This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142105.roa File: AS142105.roa (raw, json) Hash identifier: OxPxe1U92F3OiLnWE66mp9Hz7guQe2xbKU6kygo0jrc= Subject key identifier: 2A:B6:1D:C6:7A:FB:C0:2A:2A:73:E5:57:F7:65:51:78:1B:D5:21:E2 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 246915C7502757ED6ACC155758F7586D7FA0EAB0 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142105.roa Signing time: Tue 02 Dec 2025 08:47:45 +0000 ROA not before: Tue 02 Dec 2025 08:42:45 +0000 ROA not after: Tue 01 Dec 2026 08:47:45 +0000 asID: 142105 IP address blocks: 2001:253:239::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:69:15:c7:50:27:57:ed:6a:cc:15:57:58:f7:58:6d:7f:a0:ea:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:45 2025 GMT Not After : Dec 1 08:47:45 2026 GMT Subject: CN=2AB61DC67AFBC02A2A73E557F76551781BD521E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:19:fd:d4:ac:88:5f:6f:15:fe:e0:92:16:5c: e6:53:a3:3a:a9:10:59:f5:76:7b:e1:84:cc:cb:7e: 19:47:6e:78:7a:cf:b3:52:89:e7:62:b7:22:17:c8: be:34:cc:13:97:3e:e5:fd:92:18:6c:39:f7:35:45: 86:d4:9c:4d:0a:41:50:7c:c9:38:a4:51:f7:47:13: 2c:8c:f2:ba:cc:0a:24:08:60:7a:8a:ba:a2:b7:44: 4f:60:8f:70:42:05:e5:36:db:4b:ec:0b:dc:12:00: ef:eb:ac:d4:2c:0d:b0:8f:53:54:89:91:92:91:f8: 82:3e:93:13:c2:c5:f8:5c:75:fb:5e:42:c2:84:ac: c4:78:a1:43:52:c7:41:57:db:3b:4d:c6:35:08:65: 5a:54:e4:51:20:e3:d2:f1:e4:00:58:3d:39:f6:71: 35:60:06:c0:46:c6:b5:7b:4d:8f:a1:53:57:61:58: bb:02:0c:ed:ee:8f:6a:62:cf:98:92:e9:b9:6e:90: 2a:41:f8:65:5b:24:b6:bd:91:c5:39:c6:5f:40:03: 72:e9:d7:e3:53:e7:f2:75:8a:22:3a:a5:e5:23:e8: 81:92:d9:ad:5c:df:d2:71:dc:84:be:91:a5:da:14: ae:5e:87:64:ea:5d:d8:b2:76:99:da:6d:fc:9e:cd: 63:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B6:1D:C6:7A:FB:C0:2A:2A:73:E5:57:F7:65:51:78:1B:D5:21:E2 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142105.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:239::/48 Signature Algorithm: sha256WithRSAEncryption a0:16:6e:ee:d5:7d:5d:2b:5e:74:0e:21:af:2e:cf:7c:55:ea: a6:cf:0a:05:fd:4c:1e:f5:b9:bf:b6:f7:a1:4c:df:15:5c:44: a3:ea:14:d4:5a:04:7d:9c:ae:5b:39:4d:f9:21:67:d7:74:59: 40:24:c6:70:57:1c:18:92:6c:c4:c4:01:32:35:75:32:23:8a: d1:0d:be:9d:17:0c:61:48:89:38:72:1d:70:df:60:9f:de:ac: 3f:b9:95:3a:79:0d:22:60:77:d6:3f:52:f2:f1:8e:29:7a:4f: bf:10:5c:69:4d:b1:aa:2b:44:df:dc:66:45:37:8c:36:a8:d2: a3:a8:31:e0:75:f8:d2:8d:31:f4:7d:ab:70:19:4b:0d:f7:ba: 0c:3f:30:1a:88:e4:72:b3:04:96:1d:8a:bb:35:49:6b:17:8d: 77:60:eb:9b:86:0e:98:a5:ab:96:6d:4e:4a:ae:3d:0e:ef:52: e3:0c:de:55:91:3c:65:97:7c:9a:14:84:9f:25:cb:12:db:52: 0d:05:1d:0a:f7:4b:a1:0e:d6:00:eb:9b:28:dc:b2:40:57:93: 1f:ef:35:6f:cc:6e:81:ce:63:39:ba:bb:6d:72:ec:ba:67:b8: 64:e8:4f:dc:b8:66:13:ef:43:6e:87:ac:ee:47:ea:05:85:0b: f0:a7:bb:9c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUJGkVx1AnV+1qzBVXWPdYbX+g6rAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0NVoX DTI2MTIwMTA4NDc0NVowMzExMC8GA1UEAxMoMkFCNjFEQzY3QUZCQzAyQTJBNzNF NTU3Rjc2NTUxNzgxQkQ1MjFFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgZ/dSsiF9vFf7gkhZc5lOjOqkQWfV2e+GEzMt+GUdueHrPs1KJ52K3IhfI vjTME5c+5f2SGGw59zVFhtScTQpBUHzJOKRR90cTLIzyuswKJAhgeoq6ordET2CP cEIF5TbbS+wL3BIA7+us1CwNsI9TVImRkpH4gj6TE8LF+Fx1+15CwoSsxHihQ1LH QVfbO03GNQhlWlTkUSDj0vHkAFg9OfZxNWAGwEbGtXtNj6FTV2FYuwIM7e6PamLP mJLpuW6QKkH4ZVsktr2RxTnGX0ADcunX41Pn8nWKIjql5SPogZLZrVzf0nHchL6R pdoUrl6HZOpd2LJ2mdpt/J7NYx8CAwEAAaOCAccwggHDMB0GA1UdDgQWBBQqth3G evvAKipz5Vf3ZVF4G9Uh4jAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCOTANBgkqhkiG9w0BAQsFAAOCAQEAoBZu7tV9XStedA4hry7PfFXqps8KBf1M HvW5v7b3oUzfFVxEo+oU1FoEfZyuWzlN+SFn13RZQCTGcFccGJJsxMQBMjV1MiOK 0Q2+nRcMYUiJOHIdcN9gn96sP7mVOnkNImB31j9S8vGOKXpPvxBcaU2xqitE39xm RTeMNqjSo6gx4HX40o0x9H2rcBlLDfe6DD8wGojkcrMElh2KuzVJaxeNd2Drm4YO mKWrlm1OSq49Du9S4wzeVZE8ZZd8mhSEnyXLEttSDQUdCvdLoQ7WAOubKNyyQFeT H+81b8xugc5jObq7bXLsume4ZOhP3LhmE+9Dboes7kfqBYUL8Ke7nA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:27 2025 by rpki-client