This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142104.roa File: AS142104.roa (raw, json) Hash identifier: A3TENiPyG0OgbENBidS9ng2JFFpWplDNNfei6kDEMVM= Subject key identifier: F7:21:FE:C5:2C:35:25:E8:6D:EA:C6:20:C0:06:1D:B6:82:C2:8D:7E Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 03045F6F0D9E8A1752CC1BE9F7A759BC20B7F834 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142104.roa Signing time: Tue 02 Dec 2025 08:47:47 +0000 ROA not before: Tue 02 Dec 2025 08:42:47 +0000 ROA not after: Tue 01 Dec 2026 08:47:47 +0000 asID: 142104 IP address blocks: 2001:253:238::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:04:5f:6f:0d:9e:8a:17:52:cc:1b:e9:f7:a7:59:bc:20:b7:f8:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:47 2025 GMT Not After : Dec 1 08:47:47 2026 GMT Subject: CN=F721FEC52C3525E86DEAC620C0061DB682C28D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1b:25:74:2c:3e:5e:ab:20:af:27:5a:1c:71: 16:89:87:6e:81:d9:5d:88:28:28:70:60:f0:df:e4: 81:98:09:08:f5:e0:ee:9e:6e:4e:83:c2:f2:77:02: b7:ef:2a:3b:6a:21:01:63:fe:a7:cb:81:98:10:0a: ac:cc:ba:ef:a4:b1:25:ff:05:a8:06:54:fb:7f:88: da:88:d6:9b:fa:67:cc:00:fc:07:ee:1f:b8:c9:b2: 45:ca:2d:50:96:f6:9b:7a:a9:83:ac:6b:49:6c:ba: d9:36:af:ab:be:48:05:d4:06:1d:b8:23:ea:35:2b: 08:78:43:66:a4:6c:04:5f:29:b1:a9:72:da:a2:b3: 75:37:47:eb:57:41:48:f4:6e:a1:b3:fa:d8:e5:9c: 2c:0b:a1:2f:58:42:72:b9:1a:d5:d1:44:b8:35:8b: 42:b9:51:08:e1:0a:c8:0e:31:98:7c:7a:aa:d8:90: 8a:ff:86:f5:8a:a5:98:ec:3b:bf:2c:cb:78:10:5d: 0c:e8:2b:39:aa:dc:47:e8:be:d4:b3:eb:90:42:8c: c1:32:73:e0:70:06:00:a5:16:f7:a5:36:99:bc:1d: bc:12:66:01:6b:13:60:54:8c:cb:12:b4:d6:02:11: 42:2a:fc:51:de:93:83:98:38:b9:b8:75:5b:42:bc: 41:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:21:FE:C5:2C:35:25:E8:6D:EA:C6:20:C0:06:1D:B6:82:C2:8D:7E X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142104.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:238::/48 Signature Algorithm: sha256WithRSAEncryption 8f:ed:5a:e2:fa:41:93:c2:b1:dc:af:7b:51:43:0e:ee:7b:93: f3:4c:dc:e7:5b:3f:9a:99:03:74:31:a6:be:86:52:3c:62:30: 03:09:c8:a6:fe:ca:0e:cd:12:a8:2f:6b:6f:88:71:f7:84:a2: cd:23:70:0d:1b:d9:36:8a:dd:d7:17:94:40:31:78:1a:dd:5a: 56:a1:75:fd:b4:1f:31:f9:42:4f:d1:21:49:b5:d0:18:03:49: 30:79:d6:b8:45:e4:f6:78:da:27:7d:20:8b:bf:f6:a8:21:39: f4:47:6e:68:9f:8d:94:cb:5c:34:32:52:5e:60:0e:4e:84:e4: 01:de:c6:15:55:8b:17:f5:ae:bd:b8:54:36:2f:29:82:02:24: a3:57:a2:0f:d6:7d:2a:80:be:28:68:31:8a:06:20:16:34:9e: df:ca:31:17:3f:70:ce:f2:fb:d0:da:0e:d2:4c:88:d9:f8:14: 54:9a:fa:c9:43:3d:93:d5:7e:aa:64:ed:cb:31:8e:0b:6b:19: 27:e7:a0:c0:54:9a:5a:0b:c6:49:c9:92:cc:79:b4:4c:c7:bb: b0:d8:a4:c6:68:f8:b6:2d:33:5c:7c:79:78:16:a7:92:2a:21: 0f:37:42:c2:30:7b:d5:e6:66:a1:fd:50:46:9d:a5:db:5a:a4: a5:bb:18:72 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUAwRfbw2eihdSzBvp96dZvCC3+DQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0N1oX DTI2MTIwMTA4NDc0N1owMzExMC8GA1UEAxMoRjcyMUZFQzUyQzM1MjVFODZERUFD NjIwQzAwNjFEQjY4MkMyOEQ3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4bJXQsPl6rIK8nWhxxFomHboHZXYgoKHBg8N/kgZgJCPXg7p5uToPC8ncC t+8qO2ohAWP+p8uBmBAKrMy676SxJf8FqAZU+3+I2ojWm/pnzAD8B+4fuMmyRcot UJb2m3qpg6xrSWy62Tavq75IBdQGHbgj6jUrCHhDZqRsBF8psaly2qKzdTdH61dB SPRuobP62OWcLAuhL1hCcrka1dFEuDWLQrlRCOEKyA4xmHx6qtiQiv+G9YqlmOw7 vyzLeBBdDOgrOarcR+i+1LPrkEKMwTJz4HAGAKUW96U2mbwdvBJmAWsTYFSMyxK0 1gIRQir8Ud6Tg5g4ubh1W0K8QeMCAwEAAaOCAccwggHDMB0GA1UdDgQWBBT3If7F LDUl6G3qxiDABh22gsKNfjAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwNC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCODANBgkqhkiG9w0BAQsFAAOCAQEAj+1a4vpBk8Kx3K97UUMO7nuT80zc51s/ mpkDdDGmvoZSPGIwAwnIpv7KDs0SqC9rb4hx94SizSNwDRvZNord1xeUQDF4Gt1a VqF1/bQfMflCT9EhSbXQGANJMHnWuEXk9njaJ30gi7/2qCE59EduaJ+NlMtcNDJS XmAOToTkAd7GFVWLF/WuvbhUNi8pggIko1eiD9Z9KoC+KGgxigYgFjSe38oxFz9w zvL70NoO0kyI2fgUVJr6yUM9k9V+qmTtyzGOC2sZJ+egwFSaWgvGScmSzHm0TMe7 sNikxmj4ti0zXHx5eBankiohDzdCwjB71eZmof1QRp2l21qkpbsYcg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:28 2025 by rpki-client