This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394916867/0/3230322e3136302e3134302e302f32322d3234203d3e203539303333.roa File: 3230322e3136302e3134302e302f32322d3234203d3e203539303333.roa (raw, json) Hash identifier: gYXvAgHZKTvHUaSYkUJt/9vKnlHczqRvyCBvqnDA6Oo= Subject key identifier: A3:D2:71:30:13:79:FB:C8:C4:5D:B7:34:F2:A1:62:99:E9:8A:41:B2 Certificate issuer: /CN=7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D Certificate serial: 2A8621FAB072182616022C3BA347B80037530F3E Authority key identifier: 73:89:E1:B7:DF:B5:0F:AE:6A:4F:0C:88:09:16:4A:D0:7F:E9:13:4D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394916867/0/3230322e3136302e3134302e302f32322d3234203d3e203539303333.roa Signing time: Tue 20 Jan 2026 02:16:48 +0000 ROA not before: Tue 20 Jan 2026 02:11:48 +0000 ROA not after: Tue 19 Jan 2027 02:16:48 +0000 asID: 59033 IP address blocks: 202.160.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394916867/0/7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394916867/0/7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 14:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:86:21:fa:b0:72:18:26:16:02:2c:3b:a3:47:b8:00:37:53:0f:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D Validity Not Before: Jan 20 02:11:48 2026 GMT Not After : Jan 19 02:16:48 2027 GMT Subject: CN=A3D271301379FBC8C45DB734F2A16299E98A41B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a4:06:b9:95:21:4f:bc:56:28:67:9d:e7:89: 74:4b:c4:64:97:eb:a9:cc:b5:48:92:50:7d:55:9a: ca:9b:e7:72:88:bb:62:e9:f0:10:ca:65:1e:0c:02: 87:aa:64:3c:76:0a:3d:10:e5:8e:81:1f:91:24:3e: 5c:68:da:7a:94:c8:b7:90:af:db:50:11:51:09:ca: 9c:58:8d:b6:b3:bd:8e:0b:06:55:08:a6:9d:25:e3: 80:25:cb:08:1d:46:df:cd:ad:b9:71:bd:32:17:48: 12:30:55:01:84:4d:b2:98:52:f5:45:68:ff:6b:42: 0a:cf:02:87:7e:cf:d0:5d:0d:8b:19:f1:80:19:54: d3:34:3d:9f:99:a4:8c:3c:76:63:73:a6:33:dc:6f: 61:91:68:53:69:22:c1:66:77:56:ff:1d:18:44:ca: 73:2b:c5:62:5e:d4:0f:a2:fc:bf:6d:d5:71:8e:ec: 1c:33:47:d6:be:ec:c9:fa:5e:87:e2:6e:fb:c1:bc: a3:66:08:89:8b:08:46:44:d2:02:d6:fa:2d:4b:83: b9:63:a7:22:89:5f:0c:68:c6:92:9f:e9:8a:1c:7c: 3c:74:d0:a8:b4:b9:d3:be:34:2f:8e:2d:dd:76:bb: 80:c8:3c:96:47:d9:0e:3b:c4:b3:c6:3d:9b:40:15: 71:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D2:71:30:13:79:FB:C8:C4:5D:B7:34:F2:A1:62:99:E9:8A:41:B2 X509v3 Authority Key Identifier: keyid:73:89:E1:B7:DF:B5:0F:AE:6A:4F:0C:88:09:16:4A:D0:7F:E9:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394916867/0/7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7389E1B7DFB50FAE6A4F0C8809164AD07FE9134D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394916867/0/3230322e3136302e3134302e302f32322d3234203d3e203539303333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.160.140.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:5d:7b:25:df:22:45:e4:14:64:d1:c9:c6:82:81:9f:96:1a: ec:bf:cf:4d:64:f8:4f:99:c7:e6:1d:d9:86:7f:3c:43:d7:d2: da:95:41:74:47:09:8d:7b:55:bd:e3:59:a4:a9:6e:07:1f:f5: c0:67:37:e2:f5:6f:40:6f:94:26:2d:9a:b6:77:a2:69:ea:d1: aa:5e:37:37:f7:b7:46:52:21:cd:d8:7b:bc:65:ce:9f:be:84: fc:76:64:7e:7a:35:01:48:1c:bc:d0:1c:cc:00:ed:c0:8c:05: 12:fd:13:a0:ca:0c:a5:1d:70:17:a5:9c:f7:d5:6a:e7:91:52: 76:19:c0:cd:5b:fb:9c:82:f7:cc:ea:9e:dd:a3:73:a6:f9:a8: 07:43:62:29:e0:e1:f2:44:6e:eb:ff:88:64:58:5c:6a:8e:1c: d7:a2:a2:97:0d:27:9d:4a:0d:eb:18:e2:4d:d2:81:71:ca:9d: f2:1c:aa:b3:6f:2b:97:7a:73:f8:46:da:92:ba:76:5a:e6:cd: db:14:06:a9:c3:67:1e:bc:3a:6f:d9:f6:c1:89:e6:24:f5:8a: ec:82:bc:69:fa:fb:de:83:cb:22:1c:ba:cf:28:67:0d:d6:26: 1c:8a:3f:7c:2a:03:51:d2:0c:a2:5d:1d:82:58:4f:c9:b6:14: 07:0d:c5:0f -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUKoYh+rByGCYWAiw7o0e4ADdTDz4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM4OUUxQjdERkI1MEZBRTZBNEYwQzg4MDkxNjRBRDA3 RkU5MTM0RDAeFw0yNjAxMjAwMjExNDhaFw0yNzAxMTkwMjE2NDhaMDMxMTAvBgNV BAMTKEEzRDI3MTMwMTM3OUZCQzhDNDVEQjczNEYyQTE2Mjk5RTk4QTQxQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMpAa5lSFPvFYoZ53niXRLxGSX 66nMtUiSUH1Vmsqb53KIu2Lp8BDKZR4MAoeqZDx2Cj0Q5Y6BH5EkPlxo2nqUyLeQ r9tQEVEJypxYjbazvY4LBlUIpp0l44AlywgdRt/NrblxvTIXSBIwVQGETbKYUvVF aP9rQgrPAod+z9BdDYsZ8YAZVNM0PZ+ZpIw8dmNzpjPcb2GRaFNpIsFmd1b/HRhE ynMrxWJe1A+i/L9t1XGO7BwzR9a+7Mn6XofibvvBvKNmCImLCEZE0gLW+i1Lg7lj pyKJXwxoxpKf6YocfDx00Ki0udO+NC+OLd12u4DIPJZH2Q47xLPGPZtAFXGRAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUo9JxMBN5+8jEXbc08qFimemKQbIwHwYDVR0j BBgwFoAUc4nht9+1D65qTwyICRZK0H/pE00wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDkxNjg2Ny8wLzczODlFMUI3REZCNTBGQUU2QTRGMEM4ODA5MTY0 QUQwN0ZFOTEzNEQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzM4OUUxQjdERkI1MEZBRTZBNEYwQzg4MDkxNjRBRDA3RkU5MTM0RC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ5MTY4NjcvMC8zMjMwMzIyZTMx MzYzMDJlMzEzNDMwMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzOTMwMzMzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAsqgjDANBgkqhkiG9w0BAQsFAAOCAQEAXV17Jd8iReQUZNHJxoKB n5Ya7L/PTWT4T5nH5h3Zhn88Q9fS2pVBdEcJjXtVveNZpKluBx/1wGc34vVvQG+U Ji2atneiaerRql43N/e3RlIhzdh7vGXOn76E/HZkfno1AUgcvNAczADtwIwFEv0T oMoMpR1wF6Wc99Vq55FSdhnAzVv7nIL3zOqe3aNzpvmoB0NiKeDh8kRu6/+IZFhc ao4c16Kilw0nnUoN6xjiTdKBccqd8hyqs28rl3pz+Ebakrp2WubN2xQGqcNnHrw6 b9n2wYnmJPWK7IK8afr73oPLIhy6zyhnDdYmHIo/fCoDUdIMol0dglhPybYUBw3F Dw== -----END CERTIFICATE-----Generated at Sun Jan 25 21:33:03 2026 by rpki-client