This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e33322e302f32302d3230203d3e203234343236.roa File: 34332e3233392e33322e302f32302d3230203d3e203234343236.roa (raw, json) Hash identifier: ewuRlmBK5N9CiVtG4UTWXZamzdZaaX8dxPT8ESwlyFI= Subject key identifier: 0D:13:80:23:09:8C:6F:FD:89:37:DE:22:67:EA:30:C3:39:C7:1C:D6 Certificate issuer: /CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Certificate serial: 7DFC02F36B5076BBD1B3597E60BD326B864D9218 Authority key identifier: 2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e33322e302f32302d3230203d3e203234343236.roa Signing time: Tue 20 Jan 2026 01:19:08 +0000 ROA not before: Tue 20 Jan 2026 01:14:08 +0000 ROA not after: Tue 19 Jan 2027 01:19:08 +0000 asID: 24426 IP address blocks: 43.239.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:fc:02:f3:6b:50:76:bb:d1:b3:59:7e:60:bd:32:6b:86:4d:92:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F2C8339CC8E44467DF5BA5D0F66143C18D6B360 Validity Not Before: Jan 20 01:14:08 2026 GMT Not After : Jan 19 01:19:08 2027 GMT Subject: CN=0D138023098C6FFD8937DE2267EA30C339C71CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:56:51:cd:86:33:6d:da:81:b6:59:74:6d:6d: 2b:63:78:dd:a7:d8:24:0b:71:63:33:91:1b:4f:3e: ad:1c:b2:c0:0e:ee:90:4d:84:00:1e:93:06:ca:67: bc:17:e2:40:44:7d:b0:a9:31:b7:75:14:8d:9b:f0: 6b:24:d9:9b:d5:33:9f:0a:75:59:04:77:ea:0f:fd: 79:b3:31:cf:dd:bf:28:11:ad:22:ff:af:c7:60:ba: 9c:67:7e:5d:7e:93:81:c9:6b:50:d1:22:40:b2:4a: e0:9d:d2:af:d4:c0:c3:6e:7e:2a:d7:55:eb:3d:06: af:dc:10:26:d0:4e:d0:bf:c4:c4:04:59:d0:eb:39: 40:8f:73:5a:5e:50:6a:78:e2:a6:d6:de:ab:5c:2c: c9:05:27:ff:70:77:b6:8f:be:f7:73:ff:f4:bb:6e: 62:3f:03:31:68:d2:4b:7a:91:e2:f2:32:1e:c7:35: d9:fa:b5:61:81:5a:16:7d:be:c6:61:4b:95:fd:14: a7:95:ed:96:ad:fa:40:3b:73:e8:45:55:60:49:85: 89:e0:5d:e7:3e:14:90:6c:9f:c0:2f:46:9d:89:cf: ab:a3:c7:bc:c8:38:b3:ed:c0:ae:d5:01:b9:92:80: 79:ab:6d:bd:5d:59:cf:2f:cf:61:b0:e4:90:68:e9: d5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:13:80:23:09:8C:6F:FD:89:37:DE:22:67:EA:30:C3:39:C7:1C:D6 X509v3 Authority Key Identifier: keyid:2F:2C:83:39:CC:8E:44:46:7D:F5:BA:5D:0F:66:14:3C:18:D6:B3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2F2C8339CC8E44467DF5BA5D0F66143C18D6B360.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199948140547/0/34332e3233392e33322e302f32302d3230203d3e203234343236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.239.32.0/20 Signature Algorithm: sha256WithRSAEncryption 45:e3:7e:9f:6e:8d:31:ba:e7:1a:a1:19:6c:4f:51:0a:f7:64: 65:7b:11:de:d3:10:7d:27:4b:48:e8:5b:de:e0:2d:93:94:68: 6c:4d:0c:86:00:f2:1c:5e:e8:95:88:8c:c0:48:75:44:49:3d: 77:f4:22:9e:e9:af:d5:e2:65:cd:12:ab:ff:24:d5:ea:22:ed: 4b:d5:ce:0b:ab:79:4c:a9:d5:ec:7c:1a:f6:0c:25:09:74:cc: 7f:42:43:d1:fa:ed:9e:a9:6d:0a:76:5c:fe:18:76:a9:5f:bf: 5e:59:f0:18:c4:64:24:4c:10:5c:9a:b0:91:60:30:3e:20:30: 49:13:55:8a:42:33:85:0d:58:c9:1e:56:c2:f3:3f:09:4c:b7: d7:29:52:fb:99:5f:5d:9a:96:34:d2:05:b0:99:92:6b:a1:b6: 7f:48:7e:4b:a8:f1:4e:ab:fb:99:19:53:38:ef:7c:45:be:48: 1d:e3:ac:42:6a:05:f0:6b:bf:b4:ca:9c:e5:48:9e:41:c5:5d: 39:0d:cd:8c:ac:98:d4:66:0f:21:5f:47:ff:df:0a:53:6e:f5: be:c7:f1:13:38:71:0e:14:80:3f:47:df:c5:64:58:b9:ee:bd: 4e:e3:ea:ff:5c:38:f1:d1:26:a2:f6:68:2e:39:59:8c:4b:ed: fd:82:1d:41 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUffwC82tQdrvRs1l+YL0ya4ZNkhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0Mx OEQ2QjM2MDAeFw0yNjAxMjAwMTE0MDhaFw0yNzAxMTkwMTE5MDhaMDMxMTAvBgNV BAMTKDBEMTM4MDIzMDk4QzZGRkQ4OTM3REUyMjY3RUEzMEMzMzlDNzFDRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgVlHNhjNt2oG2WXRtbStjeN2n 2CQLcWMzkRtPPq0cssAO7pBNhAAekwbKZ7wX4kBEfbCpMbd1FI2b8Gsk2ZvVM58K dVkEd+oP/XmzMc/dvygRrSL/r8dgupxnfl1+k4HJa1DRIkCySuCd0q/UwMNufirX Ves9Bq/cECbQTtC/xMQEWdDrOUCPc1peUGp44qbW3qtcLMkFJ/9wd7aPvvdz//S7 bmI/AzFo0kt6keLyMh7HNdn6tWGBWhZ9vsZhS5X9FKeV7Zat+kA7c+hFVWBJhYng Xec+FJBsn8AvRp2Jz6ujx7zIOLPtwK7VAbmSgHmrbb1dWc8vz2Gw5JBo6dX9AgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUDROAIwmMb/2JN94iZ+owwznHHNYwHwYDVR0j BBgwFoAULyyDOcyOREZ99bpdD2YUPBjWs2AwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0ODE0MDU0Ny8wLzJGMkM4MzM5Q0M4RTQ0NDY3REY1QkE1RDBGNjYx NDNDMThENkIzNjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMkYyQzgzMzlDQzhFNDQ0NjdERjVCQTVEMEY2NjE0M0MxOEQ2QjM2MC5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ4MTQwNTQ3LzAvMzQzMzJlMzIzMzM5 MmUzMzMyMmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzIzNDM0MzIzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBCvvIDANBgkqhkiG9w0BAQsFAAOCAQEAReN+n26NMbrnGqEZbE9RCvdkZXsR 3tMQfSdLSOhb3uAtk5RobE0MhgDyHF7olYiMwEh1REk9d/Qinumv1eJlzRKr/yTV 6iLtS9XOC6t5TKnV7Hwa9gwlCXTMf0JD0frtnqltCnZc/hh2qV+/XlnwGMRkJEwQ XJqwkWAwPiAwSRNVikIzhQ1YyR5WwvM/CUy31ylS+5lfXZqWNNIFsJmSa6G2f0h+ S6jxTqv7mRlTOO98Rb5IHeOsQmoF8Gu/tMqc5UieQcVdOQ3NjKyY1GYPIV9H/98K U271vsfxEzhxDhSAP0ffxWRYue69TuPq/1w48dEmovZoLjlZjEvt/YIdQQ== -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:14 2026 by rpki-client