a:e2:0b:12:9f:57:5f:3f:35:0a:de:ee: 00:3d:a0:3c:7f:28:ea:21:fe:c0:18:b0:e2:8a:68: 6b:9e:1b:df:dd:3c:96:33:4f:a6:d3:d5:3f:c3:de: 72:20:5b:db:88:7c:29:81:0f:52:ba:ae:31:88:f0: 75:ae:63:09:b4:e6:2f:fc:59:fd:5a:77:4e:21:cc: 75:90:72:38:9b:2a:e5:12:32:fc:cf:01:75:5f:b3: 1e:f6:00:94:3e:01:73:e7:87:39:36:b3:be:ec:31: 62:08:a6:71:96:f0:2e:68:63:97:93:1c:27:61:ff: 0b:d2:2a:93:39:a3:10:74:4d:f1:1d:54:e2:33:9a: 7b:6e:ce:3b:6c:0f:35:ff:3d:42:cd:2b:34:c0:14: ee:42:a9:d8:1c:ab:99:92:8a:ae:b4:5c:91:6f:80: cf:2b:e8:fb:54:a9:db:76:9b:fa:f1:83:bc:f2:5a: 3b:b2:50:22:07:d0:96:75:36:70:dc:2c:21:f3:53: 06:6a:69:6b:c8:82:13:98:8c:7f:45:69:38:9d:d7: 91:e5:72:69:c8:b6:58:13:2d:c5:cd:57:a0:08:9d: ad:7a:b6:a9:b9:4c:07:5e:bd:30:73:8d:6c:6f:52: bd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:51:93:35:1A:E0:8F:59:F5:45:C1:5E:F8:A3:3E:12:5D:2D:C4:0A X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142077.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:211::/48 Signature Algorithm: sha256WithRSAEncryption 02:59:c0:23:c5:da:cd:bd:02:24:ad:26:f1:1e:ee:57:da:4c: 82:6b:13:45:2e:79:f7:5c:10:3b:32:77:30:b8:1d:12:be:4a: e6:3f:30:ad:ca:95:46:6e:90:75:f2:d0:9d:1d:39:0e:5e:d6: ed:9e:dc:eb:98:11:ea:a4:d5:b1:6a:bf:59:80:e4:45:6d:53: b9:df:63:d1:05:2d:e3:6d:3f:a1:20:7e:14:44:93:7d:c1:2f: 13:fb:eb:7e:7b:88:b5:e0:d6:02:da:4d:26:23:70:89:67:88: 29:a6:54:cd:7f:73:b0:9a:2e:96:bc:cb:eb:36:44:bf:82:86: 9c:84:a0:f7:12:ab:42:19:bb:be:50:b5:02:76:dd:1e:c0:57: 45:d6:52:f3:64:41:6e:b4:56:70:64:3e:46:99:bb:f0:81:7c: 8b:5b:0f:67:07:b0:3e:40:7f:9e:5a:ca:df:c7:ad:4c:6a:d4: 32:ed:e3:b7:0c:0c:9c:a8:4b:5d:e4:e9:79:2e:99:37:03:ff: 34:2e:8e:e6:b8:21:00:c0:56:8a:a3:3d:20:36:97:cf:cd:63: 2f:0d:02:e7:fd:75:68:36:44:fc:97:e5:66:01:62:ec:9b:4b: 44:05:a2:2d:c7:f7:82:66:87:7d:ed:5e:e0:7e:7e:4e:5a:64: 8a:28:07:7d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUNAPS5PGamd3f64gIzkzrXZyQElEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0MVoX DTI2MTIwMTA4NDc0MVowMzExMC8GA1UEAxMoMEY1MTkzMzUxQUUwOEY1OUY1NDVD MTVFRjhBMzNFMTI1RDJEQzQwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVhAhnyluZ7WeB1Quk7u/XKmuILEp9XXz81Ct7uAD2gPH8o6iH+wBiw4opo a54b3908ljNPptPVP8PeciBb24h8KYEPUrquMYjwda5jCbTmL/xZ/Vp3TiHMdZBy OJsq5RIy/M8BdV+zHvYAlD4Bc+eHOTazvuwxYgimcZbwLmhjl5McJ2H/C9Iqkzmj EHRN8R1U4jOae27OO2wPNf89Qs0rNMAU7kKp2ByrmZKKrrRckW+Azyvo+1Sp23ab +vGDvPJaO7JQIgfQlnU2cNwsIfNTBmppa8iCE5iMf0VpOJ3XkeVyaci2WBMtxc1X oAidrXq2qblMB169MHONbG9SvaECAwEAAaOCAccwggHDMB0GA1UdDgQWBBQPUZM1 GuCPWfVFwV74oz4SXS3ECjAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCETANBgkqhkiG9w0BAQsFAAOCAQEAAlnAI8Xazb0CJK0m8R7uV9pMgmsTRS55 91wQOzJ3MLgdEr5K5j8wrcqVRm6QdfLQnR05Dl7W7Z7c65gR6qTVsWq/WYDkRW1T ud9j0QUt420/oSB+FESTfcEvE/vrfnuIteDWAtpNJiNwiWeIKaZUzX9zsJoulrzL 6zZEv4KGnISg9xKrQhm7vlC1AnbdHsBXRdZS82RBbrRWcGQ+Rpm78IF8i1sPZwew PkB/nlrK38etTGrUMu3jtwwMnKhLXeTpeS6ZNwP/NC6O5rghAMBWiqM9IDaXz81j Lw0C5/11aDZE/JflZgFi7JtLRAWiLcf3gmaHfe1e4H5+TlpkiigHfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:27 2025 by rpki-client