This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142096.roa File: AS142096.roa (raw, json) Hash identifier: dO/91vTru25VTaU9/Hk7Q7cbME2r2QW/WvhjnQV7Pao= Subject key identifier: 72:75:E4:18:58:C7:4A:16:5D:39:6B:2E:A8:E7:0D:C5:1A:4E:EE:5E Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 1F4F6D40FE3A5AB5CCD39B0450260D129C4E6FBF Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142096.roa Signing time: Tue 02 Dec 2025 08:47:46 +0000 ROA not before: Tue 02 Dec 2025 08:42:46 +0000 ROA not after: Tue 01 Dec 2026 08:47:46 +0000 asID: 142096 IP address blocks: 2001:253:230::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:4f:6d:40:fe:3a:5a:b5:cc:d3:9b:04:50:26:0d:12:9c:4e:6f:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:46 2025 GMT Not After : Dec 1 08:47:46 2026 GMT Subject: CN=7275E41858C74A165D396B2EA8E70DC51A4EEE5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4f:a0:31:3d:00:4b:24:79:f9:16:c3:b4:4b: 74:47:94:7b:b7:7d:54:db:39:f1:65:09:d4:f4:f8: 30:43:2f:a3:ec:6d:55:57:b5:b0:2e:fc:f8:67:07: 87:19:64:ff:c0:ef:53:9e:47:c8:7d:c5:74:69:bb: 21:74:8b:eb:fa:db:5b:9f:81:dc:71:15:48:5e:ae: 75:a4:f6:c9:ee:76:37:94:0b:2f:b5:d0:f6:8c:2b: 6a:dc:7f:3a:e1:43:3b:30:6d:74:48:88:2a:e0:fe: e2:77:34:51:12:17:cb:5c:ae:08:8f:8a:73:73:31: 2a:37:d0:0c:f6:0c:b4:eb:7c:89:13:ab:21:43:5d: b7:a4:44:dc:44:3c:2e:38:de:76:6d:fe:08:2e:6f: a1:1f:d8:2d:1b:db:33:3f:d3:f7:a9:2a:c8:65:c9: 60:b6:aa:00:3d:06:6e:db:f1:d4:8e:ff:5d:9c:96: e4:b6:8d:c2:b2:34:c6:bd:61:5c:67:a3:3d:1b:56: 62:6d:cd:5c:99:b8:4d:d9:b0:1e:95:67:9a:35:77: 44:64:c1:19:a1:15:f9:a2:f2:36:ce:70:4c:cd:22: a3:7f:49:6e:8c:b3:1b:81:26:0d:a1:ee:53:ac:e5: 20:e0:6d:3b:2b:54:fe:ca:a5:5a:d7:44:bf:1a:99: e6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:75:E4:18:58:C7:4A:16:5D:39:6B:2E:A8:E7:0D:C5:1A:4E:EE:5E X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142096.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:230::/48 Signature Algorithm: sha256WithRSAEncryption a4:7d:48:fb:99:5c:39:fb:23:cb:59:17:8f:71:50:58:81:93: ac:ed:0b:24:f1:f3:78:45:1e:74:1a:d4:9c:ab:b7:90:4f:f5: 2d:3f:ad:66:f6:b1:04:c8:67:d7:8d:0d:86:5e:e4:93:b7:2a: 5c:34:85:69:e1:0a:87:28:a4:3b:84:19:18:d4:0d:0e:f1:b1: e0:ae:39:c2:b8:9b:80:78:2e:25:4e:6f:4c:30:5b:c4:09:41: 7e:3e:55:ae:ba:d3:11:9c:56:42:7e:72:04:9c:3f:75:b7:04: d1:3a:dc:85:46:e1:53:f7:aa:20:c8:40:92:ef:0b:23:7a:19: 69:05:37:83:38:6f:31:f7:c2:71:c3:df:ab:11:e9:ab:0f:54: 4f:52:d3:3f:41:19:75:89:79:cd:6d:f4:29:07:18:de:10:72: 85:a5:b0:95:31:ad:e1:96:4d:d7:6a:ac:f2:da:28:18:f3:68: 5a:ca:b8:c6:dc:28:82:1d:31:52:1b:3e:9f:b6:24:c3:46:b8: 6e:fc:a2:f3:31:2c:cf:f7:52:bf:07:0d:11:65:7e:14:35:67: c2:d3:99:60:67:60:7f:3c:bb:7d:e4:b5:ed:35:19:47:5d:50: 78:6b:76:02:85:c6:28:3e:53:08:c2:a5:ce:b8:44:0a:64:bf: e7:53:1d:7e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUH09tQP46WrXM05sEUCYNEpxOb78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0NloX DTI2MTIwMTA4NDc0NlowMzExMC8GA1UEAxMoNzI3NUU0MTg1OEM3NEExNjVEMzk2 QjJFQThFNzBEQzUxQTRFRUU1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN5PoDE9AEskefkWw7RLdEeUe7d9VNs58WUJ1PT4MEMvo+xtVVe1sC78+GcH hxlk/8DvU55HyH3FdGm7IXSL6/rbW5+B3HEVSF6udaT2ye52N5QLL7XQ9owratx/ OuFDOzBtdEiIKuD+4nc0URIXy1yuCI+Kc3MxKjfQDPYMtOt8iROrIUNdt6RE3EQ8 Ljjedm3+CC5voR/YLRvbMz/T96kqyGXJYLaqAD0Gbtvx1I7/XZyW5LaNwrI0xr1h XGejPRtWYm3NXJm4TdmwHpVnmjV3RGTBGaEV+aLyNs5wTM0io39JboyzG4EmDaHu U6zlIOBtOytU/sqlWtdEvxqZ5ssCAwEAAaOCAccwggHDMB0GA1UdDgQWBBRydeQY WMdKFl05ay6o5w3FGk7uXjAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA5Ni5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCMDANBgkqhkiG9w0BAQsFAAOCAQEApH1I+5lcOfsjy1kXj3FQWIGTrO0LJPHz eEUedBrUnKu3kE/1LT+tZvaxBMhn140Nhl7kk7cqXDSFaeEKhyikO4QZGNQNDvGx 4K45wribgHguJU5vTDBbxAlBfj5VrrrTEZxWQn5yBJw/dbcE0TrchUbhU/eqIMhA ku8LI3oZaQU3gzhvMffCccPfqxHpqw9UT1LTP0EZdYl5zW30KQcY3hByhaWwlTGt 4ZZN12qs8tooGPNoWsq4xtwogh0xUhs+n7Ykw0a4bvyi8zEsz/dSvwcNEWV+FDVn wtOZYGdgfzy7feS17TUZR11QeGt2AoXGKD5TCMKlzrhECmS/51Mdfg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:24 2025 by rpki-client