This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142082.roa File: AS142082.roa (raw, json) Hash identifier: C8E96LETomd/w9PyhGZ5UPR1P0mYf7YPX/5op7ThcRk= Subject key identifier: E3:C6:65:C8:6C:98:89:17:A0:BD:96:75:15:E4:08:93:97:24:6B:12 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 1BD20495F7643125C297113985047A8B945E8BEC Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142082.roa Signing time: Tue 02 Dec 2025 08:47:44 +0000 ROA not before: Tue 02 Dec 2025 08:42:44 +0000 ROA not after: Tue 01 Dec 2026 08:47:44 +0000 asID: 142082 IP address blocks: 2001:253:216::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d2:04:95:f7:64:31:25:c2:97:11:39:85:04:7a:8b:94:5e:8b:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:44 2025 GMT Not After : Dec 1 08:47:44 2026 GMT Subject: CN=E3C665C86C988917A0BD967515E4089397246B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:dd:0a:19:d5:9c:58:76:b6:6e:87:0c:c9:39: 10:5f:ef:8c:06:1f:8c:a4:a6:b1:df:43:a3:49:d2: 16:7e:37:44:2a:3c:dc:b7:61:93:63:1c:29:2b:58: 73:fc:bb:95:70:ca:e1:04:58:e6:cf:c6:c9:ed:f6: 1c:4d:d3:e2:ea:a3:8b:13:c9:6e:98:d6:a2:dd:53: 8e:14:42:9e:b6:df:51:99:4f:44:b3:a0:f1:40:6f: e9:dc:02:5a:1d:3e:e8:98:94:63:1b:e5:b2:ce:08: b7:2d:40:91:2e:2f:e1:3e:7c:45:a5:e9:2c:75:eb: 14:3f:9e:a8:17:37:02:09:e4:dd:da:2c:6a:cc:c5: e7:e8:66:2d:41:1d:89:06:4f:4e:d4:c1:d7:49:d9: 97:02:0d:43:8a:75:9c:9d:ca:88:a0:fb:49:55:b3: 29:a7:60:3a:e9:98:10:81:d3:54:6e:93:53:ab:20: 25:58:23:c9:df:73:d5:31:60:0c:a6:a7:6c:c2:f4: bc:90:fd:25:d7:a1:d0:7b:f6:f0:34:c7:45:03:93: a1:d7:62:bc:33:3a:8d:74:cd:0f:e2:5f:bd:fa:39: 4d:c1:df:c9:5b:4a:08:90:b1:bb:de:24:f1:54:e1: c2:91:15:6d:bb:f1:0b:b8:46:27:76:35:17:52:fd: 79:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C6:65:C8:6C:98:89:17:A0:BD:96:75:15:E4:08:93:97:24:6B:12 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142082.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:216::/48 Signature Algorithm: sha256WithRSAEncryption 6f:88:7d:25:da:63:e4:5e:41:2e:25:53:9f:38:81:7c:ff:92: f8:79:54:2d:6e:e5:99:aa:e4:6e:2d:c9:9f:a5:38:bf:f3:18: 2f:59:15:d1:f4:33:66:bb:bc:4c:fd:df:c9:f8:83:19:cc:4e: c9:00:94:be:9d:7c:c1:b5:21:62:24:ca:4a:dd:9b:f4:1c:30: 1f:0e:e6:34:d0:d2:31:8a:6d:58:e7:ba:83:4a:c0:2d:26:27: 56:0f:3e:aa:da:aa:98:96:a7:d5:b2:68:0e:fb:2d:2a:7f:1e: 35:27:1d:dc:1d:59:d4:f2:b3:f9:ac:81:eb:88:7d:be:e5:9f: 6b:c2:9a:fa:50:80:c4:e7:f4:0e:8b:08:ff:48:f9:d0:02:16: 8a:ec:fc:6a:64:b0:24:be:ba:04:61:73:2d:43:a1:b1:1f:00: 71:bd:0c:9d:fd:4e:fc:a0:0e:c7:9f:c2:28:91:00:21:b9:34: f4:8b:70:a6:e2:dd:9f:ab:1c:39:cf:b1:d4:db:c3:ee:74:95: b6:87:97:36:4a:7c:85:20:ee:c1:dd:0a:6d:b2:d4:39:85:b8: e7:9a:15:ea:b1:26:65:7f:99:f4:46:fb:06:46:da:f6:38:44: 7c:40:a9:23:22:53:f6:29:fd:3a:90:31:ed:95:0d:d8:a9:f1: ba:b9:37:df -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUG9IElfdkMSXClxE5hQR6i5Rei+wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0NFoX DTI2MTIwMTA4NDc0NFowMzExMC8GA1UEAxMoRTNDNjY1Qzg2Qzk4ODkxN0EwQkQ5 Njc1MTVFNDA4OTM5NzI0NkIxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPDdChnVnFh2tm6HDMk5EF/vjAYfjKSmsd9Do0nSFn43RCo83Ldhk2McKStY c/y7lXDK4QRY5s/Gye32HE3T4uqjixPJbpjWot1TjhRCnrbfUZlPRLOg8UBv6dwC Wh0+6JiUYxvlss4Ity1AkS4v4T58RaXpLHXrFD+eqBc3Agnk3dosaszF5+hmLUEd iQZPTtTB10nZlwINQ4p1nJ3KiKD7SVWzKadgOumYEIHTVG6TU6sgJVgjyd9z1TFg DKanbML0vJD9Jdeh0Hv28DTHRQOToddivDM6jXTND+Jfvfo5TcHfyVtKCJCxu94k 8VThwpEVbbvxC7hGJ3Y1F1L9ebECAwEAAaOCAccwggHDMB0GA1UdDgQWBBTjxmXI bJiJF6C9lnUV5AiTlyRrEjAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA4Mi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCFjANBgkqhkiG9w0BAQsFAAOCAQEAb4h9Jdpj5F5BLiVTnziBfP+S+HlULW7l markbi3Jn6U4v/MYL1kV0fQzZru8TP3fyfiDGcxOyQCUvp18wbUhYiTKSt2b9Bww Hw7mNNDSMYptWOe6g0rALSYnVg8+qtqqmJan1bJoDvstKn8eNScd3B1Z1PKz+ayB 64h9vuWfa8Ka+lCAxOf0DosI/0j50AIWiuz8amSwJL66BGFzLUOhsR8Acb0Mnf1O /KAOx5/CKJEAIbk09ItwpuLdn6scOc+x1NvD7nSVtoeXNkp8hSDuwd0KbbLUOYW4 55oV6rEmZX+Z9Eb7Bkba9jhEfECpIyJT9in9OpAx7ZUN2Knxurk33w== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:23 2025 by rpki-client