This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e32302e302f32322d3332203d3e20313337363930.roa File: 3230322e3138392e32302e302f32322d3332203d3e20313337363930.roa (raw, json) Hash identifier: pXd/a+PR9keaGQQ50/8k6g0yn6Vvb7fAGIopVVHCeTY= Subject key identifier: ED:BE:1C:3C:92:C2:C7:00:DC:C2:4C:C4:3F:17:56:6A:87:4F:6C:91 Certificate issuer: /CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Certificate serial: 556BF65DD65433F81A7054522FAE98C95DF2FF62 Authority key identifier: 8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e32302e302f32322d3332203d3e20313337363930.roa Signing time: Tue 20 Jan 2026 02:20:16 +0000 ROA not before: Tue 20 Jan 2026 02:15:16 +0000 ROA not after: Tue 19 Jan 2027 02:20:16 +0000 asID: 137690 IP address blocks: 202.189.20.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 13:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:6b:f6:5d:d6:54:33:f8:1a:70:54:52:2f:ae:98:c9:5d:f2:ff:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E80FA24E5DFF3073621050FF18487025A2A5198 Validity Not Before: Jan 20 02:15:16 2026 GMT Not After : Jan 19 02:20:16 2027 GMT Subject: CN=EDBE1C3C92C2C700DCC24CC43F17566A874F6C91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c3:0e:f2:a6:82:59:ff:df:ff:e7:a5:f3:bb: f9:4d:69:1d:4b:07:84:68:22:e8:14:73:1a:23:c9: 7e:c2:50:98:10:b0:21:72:b2:fb:bd:61:fd:b1:22: 97:f5:94:6d:29:02:25:b3:5a:a2:0f:3e:59:1b:de: a7:82:4c:6c:04:2b:01:cc:1d:50:4d:c2:78:93:c6: 41:40:63:f4:38:24:bf:0e:f4:1c:72:b5:2d:55:ab: 90:e9:4b:40:1e:e4:11:f6:0a:77:cc:43:33:7b:4e: cd:83:11:ab:d5:e8:98:c5:d1:15:11:60:91:bf:d4: 0e:bb:d7:f2:79:4e:ff:5a:2b:0b:ee:d5:0d:84:c3: 81:50:ab:b3:e0:57:ad:aa:ae:30:65:d0:3b:13:a1: 63:84:3a:7d:db:91:b9:d0:df:ca:10:97:ee:69:8a: 82:16:b0:15:f3:ae:92:03:e3:c0:e8:71:92:8c:21: 97:dd:4a:17:0e:85:52:9d:28:b1:7e:ea:b1:37:45: 9c:a9:fc:48:7f:bd:30:bf:23:b4:23:1c:a7:f7:69: b8:b4:b3:39:a3:70:9a:61:ef:0b:49:24:4d:01:c0: 56:93:85:46:4b:a0:54:87:e0:3b:27:c7:22:21:4e: 07:b8:17:6c:46:90:85:84:75:89:80:69:08:2d:2c: 36:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BE:1C:3C:92:C2:C7:00:DC:C2:4C:C4:3F:17:56:6A:87:4F:6C:91 X509v3 Authority Key Identifier: keyid:8E:80:FA:24:E5:DF:F3:07:36:21:05:0F:F1:84:87:02:5A:2A:51:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/8E80FA24E5DFF3073621050FF18487025A2A5198.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/8E80FA24E5DFF3073621050FF18487025A2A5198.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577334786/0/3230322e3138392e32302e302f32322d3332203d3e20313337363930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.189.20.0/22 Signature Algorithm: sha256WithRSAEncryption a3:50:0b:36:ea:3b:cf:91:a1:d6:5d:81:22:98:16:4c:d2:42: 18:33:3d:3c:cc:02:99:3f:84:10:91:00:95:c7:5e:b1:4f:d6: 32:8d:76:fd:69:7b:ce:88:cb:ab:4d:22:4f:a8:82:5a:bc:7d: 75:86:20:4f:92:6a:c7:f7:4e:bf:d6:0a:2c:ea:ad:35:6c:85: 14:4e:87:0a:49:0e:d6:86:21:ca:36:5c:0f:6b:7b:c2:63:db: 62:d3:6b:2e:4b:f8:68:05:6f:ef:19:50:63:e1:df:4e:bd:b0: ee:c7:e8:48:e8:7b:9a:e9:6e:0b:fc:46:9d:4a:e1:10:c2:2f: 97:e2:dd:55:bb:0f:51:2d:3c:86:f0:c7:0e:3c:b9:f3:58:9a: d8:7e:c0:03:24:f6:67:3f:7a:df:99:82:d8:68:c1:df:74:47: be:22:f2:45:22:34:df:09:a1:d2:2b:0e:b6:ff:4b:46:c4:f7: 90:57:22:8f:a8:a0:3a:f4:ca:a9:82:4f:ca:3e:de:48:06:df: aa:e1:0c:bd:73:bb:32:31:f3:50:27:ba:16:46:a8:0d:e5:e7: 46:c9:24:b0:53:0f:af:76:d6:e3:9c:6f:0f:32:44:00:33:6c: 3e:d7:b6:8b:1b:ea:41:61:dc:7d:56:85:1d:78:28:bf:56:b8: 6c:b3:3b:50 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUVWv2XdZUM/gacFRSL66YyV3y/2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1 QTJBNTE5ODAeFw0yNjAxMjAwMjE1MTZaFw0yNzAxMTkwMjIwMTZaMDMxMTAvBgNV BAMTKEVEQkUxQzNDOTJDMkM3MDBEQ0MyNENDNDNGMTc1NjZBODc0RjZDOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ww7ypoJZ/9//56Xzu/lNaR1L B4RoIugUcxojyX7CUJgQsCFysvu9Yf2xIpf1lG0pAiWzWqIPPlkb3qeCTGwEKwHM HVBNwniTxkFAY/Q4JL8O9BxytS1Vq5DpS0Ae5BH2CnfMQzN7Ts2DEavV6JjF0RUR YJG/1A671/J5Tv9aKwvu1Q2Ew4FQq7PgV62qrjBl0DsToWOEOn3bkbnQ38oQl+5p ioIWsBXzrpID48DocZKMIZfdShcOhVKdKLF+6rE3RZyp/Eh/vTC/I7QjHKf3abi0 szmjcJph7wtJJE0BwFaThUZLoFSH4DsnxyIhTge4F2xGkIWEdYmAaQgtLDbHAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQU7b4cPJLCxwDcwkzEPxdWaodPbJEwHwYDVR0j BBgwFoAUjoD6JOXf8wc2IQUP8YSHAloqUZgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3NzMzNDc4Ni8wLzhFODBGQTI0RTVERkYzMDczNjIxMDUwRkYxODQ4 NzAyNUEyQTUxOTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOEU4MEZBMjRFNURGRjMwNzM2MjEwNTBGRjE4NDg3MDI1QTJBNTE5OC5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1NzczMzQ3ODYvMC8zMjMwMzIyZTMx MzgzOTJlMzIzMDJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMxMzMzNzM2MzkzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAsq9FDANBgkqhkiG9w0BAQsFAAOCAQEAo1ALNuo7z5Gh1l2BIpgW TNJCGDM9PMwCmT+EEJEAlcdesU/WMo12/Wl7zojLq00iT6iCWrx9dYYgT5Jqx/dO v9YKLOqtNWyFFE6HCkkO1oYhyjZcD2t7wmPbYtNrLkv4aAVv7xlQY+HfTr2w7sfo SOh7muluC/xGnUrhEMIvl+LdVbsPUS08hvDHDjy581ia2H7AAyT2Zz9635mC2GjB 33RHviLyRSI03wmh0isOtv9LRsT3kFcij6igOvTKqYJPyj7eSAbfquEMvXO7MjHz UCe6FkaoDeXnRskksFMPr3bW45xvDzJEADNsPte2ixvqQWHcfVaFHXgov1a4bLM7 UA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:32:53 2026 by rpki-client