This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142077.roa File: AS142077.roa (raw, json) Hash identifier: 2nHAXprVQ7ri/SLib3tOSot/5i2iWMg6Gkx7Q+ToriM= Subject key identifier: ED:03:BD:3D:93:3D:DF:CC:E9:14:34:8D:AC:7F:6E:B3:98:26:88:5C Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 77A35E93A72E32A3423D903B68113CE579B3807A Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142077.roa Signing time: Tue 20 Jan 2026 01:10:21 +0000 ROA not before: Tue 20 Jan 2026 01:05:21 +0000 ROA not after: Tue 19 Jan 2027 01:10:21 +0000 asID: 142077 IP address blocks: 2001:253:211::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:a3:5e:93:a7:2e:32:a3:42:3d:90:3b:68:11:3c:e5:79:b3:80:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:21 2026 GMT Not After : Jan 19 01:10:21 2027 GMT Subject: CN=ED03BD3D933DDFCCE914348DAC7F6EB39826885C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cc:ac:e0:76:54:bb:b3:c4:ac:71:45:f2:2a: b5:e2:eb:1e:85:94:fd:73:23:34:78:bb:a8:58:e3: d5:e7:95:92:91:cb:f1:5b:96:b6:58:20:08:0a:ea: 12:d9:72:2d:61:7a:29:da:4d:fd:60:c3:31:82:68: 6d:00:26:e5:c4:bf:45:9f:94:3f:f3:68:05:97:f1: b1:1b:e8:c2:cb:83:d3:c3:85:d5:28:12:6d:53:7d: 56:cd:61:84:eb:2d:c6:c5:ac:e1:45:73:36:a3:c7: 8e:16:6c:73:c7:4b:ee:7d:7e:f8:22:b7:85:6a:5c: 2f:57:af:73:73:5b:c5:0d:b8:10:c2:55:14:91:ef: 96:c8:2b:fd:b5:e3:14:d6:7a:e5:13:ac:be:f2:94: 38:a8:a3:c9:79:68:1b:6d:3a:84:01:09:39:48:f8: f8:66:e7:98:9d:07:78:01:0b:77:ac:ae:f3:2a:f2: ad:08:ef:b6:d7:ca:a2:ab:fe:e0:c8:75:ef:d7:39: 61:d2:d6:61:19:77:2f:3f:2d:e7:9d:33:5d:90:4a: ba:9a:3e:40:a2:8b:c5:61:d4:ee:24:06:5c:4b:b0: 1d:41:38:86:fb:24:bf:f7:d3:e1:a3:39:aa:ed:1d: 94:e8:a2:5e:15:be:45:93:50:e3:e4:a9:fb:73:1c: fc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:03:BD:3D:93:3D:DF:CC:E9:14:34:8D:AC:7F:6E:B3:98:26:88:5C X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142077.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:211::/48 Signature Algorithm: sha256WithRSAEncryption d9:27:db:23:4e:6b:1b:a1:b6:e8:6e:fe:ef:54:5e:6b:6d:11: 2f:fc:bb:6e:6a:17:49:48:91:1d:34:f4:89:5a:76:9e:f9:9d: bf:50:43:4c:bf:90:43:f5:52:c9:e5:e0:3f:00:bf:3e:cd:10: 60:0d:f2:fe:67:c6:b3:72:84:9a:1a:cc:4c:e1:31:c9:76:2f: 15:ce:e4:24:0d:06:84:ea:b6:24:e2:dc:9c:88:6c:d2:d5:6c: 1b:97:8f:53:f4:25:c9:24:4d:42:3c:73:05:3f:42:a8:6a:58: a9:99:a2:49:76:cf:37:3a:0f:1e:fc:bd:e6:49:da:d4:b1:d2: 69:fe:77:0b:24:1a:15:ca:ef:56:c9:61:d4:d0:b5:98:c5:33: 82:ef:b1:4b:a3:3b:c2:f3:97:08:ce:22:49:71:cf:60:43:c8: b9:b4:74:10:23:ab:5f:43:f8:9c:87:78:43:b2:12:8c:24:55: 0f:30:29:90:91:75:bd:30:04:60:d4:a8:91:d8:ae:c3:aa:49: 44:7f:f1:45:96:a0:19:8a:8b:b4:41:99:b6:5e:f1:72:fe:9a: 0f:68:cf:5e:c4:c8:16:76:82:b6:62:4b:22:0c:ef:b1:b9:54: c7:aa:a4:cc:11:8d:ac:e8:f8:b6:51:de:26:f5:6f:f3:55:37: fd:40:cd:a2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUd6Nek6cuMqNCPZA7aBE85XmzgHowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUyMVoX DTI3MDExOTAxMTAyMVowMzExMC8GA1UEAxMoRUQwM0JEM0Q5MzNEREZDQ0U5MTQz NDhEQUM3RjZFQjM5ODI2ODg1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOPMrOB2VLuzxKxxRfIqteLrHoWU/XMjNHi7qFjj1eeVkpHL8VuWtlggCArq EtlyLWF6KdpN/WDDMYJobQAm5cS/RZ+UP/NoBZfxsRvowsuD08OF1SgSbVN9Vs1h hOstxsWs4UVzNqPHjhZsc8dL7n1++CK3hWpcL1evc3NbxQ24EMJVFJHvlsgr/bXj FNZ65ROsvvKUOKijyXloG206hAEJOUj4+GbnmJ0HeAELd6yu8yryrQjvttfKoqv+ 4Mh179c5YdLWYRl3Lz8t550zXZBKupo+QKKLxWHU7iQGXEuwHUE4hvskv/fT4aM5 qu0dlOiiXhW+RZNQ4+Sp+3Mc/IMCAwEAAaOCAccwggHDMB0GA1UdDgQWBBTtA709 kz3fzOkUNI2sf26zmCaIXDAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3Ny5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCETANBgkqhkiG9w0BAQsFAAOCAQEA2SfbI05rG6G26G7+71Rea20RL/y7bmoX SUiRHTT0iVp2nvmdv1BDTL+QQ/VSyeXgPwC/Ps0QYA3y/mfGs3KEmhrMTOExyXYv Fc7kJA0GhOq2JOLcnIhs0tVsG5ePU/QlySRNQjxzBT9CqGpYqZmiSXbPNzoPHvy9 5kna1LHSaf53CyQaFcrvVslh1NC1mMUzgu+xS6M7wvOXCM4iSXHPYEPIubR0ECOr X0P4nId4Q7ISjCRVDzApkJF1vTAEYNSokdiuw6pJRH/xRZagGYqLtEGZtl7xcv6a D2jPXsTIFnaCtmJLIgzvsblUx6qkzBGNrOj4tlHeJvVv81U3/UDNog== -----END CERTIFICATE-----Generated at Sun Jan 25 15:16:56 2026 by rpki-client