This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142103.roa File: AS142103.roa (raw, json) Hash identifier: VurxIuY/IXP4mZGOxqid98RzaRDmr+ENF/RWwXyMpBM= Subject key identifier: 6B:73:22:D7:0B:F1:CF:62:5A:2F:CE:66:5F:F6:BF:80:9E:20:BE:A9 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 0CC193169F3384F61614BA04B6B2CF5F469885C0 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142103.roa Signing time: Tue 02 Dec 2025 08:47:51 +0000 ROA not before: Tue 02 Dec 2025 08:42:51 +0000 ROA not after: Tue 01 Dec 2026 08:47:51 +0000 asID: 142103 IP address blocks: 2001:253:237::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c1:93:16:9f:33:84:f6:16:14:ba:04:b6:b2:cf:5f:46:98:85:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:51 2025 GMT Not After : Dec 1 08:47:51 2026 GMT Subject: CN=6B7322D70BF1CF625A2FCE665FF6BF809E20BEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:17:ce:47:df:c3:a9:15:ce:01:e9:e9:a2:c2: aa:ac:fa:7a:9d:15:ac:a6:47:cf:26:6d:94:09:80: 85:79:c1:ed:20:de:66:eb:76:27:50:d1:62:30:bb: a7:45:55:64:3e:e3:68:0b:33:5f:92:8e:1b:f6:14: d0:d7:90:41:62:8c:c3:5d:e7:bf:2d:7a:6b:e2:39: f5:0d:84:9b:fc:a0:ac:58:13:2e:84:d2:5c:1f:e1: 93:e6:0e:48:17:b3:07:85:48:fd:80:c3:5e:fc:4d: 21:ff:1f:0a:27:7e:ea:7e:17:40:c1:aa:2b:3d:b3: 47:77:04:d0:27:7d:83:3e:74:c6:20:da:b9:fe:c0: 21:ef:9b:c5:18:69:0f:7d:59:9a:72:9a:4c:9a:e0: f1:e5:74:fa:6b:d0:d8:f3:dc:23:e3:7e:78:57:a9: 7e:84:4a:ad:cd:4d:e3:35:c0:2a:9a:fd:53:12:be: 8d:38:f4:88:c2:11:f9:75:8c:b1:5f:7c:9f:f4:2a: 85:a5:dd:c4:0e:67:15:02:a1:b9:2a:da:f4:27:f9: 40:77:d8:87:29:d2:34:5a:cc:e7:22:e0:b0:6d:92: 8f:15:d2:f2:a5:cf:38:30:54:09:bb:fd:2c:9a:fa: 96:ab:5f:ff:8a:42:42:89:1d:04:4c:b0:b6:83:4c: 4f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:73:22:D7:0B:F1:CF:62:5A:2F:CE:66:5F:F6:BF:80:9E:20:BE:A9 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142103.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:237::/48 Signature Algorithm: sha256WithRSAEncryption 15:c9:ca:a9:71:2f:93:44:ae:da:4c:79:e5:ef:3f:7d:9a:f5: 5b:f8:cf:f2:c2:5f:03:39:d1:1c:e6:05:65:f3:00:d7:65:f9: 1f:e6:01:dd:0a:60:9e:f7:50:ef:56:c5:7d:da:a4:05:2c:32: 0f:3c:ef:ac:5e:af:a5:a6:b6:12:b1:d1:07:5b:01:7c:76:d5: a0:4b:35:48:1c:24:d5:07:79:e9:12:01:03:67:50:be:de:17: d2:04:9f:21:56:a1:bf:30:41:44:1c:55:c9:ad:b4:e4:79:95: b6:23:22:04:01:75:a3:e7:28:e3:b7:8d:be:48:c0:31:9c:50: 09:63:50:26:3b:f0:d2:8d:10:8b:71:29:61:4a:e1:a3:7e:88: 97:eb:7a:9c:4a:e0:d4:cf:65:b4:b5:85:29:9b:8c:16:f9:16: d1:9c:d9:1b:a4:84:45:99:27:27:81:bf:d6:9f:95:97:8e:00: bf:87:08:c3:0f:40:67:77:28:48:e6:1c:be:4b:9c:c2:40:d5: c1:4c:3d:b3:0a:15:f5:44:32:93:cc:96:ea:f8:c3:b6:5f:86: ff:2f:84:49:4b:86:78:c7:3d:24:af:f5:d0:db:51:a8:54:f5: f4:b6:25:f4:f9:66:8f:23:e1:2b:a4:a9:2e:b0:28:19:1b:40: 83:63:c2:c5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUDMGTFp8zhPYWFLoEtrLPX0aYhcAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI1MVoX DTI2MTIwMTA4NDc1MVowMzExMC8GA1UEAxMoNkI3MzIyRDcwQkYxQ0Y2MjVBMkZD RTY2NUZGNkJGODA5RTIwQkVBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJgXzkffw6kVzgHp6aLCqqz6ep0VrKZHzyZtlAmAhXnB7SDeZut2J1DRYjC7 p0VVZD7jaAszX5KOG/YU0NeQQWKMw13nvy16a+I59Q2Em/ygrFgTLoTSXB/hk+YO SBezB4VI/YDDXvxNIf8fCid+6n4XQMGqKz2zR3cE0Cd9gz50xiDauf7AIe+bxRhp D31ZmnKaTJrg8eV0+mvQ2PPcI+N+eFepfoRKrc1N4zXAKpr9UxK+jTj0iMIR+XWM sV98n/QqhaXdxA5nFQKhuSra9Cf5QHfYhynSNFrM5yLgsG2SjxXS8qXPODBUCbv9 LJr6lqtf/4pCQokdBEywtoNMT3cCAwEAAaOCAccwggHDMB0GA1UdDgQWBBRrcyLX C/HPYlovzmZf9r+AniC+qTAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwMy5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCNzANBgkqhkiG9w0BAQsFAAOCAQEAFcnKqXEvk0Su2kx55e8/fZr1W/jP8sJf AznRHOYFZfMA12X5H+YB3QpgnvdQ71bFfdqkBSwyDzzvrF6vpaa2ErHRB1sBfHbV oEs1SBwk1Qd56RIBA2dQvt4X0gSfIVahvzBBRBxVya205HmVtiMiBAF1o+co47eN vkjAMZxQCWNQJjvw0o0Qi3EpYUrho36Il+t6nErg1M9ltLWFKZuMFvkW0ZzZG6SE RZknJ4G/1p+Vl44Av4cIww9AZ3coSOYcvkucwkDVwUw9swoV9UQyk8yW6vjDtl+G /y+ESUuGeMc9JK/10NtRqFT19LYl9PlmjyPhK6SpLrAoGRtAg2PCxQ== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:28 2025 by rpki-client