This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cernet.net/repo/cernet/0/AS142653.roa File: AS142653.roa (raw, json) Hash identifier: IA2hcLazVAsUGRzcoRuIR/0BUhNKedfIKh8DZhoRK4Q= Subject key identifier: 02:6B:CB:F3:CC:52:1F:C2:02:1E:45:7C:18:02:15:62:25:A3:BA:E7 Certificate issuer: /CN=A91E5D610001/serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Certificate serial: 2456CD39AF9C63B03446D5386691746B59EC27EB Authority key identifier: 0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject info access: rsync://rpki.cernet.net/repo/cernet/0/AS142653.roa Signing time: Tue 02 Dec 2025 08:47:45 +0000 ROA not before: Tue 02 Dec 2025 08:42:45 +0000 ROA not after: Tue 01 Dec 2026 08:47:45 +0000 asID: 142653 IP address blocks: 240a:a003::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 03:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:56:cd:39:af:9c:63:b0:34:46:d5:38:66:91:74:6b:59:ec:27:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610001, serialNumber=0B275E5B466B941AB84A742B4E3832BB1FDFEC9E Validity Not Before: Dec 2 08:42:45 2025 GMT Not After : Dec 1 08:47:45 2026 GMT Subject: CN=026BCBF3CC521FC2021E457C1802156225A3BAE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:15:43:8e:fb:f2:41:fb:24:9b:ce:38:83:be: ab:a1:69:1f:11:04:65:57:ba:53:61:43:18:7d:07: dc:a3:64:e2:96:60:a7:f6:f3:d8:4d:eb:1b:2a:2c: 18:55:aa:3a:24:10:1e:b1:16:e8:51:fb:f1:23:53: 53:9c:eb:c8:49:d4:a3:f5:53:e1:f6:02:18:09:b1: ac:f9:f6:25:36:bb:2d:f4:f6:1c:66:93:e9:77:06: d6:6f:6a:e4:1c:62:e6:45:75:e5:b6:ad:cc:37:f5: c6:2c:2e:3d:55:ba:c2:03:89:fe:58:20:db:66:d0: 0f:b2:04:fb:24:23:b5:b7:09:05:b2:77:62:9a:2a: 1d:08:bd:c6:9d:3c:ca:ab:2e:90:58:a8:4d:55:af: ae:14:08:92:0a:b0:39:64:f0:e7:ec:1f:94:3a:94: 7a:d2:d4:1d:8a:0e:f9:34:2e:47:0e:a7:d8:d5:45: bb:be:4d:5e:99:73:b1:6d:b8:10:a2:7f:f2:f1:59: 32:69:c4:7c:b8:31:fb:d6:0f:6d:a8:9d:9f:b4:3b: 24:2a:aa:43:80:b6:d2:d9:b1:da:37:9b:a8:08:0c: 27:a9:f8:d7:f0:c9:b2:da:02:58:4a:91:4c:b1:22: 55:1c:fe:99:cd:fd:3f:13:76:f3:d9:13:d2:a5:9e: 7f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:6B:CB:F3:CC:52:1F:C2:02:1E:45:7C:18:02:15:62:25:A3:BA:E7 X509v3 Authority Key Identifier: keyid:0B:27:5E:5B:46:6B:94:1A:B8:4A:74:2B:4E:38:32:BB:1F:DF:EC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.net/repo/cernet/0/0B275E5B466B941AB84A742B4E3832BB1FDFEC9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CydeW0ZrlBq4SnQrTjgyux_f7J4.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.net/repo/cernet/0/AS142653.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240a:a003::/32 Signature Algorithm: sha256WithRSAEncryption 6e:e8:b7:7d:f7:13:7c:eb:43:f1:47:ff:ae:c1:3a:7c:1d:13: e6:80:32:f1:25:e4:24:61:45:dd:61:c4:b0:2b:1f:ce:8b:ec: 1b:a0:13:9c:44:75:5f:06:d5:23:9c:fe:08:28:e5:e5:6f:9e: be:6a:c9:48:ab:dd:fb:fd:f8:bd:81:25:df:3a:cc:f1:79:57: 90:f0:35:fc:10:16:bf:68:d0:76:38:c1:cf:19:f4:e2:5e:81: 52:6f:f3:44:a6:ec:fc:ed:ef:db:a7:e6:98:25:17:6f:a7:44: 68:f5:8c:43:be:6a:c1:86:a1:0f:32:95:d2:9d:9f:3a:e7:d8: 13:d7:ff:a8:81:27:a7:af:c3:10:72:a9:60:77:ef:0d:91:d4: 90:4c:a8:6d:9c:0a:a2:5c:8b:6c:a3:7c:73:34:65:fb:8b:4c: d3:9c:b0:e4:09:ed:07:d0:4c:63:09:d8:7d:24:72:d9:b3:1f: 47:66:06:cb:d4:c6:73:ad:39:55:3a:c2:7a:5d:d1:3f:17:e0: 6e:fa:60:3c:d1:19:09:6e:8c:33:04:46:d7:2b:ec:ff:7d:8b: 38:c8:6d:aa:db:6a:d4:46:5d:fe:c8:4c:4c:cd:08:ea:16:d6: 2b:4d:ba:71:f1:62:6e:13:26:9c:76:bb:39:0a:eb:52:37:d4: 57:34:ca:c5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIUJFbNOa+cY7A0RtU4ZpF0a1nsJ+swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAxMTEwLwYDVQQFEygwQjI3NUU1QjQ2 NkI5NDFBQjg0QTc0MkI0RTM4MzJCQjFGREZFQzlFMB4XDTI1MTIwMjA4NDI0NVoX DTI2MTIwMTA4NDc0NVowMzExMC8GA1UEAxMoMDI2QkNCRjNDQzUyMUZDMjAyMUU0 NTdDMTgwMjE1NjIyNUEzQkFFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMVQ4778kH7JJvOOIO+q6FpHxEEZVe6U2FDGH0H3KNk4pZgp/bz2E3rGyos GFWqOiQQHrEW6FH78SNTU5zryEnUo/VT4fYCGAmxrPn2JTa7LfT2HGaT6XcG1m9q 5Bxi5kV15batzDf1xiwuPVW6wgOJ/lgg22bQD7IE+yQjtbcJBbJ3YpoqHQi9xp08 yqsukFioTVWvrhQIkgqwOWTw5+wflDqUetLUHYoO+TQuRw6n2NVFu75NXplzsW24 EKJ/8vFZMmnEfLgx+9YPbaidn7Q7JCqqQ4C20tmx2jebqAgMJ6n41/DJstoCWEqR TLEiVRz+mc39PxN289kT0qWef7kCAwEAAaOCAcUwggHBMB0GA1UdDgQWBBQCa8vz zFIfwgIeRXwYAhViJaO65zAfBgNVHSMEGDAWgBQLJ15bRmuUGrhKdCtOODK7H9/s njAOBgNVHQ8BAf8EBAMCB4AwYwYDVR0fBFwwWjBYoFagVIZScnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC8wQjI3NUU1QjQ2NkI5NDFBQjg0QTc0 MkI0RTM4MzJCQjFGREZFQzlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUH MAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFE NjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9DeWRlVzBacmxCcTRTblFyVGpneXV4X2Y3 SjQuY2VyME4GCCsGAQUFBwELBEIwQDA+BggrBgEFBQcwC4YycnN5bmM6Ly9ycGtp LmNlcm5ldC5uZXQvcmVwby9jZXJuZXQvMC9BUzE0MjY1My5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQK oAMwDQYJKoZIhvcNAQELBQADggEBAG7ot333E3zrQ/FH/67BOnwdE+aAMvEl5CRh Rd1hxLArH86L7BugE5xEdV8G1SOc/ggo5eVvnr5qyUir3fv9+L2BJd86zPF5V5Dw NfwQFr9o0HY4wc8Z9OJegVJv80Sm7Pzt79un5pglF2+nRGj1jEO+asGGoQ8yldKd nzrn2BPX/6iBJ6evwxByqWB37w2R1JBMqG2cCqJci2yjfHM0ZfuLTNOcsOQJ7QfQ TGMJ2H0kctmzH0dmBsvUxnOtOVU6wnpd0T8X4G76YDzRGQlujDMERtcr7P99izjI barbatRGXf7ITEzNCOoW1itNunHxYm4TJpx2uzkK61I31Fc0ysU= -----END CERTIFICATE-----Generated at Sat Dec 6 18:41:25 2025 by rpki-client