This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142105.roa File: AS142105.roa (raw, json) Hash identifier: jpc2wbU/ba1vhnZ6iq3dbZY4QP5EvWEJuYxugUpscbk= Subject key identifier: AA:B0:55:E1:33:94:88:CA:28:8B:E6:46:D5:0C:94:78:85:91:0D:BB Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 3CE737FBDBD88E99E1FC6BD163BB24E8324AAAAF Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142105.roa Signing time: Tue 20 Jan 2026 01:10:15 +0000 ROA not before: Tue 20 Jan 2026 01:05:15 +0000 ROA not after: Tue 19 Jan 2027 01:10:15 +0000 asID: 142105 IP address blocks: 2001:253:239::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e7:37:fb:db:d8:8e:99:e1:fc:6b:d1:63:bb:24:e8:32:4a:aa:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:15 2026 GMT Not After : Jan 19 01:10:15 2027 GMT Subject: CN=AAB055E1339488CA288BE646D50C947885910DBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:1c:97:88:cd:2e:a6:f1:0f:dd:73:43:14: 10:49:10:44:76:be:f5:7f:fd:ed:cd:6b:79:56:f3: 22:cb:af:88:e3:a3:d1:4e:44:d5:59:ef:1b:9b:af: 33:13:de:77:c0:1e:df:1a:47:2d:49:cb:30:86:0a: f4:af:22:8f:89:28:c1:1c:4e:7a:7f:40:3e:5a:09: 81:e8:09:d5:0a:14:20:80:da:c9:01:b7:4d:f6:6e: 9e:93:5d:9f:92:9c:ee:aa:4c:20:39:3d:0b:85:77: 91:54:f2:84:ba:ac:5a:89:ca:c6:1b:e1:d4:4e:88: 9e:95:00:d7:f5:f2:0a:73:ae:e8:90:6a:e0:d0:af: cb:a8:bd:bf:21:8a:d8:f4:20:22:fa:61:c7:a6:5d: b0:10:a4:43:d9:c2:2a:fc:84:bf:2c:7b:12:fe:21: b5:10:af:d5:6f:90:a0:d2:a0:be:a6:06:b8:bc:f2: fa:d2:f5:41:fa:ba:55:b3:48:df:ee:64:5d:85:e8: 98:fa:b6:b4:e2:54:5b:17:2f:0e:53:3a:d5:4e:d9: 38:40:80:9f:ac:6a:42:7b:cf:f3:b8:b1:9a:38:9f: a6:6e:b8:e5:65:93:6b:62:10:4f:69:2a:53:56:68: 3d:fc:5a:b7:75:68:55:a6:4a:eb:4f:34:57:ea:a9: 09:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B0:55:E1:33:94:88:CA:28:8B:E6:46:D5:0C:94:78:85:91:0D:BB X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142105.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:239::/48 Signature Algorithm: sha256WithRSAEncryption 10:37:c5:ff:7c:3e:d9:41:4b:af:dd:90:00:f8:9f:9a:09:8c: 4b:a2:fc:87:4d:4d:5b:c1:b6:cf:53:f8:cb:a1:a3:aa:46:b2: d9:03:1f:32:c9:54:a3:ed:20:f1:07:88:13:19:89:34:91:29: a6:1f:ed:d8:c8:50:c5:4b:75:b5:38:19:09:72:b0:df:c0:67: 49:46:7c:4c:b5:c3:a0:fb:e3:2d:de:a2:82:fb:ad:db:a5:b2: 72:e1:4b:9f:85:04:86:db:c2:bb:8b:4f:03:45:7b:bf:41:d6: 1b:e4:3e:d2:1f:28:71:d5:ad:c5:2d:11:15:43:bf:3e:58:60: b4:b2:5c:4c:89:0f:9f:3d:15:8a:1a:36:33:10:56:fc:4d:06: e6:7a:95:f7:86:74:81:e2:56:30:3f:a5:d1:e9:ad:5d:46:5d: 5f:ec:28:98:65:3e:4f:f7:d2:c7:91:73:6a:73:d0:6e:c4:f3: 0b:45:1d:d5:5f:93:ff:f6:9b:ed:e7:28:16:24:9c:54:87:46: ca:a0:3a:5c:dd:db:1a:a5:0f:e4:00:ae:ca:cb:43:a1:0a:a6: 8b:fc:07:a7:f1:4e:e5:19:22:51:42:ea:7c:b9:d6:3a:42:7d: a0:45:1e:66:03:18:9e:eb:22:77:c8:84:ab:4c:9a:19:85:03: 31:9a:5a:d2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUPOc3+9vYjpnh/GvRY7sk6DJKqq8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxNVoX DTI3MDExOTAxMTAxNVowMzExMC8GA1UEAxMoQUFCMDU1RTEzMzk0ODhDQTI4OEJF NjQ2RDUwQzk0Nzg4NTkxMERCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfaHJeIzS6m8Q/dc0MUEEkQRHa+9X/97c1reVbzIsuviOOj0U5E1VnvG5uv MxPed8Ae3xpHLUnLMIYK9K8ij4kowRxOen9APloJgegJ1QoUIIDayQG3TfZunpNd n5Kc7qpMIDk9C4V3kVTyhLqsWonKxhvh1E6InpUA1/XyCnOu6JBq4NCvy6i9vyGK 2PQgIvphx6ZdsBCkQ9nCKvyEvyx7Ev4htRCv1W+QoNKgvqYGuLzy+tL1Qfq6VbNI 3+5kXYXomPq2tOJUWxcvDlM61U7ZOECAn6xqQnvP87ixmjifpm645WWTa2IQT2kq U1ZoPfxat3VoVaZK6080V+qpCRsCAwEAAaOCAccwggHDMB0GA1UdDgQWBBSqsFXh M5SIyiiL5kbVDJR4hZENuzAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwNS5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCOTANBgkqhkiG9w0BAQsFAAOCAQEAEDfF/3w+2UFLr92QAPifmgmMS6L8h01N W8G2z1P4y6Gjqkay2QMfMslUo+0g8QeIExmJNJEpph/t2MhQxUt1tTgZCXKw38Bn SUZ8TLXDoPvjLd6igvut26WycuFLn4UEhtvCu4tPA0V7v0HWG+Q+0h8ocdWtxS0R FUO/PlhgtLJcTIkPnz0Viho2MxBW/E0G5nqV94Z0geJWMD+l0emtXUZdX+womGU+ T/fSx5FzanPQbsTzC0Ud1V+T//ab7ecoFiScVIdGyqA6XN3bGqUP5ACuystDoQqm i/wHp/FO5RkiUULqfLnWOkJ9oEUeZgMYnusid8iEq0yaGYUDMZpa0g== -----END CERTIFICATE-----Generated at Sun Jan 25 13:35:12 2026 by rpki-client