This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221971877891/0/34322e3135392e36342e302f31382d3234203d3e203538353933.roa File: 34322e3135392e36342e302f31382d3234203d3e203538353933.roa (raw, json) Hash identifier: YJTLR2gCb0Am11HvFznW1asenWFwBO8s8Ulr1oX+NQk= Subject key identifier: C4:AE:C1:C1:14:3C:5B:1C:21:95:27:04:15:96:C9:69:DC:2A:08:9E Certificate issuer: /CN=7505D5D0FC8DB66FC48DA4A64839077551466B62 Certificate serial: 205C70F954BB882CBE2F79859E6520A94E6498E3 Authority key identifier: 75:05:D5:D0:FC:8D:B6:6F:C4:8D:A4:A6:48:39:07:75:51:46:6B:62 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7505D5D0FC8DB66FC48DA4A64839077551466B62.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/34322e3135392e36342e302f31382d3234203d3e203538353933.roa Signing time: Tue 20 Jan 2026 02:08:22 +0000 ROA not before: Tue 20 Jan 2026 02:03:22 +0000 ROA not after: Tue 19 Jan 2027 02:08:22 +0000 asID: 58593 IP address blocks: 42.159.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/7505D5D0FC8DB66FC48DA4A64839077551466B62.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/7505D5D0FC8DB66FC48DA4A64839077551466B62.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7505D5D0FC8DB66FC48DA4A64839077551466B62.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:5c:70:f9:54:bb:88:2c:be:2f:79:85:9e:65:20:a9:4e:64:98:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7505D5D0FC8DB66FC48DA4A64839077551466B62 Validity Not Before: Jan 20 02:03:22 2026 GMT Not After : Jan 19 02:08:22 2027 GMT Subject: CN=C4AEC1C1143C5B1C219527041596C969DC2A089E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:af:41:4d:c3:a5:5d:be:f7:72:73:79:b8:2a: 46:10:d1:f2:1e:39:51:4e:07:a9:d3:a6:6e:fc:c7: ad:e5:ce:15:76:0d:9d:82:16:26:1b:28:ce:46:13: d4:45:fb:39:17:53:7f:a9:6c:00:43:3b:88:c9:a2: b2:fd:01:3a:2f:6e:3d:b1:e3:f1:69:6e:a0:9d:80: fa:67:f2:e8:cc:e8:db:3d:7c:0a:11:3e:b3:70:1d: c0:a7:6d:4f:b6:d5:88:42:46:0a:e0:b9:14:ce:24: ff:86:25:b3:17:8b:1c:f9:b8:4e:53:11:4b:a3:84: 09:9f:a4:da:ce:3a:61:84:5b:35:03:1b:0e:6d:0a: 18:4e:78:11:5a:2d:b0:95:3b:1c:32:18:cc:f9:a8: 2a:09:38:e0:04:e1:a1:1b:6a:28:8b:e5:db:13:34: 74:8a:bf:af:45:ce:b6:b0:0f:10:92:be:12:e9:95: 7c:f7:51:56:fc:03:7d:45:c5:45:92:bb:d0:81:f0: 77:40:47:2e:d9:a7:67:d1:f7:d8:ca:75:88:23:fb: f0:90:ea:dc:5a:8b:65:9a:c8:a0:fd:1d:91:26:3f: dc:d1:e8:59:ab:60:50:e9:e7:6f:0f:90:68:f5:ed: fa:90:6f:cc:ab:36:ae:26:c5:42:28:6f:f9:5c:57: 7c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AE:C1:C1:14:3C:5B:1C:21:95:27:04:15:96:C9:69:DC:2A:08:9E X509v3 Authority Key Identifier: keyid:75:05:D5:D0:FC:8D:B6:6F:C4:8D:A4:A6:48:39:07:75:51:46:6B:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/7505D5D0FC8DB66FC48DA4A64839077551466B62.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/7505D5D0FC8DB66FC48DA4A64839077551466B62.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/0/34322e3135392e36342e302f31382d3234203d3e203538353933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.159.64.0/18 Signature Algorithm: sha256WithRSAEncryption 16:7b:77:71:44:24:b4:4c:7d:f1:38:34:fb:f7:45:c2:6e:9e: 79:67:9f:56:3d:8b:10:ce:a2:11:ba:5a:a8:80:66:69:c6:73: 5c:98:af:aa:7d:ab:3a:3a:1c:b3:f1:0b:3e:9b:24:dd:c3:e4: ef:35:2e:7b:cc:8e:dd:99:0a:3a:98:94:12:e0:2b:8e:17:c4: f7:b2:b4:12:58:e0:66:9f:96:48:89:df:9c:83:34:38:9a:46: c3:90:b3:8c:49:1a:d8:c1:55:cd:3e:37:4c:a6:6f:5e:65:3c: 8b:33:95:95:4d:19:ef:ca:f4:c2:e5:24:bf:9e:d4:5f:cb:be: c0:5f:89:b6:88:bd:96:1a:39:35:27:fe:97:88:e9:4a:32:68: b6:78:3c:e5:8c:c7:9a:c7:ca:d4:b6:02:48:62:dd:e4:49:41: 13:5b:bc:05:7a:4d:0b:6c:30:65:35:46:ee:bb:b3:96:00:33: 79:9c:a9:1a:56:2a:04:4a:c4:a2:79:79:e9:32:5e:7a:77:02: 5b:9f:5e:ae:11:80:bd:2f:54:28:15:b9:86:0d:d9:66:5c:d0: ad:f7:e6:e5:0f:cc:a7:30:e4:17:0a:8b:f0:9b:97:6a:8f:e1: 33:51:5a:4b:ab:1b:c7:f9:d0:41:24:5b:fe:14:11:e0:4b:83: 30:00:1e:e1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUIFxw+VS7iCy+L3mFnmUgqU5kmOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzUwNUQ1RDBGQzhEQjY2RkM0OERBNEE2NDgzOTA3NzU1 MTQ2NkI2MjAeFw0yNjAxMjAwMjAzMjJaFw0yNzAxMTkwMjA4MjJaMDMxMTAvBgNV BAMTKEM0QUVDMUMxMTQzQzVCMUMyMTk1MjcwNDE1OTZDOTY5REMyQTA4OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1r0FNw6Vdvvdyc3m4KkYQ0fIe OVFOB6nTpm78x63lzhV2DZ2CFiYbKM5GE9RF+zkXU3+pbABDO4jJorL9ATovbj2x 4/FpbqCdgPpn8ujM6Ns9fAoRPrNwHcCnbU+21YhCRgrguRTOJP+GJbMXixz5uE5T EUujhAmfpNrOOmGEWzUDGw5tChhOeBFaLbCVOxwyGMz5qCoJOOAE4aEbaiiL5dsT NHSKv69FzrawDxCSvhLplXz3UVb8A31FxUWSu9CB8HdARy7Zp2fR99jKdYgj+/CQ 6txai2WayKD9HZEmP9zR6FmrYFDp528PkGj17fqQb8yrNq4mxUIob/lcV3wlAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUxK7BwRQ8WxwhlScEFZbJadwqCJ4wHwYDVR0j BBgwFoAUdQXV0PyNtm/EjaSmSDkHdVFGa2IwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MTg3Nzg5MS8wLzc1MDVENUQwRkM4REI2NkZDNDhEQTRBNjQ4Mzkw Nzc1NTE0NjZCNjIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNzUwNUQ1RDBGQzhEQjY2RkM0OERBNEE2NDgzOTA3NzU1MTQ2NkI2Mi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcxODc3ODkxLzAvMzQzMjJlMzEzNTM5 MmUzNjM0MmUzMDJmMzEzODJkMzIzNDIwM2QzZTIwMzUzODM1MzkzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBiqfQDANBgkqhkiG9w0BAQsFAAOCAQEAFnt3cUQktEx98Tg0+/dFwm6eeWef Vj2LEM6iEbpaqIBmacZzXJivqn2rOjocs/ELPpsk3cPk7zUue8yO3ZkKOpiUEuAr jhfE97K0EljgZp+WSInfnIM0OJpGw5CzjEka2MFVzT43TKZvXmU8izOVlU0Z78r0 wuUkv57UX8u+wF+Jtoi9lho5NSf+l4jpSjJotng85YzHmsfK1LYCSGLd5ElBE1u8 BXpNC2wwZTVG7ruzlgAzeZypGlYqBErEonl56TJeencCW59erhGAvS9UKBW5hg3Z ZlzQrffm5Q/MpzDkFwqL8JuXao/hM1FaS6sbx/nQQSRb/hQR4EuDMAAe4Q== -----END CERTIFICATE-----Generated at Sun Jan 25 12:23:06 2026 by rpki-client