This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142106.roa File: AS142106.roa (raw, json) Hash identifier: AhOwvznZqZ9H1PdX5IqpmWeu+6FpJHxNXHPbcsLqv9I= Subject key identifier: 7D:68:76:47:12:E6:8F:EF:F6:9F:2C:86:76:0E:BB:D2:A5:0F:D8:42 Certificate issuer: /CN=A91E5D610001/serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Certificate serial: 6137677272C64518723300B0BA247498D011B37C Authority key identifier: 05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142106.roa Signing time: Tue 20 Jan 2026 01:10:15 +0000 ROA not before: Tue 20 Jan 2026 01:05:15 +0000 ROA not after: Tue 19 Jan 2027 01:10:15 +0000 asID: 142106 IP address blocks: 2001:253:240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:37:67:72:72:c6:45:18:72:33:00:b0:ba:24:74:98:d0:11:b3:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA Validity Not Before: Jan 20 01:05:15 2026 GMT Not After : Jan 19 01:10:15 2027 GMT Subject: CN=7D68764712E68FEFF69F2C86760EBBD2A50FD842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:a9:1f:d0:7a:9b:5e:a1:dc:83:dc:8d:95:55: d6:1d:53:e2:31:5e:a5:01:5f:ea:10:6c:a3:d8:5f: 1e:9f:2d:e1:b4:f5:f1:6c:a7:b5:2d:99:99:3c:9f: cf:38:ee:71:20:bc:81:75:9f:ad:94:aa:5f:d8:12: 63:5c:da:07:8f:48:aa:aa:7b:4f:2e:06:1e:ae:db: 8a:3a:4b:33:93:a7:e4:d4:b6:c9:30:90:27:0c:5a: 66:94:e7:b7:e9:95:26:6c:ff:e6:91:e3:9e:27:a7: 2f:9c:36:1f:65:77:20:b2:06:7d:e6:96:d8:dd:e4: e4:bd:5c:16:f9:de:82:94:07:7b:43:4b:3f:d2:4e: 00:3c:26:34:1d:be:8b:c6:97:7c:55:e0:df:89:bc: b6:81:63:b0:70:80:31:13:00:84:d4:18:1e:b7:fe: c0:e7:e5:1c:35:f7:c0:49:e1:a8:97:0a:a9:ec:29: 8c:0a:93:77:43:7b:75:96:22:39:1b:15:cc:c8:02: 9a:1b:58:86:58:8a:60:70:78:85:fb:03:88:82:19: a3:e5:56:22:51:df:3b:71:b9:4e:55:71:4a:71:ec: 89:61:07:97:cb:bd:bd:cd:7b:6e:12:93:05:a1:94: 87:10:cd:d6:af:d7:e6:0f:b0:4e:4a:73:79:6e:70: 88:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:68:76:47:12:E6:8F:EF:F6:9F:2C:86:76:0E:BB:D2:A5:0F:D8:42 X509v3 Authority Key Identifier: keyid:05:FC:9C:5B:88:50:6F:7C:0D:3F:86:2C:88:95:BE:D6:7E:9F:8E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/05FC9C5B88506F7C0D3F862C8895BED67E9F8EBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfycW4hQb3wNP4YsiJW-1n6fjro.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142106.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:240::/48 Signature Algorithm: sha256WithRSAEncryption bf:d2:fb:a3:f1:e5:08:4f:45:94:fa:99:f2:b3:53:ee:87:5d: d8:cf:3e:1c:a8:d3:f8:5c:3e:fb:ce:19:e0:77:da:e4:f3:48: 51:a7:e7:52:27:fe:52:7b:9f:11:ba:5e:3e:79:42:15:f9:5d: 66:0b:99:ad:0a:15:dd:c5:70:c2:b6:35:3c:5d:c7:dc:44:d9: 24:79:47:bb:ab:f5:a1:04:8a:9b:de:f9:ca:23:7b:84:9b:0e: fb:8a:31:20:76:f9:6c:e9:46:05:b8:4b:aa:8f:5c:8b:bd:6c: fb:41:c1:bb:8c:c3:10:be:34:9f:24:24:3f:0b:58:3a:95:9b: d5:c9:58:da:ee:7c:3e:82:8f:92:2f:f2:ce:ad:58:ef:e7:bf: 3f:27:84:8d:be:0b:53:33:64:54:ae:f8:8a:cd:d4:82:67:52: 40:92:5c:08:b1:94:d4:ea:ac:65:24:69:fc:60:dc:16:76:ec: 72:bf:fa:e0:42:ed:f9:62:c6:95:65:12:e4:d0:64:d5:3e:2e: 72:d6:16:82:d6:b4:6d:d6:1d:91:80:c8:6d:46:ba:bf:2e:1b: e9:5c:8a:0d:f2:09:d9:45:00:ce:c9:28:d8:1e:97:09:f4:32: cc:7a:9e:c9:48:24:c3:6f:03:04:e0:6d:30:e9:ce:74:f4:44: b2:79:a3:9d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUYTdncnLGRRhyMwCwuiR0mNARs3wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwNUZDOUM1Qjg4 NTA2RjdDMEQzRjg2MkM4ODk1QkVENjdFOUY4RUJBMB4XDTI2MDEyMDAxMDUxNVoX DTI3MDExOTAxMTAxNVowMzExMC8GA1UEAxMoN0Q2ODc2NDcxMkU2OEZFRkY2OUYy Qzg2NzYwRUJCRDJBNTBGRDg0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPypH9B6m16h3IPcjZVV1h1T4jFepQFf6hBso9hfHp8t4bT18WyntS2ZmTyf zzjucSC8gXWfrZSqX9gSY1zaB49Iqqp7Ty4GHq7bijpLM5On5NS2yTCQJwxaZpTn t+mVJmz/5pHjnienL5w2H2V3ILIGfeaW2N3k5L1cFvnegpQHe0NLP9JOADwmNB2+ i8aXfFXg34m8toFjsHCAMRMAhNQYHrf+wOflHDX3wEnhqJcKqewpjAqTd0N7dZYi ORsVzMgCmhtYhliKYHB4hfsDiIIZo+VWIlHfO3G5TlVxSnHsiWEHl8u9vc17bhKT BaGUhxDN1q/X5g+wTkpzeW5wiAkCAwEAAaOCAccwggHDMB0GA1UdDgQWBBR9aHZH EuaP7/afLIZ2DrvSpQ/YQjAfBgNVHSMEGDAWgBQF/JxbiFBvfA0/hiyIlb7Wfp+O ujAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wNUZDOUM1Qjg4NTA2RjdDMEQzRjg2 MkM4ODk1QkVENjdFOUY4RUJBLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9CZnljVzRoUWIzd05QNFlzaUpXLTFuNmZq cm8uY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCQDANBgkqhkiG9w0BAQsFAAOCAQEAv9L7o/HlCE9FlPqZ8rNT7odd2M8+HKjT +Fw++84Z4Hfa5PNIUafnUif+UnufEbpePnlCFfldZguZrQoV3cVwwrY1PF3H3ETZ JHlHu6v1oQSKm975yiN7hJsO+4oxIHb5bOlGBbhLqo9ci71s+0HBu4zDEL40nyQk PwtYOpWb1clY2u58PoKPki/yzq1Y7+e/PyeEjb4LUzNkVK74is3UgmdSQJJcCLGU 1OqsZSRp/GDcFnbscr/64ELt+WLGlWUS5NBk1T4uctYWgta0bdYdkYDIbUa6vy4b 6VyKDfIJ2UUAzsko2B6XCfQyzHqeyUgkw28DBOBtMOnOdPREsnmjnQ== -----END CERTIFICATE-----Generated at Sun Jan 25 13:35:11 2026 by rpki-client