This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579796714553345/0/3230332e3133322e34302e302f32312d3231203d3e203538383334.roa File: 3230332e3133322e34302e302f32312d3231203d3e203538383334.roa (raw, json) Hash identifier: ohvZf9JRJ8kUbebfCzKiFtYL2DeD0lKfmuuC8fmljVM= Subject key identifier: 66:FF:22:A2:EB:F2:CC:BD:51:23:5B:39:3C:25:96:65:91:CA:54:2D Certificate issuer: /CN=FB14B61A535C49000EED2DD916500A26790A9E0E Certificate serial: 7D456B380EC15DCF355CF661992A65AE30D48BBF Authority key identifier: FB:14:B6:1A:53:5C:49:00:0E:ED:2D:D9:16:50:0A:26:79:0A:9E:0E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB14B61A535C49000EED2DD916500A26790A9E0E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579796714553345/0/3230332e3133322e34302e302f32312d3231203d3e203538383334.roa Signing time: Tue 20 Jan 2026 02:13:07 +0000 ROA not before: Tue 20 Jan 2026 02:08:07 +0000 ROA not after: Tue 19 Jan 2027 02:13:07 +0000 asID: 58834 IP address blocks: 203.132.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579796714553345/0/FB14B61A535C49000EED2DD916500A26790A9E0E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579796714553345/0/FB14B61A535C49000EED2DD916500A26790A9E0E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB14B61A535C49000EED2DD916500A26790A9E0E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 12:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:45:6b:38:0e:c1:5d:cf:35:5c:f6:61:99:2a:65:ae:30:d4:8b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB14B61A535C49000EED2DD916500A26790A9E0E Validity Not Before: Jan 20 02:08:07 2026 GMT Not After : Jan 19 02:13:07 2027 GMT Subject: CN=66FF22A2EBF2CCBD51235B393C25966591CA542D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0a:40:ad:3d:29:36:5f:f1:61:20:12:bb:b6: 6b:82:dc:fe:6b:a9:33:18:ad:76:23:69:a0:e1:80: bc:bb:3a:68:47:a7:ab:af:f6:e3:32:16:3c:e7:75: 0b:0a:d9:0c:e2:f0:ad:21:82:d6:c6:1b:89:c4:17: 18:d0:0e:f7:0a:ce:da:03:03:27:bb:c3:ed:08:e1: 96:2a:b4:6a:a8:75:11:f5:d2:b2:de:87:95:bf:68: de:0d:aa:0a:35:56:ee:af:98:4f:7c:a6:82:ea:e2: 2c:14:65:c8:ba:59:1a:a4:f1:b5:a3:87:c9:66:bc: 77:6e:62:fc:1e:c7:be:63:f7:2f:3f:0b:dd:ab:fe: 02:7a:57:96:5f:56:c9:27:34:f1:25:be:7b:e8:ce: 62:cf:46:c3:fc:93:9b:1f:44:31:3b:c0:94:19:4f: d3:e2:54:91:22:3f:a5:48:af:bf:34:fa:e7:50:5f: 1e:7d:5d:20:35:f5:a6:45:49:67:88:4b:03:21:08: 9a:36:93:fa:27:67:4a:6f:64:61:44:8e:c2:e5:dc: 50:a6:5b:84:82:43:c5:35:cb:ff:b7:a9:b4:ac:00: ed:9a:e2:75:08:7e:88:e1:28:d5:99:81:f1:75:79: 0e:13:08:fb:5a:1e:96:79:cb:87:ec:4b:b1:77:ff: d5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:FF:22:A2:EB:F2:CC:BD:51:23:5B:39:3C:25:96:65:91:CA:54:2D X509v3 Authority Key Identifier: keyid:FB:14:B6:1A:53:5C:49:00:0E:ED:2D:D9:16:50:0A:26:79:0A:9E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714553345/0/FB14B61A535C49000EED2DD916500A26790A9E0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/FB14B61A535C49000EED2DD916500A26790A9E0E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579796714553345/0/3230332e3133322e34302e302f32312d3231203d3e203538383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.132.40.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:ed:98:f6:04:0e:58:61:da:40:f1:79:41:70:75:7b:92:db: 68:0b:cf:26:6c:d9:44:7b:68:84:9f:e0:6f:97:37:b0:a3:3b: dc:67:cc:fe:50:4b:4e:8e:05:34:9e:b8:83:e2:ad:7a:71:69: ef:f7:5c:b2:41:f9:ca:86:5d:9c:75:a4:ab:0f:99:47:f4:bc: 4d:04:4f:39:e2:b1:2c:75:87:f2:ac:c0:0e:97:b4:98:1b:a8: d1:94:5b:4d:48:fa:81:f6:49:c3:e8:8f:94:16:5e:93:c6:f1: f4:1b:4c:24:4b:ba:13:46:97:ae:60:4c:bc:fd:cc:6f:57:96: 67:a9:83:0d:01:f2:1d:18:79:e6:b9:de:80:a5:6e:2b:f9:ef: c9:71:9f:4b:60:d4:bd:f5:af:fb:b9:16:fb:af:bc:21:d6:3f: 0e:af:57:44:5e:84:74:a1:82:fa:0b:0d:7f:d0:0c:86:59:2b: f4:58:11:64:54:49:55:bf:9b:2d:90:6c:f2:1d:6a:08:6d:51: 57:89:6e:6b:b8:9d:b5:8d:f6:95:cb:29:8e:60:1a:13:0d:89: 4f:0f:e8:29:8c:20:01:72:ec:5b:7a:d3:3d:ed:ed:7e:72:90: 42:8a:66:32:53:ca:e0:cb:49:3e:63:81:58:2e:bb:3a:2b:09: 2c:52:d2:9d -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUfUVrOA7BXc81XPZhmSplrjDUi78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIxNEI2MUE1MzVDNDkwMDBFRUQyREQ5MTY1MDBBMjY3 OTBBOUUwRTAeFw0yNjAxMjAwMjA4MDdaFw0yNzAxMTkwMjEzMDdaMDMxMTAvBgNV BAMTKDY2RkYyMkEyRUJGMkNDQkQ1MTIzNUIzOTNDMjU5NjY1OTFDQTU0MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBCkCtPSk2X/FhIBK7tmuC3P5r qTMYrXYjaaDhgLy7OmhHp6uv9uMyFjzndQsK2Qzi8K0hgtbGG4nEFxjQDvcKztoD Aye7w+0I4ZYqtGqodRH10rLeh5W/aN4Nqgo1Vu6vmE98poLq4iwUZci6WRqk8bWj h8lmvHduYvwex75j9y8/C92r/gJ6V5ZfVsknNPElvnvozmLPRsP8k5sfRDE7wJQZ T9PiVJEiP6VIr780+udQXx59XSA19aZFSWeISwMhCJo2k/onZ0pvZGFEjsLl3FCm W4SCQ8U1y/+3qbSsAO2a4nUIfojhKNWZgfF1eQ4TCPtaHpZ5y4fsS7F3/9VvAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUZv8iouvyzL1RI1s5PCWWZZHKVC0wHwYDVR0j BBgwFoAU+xS2GlNcSQAO7S3ZFlAKJnkKng4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTc5NjcxNDU1MzM0NS8wL0ZCMTRCNjFBNTM1QzQ5MDAwRUVEMkREOTE2NTAw QTI2NzkwQTlFMEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRkIxNEI2MUE1MzVDNDkwMDBFRUQyREQ5MTY1MDBBMjY3OTBBOUUwRS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU3OTc5NjcxNDU1MzM0NS8wLzMyMzAzMzJlMzEz MzMyMmUzNDMwMmUzMDJmMzIzMTJkMzIzMTIwM2QzZTIwMzUzODM4MzMzNC5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA8uEKDANBgkqhkiG9w0BAQsFAAOCAQEAeu2Y9gQOWGHaQPF5QXB1e5Lb aAvPJmzZRHtohJ/gb5c3sKM73GfM/lBLTo4FNJ64g+KtenFp7/dcskH5yoZdnHWk qw+ZR/S8TQRPOeKxLHWH8qzADpe0mBuo0ZRbTUj6gfZJw+iPlBZek8bx9BtMJEu6 E0aXrmBMvP3Mb1eWZ6mDDQHyHRh55rnegKVuK/nvyXGfS2DUvfWv+7kW+6+8IdY/ Dq9XRF6EdKGC+gsNf9AMhlkr9FgRZFRJVb+bLZBs8h1qCG1RV4lua7idtY32lcsp jmAaEw2JTw/oKYwgAXLsW3rTPe3tfnKQQopmMlPK4MtJPmOBWC67OisJLFLSnQ== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:01 2026 by rpki-client