This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142101.roa File: AS142101.roa (raw, json) Hash identifier: JS6AW3Ao4db2IgLaBbLAMpUMlbEFdjV0OeQ8pLDhwAM= Subject key identifier: 48:1A:1E:2E:81:B5:4B:31:D5:C9:46:E7:18:0F:2D:41:60:E6:82:A3 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 5C80B042E0AB531F0391ED53A28139A642D7E461 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142101.roa Signing time: Tue 02 Dec 2025 08:47:51 +0000 ROA not before: Tue 02 Dec 2025 08:42:51 +0000 ROA not after: Tue 01 Dec 2026 08:47:51 +0000 asID: 142101 IP address blocks: 2001:253:235::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:80:b0:42:e0:ab:53:1f:03:91:ed:53:a2:81:39:a6:42:d7:e4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:51 2025 GMT Not After : Dec 1 08:47:51 2026 GMT Subject: CN=481A1E2E81B54B31D5C946E7180F2D4160E682A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d6:c5:44:2a:c8:5c:b6:b7:a2:60:0f:94:06: 67:93:fb:d4:a0:6e:df:da:f2:ae:87:1f:b9:58:57: 18:2a:7d:4e:1f:91:c2:5f:ff:71:ca:a1:2c:f6:f9: 8f:58:8f:58:fd:ad:b5:c9:35:da:d1:f5:c7:b0:b1: 5f:e8:4e:5e:3e:7f:84:97:1a:9e:4c:d2:5d:40:fa: 3f:20:d7:55:1b:a8:47:8e:1d:31:7a:45:e3:a4:3d: 59:87:cc:10:ad:81:45:45:1b:20:84:63:89:7f:87: 7d:0c:c8:9e:77:89:36:0b:b6:d4:ee:af:41:4f:d3: 20:8c:f5:c4:af:96:88:2a:d2:81:fb:ea:71:d0:1d: e2:db:17:ae:74:b7:91:f1:bb:8c:3f:ca:7c:b5:e5: b7:ef:47:bc:96:3d:a1:3e:bd:61:c6:99:a0:c6:f1: aa:66:b1:ee:c4:b0:d9:9e:b5:a2:4c:31:c3:ba:2c: ae:1f:85:84:74:68:5e:41:1d:59:9e:5f:4d:93:12: 33:34:b6:01:d0:c5:01:67:58:17:a6:a3:90:24:9a: f4:01:08:54:2d:f8:2e:23:d3:01:af:a0:aa:03:13: 8e:99:87:dc:f5:7a:54:1a:06:a2:2d:b7:a2:d0:3f: 65:c7:73:e8:cd:70:61:ee:bf:52:91:73:29:ae:e7: 6c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1A:1E:2E:81:B5:4B:31:D5:C9:46:E7:18:0F:2D:41:60:E6:82:A3 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142101.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:235::/48 Signature Algorithm: sha256WithRSAEncryption 3d:96:81:58:e1:c0:20:b2:34:0e:67:c4:16:71:02:25:bb:2f: 75:07:60:0b:dd:a9:de:c1:b2:08:45:2e:e5:50:98:92:9e:96: c7:eb:01:f0:4d:33:6f:d7:7f:bd:d2:cf:c1:8b:d9:33:98:a5: 20:63:77:01:21:d2:2c:43:d5:49:15:11:3f:22:5b:13:9f:6d: d6:4d:bc:e2:d3:93:88:38:b1:1c:4e:4c:1b:7a:3e:0f:1c:0f: f4:ff:0c:d2:5c:1d:4f:ee:0e:df:72:6b:47:2b:09:80:22:ab: a0:b2:58:59:5d:93:87:df:db:a5:b4:39:3b:32:08:69:1d:cd: 27:aa:be:56:ec:0c:79:70:82:32:93:90:99:b8:fc:94:63:c5: a9:06:c4:90:db:a6:98:c7:76:68:39:c6:6b:d7:da:4f:e8:b4: f4:9c:a3:0c:c7:65:58:59:b4:09:84:88:9e:22:18:8c:95:97: 96:0a:c9:8d:61:23:3d:99:4d:3d:f9:5f:b0:55:0a:38:63:52: 76:32:b0:20:61:7b:f7:26:42:67:fa:a5:34:0b:48:20:4c:7a: c0:e8:b6:cc:f2:59:04:4b:30:cc:cd:e6:b9:8d:a9:b4:8d:cf: 62:dd:ae:9c:8c:e2:d9:02:2e:06:40:af:a2:62:48:04:af:9e: 0f:33:83:aa -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUXICwQuCrUx8Dke1TooE5pkLX5GEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI1MVoX DTI2MTIwMTA4NDc1MVowMzExMC8GA1UEAxMoNDgxQTFFMkU4MUI1NEIzMUQ1Qzk0 NkU3MTgwRjJENDE2MEU2ODJBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANXWxUQqyFy2t6JgD5QGZ5P71KBu39ryrocfuVhXGCp9Th+Rwl//ccqhLPb5 j1iPWP2ttck12tH1x7CxX+hOXj5/hJcankzSXUD6PyDXVRuoR44dMXpF46Q9WYfM EK2BRUUbIIRjiX+HfQzInneJNgu21O6vQU/TIIz1xK+WiCrSgfvqcdAd4tsXrnS3 kfG7jD/KfLXlt+9HvJY9oT69YcaZoMbxqmax7sSw2Z61okwxw7osrh+FhHRoXkEd WZ5fTZMSMzS2AdDFAWdYF6ajkCSa9AEIVC34LiPTAa+gqgMTjpmH3PV6VBoGoi23 otA/Zcdz6M1wYe6/UpFzKa7nbIcCAwEAAaOCAccwggHDMB0GA1UdDgQWBBRIGh4u gbVLMdXJRucYDy1BYOaCozAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwMS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCNTANBgkqhkiG9w0BAQsFAAOCAQEAPZaBWOHAILI0DmfEFnECJbsvdQdgC92p 3sGyCEUu5VCYkp6Wx+sB8E0zb9d/vdLPwYvZM5ilIGN3ASHSLEPVSRURPyJbE59t 1k284tOTiDixHE5MG3o+DxwP9P8M0lwdT+4O33JrRysJgCKroLJYWV2Th9/bpbQ5 OzIIaR3NJ6q+VuwMeXCCMpOQmbj8lGPFqQbEkNummMd2aDnGa9faT+i09JyjDMdl WFm0CYSIniIYjJWXlgrJjWEjPZlNPflfsFUKOGNSdjKwIGF79yZCZ/qlNAtIIEx6 wOi2zPJZBEswzM3muY2ptI3PYt2unIzi2QIuBkCvomJIBK+eDzODqg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:29 2025 by rpki-client