This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221971877891/0/3130332e392e382e302f32322d3234203d3e203538353933.roa File: 3130332e392e382e302f32322d3234203d3e203538353933.roa (raw, json) Hash identifier: sliFw2q7XYVxKDGnzBAjoNwWh9BBjrhiFHqFp4QNsfs= Subject key identifier: 9D:F9:EA:E5:E7:2D:5E:94:3D:9C:4A:F4:5C:2C:AB:14:16:53:0C:BF Certificate issuer: /CN=7505D5D0FC8DB66FC48DA4A64839077551466B62 Certificate serial: 3E4668A16B7AEDDA0B43B5B66A6244F27FC76512 Authority key identifier: 75:05:D5:D0:FC:8D:B6:6F:C4:8D:A4:A6:48:39:07:75:51:46:6B:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7505D5D0FC8DB66FC48DA4A64839077551466B62.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/3130332e392e382e302f32322d3234203d3e203538353933.roa Signing time: Tue 20 Jan 2026 02:08:22 +0000 ROA not before: Tue 20 Jan 2026 02:03:22 +0000 ROA not after: Tue 19 Jan 2027 02:08:22 +0000 asID: 58593 IP address blocks: 103.9.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/7505D5D0FC8DB66FC48DA4A64839077551466B62.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/7505D5D0FC8DB66FC48DA4A64839077551466B62.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7505D5D0FC8DB66FC48DA4A64839077551466B62.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 07:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:46:68:a1:6b:7a:ed:da:0b:43:b5:b6:6a:62:44:f2:7f:c7:65:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7505D5D0FC8DB66FC48DA4A64839077551466B62 Validity Not Before: Jan 20 02:03:22 2026 GMT Not After : Jan 19 02:08:22 2027 GMT Subject: CN=9DF9EAE5E72D5E943D9C4AF45C2CAB1416530CBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6b:98:93:50:de:79:df:6e:83:da:ec:65:9c: ec:c7:f2:f5:80:46:88:2d:58:23:eb:1f:fe:c1:df: 3f:e4:fb:ed:ef:91:6c:2f:1f:3a:7a:4f:a2:50:75: 8d:e6:bc:83:1d:09:02:51:e7:0c:11:b6:3a:45:b9: 89:09:40:28:07:71:e2:23:ad:c5:8d:12:98:1c:b8: 9b:ce:c9:fa:f8:96:0c:53:27:2f:01:bd:3d:6a:b8: 07:c6:b3:83:c9:98:88:8d:60:7d:a9:de:6c:fe:75: 17:76:a0:6b:cf:36:28:5a:28:96:d5:7f:7f:3d:20: a1:b3:7e:a1:41:64:d5:e5:e7:a4:85:22:55:51:5b: a5:72:69:94:ea:4c:c3:e4:1f:b0:48:06:3a:0d:39: 6c:5c:12:75:6d:6f:31:3f:b3:64:3e:62:9b:70:49: ad:0d:1e:3f:a7:0f:d3:46:26:6a:7e:c9:29:88:af: 2f:57:8e:94:98:9e:67:31:d7:a3:cc:2f:37:e4:4d: d6:51:4a:a1:aa:f1:2c:46:51:50:3b:fc:79:2d:3d: bc:c6:d7:5b:bd:ff:7f:e4:a3:30:15:c9:6a:e2:7f: d0:35:6e:4f:4a:66:26:7d:78:7a:3e:a2:a9:b2:1f: 54:9b:20:46:e0:c7:cf:f4:0d:92:72:84:1d:8c:98: 68:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F9:EA:E5:E7:2D:5E:94:3D:9C:4A:F4:5C:2C:AB:14:16:53:0C:BF X509v3 Authority Key Identifier: keyid:75:05:D5:D0:FC:8D:B6:6F:C4:8D:A4:A6:48:39:07:75:51:46:6B:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/7505D5D0FC8DB66FC48DA4A64839077551466B62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7505D5D0FC8DB66FC48DA4A64839077551466B62.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/3130332e392e382e302f32322d3234203d3e203538353933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.9.8.0/22 Signature Algorithm: sha256WithRSAEncryption 63:52:fc:f6:86:eb:41:9d:99:57:8a:8d:39:0d:78:d2:dd:02: 69:ba:f5:09:46:67:2f:f1:3f:8b:57:92:fd:b1:af:3e:70:da: 34:e9:d6:e6:9b:72:f4:18:c4:fe:7e:fd:ab:a0:31:d0:c3:8d: 72:c1:e0:43:5e:6b:1d:86:49:55:79:f7:17:cb:21:fc:80:04: b6:32:8d:f4:4b:89:23:15:b6:87:65:06:1f:0e:db:0a:5d:d6: 90:4b:65:51:08:4e:c4:b0:f9:c5:1d:ba:c6:c9:3d:3b:f7:8c: d7:83:0d:4d:a3:18:2f:8f:c1:ae:f1:09:d2:69:88:f3:0d:f5: d7:fb:b7:04:d9:b5:d5:c6:5a:0a:00:f6:cf:2c:3f:66:ed:d9: b5:06:5b:99:19:82:f0:5a:e2:f6:4c:e1:af:22:01:18:e3:1b: d9:73:9e:38:49:77:e4:ff:8e:fc:43:d4:d6:1b:d3:29:18:74: c3:78:7f:7e:d1:4c:01:d6:4f:12:de:ce:0e:5a:cf:d7:96:3a: f5:be:57:05:be:83:84:d7:5e:22:64:fd:82:94:b2:82:18:e0: e4:d5:12:1e:7c:8e:b1:0a:47:fc:50:d2:7f:bc:8a:d0:e0:48: 41:1e:79:56:0b:df:37:b4:73:66:99:5d:26:3f:5a:04:72:b4: 12:35:95:89 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIUPkZooWt67doLQ7W2amJE8n/HZRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzUwNUQ1RDBGQzhEQjY2RkM0OERBNEE2NDgzOTA3NzU1 MTQ2NkI2MjAeFw0yNjAxMjAwMjAzMjJaFw0yNzAxMTkwMjA4MjJaMDMxMTAvBgNV BAMTKDlERjlFQUU1RTcyRDVFOTQzRDlDNEFGNDVDMkNBQjE0MTY1MzBDQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfa5iTUN55326D2uxlnOzH8vWA RogtWCPrH/7B3z/k++3vkWwvHzp6T6JQdY3mvIMdCQJR5wwRtjpFuYkJQCgHceIj rcWNEpgcuJvOyfr4lgxTJy8BvT1quAfGs4PJmIiNYH2p3mz+dRd2oGvPNihaKJbV f389IKGzfqFBZNXl56SFIlVRW6VyaZTqTMPkH7BIBjoNOWxcEnVtbzE/s2Q+Yptw Sa0NHj+nD9NGJmp+ySmIry9XjpSYnmcx16PMLzfkTdZRSqGq8SxGUVA7/HktPbzG 11u9/3/kozAVyWrif9A1bk9KZiZ9eHo+oqmyH1SbIEbgx8/0DZJyhB2MmGi/AgMB AAGjggINMIICCTAdBgNVHQ4EFgQUnfnq5ectXpQ9nEr0XCyrFBZTDL8wHwYDVR0j BBgwFoAUdQXV0PyNtm/EjaSmSDkHdVFGa2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MTg3Nzg5MS8wLzc1MDVENUQwRkM4REI2NkZDNDhEQTRBNjQ4Mzkw Nzc1NTE0NjZCNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzUwNUQ1RDBGQzhEQjY2RkM0OERBNEE2NDgzOTA3NzU1MTQ2NkI2Mi5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcxODc3ODkxLzAvMzEzMDMzMmUzOTJl MzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTM4MzUzOTMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC ZwkIMA0GCSqGSIb3DQEBCwUAA4IBAQBjUvz2hutBnZlXio05DXjS3QJpuvUJRmcv 8T+LV5L9sa8+cNo06dbmm3L0GMT+fv2roDHQw41yweBDXmsdhklVefcXyyH8gAS2 Mo30S4kjFbaHZQYfDtsKXdaQS2VRCE7EsPnFHbrGyT0794zXgw1Noxgvj8Gu8QnS aYjzDfXX+7cE2bXVxloKAPbPLD9m7dm1BluZGYLwWuL2TOGvIgEY4xvZc544SXfk /478Q9TWG9MpGHTDeH9+0UwB1k8S3s4OWs/Xljr1vlcFvoOE114iZP2ClLKCGODk 1RIefI6xCkf8UNJ/vIrQ4EhBHnlWC983tHNmmV0mP1oEcrQSNZWJ -----END CERTIFICATE-----Generated at Sun Jan 25 15:35:22 2026 by rpki-client