This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142083.roa File: AS142083.roa (raw, json) Hash identifier: zy2Gs9LSpauYAdEaJmIJDXb67OjaQOPO/U8Gms4d85E= Subject key identifier: 2E:4C:43:1F:FE:51:FA:34:29:F2:DA:62:5C:3A:D8:94:81:3C:D8:A2 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3E626E88A7C7EC0AF7A59B798CA0AB7929D8679C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142083.roa Signing time: Tue 20 Jan 2026 01:10:17 +0000 ROA not before: Tue 20 Jan 2026 01:05:17 +0000 ROA not after: Tue 19 Jan 2027 01:10:17 +0000 asID: 142083 IP address blocks: 2001:253:217::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:62:6e:88:a7:c7:ec:0a:f7:a5:9b:79:8c:a0:ab:79:29:d8:67:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:17 2026 GMT Not After : Jan 19 01:10:17 2027 GMT Subject: CN=2E4C431FFE51FA3429F2DA625C3AD894813CD8A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:6b:fc:c7:00:2d:5a:3b:19:ec:cb:59:d9: d1:05:b8:88:17:56:60:0b:c5:44:4c:a8:a2:08:83: da:8b:f5:27:56:4e:73:4f:9c:d2:f3:cc:15:be:a9: cb:b9:98:2f:3b:e2:41:06:db:c3:7c:95:bc:24:c6: 5e:99:5e:35:03:97:6f:af:f3:90:28:03:1f:03:a3: 59:1a:45:25:6c:26:a5:b8:dd:f4:de:fe:e8:be:30: 66:7a:9d:bc:48:56:ae:7e:df:ad:0c:bd:51:d0:1a: 4c:6f:ee:2e:2e:ec:f0:2d:7c:95:f5:b2:5f:94:52: c3:d5:eb:d9:c6:7f:33:43:df:fb:f3:dd:9d:33:87: 5d:2f:bf:c1:c0:45:53:06:d6:cd:3d:5f:65:93:45: be:89:89:c3:6f:ef:95:24:a5:de:6f:ad:54:e8:1c: 51:f1:ac:78:9f:38:60:86:ec:00:39:12:f0:d3:47: b0:52:56:ca:f9:c3:7e:84:75:a2:dc:6c:32:9a:75: f4:36:6b:47:27:0e:06:49:4c:e9:54:ac:15:50:b1: 4d:2c:e0:4a:1a:52:a4:82:24:30:c9:2b:22:05:15: b0:a0:28:95:e8:5c:18:95:c4:ac:26:0e:5c:36:ac: 92:ca:a9:68:eb:ea:0a:0c:e8:3a:f0:bb:ba:c0:5e: f4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:4C:43:1F:FE:51:FA:34:29:F2:DA:62:5C:3A:D8:94:81:3C:D8:A2 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:217::/48 Signature Algorithm: sha256WithRSAEncryption 57:5d:b8:87:b0:cb:03:5d:01:a5:bb:40:b3:71:4b:d8:c3:86: b3:71:17:47:c7:f9:2d:a8:6b:32:5a:ed:34:db:ed:06:ee:72: 99:be:9d:9c:b4:f0:d8:de:b8:6d:8e:42:17:ed:89:97:e9:70: 6f:48:a2:81:8f:0e:f7:06:c6:cc:b1:ba:22:95:df:c4:b0:8e: 46:15:e1:6c:7e:2b:3d:23:64:b9:fb:fd:07:51:60:06:29:2e: 41:bb:fb:3d:4b:cf:58:43:82:3c:27:3b:87:d7:99:cb:3e:4c: 99:d0:8c:95:ed:3f:1b:32:91:28:12:fe:ed:0a:5a:55:60:50: da:31:cf:d5:bc:b3:2a:db:a0:a8:92:f5:b0:14:e4:11:c8:aa: 7b:34:34:8b:57:5c:fe:89:4a:33:b1:f4:af:44:df:8c:4d:c6: 89:95:cf:01:46:db:59:0d:2b:00:df:16:fc:53:84:b1:fa:38: 95:b6:51:cc:3b:3c:d0:a8:14:66:9d:20:a7:c3:78:f1:d4:dd: 04:46:32:ab:ce:d3:27:48:3a:12:3e:38:21:f0:5c:86:82:a6: 59:38:69:60:83:cc:08:58:76:a7:4e:a1:00:6c:c2:43:3a:de: 3d:6f:70:b4:cb:33:ba:66:c4:b2:9e:4b:8c:75:91:6e:fb:f1: d2:10:db:c9 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUPmJuiKfH7Ar3pZt5jKCreSnYZ5wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxN1oX DTI3MDExOTAxMTAxN1owMzExMC8GA1UEAxMoMkU0QzQzMUZGRTUxRkEzNDI5RjJE QTYyNUMzQUQ4OTQ4MTNDRDhBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsna/zHAC1aOxnsy1nZ0QW4iBdWYAvFREyoogiD2ov1J1ZOc0+c0vPMFb6p y7mYLzviQQbbw3yVvCTGXpleNQOXb6/zkCgDHwOjWRpFJWwmpbjd9N7+6L4wZnqd vEhWrn7frQy9UdAaTG/uLi7s8C18lfWyX5RSw9Xr2cZ/M0Pf+/PdnTOHXS+/wcBF UwbWzT1fZZNFvomJw2/vlSSl3m+tVOgcUfGseJ84YIbsADkS8NNHsFJWyvnDfoR1 otxsMpp19DZrRycOBklM6VSsFVCxTSzgShpSpIIkMMkrIgUVsKAolehcGJXErCYO XDasksqpaOvqCgzoOvC7usBe9CUCAwEAAaOCAccwggHDMB0GA1UdDgQWBBQuTEMf /lH6NCny2mJcOtiUgTzYojAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCFzANBgkqhkiG9w0BAQsFAAOCAQEAV124h7DLA10BpbtAs3FL2MOGs3EXR8f5 LahrMlrtNNvtBu5ymb6dnLTw2N64bY5CF+2Jl+lwb0iigY8O9wbGzLG6IpXfxLCO RhXhbH4rPSNkufv9B1FgBikuQbv7PUvPWEOCPCc7h9eZyz5MmdCMle0/GzKRKBL+ 7QpaVWBQ2jHP1byzKtugqJL1sBTkEciqezQ0i1dc/olKM7H0r0TfjE3GiZXPAUbb WQ0rAN8W/FOEsfo4lbZRzDs80KgUZp0gp8N48dTdBEYyq87TJ0g6Ej44IfBchoKm WThpYIPMCFh2p06hAGzCQzrePW9wtMszumbEsp5LjHWRbvvx0hDbyQ== -----END CERTIFICATE-----Generated at Sun Jan 25 15:17:27 2026 by rpki-client