This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142079.roa File: AS142079.roa (raw, json) Hash identifier: 9wMXZteNTWSqHXkGWJo81Vq48SIFI857rOmGgCXFtNs= Subject key identifier: 87:6F:0D:4A:49:CC:09:D7:F3:D7:C5:61:8A:64:E0:0D:93:1C:CE:AB Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 2DCCFDE26C7D8679BBD721A8E4FDA7F7DED84060 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142079.roa Signing time: Tue 02 Dec 2025 08:47:43 +0000 ROA not before: Tue 02 Dec 2025 08:42:43 +0000 ROA not after: Tue 01 Dec 2026 08:47:43 +0000 asID: 142079 IP address blocks: 2001:253:213::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:cc:fd:e2:6c:7d:86:79:bb:d7:21:a8:e4:fd:a7:f7:de:d8:40:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:43 2025 GMT Not After : Dec 1 08:47:43 2026 GMT Subject: CN=876F0D4A49CC09D7F3D7C5618A64E00D931CCEAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b8:49:8e:df:cf:3b:d5:b6:d7:d9:b9:93:6e: 4f:05:93:9d:ac:10:e8:f9:6a:a0:72:c0:3e:cd:2a: bf:7d:8f:03:c2:ee:3c:a8:80:0e:fe:3e:41:d8:8a: 42:5c:57:92:45:13:d0:ad:bf:b4:4e:81:84:ed:56: c3:79:3b:eb:3e:8b:28:50:12:30:47:05:1d:7c:01: e8:de:6b:aa:ba:10:50:c0:fe:8d:38:2f:d3:d5:c5: 0e:f7:81:27:95:1c:05:71:a2:4b:68:72:ea:91:03: de:85:d2:17:2a:54:50:da:5e:71:2f:8e:bc:cd:d3: 42:57:53:89:74:77:6f:a3:89:c5:73:58:6c:70:c0: 3b:42:a8:76:86:2b:8f:dc:63:4b:67:4c:f2:aa:49: 6f:6a:68:14:3b:8c:ba:37:77:c4:7e:7e:04:72:f9: 4f:32:51:af:d8:13:41:c4:e2:f5:ae:aa:e2:03:c9: 2d:96:e0:26:2e:af:2c:1c:a4:a3:ca:8d:50:d1:e2: 79:aa:f6:66:f7:88:d6:67:f2:74:2a:56:3d:ce:06: 74:48:6c:85:ea:5f:25:a2:eb:2f:9c:b4:72:6f:4b: 54:da:29:51:76:3d:af:0a:0d:7a:f4:11:74:67:a2: 8f:32:22:16:71:a1:35:3f:25:d8:b9:1a:3f:4b:7d: 86:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:6F:0D:4A:49:CC:09:D7:F3:D7:C5:61:8A:64:E0:0D:93:1C:CE:AB X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:213::/48 Signature Algorithm: sha256WithRSAEncryption 68:e0:04:9b:d7:81:0c:7a:2c:55:15:af:d1:2a:fd:57:4f:5e: 7c:e7:fd:46:7b:cf:50:28:df:ca:5d:63:cb:53:69:14:69:9b: ca:42:b6:de:a3:f6:43:de:7e:1f:a2:09:f9:40:9f:99:12:c9: de:ab:53:f6:eb:38:35:17:65:db:32:84:10:6a:d3:27:8d:df: 48:47:47:57:85:26:cb:ae:21:b8:27:22:be:ce:b8:62:35:e0: e9:36:23:17:d1:c2:5d:95:9f:ab:b4:12:94:20:9a:cf:7d:84: fa:2d:6a:ba:9b:ea:33:cc:30:ae:10:d8:16:06:37:a3:a6:ac: b7:ac:d9:0f:40:15:d6:63:45:83:4f:97:e8:24:ed:b4:d3:1d: 2a:e4:d1:9b:a5:51:08:39:c6:08:7f:13:f2:eb:5b:b2:1a:79: ae:d1:ad:63:a3:e7:97:8c:f0:ab:56:7a:79:d8:35:c9:f3:01: dd:36:a5:70:0f:7a:71:6a:1c:26:ab:48:f8:11:4f:6d:e2:6f: 4a:a8:7d:14:d8:75:58:17:ca:47:a8:ee:03:8c:b8:00:59:0d: 5e:d2:3f:ad:65:29:17:74:3c:62:50:72:b0:5e:56:0e:7a:78: 00:dd:ea:64:42:0d:67:e4:29:7f:8e:87:4d:a6:ba:14:cb:71: c3:17:f1:0e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIULcz94mx9hnm71yGo5P2n997YQGAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0M1oX DTI2MTIwMTA4NDc0M1owMzExMC8GA1UEAxMoODc2RjBENEE0OUNDMDlEN0YzRDdD NTYxOEE2NEUwMEQ5MzFDQ0VBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMm4SY7fzzvVttfZuZNuTwWTnawQ6PlqoHLAPs0qv32PA8LuPKiADv4+QdiK QlxXkkUT0K2/tE6BhO1Ww3k76z6LKFASMEcFHXwB6N5rqroQUMD+jTgv09XFDveB J5UcBXGiS2hy6pED3oXSFypUUNpecS+OvM3TQldTiXR3b6OJxXNYbHDAO0KodoYr j9xjS2dM8qpJb2poFDuMujd3xH5+BHL5TzJRr9gTQcTi9a6q4gPJLZbgJi6vLByk o8qNUNHiear2ZveI1mfydCpWPc4GdEhshepfJaLrL5y0cm9LVNopUXY9rwoNevQR dGeijzIiFnGhNT8l2LkaP0t9hvUCAwEAAaOCAccwggHDMB0GA1UdDgQWBBSHbw1K ScwJ1/PXxWGKZOANkxzOqzAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCEzANBgkqhkiG9w0BAQsFAAOCAQEAaOAEm9eBDHosVRWv0Sr9V09efOf9RnvP UCjfyl1jy1NpFGmbykK23qP2Q95+H6IJ+UCfmRLJ3qtT9us4NRdl2zKEEGrTJ43f SEdHV4Umy64huCcivs64YjXg6TYjF9HCXZWfq7QSlCCaz32E+i1qupvqM8wwrhDY FgY3o6ast6zZD0AV1mNFg0+X6CTttNMdKuTRm6VRCDnGCH8T8utbshp5rtGtY6Pn l4zwq1Z6edg1yfMB3TalcA96cWocJqtI+BFPbeJvSqh9FNh1WBfKR6juA4y4AFkN XtI/rWUpF3Q8YlBysF5WDnp4AN3qZEINZ+Qpf46HTaa6FMtxwxfxDg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:28 2025 by rpki-client