This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e34302e3137342e302f32332d3234203d3e203535393936.roa File: 3130332e34302e3137342e302f32332d3234203d3e203535393936.roa (raw, json) Hash identifier: B9+LIF0F2jOmyBOP5MaMAIvmuw1Q1Po92LV0UMNnbWk= Subject key identifier: 38:6D:CB:38:9B:5B:37:CF:57:BF:54:8E:7D:9E:F7:02:4D:8F:DC:97 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 62718A4ECDF38A1C0D3DE2FBF70415D8BCFD349B Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e34302e3137342e302f32332d3234203d3e203535393936.roa Signing time: Tue 20 Jan 2026 02:13:09 +0000 ROA not before: Tue 20 Jan 2026 02:08:09 +0000 ROA not after: Tue 19 Jan 2027 02:13:09 +0000 asID: 55996 IP address blocks: 103.40.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 07:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:71:8a:4e:cd:f3:8a:1c:0d:3d:e2:fb:f7:04:15:d8:bc:fd:34:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: Jan 20 02:08:09 2026 GMT Not After : Jan 19 02:13:09 2027 GMT Subject: CN=386DCB389B5B37CF57BF548E7D9EF7024D8FDC97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c4:93:de:39:0d:a7:ee:58:e3:b8:68:fd:57: f1:67:f6:18:bf:b3:9a:68:e6:26:c8:4d:c5:cb:be: 0c:9b:30:31:f1:ef:9c:49:bb:d3:27:72:2f:e1:7e: 39:cb:1f:37:bc:9f:33:49:bb:e4:bf:5b:f1:54:8c: f2:24:3a:48:1f:35:c5:77:70:77:55:fd:5f:09:07: 98:aa:93:0b:84:d2:ee:74:21:2c:28:60:bc:cc:0c: dd:54:53:27:db:08:ff:ee:4c:ee:68:3e:09:50:39: 4d:eb:34:52:74:9a:05:85:7f:c9:f6:fa:05:5b:79: 1d:e1:cd:93:44:b3:4b:49:e2:77:98:2c:34:39:72: 2a:48:a6:84:5b:38:df:14:5f:a5:9e:73:96:a0:a7: b5:6c:74:57:09:47:e3:65:e8:da:26:12:8a:6a:84: 13:39:91:03:04:e8:f3:3d:f2:2f:5a:0c:54:98:05: d4:73:9f:30:bf:d5:cb:0c:e9:b6:a6:65:62:84:55: 06:af:ad:b0:81:0d:60:d2:04:97:53:d2:35:dd:ed: a2:48:e8:20:4f:6d:2d:c8:af:48:d1:14:b7:c9:f3: 5b:d9:90:83:a7:63:0a:43:c1:b7:74:0a:1b:bc:39: f3:e6:b3:80:49:e3:88:fa:d3:11:ff:ec:64:37:89: 43:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6D:CB:38:9B:5B:37:CF:57:BF:54:8E:7D:9E:F7:02:4D:8F:DC:97 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e34302e3137342e302f32332d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.40.174.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:dc:f8:33:1e:73:b1:bb:ff:6a:58:3e:ca:78:4d:f4:a4:1a: fb:66:e6:ce:48:f6:c2:17:18:4e:20:03:07:4a:5b:df:8a:fc: 32:4e:6f:8e:77:7f:4d:42:40:8c:4b:5d:f0:0a:d5:30:cf:ee: 58:29:7d:f7:31:cc:dc:8a:ab:2c:93:fb:23:38:e3:2f:ad:37: 1c:dd:85:78:45:9a:8a:ae:62:25:fe:ab:eb:35:36:90:3b:bd: b4:64:d9:5c:40:cf:55:fb:82:e3:9a:db:ea:ba:e4:f1:15:0c: a7:cd:21:47:8d:cb:af:cb:f2:0b:78:ec:26:0e:56:99:ca:11: 22:ab:b2:27:6e:e6:99:5c:0a:38:6b:9e:34:00:1a:d1:73:f7: fd:dc:fb:d8:6f:53:d1:8e:78:f3:2b:07:07:28:36:c7:ef:69: e5:e6:2d:7d:f5:1e:43:cf:46:d3:ac:97:d9:eb:38:a2:4f:92: 96:60:1d:c1:a6:a7:0a:74:31:a2:1d:f4:41:93:14:6b:9e:3d: 0c:1b:b7:1c:d2:e3:e5:01:60:88:81:81:5d:28:e9:8e:17:f9: 3d:44:57:26:77:94:9c:90:fd:37:12:0a:0b:c7:f1:24:52:23: 60:45:67:ad:ea:19:af:fe:6c:e5:13:ef:5b:43:88:f9:83:94: 5e:54:33:08 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUYnGKTs3zihwNPeL79wQV2Lz9NJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjAxMjAwMjA4MDlaFw0yNzAxMTkwMjEzMDlaMDMxMTAvBgNV BAMTKDM4NkRDQjM4OUI1QjM3Q0Y1N0JGNTQ4RTdEOUVGNzAyNEQ4RkRDOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaxJPeOQ2n7ljjuGj9V/Fn9hi/ s5po5ibITcXLvgybMDHx75xJu9Mnci/hfjnLHze8nzNJu+S/W/FUjPIkOkgfNcV3 cHdV/V8JB5iqkwuE0u50ISwoYLzMDN1UUyfbCP/uTO5oPglQOU3rNFJ0mgWFf8n2 +gVbeR3hzZNEs0tJ4neYLDQ5cipIpoRbON8UX6Wec5agp7VsdFcJR+Nl6NomEopq hBM5kQME6PM98i9aDFSYBdRznzC/1csM6bamZWKEVQavrbCBDWDSBJdT0jXd7aJI 6CBPbS3Ir0jRFLfJ81vZkIOnYwpDwbd0Chu8OfPms4BJ44j60xH/7GQ3iUN7AgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUOG3LOJtbN89Xv1SOfZ73Ak2P3JcwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3NzI0MTk0NzYwMjk0NS8wLzMxMzAzMzJlMzQz MDJlMzEzNzM0MmUzMDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWcorjANBgkqhkiG9w0BAQsFAAOCAQEAP9z4Mx5zsbv/alg+ynhN9KQa +2bmzkj2whcYTiADB0pb34r8Mk5vjnd/TUJAjEtd8ArVMM/uWCl99zHM3IqrLJP7 IzjjL603HN2FeEWaiq5iJf6r6zU2kDu9tGTZXEDPVfuC45rb6rrk8RUMp80hR43L r8vyC3jsJg5WmcoRIquyJ27mmVwKOGueNAAa0XP3/dz72G9T0Y548ysHByg2x+9p 5eYtffUeQ89G06yX2es4ok+SlmAdwaanCnQxoh30QZMUa549DBu3HNLj5QFgiIGB XSjpjhf5PURXJneUnJD9NxIKC8fxJFIjYEVnreoZr/5s5RPvW0OI+YOUXlQzCA== -----END CERTIFICATE-----Generated at Sun Jan 25 18:50:31 2026 by rpki-client