This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582741577990146/0/34332e3234392e3137312e302f32342d3234203d3e20313331353734.roa File: 34332e3234392e3137312e302f32342d3234203d3e20313331353734.roa (raw, json) Hash identifier: uS/v5pS/8LsE1KboKlgwPa0r9AUO/FNI2ZRy4jqzFQo= Subject key identifier: 79:EC:7F:B3:E9:F9:C5:3C:E2:52:D3:9F:E9:8E:B4:EA:CE:68:97:55 Certificate issuer: /CN=9684E4B95F47A986892F9930EF9D9E453227439F Certificate serial: 79CAF81BFC7D131065ADAAEF75F5C0C57E5C65C7 Authority key identifier: 96:84:E4:B9:5F:47:A9:86:89:2F:99:30:EF:9D:9E:45:32:27:43:9F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9684E4B95F47A986892F9930EF9D9E453227439F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/34332e3234392e3137312e302f32342d3234203d3e20313331353734.roa Signing time: Tue 20 Jan 2026 02:18:03 +0000 ROA not before: Tue 20 Jan 2026 02:13:03 +0000 ROA not after: Tue 19 Jan 2027 02:18:03 +0000 asID: 131574 IP address blocks: 43.249.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/9684E4B95F47A986892F9930EF9D9E453227439F.crl rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/9684E4B95F47A986892F9930EF9D9E453227439F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9684E4B95F47A986892F9930EF9D9E453227439F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 17:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:ca:f8:1b:fc:7d:13:10:65:ad:aa:ef:75:f5:c0:c5:7e:5c:65:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9684E4B95F47A986892F9930EF9D9E453227439F Validity Not Before: Jan 20 02:13:03 2026 GMT Not After : Jan 19 02:18:03 2027 GMT Subject: CN=79EC7FB3E9F9C53CE252D39FE98EB4EACE689755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:79:b5:4f:a5:24:9c:b8:3e:6d:7d:38:c5:f7: 2a:ce:23:d8:cd:7b:68:5c:28:af:79:21:dd:1b:70: 7b:12:78:4d:4c:2a:74:e6:11:44:22:dd:d1:9a:1d: 2e:40:f5:6d:ec:09:49:38:4a:f3:b7:6d:42:32:0d: c1:c7:5c:76:fd:d6:84:28:21:b0:25:ef:bd:c6:90: 3a:1b:2d:a0:4e:b2:78:20:78:d2:b4:f0:58:82:7f: 16:db:1b:17:56:81:2c:49:56:bf:86:36:05:34:4c: 0d:fe:fd:d6:7e:97:26:76:e0:b0:79:bd:25:e2:36: 4a:57:15:27:3f:03:ff:0a:a5:b8:61:2a:64:9f:92: 64:b7:d4:93:11:67:e2:10:39:3b:16:cc:f9:b5:7d: f7:b0:f2:bb:6a:42:27:05:6a:65:e6:0d:1d:a6:d8: 63:d9:8d:10:13:ea:61:8e:b8:68:9b:96:18:90:9f: 11:bd:f3:38:53:fe:be:ab:33:e3:61:8d:5d:b8:dc: 4c:c3:16:fe:c7:80:94:25:b9:06:35:c7:ae:39:6c: 1d:3c:ec:ca:38:65:97:f6:35:f7:e6:67:9c:c2:56: e7:db:36:6a:db:1f:a6:b5:11:a9:e7:41:17:3f:91: 55:36:b9:0d:4b:ad:dd:96:f3:d5:5f:aa:1c:a5:3e: b8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EC:7F:B3:E9:F9:C5:3C:E2:52:D3:9F:E9:8E:B4:EA:CE:68:97:55 X509v3 Authority Key Identifier: keyid:96:84:E4:B9:5F:47:A9:86:89:2F:99:30:EF:9D:9E:45:32:27:43:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/9684E4B95F47A986892F9930EF9D9E453227439F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9684E4B95F47A986892F9930EF9D9E453227439F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582741577990146/0/34332e3234392e3137312e302f32342d3234203d3e20313331353734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.171.0/24 Signature Algorithm: sha256WithRSAEncryption 31:d6:de:98:9f:8b:1a:ed:2e:df:ec:89:57:10:4c:93:50:ad: 73:3f:12:b0:ed:9d:d3:dc:10:75:d1:ac:d7:da:2a:7a:f5:0a: e2:2d:24:5b:a4:aa:3c:76:d6:4a:06:ef:2c:14:8e:4f:0c:c0: 95:6c:94:3d:40:35:a9:a2:3e:c2:d4:89:1b:99:c8:d1:ca:e8: 9c:2d:d4:89:e7:67:5d:66:92:c5:d9:cb:85:24:7d:0c:a2:36: 38:90:6e:32:2e:71:12:4a:b0:23:8c:3c:ab:d4:d3:8e:c3:48: fa:1e:ab:d8:e2:5f:63:65:07:4e:ce:05:16:e7:66:ee:c6:28: 98:30:77:94:79:90:6b:c9:92:77:16:db:8f:f9:87:64:37:17: 2f:1f:b8:82:be:3c:a1:3c:76:76:c9:49:ad:71:fc:cc:68:26: a8:20:ca:c7:c4:97:b7:e3:c8:38:2b:f2:15:7b:d8:b2:cd:ee: 51:c1:24:dd:58:cb:f7:cc:f3:e8:20:30:d5:14:5b:3b:c9:79: 6e:b0:8a:c7:79:3e:22:df:8f:31:f5:f2:48:3d:62:94:ad:65: ff:f9:b1:0d:79:a2:cc:f9:87:b9:04:d6:34:21:e5:6b:ff:aa: f7:e0:6a:97:4d:4f:ca:5e:b1:f9:6e:0b:31:ac:64:b3:c0:49: 0c:97:2c:e4 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUecr4G/x9ExBlrarvdfXAxX5cZccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTY4NEU0Qjk1RjQ3QTk4Njg5MkY5OTMwRUY5RDlFNDUz MjI3NDM5RjAeFw0yNjAxMjAwMjEzMDNaFw0yNzAxMTkwMjE4MDNaMDMxMTAvBgNV BAMTKDc5RUM3RkIzRTlGOUM1M0NFMjUyRDM5RkU5OEVCNEVBQ0U2ODk3NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtebVPpSScuD5tfTjF9yrOI9jN e2hcKK95Id0bcHsSeE1MKnTmEUQi3dGaHS5A9W3sCUk4SvO3bUIyDcHHXHb91oQo IbAl773GkDobLaBOsnggeNK08FiCfxbbGxdWgSxJVr+GNgU0TA3+/dZ+lyZ24LB5 vSXiNkpXFSc/A/8KpbhhKmSfkmS31JMRZ+IQOTsWzPm1ffew8rtqQicFamXmDR2m 2GPZjRAT6mGOuGiblhiQnxG98zhT/r6rM+NhjV243EzDFv7HgJQluQY1x645bB08 7Mo4ZZf2NffmZ5zCVufbNmrbH6a1EannQRc/kVU2uQ1Lrd2W89VfqhylPrjPAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUeex/s+n5xTziUtOf6Y606s5ol1UwHwYDVR0j BBgwFoAUloTkuV9HqYaJL5kw752eRTInQ58wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4Mjc0MTU3Nzk5MDE0Ni8wLzk2ODRFNEI5NUY0N0E5ODY4OTJGOTkzMEVGOUQ5 RTQ1MzIyNzQzOUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTY4NEU0Qjk1RjQ3QTk4Njg5MkY5OTMwRUY5RDlFNDUzMjI3NDM5Ri5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1ODI3NDE1Nzc5OTAxNDYvMC8zNDMzMmUzMjM0 MzkyZTMxMzczMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM1MzczNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEACv5qzANBgkqhkiG9w0BAQsFAAOCAQEAMdbemJ+LGu0u3+yJVxBM k1Ctcz8SsO2d09wQddGs19oqevUK4i0kW6SqPHbWSgbvLBSOTwzAlWyUPUA1qaI+ wtSJG5nI0cronC3UiednXWaSxdnLhSR9DKI2OJBuMi5xEkqwI4w8q9TTjsNI+h6r 2OJfY2UHTs4FFudm7sYomDB3lHmQa8mSdxbbj/mHZDcXLx+4gr48oTx2dslJrXH8 zGgmqCDKx8SXt+PIOCvyFXvYss3uUcEk3VjL98zz6CAw1RRbO8l5brCKx3k+It+P MfXySD1ilK1l//mxDXmizPmHuQTWNCHla/+q9+Bql01Pyl6x+W4LMaxks8BJDJcs 5A== -----END CERTIFICATE-----Generated at Sun Jan 25 12:34:02 2026 by rpki-client