This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142106.roa File: AS142106.roa (raw, json) Hash identifier: dZuvwVOTduA95d+VOUPJLcnWq9OT6R19M2H06vijCNk= Subject key identifier: EB:A6:17:DE:A7:2B:4B:F3:D5:84:7E:30:4B:58:36:0A:E0:39:40:03 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 72AE2957B2036EF67BF962DF70FB39F5FD7AE6B9 Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142106.roa Signing time: Tue 02 Dec 2025 08:47:51 +0000 ROA not before: Tue 02 Dec 2025 08:42:51 +0000 ROA not after: Tue 01 Dec 2026 08:47:51 +0000 asID: 142106 IP address blocks: 2001:253:240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ae:29:57:b2:03:6e:f6:7b:f9:62:df:70:fb:39:f5:fd:7a:e6:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:51 2025 GMT Not After : Dec 1 08:47:51 2026 GMT Subject: CN=EBA617DEA72B4BF3D5847E304B58360AE0394003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:66:6a:7f:bb:ec:f5:68:03:91:ea:e0:b3: 96:89:a5:94:54:38:cc:d6:75:5a:08:ff:f7:b2:c4: 37:d0:60:fc:f9:9d:94:63:93:05:0c:59:4c:28:10: 14:29:f4:ba:2e:7b:5e:fd:dd:73:da:b3:4a:bf:48: ee:f5:71:5a:6b:a9:3a:5e:95:4e:20:65:fa:2f:33: de:03:a3:71:cd:0d:5c:b2:a1:df:fd:2b:a4:f0:ce: c0:65:98:78:d6:a5:25:2f:ae:e5:03:c7:d3:34:4a: 76:a4:2c:83:46:b8:41:18:3c:54:cf:23:26:f9:a1: eb:db:b2:89:e5:41:05:f9:9e:af:da:7d:e2:e0:a6: 0a:2b:e4:66:a0:ec:9e:68:76:39:f3:98:ac:b9:07: b3:72:3c:a0:25:83:ca:85:72:4a:bf:5a:dd:c4:69: e1:84:70:e6:f7:7d:75:b3:c1:4f:cd:bb:83:3b:36: f3:8f:28:f3:e9:20:a6:ff:fe:6c:65:15:40:05:a1: 62:22:db:83:19:9d:a1:df:33:97:a0:e1:b6:b8:40: 17:ca:6c:93:f4:44:7d:1b:d7:db:63:eb:61:82:be: ca:05:8b:bb:a1:e0:c1:b8:1b:1f:a1:60:2a:47:01: 89:8a:26:6b:0c:b8:73:82:05:aa:7a:6b:77:57:ef: ec:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A6:17:DE:A7:2B:4B:F3:D5:84:7E:30:4B:58:36:0A:E0:39:40:03 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142106.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:253:240::/48 Signature Algorithm: sha256WithRSAEncryption 06:85:46:0b:c3:d1:38:66:bc:49:e1:14:3e:8c:fc:77:e5:e3: a9:48:8e:5d:6a:8b:b4:a5:ae:67:78:1d:82:97:8d:a8:c3:ea: 0f:cf:21:0d:e3:38:2d:22:54:a6:8f:f1:16:16:91:9d:a2:85: 84:e0:40:e8:41:e0:08:b3:1d:11:de:01:4a:c6:40:c3:64:a6: ec:f8:9b:66:09:c7:00:f4:58:b3:82:f4:6e:7f:9a:27:1f:73: c8:a2:12:0f:f2:c6:18:d6:40:d3:be:3d:77:f0:0a:ab:94:78: 89:d1:e6:23:53:76:77:8e:d8:f2:4a:65:04:9e:cf:66:c0:f2: 54:8d:90:5d:a3:a6:4a:2e:c8:09:5c:6a:78:fe:fa:28:ce:bb: a6:23:20:58:f8:9d:e3:12:aa:bb:d1:b9:d3:b6:ee:10:25:2c: b5:11:8e:68:2f:0a:bb:a7:db:e1:a4:23:23:df:02:c2:c1:eb: bf:b8:84:29:89:41:31:56:10:5e:a3:3c:8e:ef:7e:93:54:ef: 95:f8:cc:66:71:dd:aa:13:a6:8d:25:b0:90:90:01:37:a5:74: d5:2e:82:78:81:5e:9b:6c:a4:dc:e4:d4:59:70:3a:13:bf:eb: c2:14:d7:f6:81:3c:d3:ad:8b:09:c0:25:83:ba:20:94:de:54: 71:a1:7a:65 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIUcq4pV7IDbvZ7+WLfcPs59f165rkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI1MVoX DTI2MTIwMTA4NDc1MVowMzExMC8GA1UEAxMoRUJBNjE3REVBNzJCNEJGM0Q1ODQ3 RTMwNEI1ODM2MEFFMDM5NDAwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMJ5Zmp/u+z1aAOR6uCzlomllFQ4zNZ1Wgj/97LEN9Bg/PmdlGOTBQxZTCgQ FCn0ui57Xv3dc9qzSr9I7vVxWmupOl6VTiBl+i8z3gOjcc0NXLKh3/0rpPDOwGWY eNalJS+u5QPH0zRKdqQsg0a4QRg8VM8jJvmh69uyieVBBfmer9p94uCmCivkZqDs nmh2OfOYrLkHs3I8oCWDyoVySr9a3cRp4YRw5vd9dbPBT827gzs2848o8+kgpv/+ bGUVQAWhYiLbgxmdod8zl6DhtrhAF8psk/REfRvX22PrYYK+ygWLu6HgwbgbH6Fg KkcBiYomawy4c4IFqnprd1fv7EECAwEAAaOCAccwggHDMB0GA1UdDgQWBBTrphfe pytL89WEfjBLWDYK4DlAAzAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjEwNi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACAB AlMCQDANBgkqhkiG9w0BAQsFAAOCAQEABoVGC8PROGa8SeEUPoz8d+XjqUiOXWqL tKWuZ3gdgpeNqMPqD88hDeM4LSJUpo/xFhaRnaKFhOBA6EHgCLMdEd4BSsZAw2Sm 7PibZgnHAPRYs4L0bn+aJx9zyKISD/LGGNZA0749d/AKq5R4idHmI1N2d47Y8kpl BJ7PZsDyVI2QXaOmSi7ICVxqeP76KM67piMgWPid4xKqu9G507buECUstRGOaC8K u6fb4aQjI98CwsHrv7iEKYlBMVYQXqM8ju9+k1TvlfjMZnHdqhOmjSWwkJABN6V0 1S6CeIFem2yk3OTUWXA6E7/rwhTX9oE8062LCcAlg7oglN5UcaF6ZQ== -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:28 2025 by rpki-client