This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142084.roa File: AS142084.roa (raw, json) Hash identifier: YRjIUVHL73qhDSnDGUBl+3UvLW1cCvLdPKuWvpxpPxE= Subject key identifier: 47:97:50:0A:C2:C3:30:91:AB:55:19:10:BA:24:38:C5:3A:65:54:04 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 26D26840D25EF602996F93BEE9D6C06CEA85674A Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142084.roa Signing time: Tue 02 Dec 2025 08:47:41 +0000 ROA not before: Tue 02 Dec 2025 08:42:41 +0000 ROA not after: Tue 01 Dec 2026 08:47:41 +0000 asID: 142084 IP address blocks: 2001:253:218::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d2:68:40:d2:5e:f6:02:99:6f:93:be:e9:d6:c0:6c:ea:85:67:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:41 2025 GMT Not After : Dec 1 08:47:41 2026 GMT Subject: CN=4797500AC2C33091AB551910BA2438C53A655404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bc:b8:f9:5e:62:a4:8e:30:ed:73:d8:9b:b2: 42:8f:c9:a4:68:8c:dd:aa:d9:41:86:76:5e:8a:ed: 6a:7c:b6:a1:d2:94:c5:bd:21:76:33:a2:73:95:f9: c4:30:60:79:84:b9:fe:0b:bd:4e:c7:72:03:a5:9c: 9d:e1:ac:c1:a0:73:d7:e9:eb:7b:93:0c:bb:75:db: f8:88:d4:d7:d2:75:9f:52:50:b0:13:c7:73:b3:b2: 6a:b5:f1:25:66:65:3d:0c:83:b8:3b:c5:9a:12:55: 28:50:42:6f:fa:c5:07:65:92:ce:e3:bb:c6:22:31: 3f:17:8f:c3:ab:d2:9d:b9:d1:d7:6d:2f:4b:27:7b: c2:6f:58:e8:88:be:7a:68:88:b1:dc:71:87:d1:9d: 91:37:ee:84:d8:03:a4:5e:01:bf:6f:08:e6:9d:ac: ac:f0:92:26:95:eb:dc:b5:6c:40:88:66:67:e7:1d: f2:d7:a1:7b:4b:f1:62:59:5a:c4:98:3b:52:bc:59: 3c:9c:13:84:47:08:2a:e0:e4:ee:fe:af:c0:b7:1d: 91:74:19:0d:36:6f:d9:66:f6:56:7a:2e:c2:85:83: 57:f1:80:17:89:4a:a9:aa:54:23:88:9a:f2:91:37: f0:e8:fe:a5:4f:11:bf:47:03:9b:65:b9:82:c8:80: 5f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:97:50:0A:C2:C3:30:91:AB:55:19:10:BA:24:38:C5:3A:65:54:04 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142084.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:218::/48 Signature Algorithm: sha256WithRSAEncryption 4d:46:66:97:d8:59:bd:ab:f4:bc:c8:37:3f:8e:1c:de:c3:31: f0:37:5f:fc:46:f0:ec:64:9a:1c:be:5e:b8:ae:39:28:3f:b1: 1e:6d:20:4a:f8:a4:d8:09:b3:0c:c9:a8:3e:5e:a1:fb:b2:e8: 4a:30:0a:a4:ca:7d:c8:fc:13:74:1f:7e:3a:10:3e:17:c9:4e: 16:ae:da:46:13:51:e0:e0:af:bf:fd:5a:9f:ca:63:c9:48:ce: bd:37:b7:95:26:84:bc:c9:b5:d4:a8:6e:3b:21:d8:f9:df:00: 10:72:fe:50:79:bc:3d:2b:4d:8d:ab:db:bb:5d:45:98:96:0f: be:1d:da:17:70:c8:7d:98:76:c0:f3:a1:18:9d:d8:fb:e1:9a: 0c:5d:1e:61:53:83:46:57:b2:c8:2f:a0:ba:84:1d:a0:31:73: aa:dc:24:32:9a:82:1f:b7:23:52:88:77:c1:78:4d:22:8c:83: 72:82:a7:9c:3f:2a:9a:db:f0:47:d0:bf:39:f5:7f:be:41:84: b6:19:c2:3d:6d:f8:7e:6a:90:65:cd:96:16:e7:49:9c:a8:0c: 81:e3:e1:87:72:60:10:63:3d:4d:d1:9b:03:28:a2:de:a3:f4: e5:4c:dd:c5:f4:b1:ff:65:14:d6:e7:23:30:29:af:48:25:34: df:b2:a1:af -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUJtJoQNJe9gKZb5O+6dbAbOqFZ0owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0MVoX DTI2MTIwMTA4NDc0MVowMzExMC8GA1UEAxMoNDc5NzUwMEFDMkMzMzA5MUFCNTUx OTEwQkEyNDM4QzUzQTY1NTQwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKe8uPleYqSOMO1z2JuyQo/JpGiM3arZQYZ2Xortany2odKUxb0hdjOic5X5 xDBgeYS5/gu9TsdyA6WcneGswaBz1+nre5MMu3Xb+IjU19J1n1JQsBPHc7OyarXx JWZlPQyDuDvFmhJVKFBCb/rFB2WSzuO7xiIxPxePw6vSnbnR120vSyd7wm9Y6Ii+ emiIsdxxh9GdkTfuhNgDpF4Bv28I5p2srPCSJpXr3LVsQIhmZ+cd8tehe0vxYlla xJg7UrxZPJwThEcIKuDk7v6vwLcdkXQZDTZv2Wb2VnouwoWDV/GAF4lKqapUI4ia 8pE38Oj+pU8Rv0cDm2W5gsiAX/UCAwEAAaOCAccwggHDMB0GA1UdDgQWBBRHl1AK wsMwkatVGRC6JDjFOmVUBDAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA4NC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCGDANBgkqhkiG9w0BAQsFAAOCAQEATUZml9hZvav0vMg3P44c3sMx8Ddf/Ebw 7GSaHL5euK45KD+xHm0gSvik2AmzDMmoPl6h+7LoSjAKpMp9yPwTdB9+OhA+F8lO Fq7aRhNR4OCvv/1an8pjyUjOvTe3lSaEvMm11KhuOyHY+d8AEHL+UHm8PStNjavb u11FmJYPvh3aF3DIfZh2wPOhGJ3Y++GaDF0eYVODRleyyC+guoQdoDFzqtwkMpqC H7cjUoh3wXhNIoyDcoKnnD8qmtvwR9C/OfV/vkGEthnCPW34fmqQZc2WFudJnKgM gePhh3JgEGM9TdGbAyii3qP05UzdxfSx/2UU1ucjMCmvSCU037Khrw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:23 2025 by rpki-client