This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947668481/0/323430363a346430303a3a2f34382d3438203d3e2034383038.roa File: 323430363a346430303a3a2f34382d3438203d3e2034383038.roa (raw, json) Hash identifier: 2uNGZKNPkXDb+cBaW04Kj0JovDPXkDMs8xvwIjEzk3g= Subject key identifier: 1F:42:26:0B:3F:7C:CC:B4:B7:4A:C9:6D:6B:37:D1:26:A7:7F:04:7C Certificate issuer: /CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Certificate serial: 69A7751F7D858F3B3B5ECDDF88B7C2C2E8CE5F1B Authority key identifier: AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/323430363a346430303a3a2f34382d3438203d3e2034383038.roa Signing time: Tue 20 Jan 2026 02:15:34 +0000 ROA not before: Tue 20 Jan 2026 02:10:34 +0000 ROA not after: Tue 19 Jan 2027 02:15:34 +0000 asID: 4808 IP address blocks: 2406:4d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:a7:75:1f:7d:85:8f:3b:3b:5e:cd:df:88:b7:c2:c2:e8:ce:5f:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8 Validity Not Before: Jan 20 02:10:34 2026 GMT Not After : Jan 19 02:15:34 2027 GMT Subject: CN=1F42260B3F7CCCB4B74AC96D6B37D126A77F047C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:49:d3:d9:e5:a2:29:97:ca:3f:38:2f:a2:6b: d5:5b:d6:50:01:78:38:f0:d1:92:b7:bd:da:11:32: e0:d9:f1:ed:e2:29:55:80:22:83:c1:97:50:96:30: df:b1:cf:46:7c:77:84:1b:7e:d3:c1:3e:87:6c:6c: 9e:7d:db:cb:e9:32:c7:2f:95:86:e5:b5:dd:bf:f5: 49:7b:dd:bc:37:89:c4:37:c0:97:2b:79:7a:b0:fd: 48:97:8d:1c:43:98:c0:40:fb:bf:3c:7d:f4:94:59: 0f:ff:bf:b2:46:41:06:18:3b:74:ea:e0:08:5d:91: bc:8f:2c:ff:3d:45:2b:4c:6b:89:d4:c6:59:65:79: f4:66:40:ca:84:ca:6c:8f:aa:b3:c6:ea:36:6d:0c: 82:2e:dc:6d:d2:35:19:59:0f:db:87:76:66:4c:f3: 7e:0e:3a:e0:e2:ba:93:e9:58:10:f3:cb:42:d9:f3: 90:8e:a0:d1:db:2a:c6:9f:0a:c1:f4:2f:42:2a:6e: b2:e9:a2:75:4b:33:b1:20:1a:44:05:2a:6f:bf:c0: ec:db:5c:d3:b9:ec:33:78:ff:f8:6d:bf:52:8f:b2: b4:a9:02:e6:38:48:5c:96:33:dd:9a:50:e6:82:72: 43:ac:1c:31:92:a7:49:2f:2c:c3:e8:2b:44:b9:7f: 87:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:42:26:0B:3F:7C:CC:B4:B7:4A:C9:6D:6B:37:D1:26:A7:7F:04:7C X509v3 Authority Key Identifier: keyid:AF:38:22:BA:7A:58:50:DA:06:99:3B:F2:2D:99:0B:2B:CA:F2:BD:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AF3822BA7A5850DA06993BF22D990B2BCAF2BDE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947668481/0/323430363a346430303a3a2f34382d3438203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:4d00::/48 Signature Algorithm: sha256WithRSAEncryption 7d:a8:db:3c:6e:30:3f:3c:53:e6:65:7a:be:2e:bd:24:b9:4a: 29:93:76:d8:77:15:36:17:8b:57:3f:95:27:b3:b4:b3:44:7f: e5:13:9c:2d:cc:f2:cd:b4:62:a4:39:19:8f:ae:da:fa:9f:34: 84:cc:18:60:95:ed:8f:25:07:0e:74:ef:30:84:db:1f:64:7e: 47:83:84:60:9f:18:ed:fd:83:d9:52:a6:05:37:c2:29:27:91: 3f:a2:32:66:16:5b:48:49:a7:37:93:c3:04:a7:09:02:aa:47: 96:cc:c3:57:34:4c:b0:a6:9e:0b:ed:b0:c5:9c:43:91:9f:22: 0a:33:16:0d:f2:b0:8f:21:4f:c6:5f:9e:a0:2e:99:e2:0d:37: 01:6d:b5:6d:f4:72:32:cd:a7:50:00:9c:69:3f:16:38:f9:f2: e1:6d:09:48:f5:51:03:94:e2:eb:20:18:f6:49:a7:80:f6:eb: 77:3b:06:c0:52:e4:af:93:95:08:6b:92:95:74:7c:c3:d2:21: 8a:07:5a:50:a6:9d:8b:92:bb:f2:46:27:92:55:e1:cd:65:70: ce:b5:11:9e:b2:be:f5:48:ae:a3:58:cd:3c:e7:0f:2d:cf:ba: f2:54:b1:ec:35:b8:6b:d0:d0:55:91:b9:5d:78:ae:c7:59:e8: e0:d1:86:b2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIUaad1H32Fjzs7Xs3fiLfCwujOXxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJD QUYyQkRFODAeFw0yNjAxMjAwMjEwMzRaFw0yNzAxMTkwMjE1MzRaMDMxMTAvBgNV BAMTKDFGNDIyNjBCM0Y3Q0NDQjRCNzRBQzk2RDZCMzdEMTI2QTc3RjA0N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeSdPZ5aIpl8o/OC+ia9Vb1lAB eDjw0ZK3vdoRMuDZ8e3iKVWAIoPBl1CWMN+xz0Z8d4QbftPBPodsbJ5928vpMscv lYbltd2/9Ul73bw3icQ3wJcreXqw/UiXjRxDmMBA+788ffSUWQ//v7JGQQYYO3Tq 4AhdkbyPLP89RStMa4nUxlllefRmQMqEymyPqrPG6jZtDIIu3G3SNRlZD9uHdmZM 834OOuDiupPpWBDzy0LZ85COoNHbKsafCsH0L0IqbrLponVLM7EgGkQFKm+/wOzb XNO57DN4//htv1KPsrSpAuY4SFyWM92aUOaCckOsHDGSp0kvLMPoK0S5f4cZAgMB AAGjggISMIICDjAdBgNVHQ4EFgQUH0ImCz98zLS3SsltazfRJqd/BHwwHwYDVR0j BBgwFoAUrzgiunpYUNoGmTvyLZkLK8ryvegwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzY2ODQ4MS8wL0FGMzgyMkJBN0E1ODUwREEwNjk5M0JGMjJEOTkw QjJCQ0FGMkJERTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUYzODIyQkE3QTU4NTBEQTA2OTkzQkYyMkQ5OTBCMkJDQUYyQkRFOC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjY4NDgxLzAvMzIzNDMwMzYzYTM0 NjQzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAkBk0AAAAwDQYJKoZIhvcNAQELBQADggEBAH2o2zxuMD88U+Zler4uvSS5SimT dth3FTYXi1c/lSeztLNEf+UTnC3M8s20YqQ5GY+u2vqfNITMGGCV7Y8lBw507zCE 2x9kfkeDhGCfGO39g9lSpgU3wiknkT+iMmYWW0hJpzeTwwSnCQKqR5bMw1c0TLCm ngvtsMWcQ5GfIgozFg3ysI8hT8ZfnqAumeINNwFttW30cjLNp1AAnGk/Fjj58uFt CUj1UQOU4usgGPZJp4D263c7BsBS5K+TlQhrkpV0fMPSIYoHWlCmnYuSu/JGJ5JV 4c1lcM61EZ6yvvVIrqNYzTznDy3PuvJUsew1uGvQ0FWRuV14rsdZ6ODRhrI= -----END CERTIFICATE-----Generated at Sun Jan 25 13:53:52 2026 by rpki-client