This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142100.roa File: AS142100.roa (raw, json) Hash identifier: XjJhqx5ZaQ1zO1Bnz/2VaiS6vnfU4DnHDQghejXq+tc= Subject key identifier: 2A:C9:AD:E0:01:A4:B8:A2:4F:62:D9:48:40:43:46:D1:10:E4:88:7E Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 3DFFE0183495DCC2794EDA7F00195250432EAFB8 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142100.roa Signing time: Tue 02 Dec 2025 08:47:40 +0000 ROA not before: Tue 02 Dec 2025 08:42:40 +0000 ROA not after: Tue 01 Dec 2026 08:47:40 +0000 asID: 142100 IP address blocks: 2001:253:234::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ff:e0:18:34:95:dc:c2:79:4e:da:7f:00:19:52:50:43:2e:af:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:40 2025 GMT Not After : Dec 1 08:47:40 2026 GMT Subject: CN=2AC9ADE001A4B8A24F62D948404346D110E4887E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:37:c2:5d:6c:6b:0d:6f:be:5f:eb:e3:27:cc: 15:1a:9a:61:db:94:ef:46:b4:6a:83:8b:71:9f:4d: 2b:58:82:f6:20:aa:52:4d:16:09:d7:b9:eb:45:b6: 94:0f:76:42:f8:12:33:ab:72:86:b6:fd:fc:23:a2: 64:90:a2:32:4b:a9:f3:d9:f6:af:80:68:c1:65:4b: 6c:d7:c1:fe:ba:a0:40:fd:36:6c:d1:d9:02:6a:0b: d6:1e:e8:9b:a9:e1:dc:75:83:d6:e6:2f:1e:ca:15: e4:3c:7a:94:ac:78:50:8d:e8:ef:6b:c9:6e:a1:f3: a6:a8:47:da:56:ba:ca:66:62:7a:d0:1c:19:64:c4: 1a:f3:03:03:c8:a0:d6:e0:ff:70:76:31:88:19:06: db:a4:2b:fa:dc:ff:c4:b3:a3:39:dd:52:05:36:bc: f3:a6:ce:26:09:97:5b:55:e2:a9:b7:d6:43:39:67: 0d:e0:29:95:de:9f:4b:f5:d8:51:d7:bf:12:a7:ee: 6c:18:2a:ce:f2:02:0d:2b:a5:79:e0:ce:cc:81:c0: 71:08:dd:ea:c7:06:3c:31:6b:64:73:c5:70:75:14: 5a:d4:8c:60:5e:1f:d4:c1:cf:9d:4c:05:55:7e:2c: 74:5b:c0:c8:99:e2:ba:7a:32:14:06:81:5a:d5:88: 81:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C9:AD:E0:01:A4:B8:A2:4F:62:D9:48:40:43:46:D1:10:E4:88:7E X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142100.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:234::/48 Signature Algorithm: sha256WithRSAEncryption 41:07:41:54:41:5e:50:a5:42:65:43:37:93:7e:7d:40:ff:d4: 24:97:80:c7:25:43:5b:89:27:bd:12:71:d9:7a:64:7b:9e:ca: 42:27:95:5f:60:8c:38:55:97:5f:f1:13:17:be:6c:86:65:d9: 28:33:98:ca:46:f5:b4:28:e5:1b:83:5c:a9:34:40:67:e8:d8: c2:62:4e:b1:1b:96:11:e2:8c:da:54:df:af:3d:f2:4f:d8:52: 0b:63:b5:0c:3a:21:62:0e:43:e2:4e:2b:8e:2c:75:49:f1:27: 05:d5:ee:75:43:a5:93:67:b9:3e:81:92:75:50:69:3b:1c:7f: 4c:44:92:92:df:73:3d:b1:45:13:71:a9:2d:53:37:b1:9a:e4: 92:aa:00:9a:9c:fe:3c:f1:d9:d4:d0:ca:c1:95:60:92:d5:da: 18:0f:21:2b:a2:42:2d:04:62:8c:58:d6:21:ba:8b:44:16:52: dd:f4:f1:80:a7:8d:46:d3:a3:c6:3d:2f:37:b9:6f:ea:fa:95: 45:bc:5b:ee:f7:6d:ce:4b:bd:83:a6:04:da:a9:eb:2d:73:12: 2f:c9:ce:0c:91:07:4a:01:2d:85:fc:c6:af:1e:54:18:df:fe: 22:8e:9d:aa:b7:29:22:0a:50:50:4d:79:14:79:8d:27:42:15: 96:d5:81:7b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUPf/gGDSV3MJ5Ttp/ABlSUEMur7gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0MFoX DTI2MTIwMTA4NDc0MFowMzExMC8GA1UEAxMoMkFDOUFERTAwMUE0QjhBMjRGNjJE OTQ4NDA0MzQ2RDExMEU0ODg3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK03wl1saw1vvl/r4yfMFRqaYduU70a0aoOLcZ9NK1iC9iCqUk0WCde560W2 lA92QvgSM6tyhrb9/COiZJCiMkup89n2r4BowWVLbNfB/rqgQP02bNHZAmoL1h7o m6nh3HWD1uYvHsoV5Dx6lKx4UI3o72vJbqHzpqhH2la6ymZietAcGWTEGvMDA8ig 1uD/cHYxiBkG26Qr+tz/xLOjOd1SBTa886bOJgmXW1XiqbfWQzlnDeApld6fS/XY Ude/EqfubBgqzvICDSuleeDOzIHAcQjd6scGPDFrZHPFcHUUWtSMYF4f1MHPnUwF VX4sdFvAyJniunoyFAaBWtWIgWkCAwEAAaOCAccwggHDMB0GA1UdDgQWBBQqya3g AaS4ok9i2UhAQ0bREOSIfjAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCNDANBgkqhkiG9w0BAQsFAAOCAQEAQQdBVEFeUKVCZUM3k359QP/UJJeAxyVD W4knvRJx2Xpke57KQieVX2CMOFWXX/ETF75shmXZKDOYykb1tCjlG4NcqTRAZ+jY wmJOsRuWEeKM2lTfrz3yT9hSC2O1DDohYg5D4k4rjix1SfEnBdXudUOlk2e5PoGS dVBpOxx/TESSkt9zPbFFE3GpLVM3sZrkkqoAmpz+PPHZ1NDKwZVgktXaGA8hK6JC LQRijFjWIbqLRBZS3fTxgKeNRtOjxj0vN7lv6vqVRbxb7vdtzku9g6YE2qnrLXMS L8nODJEHSgEthfzGrx5UGN/+Io6dqrcpIgpQUE15FHmNJ0IVltWBew== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:29 2025 by rpki-client