This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142083.roa File: AS142083.roa (raw, json) Hash identifier: OG+1CXEaRZXNPWg98UUf7r8Ljd3sTpi5FzC3k71nKUU= Subject key identifier: CC:FE:DA:4D:49:D8:45:D3:B6:94:B6:26:47:9C:AD:06:BE:C5:33:C7 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 49BCD25C5AB18C8F8BCACEDE6DC784709200D22B Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142083.roa Signing time: Tue 02 Dec 2025 08:47:47 +0000 ROA not before: Tue 02 Dec 2025 08:42:47 +0000 ROA not after: Tue 01 Dec 2026 08:47:47 +0000 asID: 142083 IP address blocks: 2001:253:217::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:bc:d2:5c:5a:b1:8c:8f:8b:ca:ce:de:6d:c7:84:70:92:00:d2:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:47 2025 GMT Not After : Dec 1 08:47:47 2026 GMT Subject: CN=CCFEDA4D49D845D3B694B626479CAD06BEC533C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:10:4d:b8:12:da:8d:e9:d2:08:0a:38:aa:da: b9:87:4c:47:8c:e1:3f:21:75:b3:08:c1:76:fe:d4: 8a:69:29:6a:bf:b4:7b:1d:72:91:91:5d:99:de:1b: f0:99:63:19:70:71:01:b3:25:c6:d5:dc:fe:4c:0e: 03:f3:ce:11:da:8e:a9:24:dc:b3:82:90:2d:1e:49: ac:12:0f:e1:d8:89:e3:ad:3a:8d:b3:40:d6:98:17: ba:51:5a:76:93:19:ca:7f:04:78:1e:a5:77:db:ea: 1d:30:30:74:c1:f2:10:c8:cb:8b:3d:1f:4d:c1:88: d9:93:ef:a8:52:cd:0a:db:3a:b5:59:ab:1a:6f:e7: 68:b1:b0:24:27:8a:75:0b:17:84:c2:7f:42:7b:f1: 4e:0f:35:49:11:a4:63:1d:8f:92:8e:a9:d6:39:8f: d4:a5:a3:73:d4:b4:48:d6:9c:be:91:83:90:24:e1: af:29:7e:ac:dc:c4:c4:ce:9c:c1:7b:76:a3:27:57: 0a:b9:f4:6c:b1:43:9a:7b:b3:0d:1b:d5:cd:46:8b: 60:24:a0:77:dc:0b:04:ea:aa:a7:97:29:c7:bb:fb: 5f:c3:fe:86:f4:ec:e3:83:49:b2:f6:1b:90:50:9c: 11:ed:b3:dc:af:f9:35:93:89:4f:55:e0:3a:88:26: d4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FE:DA:4D:49:D8:45:D3:B6:94:B6:26:47:9C:AD:06:BE:C5:33:C7 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:217::/48 Signature Algorithm: sha256WithRSAEncryption 98:37:e9:cc:70:8a:f7:cc:bd:71:12:36:f5:2e:51:49:64:86: fb:7d:1e:96:3f:b7:8c:97:1b:76:33:96:f7:e7:e9:65:d7:57: 6d:80:e1:35:89:01:1d:63:03:68:c4:f4:44:ef:fe:b8:be:d8: a5:c7:8b:69:ad:65:88:15:f2:43:a7:35:dc:08:a3:4f:c9:af: 2c:14:40:e8:bd:59:d3:b3:ba:fb:52:6c:49:90:d9:e0:43:16: 40:01:65:93:ff:3b:83:9b:38:33:fe:41:bd:79:0b:ef:e7:21: cc:94:e5:25:44:81:85:d1:fb:8d:f7:24:73:d0:af:d4:8f:55: 88:0a:d7:59:d1:5d:65:57:3f:39:19:0f:98:c4:64:b2:37:f2: f6:54:a2:f2:5b:6a:98:f9:e6:6b:8e:6a:5b:7b:86:fd:91:d9: 41:55:56:82:94:5b:6f:44:f6:b6:62:67:30:62:9e:f5:2a:70: bc:c1:3a:dc:6d:97:52:86:2f:38:b5:c6:b7:4c:bd:03:77:c1: e2:9d:e4:27:96:28:6e:2f:d4:ad:52:94:84:cd:13:03:84:59: 0a:31:42:e6:4d:a0:fa:7c:ef:d8:d9:cc:f5:b7:41:c9:c3:b8: 66:f3:ec:79:0d:80:aa:36:f4:23:ed:f6:c7:3e:aa:2e:e4:90: 75:06:a4:71 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUSbzSXFqxjI+Lys7ebceEcJIA0iswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0N1oX DTI2MTIwMTA4NDc0N1owMzExMC8GA1UEAxMoQ0NGRURBNEQ0OUQ4NDVEM0I2OTRC NjI2NDc5Q0FEMDZCRUM1MzNDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKkQTbgS2o3p0ggKOKrauYdMR4zhPyF1swjBdv7Uimkpar+0ex1ykZFdmd4b 8JljGXBxAbMlxtXc/kwOA/POEdqOqSTcs4KQLR5JrBIP4diJ4606jbNA1pgXulFa dpMZyn8EeB6ld9vqHTAwdMHyEMjLiz0fTcGI2ZPvqFLNCts6tVmrGm/naLGwJCeK dQsXhMJ/QnvxTg81SRGkYx2Pko6p1jmP1KWjc9S0SNacvpGDkCThryl+rNzExM6c wXt2oydXCrn0bLFDmnuzDRvVzUaLYCSgd9wLBOqqp5cpx7v7X8P+hvTs44NJsvYb kFCcEe2z3K/5NZOJT1XgOogm1AsCAwEAAaOCAccwggHDMB0GA1UdDgQWBBTM/tpN SdhF07aUtiZHnK0GvsUzxzAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA4My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCFzANBgkqhkiG9w0BAQsFAAOCAQEAmDfpzHCK98y9cRI29S5RSWSG+30elj+3 jJcbdjOW9+fpZddXbYDhNYkBHWMDaMT0RO/+uL7YpceLaa1liBXyQ6c13AijT8mv LBRA6L1Z07O6+1JsSZDZ4EMWQAFlk/87g5s4M/5BvXkL7+chzJTlJUSBhdH7jfck c9Cv1I9ViArXWdFdZVc/ORkPmMRksjfy9lSi8ltqmPnma45qW3uG/ZHZQVVWgpRb b0T2tmJnMGKe9SpwvME63G2XUoYvOLXGt0y9A3fB4p3kJ5Yobi/UrVKUhM0TA4RZ CjFC5k2g+nzv2NnM9bdBycO4ZvPseQ2Aqjb0I+32xz6qLuSQdQakcQ== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:24 2025 by rpki-client