This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142099.roa File: AS142099.roa (raw, json) Hash identifier: dQA3xKwqrEVGDDh5aeQjFekJnGMK0PvmABhUhzM93aY= Subject key identifier: 50:58:92:83:63:BD:7C:C7:73:15:CD:A7:27:4F:70:E4:EA:2A:F1:73 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 274E998456C89133376EC793A54E5B85A7D61B20 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142099.roa Signing time: Tue 02 Dec 2025 08:47:49 +0000 ROA not before: Tue 02 Dec 2025 08:42:49 +0000 ROA not after: Tue 01 Dec 2026 08:47:49 +0000 asID: 142099 IP address blocks: 2001:253:233::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4e:99:84:56:c8:91:33:37:6e:c7:93:a5:4e:5b:85:a7:d6:1b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:49 2025 GMT Not After : Dec 1 08:47:49 2026 GMT Subject: CN=5058928363BD7CC77315CDA7274F70E4EA2AF173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3c:80:99:1c:49:98:82:18:7f:bb:a3:59:a9: c7:b7:7a:c0:3e:0b:8c:52:b9:1f:2b:38:63:6f:e3: 47:e9:80:a7:a0:84:a9:52:50:f2:23:28:77:c5:eb: c0:3f:8f:f7:5a:bd:66:35:cc:20:00:36:4a:61:12: a9:49:16:1c:b0:0c:9b:40:c9:aa:a1:ed:76:da:11: 1b:00:94:6d:3f:16:c2:5f:01:9e:c2:65:3e:47:97: a6:a1:73:78:33:21:ec:06:1b:8b:4f:1e:51:db:23: 7e:86:f6:1d:bb:6c:5c:43:39:8b:cc:e7:98:68:d1: 5b:f4:9f:d5:d9:e1:f3:ed:4f:85:8a:7a:52:64:0b: 19:da:f3:ef:e9:ea:07:14:b4:af:44:c3:ae:a4:38: 4a:24:ac:db:56:6e:e5:bc:fd:00:22:09:ec:6c:70: ae:9e:3c:a5:1a:02:01:7c:e7:8e:45:ad:98:46:15: 74:60:c1:02:c8:b7:8a:8f:69:9d:b8:c3:8b:64:3b: eb:ab:71:5c:86:82:bf:96:7d:50:ba:e8:4d:e4:7c: 7a:0a:be:db:bd:d5:9f:05:ad:d9:de:86:03:c4:65: 9f:57:85:a5:ac:98:a3:78:85:aa:db:69:06:b1:a6: 06:8f:1e:6a:de:94:3d:ef:da:43:0a:03:14:8e:75: d2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:58:92:83:63:BD:7C:C7:73:15:CD:A7:27:4F:70:E4:EA:2A:F1:73 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142099.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:233::/48 Signature Algorithm: sha256WithRSAEncryption 1b:51:32:fa:b0:e3:bd:94:21:7d:78:9d:79:af:20:d5:07:ae: 7b:53:2f:36:df:d1:f0:14:9b:80:5f:d7:9c:68:b6:ed:c0:87: d1:ff:20:bd:c1:3c:59:20:30:37:8f:bc:35:17:7e:94:a3:47: ae:09:c3:7f:a7:77:a1:71:3c:82:13:99:4b:d7:c9:e4:d4:20: ca:17:a4:44:62:c2:9b:93:40:63:54:83:37:c8:b4:9c:fd:a6: 2a:d9:8a:f1:0a:ef:fe:39:91:d9:dc:35:b4:60:60:09:6d:07: d3:bb:ea:7e:2f:4e:42:5b:c1:16:f7:0a:96:93:bc:ea:c6:6e: f3:67:7b:0b:a4:b1:7c:05:84:2a:64:48:e9:8b:3e:e2:b9:f0: 27:e2:1f:82:2d:cd:99:2d:54:d9:56:9d:60:8e:07:15:6c:0a: 51:b9:4b:a5:b9:ac:dc:36:1e:8f:99:92:f1:a9:79:90:56:28: aa:4c:f9:27:e2:06:2e:0c:d0:ea:7e:fb:2b:f2:2c:a0:aa:43: 4d:fb:6f:16:83:c3:f3:2f:17:da:6c:1a:55:c7:0f:ce:cf:88: eb:bd:f0:30:a8:97:10:c9:8f:91:51:27:f8:99:5b:13:86:fa: e3:9e:3e:f5:c3:51:34:d3:d2:f9:95:df:21:17:6d:3f:44:08: ff:d8:e5:bf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUJ06ZhFbIkTM3bseTpU5bhafWGyAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0OVoX DTI2MTIwMTA4NDc0OVowMzExMC8GA1UEAxMoNTA1ODkyODM2M0JEN0NDNzczMTVD REE3Mjc0RjcwRTRFQTJBRjE3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKE8gJkcSZiCGH+7o1mpx7d6wD4LjFK5Hys4Y2/jR+mAp6CEqVJQ8iMod8Xr wD+P91q9ZjXMIAA2SmESqUkWHLAMm0DJqqHtdtoRGwCUbT8Wwl8BnsJlPkeXpqFz eDMh7AYbi08eUdsjfob2HbtsXEM5i8znmGjRW/Sf1dnh8+1PhYp6UmQLGdrz7+nq BxS0r0TDrqQ4SiSs21Zu5bz9ACIJ7Gxwrp48pRoCAXznjkWtmEYVdGDBAsi3io9p nbjDi2Q766txXIaCv5Z9ULroTeR8egq+273VnwWt2d6GA8Rln1eFpayYo3iFqttp BrGmBo8eat6UPe/aQwoDFI510lMCAwEAAaOCAccwggHDMB0GA1UdDgQWBBRQWJKD Y718x3MVzacnT3Dk6irxczAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjA5OS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCMzANBgkqhkiG9w0BAQsFAAOCAQEAG1Ey+rDjvZQhfXidea8g1Qeue1MvNt/R 8BSbgF/XnGi27cCH0f8gvcE8WSAwN4+8NRd+lKNHrgnDf6d3oXE8ghOZS9fJ5NQg yhekRGLCm5NAY1SDN8i0nP2mKtmK8Qrv/jmR2dw1tGBgCW0H07vqfi9OQlvBFvcK lpO86sZu82d7C6SxfAWEKmRI6Ys+4rnwJ+Ifgi3NmS1U2VadYI4HFWwKUblLpbms 3DYej5mS8al5kFYoqkz5J+IGLgzQ6n77K/IsoKpDTftvFoPD8y8X2mwaVccPzs+I 673wMKiXEMmPkVEn+JlbE4b6454+9cNRNNPS+ZXfIRdtP0QI/9jlvw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:25 2025 by rpki-client