This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e302e302f31352d3332203d3e203538353933.roa File: 34302e37322e302e302f31352d3332203d3e203538353933.roa (raw, json) Hash identifier: GZdXu8wxwSiGKPAoovUfq55Hmtnm5G22A4eA9cJCeZ8= Subject key identifier: 6A:C2:84:AD:AB:35:D2:2B:48:65:6D:CC:5B:26:B4:5E:FD:DB:5D:73 Certificate issuer: /CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Certificate serial: 339C918C9AC0A0C14E5D48F1BFB1C84B98FBD043 Authority key identifier: 7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e302e302f31352d3332203d3e203538353933.roa Signing time: Tue 20 Jan 2026 02:08:23 +0000 ROA not before: Tue 20 Jan 2026 02:03:23 +0000 ROA not after: Tue 19 Jan 2027 02:08:23 +0000 asID: 58593 IP address blocks: 40.72.0.0/15 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 09:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:9c:91:8c:9a:c0:a0:c1:4e:5d:48:f1:bf:b1:c8:4b:98:fb:d0:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Validity Not Before: Jan 20 02:03:23 2026 GMT Not After : Jan 19 02:08:23 2027 GMT Subject: CN=6AC284ADAB35D22B48656DCC5B26B45EFDDB5D73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5a:28:78:b2:77:4d:2e:e1:22:61:0f:37:b5: 68:30:9a:3f:2f:2c:cb:55:a0:b1:be:ac:8f:df:48: 14:59:43:24:78:ae:90:be:8a:9f:54:ab:db:d4:b7: 3a:e8:c6:86:c6:85:66:52:64:1e:df:0b:6a:f3:7c: 71:fd:f5:18:f9:cb:9d:ae:a0:02:e2:af:24:b7:98: c5:e4:48:07:71:f1:a3:14:3d:26:d1:b0:a9:fb:4d: f9:00:4c:08:7e:a5:65:90:c3:aa:1a:9f:60:02:25: 17:cb:ce:db:90:d9:74:50:bb:90:f7:1e:7c:0d:af: ef:4f:31:f2:d9:81:fc:fa:98:c7:43:b6:8d:c6:23: 2f:d3:d5:05:4e:b2:9f:da:f4:10:3e:3b:08:62:98: 93:3a:83:08:1d:d2:2f:3d:79:13:2e:43:a8:c3:e8: 8d:7b:54:aa:76:96:e0:9d:91:06:8b:73:1f:d4:43: fa:84:33:0f:4a:c8:db:db:1b:24:c1:fc:e9:31:9d: 86:1d:a6:6c:2f:6e:46:38:78:52:70:53:e9:69:8b: 1f:75:3c:28:e5:f4:d0:45:85:46:c3:74:ac:35:ab: 57:2f:55:85:7c:19:d6:b5:b3:4f:6e:3c:ca:25:2e: e6:56:c8:e4:84:09:75:cf:f9:12:8d:af:61:0a:8f: 37:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C2:84:AD:AB:35:D2:2B:48:65:6D:CC:5B:26:B4:5E:FD:DB:5D:73 X509v3 Authority Key Identifier: keyid:7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e302e302f31352d3332203d3e203538353933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.72.0.0/15 Signature Algorithm: sha256WithRSAEncryption 66:aa:82:e6:ab:a7:fa:9f:5f:ba:a5:60:14:3c:4e:fb:41:cb: 30:e7:2b:41:94:50:16:ac:16:a9:a3:3f:73:1f:02:04:c4:e6: ae:08:c9:18:35:92:2b:ba:1f:f7:e4:3f:74:3f:3f:9c:f8:3b: 53:d4:f1:62:4c:80:e7:70:ab:6b:fe:0d:81:51:28:5c:b3:f4: 20:c3:f3:30:f5:6d:f6:2f:34:94:4f:69:11:1c:88:a1:17:81: 08:d6:01:a3:56:bb:8a:3c:1f:46:ea:7c:47:d1:93:04:67:e7: 24:fc:e2:59:07:aa:f7:dd:26:a3:f0:f9:d7:ad:30:fc:c4:ca: fc:15:20:a6:53:0d:42:74:ef:48:07:67:97:94:a9:85:54:24: e1:9e:4c:b5:dd:8c:d9:e3:77:83:9b:f1:a6:a9:29:ff:7a:be: 2f:60:0b:a9:3f:7a:0a:37:c1:7f:29:79:c2:0d:a1:d8:f7:08: ea:6d:d7:e8:a0:e8:0a:0c:a7:54:00:1e:f8:54:16:4e:d0:f3: 01:05:b7:d2:da:7e:6d:39:7f:28:e7:4e:e8:83:bb:bc:0e:b2: 04:75:6a:32:c6:70:cb:14:ff:5d:01:a9:b9:d2:34:a9:e2:91: 90:4f:e0:cc:99:40:fb:8b:06:f8:ea:c2:e8:ce:19:66:e9:19: fa:01:81:4d -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUM5yRjJrAoMFOXUjxv7HIS5j70EMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMy ODQ4RjA1RjAeFw0yNjAxMjAwMjAzMjNaFw0yNzAxMTkwMjA4MjNaMDMxMTAvBgNV BAMTKDZBQzI4NEFEQUIzNUQyMkI0ODY1NkRDQzVCMjZCNDVFRkREQjVENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Wih4sndNLuEiYQ83tWgwmj8v LMtVoLG+rI/fSBRZQyR4rpC+ip9Uq9vUtzroxobGhWZSZB7fC2rzfHH99Rj5y52u oALiryS3mMXkSAdx8aMUPSbRsKn7TfkATAh+pWWQw6oan2ACJRfLztuQ2XRQu5D3 HnwNr+9PMfLZgfz6mMdDto3GIy/T1QVOsp/a9BA+OwhimJM6gwgd0i89eRMuQ6jD 6I17VKp2luCdkQaLcx/UQ/qEMw9KyNvbGyTB/OkxnYYdpmwvbkY4eFJwU+lpix91 PCjl9NBFhUbDdKw1q1cvVYV8Gda1s09uPMolLuZWyOSECXXP+RKNr2EKjzf9AgMB AAGjggIMMIICCDAdBgNVHQ4EFgQUasKEras10itIZW3MWya0Xv3bXXMwHwYDVR0j BBgwFoAUfqyeQ8j65+1bYVlCPWDqcyhI8F8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MTg3Nzg5MS8xLzdFQUM5RTQzQzhGQUU3RUQ1QjYxNTk0MjNENjBF QTczMjg0OEYwNUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMyODQ4RjA1Ri5jZXIw gYYGCCsGAQUFBwELBHoweDB2BggrBgEFBQcwC4ZqcnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcxODc3ODkxLzEvMzQzMDJlMzczMjJl MzAyZTMwMmYzMTM1MmQzMzMyMjAzZDNlMjAzNTM4MzUzOTMzLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB KEgwDQYJKoZIhvcNAQELBQADggEBAGaqguarp/qfX7qlYBQ8TvtByzDnK0GUUBas FqmjP3MfAgTE5q4IyRg1kiu6H/fkP3Q/P5z4O1PU8WJMgOdwq2v+DYFRKFyz9CDD 8zD1bfYvNJRPaREciKEXgQjWAaNWu4o8H0bqfEfRkwRn5yT84lkHqvfdJqPw+det MPzEyvwVIKZTDUJ070gHZ5eUqYVUJOGeTLXdjNnjd4Ob8aapKf96vi9gC6k/ego3 wX8pecINodj3COpt1+ig6AoMp1QAHvhUFk7Q8wEFt9Lafm05fyjnTuiDu7wOsgR1 ajLGcMsU/10BqbnSNKnikZBP4MyZQPuLBvjqwujOGWbpGfoBgU0= -----END CERTIFICATE-----Generated at Sun Jan 25 13:55:41 2026 by rpki-client