This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948075011/0/3230332e38362e34332e302f32342d3234203d3e203234313437.roa File: 3230332e38362e34332e302f32342d3234203d3e203234313437.roa (raw, json) Hash identifier: KAFhdO3yt9Ku7r/Veg9pGOh1yJ/ksXYA8r5t5Q9GrR4= Subject key identifier: B8:E9:50:2E:96:0D:A8:53:83:48:46:1E:E4:5C:70:9D:38:53:10:52 Certificate issuer: /CN=A14C5431A0072F5BD88242DAA57169EE3163CFC1 Certificate serial: 45948FF19291F4291B9F7F4B02BDAAB4AFC584DB Authority key identifier: A1:4C:54:31:A0:07:2F:5B:D8:82:42:DA:A5:71:69:EE:31:63:CF:C1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A14C5431A0072F5BD88242DAA57169EE3163CFC1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/3230332e38362e34332e302f32342d3234203d3e203234313437.roa Signing time: Tue 20 Jan 2026 02:25:01 +0000 ROA not before: Tue 20 Jan 2026 02:20:01 +0000 ROA not after: Tue 19 Jan 2027 02:25:01 +0000 asID: 24147 IP address blocks: 203.86.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/A14C5431A0072F5BD88242DAA57169EE3163CFC1.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/A14C5431A0072F5BD88242DAA57169EE3163CFC1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A14C5431A0072F5BD88242DAA57169EE3163CFC1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:94:8f:f1:92:91:f4:29:1b:9f:7f:4b:02:bd:aa:b4:af:c5:84:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A14C5431A0072F5BD88242DAA57169EE3163CFC1 Validity Not Before: Jan 20 02:20:01 2026 GMT Not After : Jan 19 02:25:01 2027 GMT Subject: CN=B8E9502E960DA8538348461EE45C709D38531052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:19:85:6d:38:e0:1e:e1:a6:95:34:d8:6a:ab: 7c:54:ad:00:7c:cd:8d:9f:1a:88:22:07:6a:f4:d3: a9:12:b6:79:e7:de:82:02:e3:31:cc:af:66:e7:fe: c6:72:34:93:7b:d8:36:b0:bd:63:2d:94:90:d3:54: cb:23:9d:80:1c:94:7c:ec:9b:ad:2a:11:ed:65:09: 2c:5b:9e:80:45:75:3a:4f:52:67:07:1d:13:68:ed: 36:ca:b7:cd:c2:06:06:ba:33:3b:a8:22:d0:08:2a: 95:7c:6f:01:ab:29:6e:02:fe:de:72:49:68:8f:a8: e4:1b:4c:47:b4:65:68:b7:85:3b:8e:c2:cd:9f:36: ce:0a:b8:cc:c3:53:d9:33:d0:37:7e:3e:28:4f:81: b4:7d:b9:cf:89:86:0a:c9:54:ca:4c:f8:3d:c6:a3: fa:05:26:ae:25:09:e3:13:df:7d:52:d7:7f:a7:75: d7:a0:31:7d:20:f4:20:d8:f5:26:22:a2:4b:db:33: e8:54:53:73:83:9d:8e:b1:d7:a4:80:6a:a5:f5:ed: f1:19:24:fe:e7:17:2b:94:ce:cc:06:5b:fa:9b:02: 72:df:86:a1:da:10:e0:1d:7c:bc:3a:5a:47:ee:91: fc:84:78:79:a6:60:6b:33:27:6d:84:77:6e:bb:8e: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E9:50:2E:96:0D:A8:53:83:48:46:1E:E4:5C:70:9D:38:53:10:52 X509v3 Authority Key Identifier: keyid:A1:4C:54:31:A0:07:2F:5B:D8:82:42:DA:A5:71:69:EE:31:63:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/A14C5431A0072F5BD88242DAA57169EE3163CFC1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A14C5431A0072F5BD88242DAA57169EE3163CFC1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/3230332e38362e34332e302f32342d3234203d3e203234313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.86.43.0/24 Signature Algorithm: sha256WithRSAEncryption d0:bd:e9:aa:c3:1c:dd:2c:71:c8:f1:4f:76:27:c9:01:34:28: db:5d:0f:1b:ab:ae:63:c2:75:7d:bd:ec:42:fc:fe:e7:cc:f3: 8c:5c:fe:9e:1b:5a:1f:16:13:85:3e:7d:3b:4b:c7:60:93:a7: e2:d1:18:f5:4e:0f:7b:2c:83:0d:ec:c6:0d:74:73:10:45:47: ab:60:24:81:08:ba:fa:21:13:f7:6d:7f:8d:8c:db:0b:f0:ee: 65:9b:d9:23:cf:f4:5e:d0:af:e9:dd:7a:51:1f:5a:4a:b1:61: 0d:bc:7f:60:bd:3f:3c:05:a1:d1:38:2a:fa:a2:96:70:76:32: 3f:c4:ca:f9:62:f9:6a:a4:e9:e7:cc:aa:1f:63:7d:fa:85:9c: 7f:4b:a3:4a:df:df:e7:25:3d:0e:16:e0:de:5c:c2:24:be:ef: 5f:c1:a1:ad:fb:87:09:13:fa:ec:40:14:87:3a:ef:10:b0:7a: ee:0a:05:04:44:92:46:3e:15:2f:81:18:a2:37:72:58:4c:24: 14:4d:68:59:47:e2:52:b4:31:a1:7b:d1:58:67:45:bb:2f:1c: 2a:af:86:d5:6d:d4:1a:d8:d8:31:84:29:11:cb:e0:86:d3:3e: bf:99:21:d7:4f:c1:8c:2d:82:f9:6e:1d:9f:70:24:04:c6:b2: 97:3f:3d:99 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIURZSP8ZKR9Ckbn39LAr2qtK/FhNswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE0QzU0MzFBMDA3MkY1QkQ4ODI0MkRBQTU3MTY5RUUz MTYzQ0ZDMTAeFw0yNjAxMjAwMjIwMDFaFw0yNzAxMTkwMjI1MDFaMDMxMTAvBgNV BAMTKEI4RTk1MDJFOTYwREE4NTM4MzQ4NDYxRUU0NUM3MDlEMzg1MzEwNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsGYVtOOAe4aaVNNhqq3xUrQB8 zY2fGogiB2r006kStnnn3oIC4zHMr2bn/sZyNJN72DawvWMtlJDTVMsjnYAclHzs m60qEe1lCSxbnoBFdTpPUmcHHRNo7TbKt83CBga6MzuoItAIKpV8bwGrKW4C/t5y SWiPqOQbTEe0ZWi3hTuOws2fNs4KuMzDU9kz0Dd+PihPgbR9uc+JhgrJVMpM+D3G o/oFJq4lCeMT331S13+nddegMX0g9CDY9SYiokvbM+hUU3ODnY6x16SAaqX17fEZ JP7nFyuUzswGW/qbAnLfhqHaEOAdfLw6WkfukfyEeHmmYGszJ22Ed267ji6hAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUuOlQLpYNqFODSEYe5FxwnThTEFIwHwYDVR0j BBgwFoAUoUxUMaAHL1vYgkLapXFp7jFjz8EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODA3NTAxMS8wL0ExNEM1NDMxQTAwNzJGNUJEODgyNDJEQUE1NzE2 OUVFMzE2M0NGQzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTE0QzU0MzFBMDA3MkY1QkQ4ODI0MkRBQTU3MTY5RUUzMTYzQ0ZDMS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MDc1MDExLzAvMzIzMDMzMmUzODM2 MmUzNDMzMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDMxMzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMtWKzANBgkqhkiG9w0BAQsFAAOCAQEA0L3pqsMc3SxxyPFPdifJATQo210P G6uuY8J1fb3sQvz+58zzjFz+nhtaHxYThT59O0vHYJOn4tEY9U4PeyyDDezGDXRz EEVHq2AkgQi6+iET921/jYzbC/DuZZvZI8/0XtCv6d16UR9aSrFhDbx/YL0/PAWh 0Tgq+qKWcHYyP8TK+WL5aqTp58yqH2N9+oWcf0ujSt/f5yU9Dhbg3lzCJL7vX8Gh rfuHCRP67EAUhzrvELB67goFBESSRj4VL4EYojdyWEwkFE1oWUfiUrQxoXvRWGdF uy8cKq+G1W3UGtjYMYQpEcvghtM+v5kh10/BjC2C+W4dn3AkBMaylz89mQ== -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:32 2026 by rpki-client