This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142079.roa File: AS142079.roa (raw, json) Hash identifier: U+Sjs73prDZD6tAt0v3UoLlRQDru7aBkw3CsgX++edE= Subject key identifier: 90:C9:E9:C0:57:D3:7F:EC:B0:20:DB:9E:CF:D2:47:02:81:A9:31:47 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 355BA6CDE91F8F4FECCB7DE46D0C18C5F89AC771 Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142079.roa Signing time: Tue 20 Jan 2026 01:10:18 +0000 ROA not before: Tue 20 Jan 2026 01:05:18 +0000 ROA not after: Tue 19 Jan 2027 01:10:18 +0000 asID: 142079 IP address blocks: 2001:253:213::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:5b:a6:cd:e9:1f:8f:4f:ec:cb:7d:e4:6d:0c:18:c5:f8:9a:c7:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:18 2026 GMT Not After : Jan 19 01:10:18 2027 GMT Subject: CN=90C9E9C057D37FECB020DB9ECFD2470281A93147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:8d:eb:59:c1:57:fa:7d:e8:30:54:14:f3: f5:05:a0:9c:f0:c5:a9:75:3e:54:15:53:43:07:a4: cf:48:a9:fa:95:c9:61:1b:1a:3e:af:1a:de:95:a9: 4a:0d:c2:f4:55:6a:33:79:c3:f4:db:c9:b5:e5:d2: 30:2e:58:52:1f:4c:5e:95:ce:d7:9f:c7:e8:1f:66: 13:eb:76:25:a7:83:af:d6:09:8f:5a:f9:35:74:50: d0:ae:ab:61:6b:d0:0d:94:e0:9f:9a:d4:c7:70:f9: ba:fa:aa:be:64:e2:dc:b6:ba:62:e2:41:c1:fa:d4: 8f:17:06:7a:11:52:6e:9a:c4:cd:fb:4b:6c:ea:70: b4:64:81:2b:86:49:96:4c:34:26:a2:6a:37:ff:7f: 35:78:ad:ef:09:7d:c0:15:8b:f3:34:20:c2:66:72: ca:08:5c:e1:27:60:a4:f7:7b:03:0f:e5:92:61:9c: ee:67:39:3b:c8:30:3c:ca:0b:e0:bf:e0:70:33:6e: 6e:9e:ec:0b:8a:f1:28:6c:88:57:86:49:d3:63:0f: 61:97:f6:33:33:13:13:97:e7:fa:9b:c8:b6:8c:5d: 51:08:59:9b:2c:bb:21:1d:6b:b5:0e:9d:e5:ee:63: 18:19:d7:f0:35:a3:47:ef:ce:a8:9d:ce:8a:13:4a: 16:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C9:E9:C0:57:D3:7F:EC:B0:20:DB:9E:CF:D2:47:02:81:A9:31:47 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:213::/48 Signature Algorithm: sha256WithRSAEncryption a3:ee:27:9f:ff:ea:7f:20:8d:01:96:69:4e:40:da:91:97:66: 28:5d:96:09:db:69:53:37:11:2f:b9:f4:0b:0d:48:4c:0b:ea: 77:2c:e5:c0:49:71:68:34:3b:a8:ab:0a:6a:c5:dc:45:18:50: 34:59:e9:0f:2a:7a:6b:13:6d:50:83:82:81:56:e9:28:08:86: 96:4a:ad:7f:92:f8:dd:66:fd:fb:dc:b0:67:2f:74:a0:c0:27: 38:38:c4:41:e8:ed:c1:b1:aa:8c:1f:52:9e:99:c3:09:24:62: 2d:8b:df:4f:70:4e:e7:de:e3:ae:1e:2f:76:73:86:5a:4d:ea: d8:ca:cf:9a:8b:08:dd:d8:02:e6:64:c9:90:15:fb:ce:40:f6: 7d:c9:43:c5:c5:1a:59:75:da:6c:ce:16:91:d1:2a:d7:fd:a6: 62:a3:23:7b:f7:ab:81:2f:a7:d8:51:ba:fc:dc:b9:f4:19:c3: d5:35:64:2a:d5:a4:71:7e:35:3d:41:83:fc:ac:7b:62:fa:8a: d7:79:a4:1b:49:2a:91:3b:74:e6:55:5f:fd:33:2a:4d:38:ac: 0c:e4:e9:c1:81:07:3b:f8:8a:cf:f2:8a:26:77:f2:80:14:cc: a5:b8:68:b1:ef:5e:17:63:c2:8a:47:9a:57:b8:13:cc:ae:97: 4f:9a:11:0a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUNVumzekfj0/sy33kbQwYxfiax3EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxOFoX DTI3MDExOTAxMTAxOFowMzExMC8GA1UEAxMoOTBDOUU5QzA1N0QzN0ZFQ0IwMjBE QjlFQ0ZEMjQ3MDI4MUE5MzE0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhBjetZwVf6fegwVBTz9QWgnPDFqXU+VBVTQwekz0ip+pXJYRsaPq8a3pWp Sg3C9FVqM3nD9NvJteXSMC5YUh9MXpXO15/H6B9mE+t2JaeDr9YJj1r5NXRQ0K6r YWvQDZTgn5rUx3D5uvqqvmTi3La6YuJBwfrUjxcGehFSbprEzftLbOpwtGSBK4ZJ lkw0JqJqN/9/NXit7wl9wBWL8zQgwmZyyghc4SdgpPd7Aw/lkmGc7mc5O8gwPMoL 4L/gcDNubp7sC4rxKGyIV4ZJ02MPYZf2MzMTE5fn+pvItoxdUQhZmyy7IR1rtQ6d 5e5jGBnX8DWjR+/OqJ3OihNKFjECAwEAAaOCAccwggHDMB0GA1UdDgQWBBSQyenA V9N/7LAg257P0kcCgakxRzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA3OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCEzANBgkqhkiG9w0BAQsFAAOCAQEAo+4nn//qfyCNAZZpTkDakZdmKF2WCdtp UzcRL7n0Cw1ITAvqdyzlwElxaDQ7qKsKasXcRRhQNFnpDyp6axNtUIOCgVbpKAiG lkqtf5L43Wb9+9ywZy90oMAnODjEQejtwbGqjB9SnpnDCSRiLYvfT3BO597jrh4v dnOGWk3q2MrPmosI3dgC5mTJkBX7zkD2fclDxcUaWXXabM4WkdEq1/2mYqMje/er gS+n2FG6/Ny59BnD1TVkKtWkcX41PUGD/Kx7YvqK13mkG0kqkTt05lVf/TMqTTis DOTpwYEHO/iKz/KKJnfygBTMpbhose9eF2PCikeaV7gTzK6XT5oRCg== -----END CERTIFICATE-----Generated at Sun Jan 25 15:17:28 2026 by rpki-client