This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948075011/0/3230332e38362e34382e302f32342d3234203d3e203234313437.roa File: 3230332e38362e34382e302f32342d3234203d3e203234313437.roa (raw, json) Hash identifier: ejzbVl97r5mOdJYA953Vk21BI5BB0TVZrbPRe544gDc= Subject key identifier: FF:2F:44:2F:DD:61:0D:53:D2:DA:98:E4:C9:6E:9D:D1:97:DD:EE:CC Certificate issuer: /CN=A14C5431A0072F5BD88242DAA57169EE3163CFC1 Certificate serial: 6DF87111F91D32CCC7DE0063BDFC8CC02F673E42 Authority key identifier: A1:4C:54:31:A0:07:2F:5B:D8:82:42:DA:A5:71:69:EE:31:63:CF:C1 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A14C5431A0072F5BD88242DAA57169EE3163CFC1.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/3230332e38362e34382e302f32342d3234203d3e203234313437.roa Signing time: Tue 20 Jan 2026 02:25:01 +0000 ROA not before: Tue 20 Jan 2026 02:20:01 +0000 ROA not after: Tue 19 Jan 2027 02:25:01 +0000 asID: 24147 IP address blocks: 203.86.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/A14C5431A0072F5BD88242DAA57169EE3163CFC1.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/A14C5431A0072F5BD88242DAA57169EE3163CFC1.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A14C5431A0072F5BD88242DAA57169EE3163CFC1.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f8:71:11:f9:1d:32:cc:c7:de:00:63:bd:fc:8c:c0:2f:67:3e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A14C5431A0072F5BD88242DAA57169EE3163CFC1 Validity Not Before: Jan 20 02:20:01 2026 GMT Not After : Jan 19 02:25:01 2027 GMT Subject: CN=FF2F442FDD610D53D2DA98E4C96E9DD197DDEECC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e3:02:52:48:cd:1c:58:59:89:3d:67:7e:af: 46:b9:71:ab:e5:dc:d0:75:70:18:1f:9b:e0:71:59: 29:ee:4b:90:c0:62:e0:d1:18:61:45:17:e8:e0:65: 61:b1:25:3e:a7:a3:f4:9d:d7:42:be:55:38:ed:a1: 3c:ef:f8:d1:2e:91:cd:f7:11:2e:85:fe:13:f4:9c: 26:8c:6e:f9:79:e6:67:3f:a8:a7:95:90:ad:1c:35: 82:cc:42:85:c9:95:d7:76:95:05:fe:74:00:05:bc: e8:54:10:f1:21:2c:48:cd:c0:b3:22:40:db:71:98: 3a:d6:e1:87:d4:24:78:64:fa:bd:50:41:df:c7:51: 78:31:e1:42:26:e5:ae:2f:cc:ce:46:ad:37:14:db: 3e:90:66:2c:6b:fe:8e:c8:c3:71:c5:6b:06:81:81: c5:91:3f:8d:78:57:17:4b:c2:31:6e:c9:a9:f4:57: 9b:70:72:34:40:56:1a:84:eb:50:d2:5b:bc:08:33: 7a:52:e2:86:fe:23:3c:b4:86:ca:06:4c:da:e2:85: f3:97:97:e3:58:25:8a:e6:10:33:c5:30:e7:02:79: 73:86:c7:ac:3d:42:25:47:0a:74:41:9e:35:04:de: 47:66:bd:9b:35:10:5c:56:5e:58:45:83:87:9f:63: 27:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2F:44:2F:DD:61:0D:53:D2:DA:98:E4:C9:6E:9D:D1:97:DD:EE:CC X509v3 Authority Key Identifier: keyid:A1:4C:54:31:A0:07:2F:5B:D8:82:42:DA:A5:71:69:EE:31:63:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/A14C5431A0072F5BD88242DAA57169EE3163CFC1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A14C5431A0072F5BD88242DAA57169EE3163CFC1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948075011/0/3230332e38362e34382e302f32342d3234203d3e203234313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.86.48.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:80:e4:1d:a4:91:53:f1:f1:cd:7c:1b:64:52:f0:51:c5:39: 12:cd:72:db:66:77:d0:b4:16:90:a1:24:44:b0:bb:a3:39:59: f7:b1:e2:50:5b:32:ee:72:07:37:dd:5a:b0:2b:32:fd:24:d2: cb:7e:9e:17:82:8d:44:e9:3b:b7:a7:d2:14:12:5d:a4:0a:15: 5d:e8:56:4a:2d:ed:14:4c:68:96:3e:d9:07:fc:00:60:a5:21: 13:2d:6f:65:3c:bd:d4:c0:5c:e7:ba:24:2e:ec:27:48:1a:cc: 50:90:f6:45:04:79:e2:40:8b:29:26:91:40:83:53:34:a0:82: 03:cd:60:55:68:d3:4c:05:ad:f4:89:c8:3e:83:21:a3:40:7e: 6f:31:50:30:3b:02:ce:d6:11:1d:2d:27:d7:dd:bd:eb:ca:b7: 74:25:11:e1:40:bf:cc:62:d6:4e:7e:dd:ca:01:91:77:1e:ba: 30:34:3c:30:9e:c0:a2:04:bc:d4:e1:ca:d3:9a:bd:60:2d:0e: 5b:c1:bb:07:56:3c:e4:b5:85:6b:66:ec:f4:d8:ab:1a:47:89: a0:eb:8b:b5:3d:a8:85:46:2a:03:9c:0d:8e:40:59:fc:2c:72: cb:ec:c2:55:70:70:97:f9:c4:11:eb:42:88:83:f9:a5:58:1b: 40:8a:46:96 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUbfhxEfkdMszH3gBjvfyMwC9nPkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE0QzU0MzFBMDA3MkY1QkQ4ODI0MkRBQTU3MTY5RUUz MTYzQ0ZDMTAeFw0yNjAxMjAwMjIwMDFaFw0yNzAxMTkwMjI1MDFaMDMxMTAvBgNV BAMTKEZGMkY0NDJGREQ2MTBENTNEMkRBOThFNEM5NkU5REQxOTdEREVFQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO4wJSSM0cWFmJPWd+r0a5cavl 3NB1cBgfm+BxWSnuS5DAYuDRGGFFF+jgZWGxJT6no/Sd10K+VTjtoTzv+NEukc33 ES6F/hP0nCaMbvl55mc/qKeVkK0cNYLMQoXJldd2lQX+dAAFvOhUEPEhLEjNwLMi QNtxmDrW4YfUJHhk+r1QQd/HUXgx4UIm5a4vzM5GrTcU2z6QZixr/o7Iw3HFawaB gcWRP414VxdLwjFuyan0V5twcjRAVhqE61DSW7wIM3pS4ob+Izy0hsoGTNrihfOX l+NYJYrmEDPFMOcCeXOGx6w9QiVHCnRBnjUE3kdmvZs1EFxWXlhFg4efYydbAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU/y9EL91hDVPS2pjkyW6d0Zfd7swwHwYDVR0j BBgwFoAUoUxUMaAHL1vYgkLapXFp7jFjz8EwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODA3NTAxMS8wL0ExNEM1NDMxQTAwNzJGNUJEODgyNDJEQUE1NzE2 OUVFMzE2M0NGQzEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQTE0QzU0MzFBMDA3MkY1QkQ4ODI0MkRBQTU3MTY5RUUzMTYzQ0ZDMS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MDc1MDExLzAvMzIzMDMzMmUzODM2 MmUzNDM4MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNDMxMzQzNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMtWMDANBgkqhkiG9w0BAQsFAAOCAQEALYDkHaSRU/HxzXwbZFLwUcU5Es1y 22Z30LQWkKEkRLC7ozlZ97HiUFsy7nIHN91asCsy/STSy36eF4KNROk7t6fSFBJd pAoVXehWSi3tFExolj7ZB/wAYKUhEy1vZTy91MBc57okLuwnSBrMUJD2RQR54kCL KSaRQINTNKCCA81gVWjTTAWt9InIPoMho0B+bzFQMDsCztYRHS0n192968q3dCUR 4UC/zGLWTn7dygGRdx66MDQ8MJ7AogS81OHK05q9YC0OW8G7B1Y85LWFa2bs9Nir GkeJoOuLtT2ohUYqA5wNjkBZ/Cxyy+zCVXBwl/nEEetCiIP5pVgbQIpGlg== -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:27 2026 by rpki-client