This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e3132382e302f31372d3332203d3e203538353933.roa File: 34302e37322e3132382e302f31372d3332203d3e203538353933.roa (raw, json) Hash identifier: p/W3urv9s6Mh0sKXJJNeu9I+tgf84ncaa3h8zoru8OE= Subject key identifier: 3E:2E:FD:84:D9:5D:66:06:2F:7E:C0:2F:6A:5F:82:5C:D1:54:2A:9D Certificate issuer: /CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Certificate serial: 72BB68DD90809BED7A2F9A6E807426D861DC7D92 Authority key identifier: 7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e3132382e302f31372d3332203d3e203538353933.roa Signing time: Tue 20 Jan 2026 02:08:25 +0000 ROA not before: Tue 20 Jan 2026 02:03:25 +0000 ROA not after: Tue 19 Jan 2027 02:08:25 +0000 asID: 58593 IP address blocks: 40.72.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 17:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:bb:68:dd:90:80:9b:ed:7a:2f:9a:6e:80:74:26:d8:61:dc:7d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Validity Not Before: Jan 20 02:03:25 2026 GMT Not After : Jan 19 02:08:25 2027 GMT Subject: CN=3E2EFD84D95D66062F7EC02F6A5F825CD1542A9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:0b:45:46:09:f2:ae:94:6f:f9:e4:f3:ce: ab:3a:93:9f:f0:e4:88:0e:bd:f2:91:4b:0a:7c:dc: 9c:45:79:63:28:92:ff:c8:68:34:0f:ae:d9:44:7d: 8d:ac:06:53:f2:90:dd:c6:16:03:e7:ee:54:c0:d2: f1:04:04:73:55:01:a3:4c:4f:b5:1d:17:f2:5c:ac: 8b:7c:70:50:75:20:dd:c0:76:47:fa:83:94:a5:a3: 8f:f7:98:b7:e3:00:08:cf:d1:ff:95:0e:5a:d5:21: 3a:4e:c3:6c:23:3e:c8:d8:1f:37:2d:7c:ff:21:62: 59:50:eb:d7:77:20:45:e0:62:a2:0c:05:1a:c4:ad: 2c:42:ae:0f:1c:37:4b:b9:b1:f5:aa:e5:e9:3b:66: 09:b2:9f:9b:f7:6f:22:46:b0:5e:b6:48:98:d6:a9: 61:ca:76:1e:81:3f:5c:69:20:0d:a6:02:5f:c2:84: 5e:03:cd:f5:09:2e:33:35:73:de:d1:25:72:61:1d: 06:4d:22:1c:f1:92:01:a2:9b:31:1d:6f:63:f9:90: c5:92:c9:ec:38:b8:2f:d1:5d:31:16:62:2d:89:53: db:83:a3:78:2a:c3:ea:f5:a9:d7:a2:aa:39:87:35: 02:c4:38:17:f5:65:a1:7a:15:d9:e1:82:61:5d:a8: e8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:2E:FD:84:D9:5D:66:06:2F:7E:C0:2F:6A:5F:82:5C:D1:54:2A:9D X509v3 Authority Key Identifier: keyid:7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e3132382e302f31372d3332203d3e203538353933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.72.128.0/17 Signature Algorithm: sha256WithRSAEncryption 38:c4:a0:8b:57:72:9d:32:9a:21:9f:6d:4b:47:af:fc:43:05: 6e:4b:89:7a:c6:94:b5:17:3b:91:6f:1d:c4:a1:06:ed:aa:2a: 09:45:86:06:cf:8b:b4:01:94:6a:18:73:59:00:73:0d:06:c5: 9a:4c:b3:0f:54:65:49:42:ce:42:1b:5d:3c:47:90:44:e7:b2: c1:79:07:3a:b7:1b:31:14:b7:6c:a1:e8:be:af:23:4a:14:9f: f6:77:f4:9c:fa:ee:6f:b0:9d:cc:20:0f:dc:0d:a4:c5:85:70: 0a:fa:0b:c1:5e:f2:7e:c4:b7:cc:f4:1f:33:bb:80:f1:02:c1: 74:7e:50:24:8f:71:dd:98:ad:da:c3:c1:8e:f4:dd:d6:e7:1b: 20:4c:90:10:f2:18:a3:d1:58:19:28:47:ec:71:42:ec:f7:ee: dc:2a:0b:b2:4e:b2:6f:14:6f:20:a9:e7:11:11:a7:cc:29:4a: 12:01:5a:aa:08:b4:e1:5b:a0:19:1d:e8:f7:00:8a:b2:76:62: 2e:85:bd:67:45:b5:b3:b7:f5:44:3a:b2:1c:06:b7:25:ff:04: bf:f5:d2:87:da:35:2d:f0:16:f4:c0:22:0b:f3:e9:02:3e:75: aa:5c:2a:46:9c:a9:7d:5c:3b:89:27:9a:f3:b6:6e:1b:2a:bf: 4b:cf:b1:0e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUcrto3ZCAm+16L5pugHQm2GHcfZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMy ODQ4RjA1RjAeFw0yNjAxMjAwMjAzMjVaFw0yNzAxMTkwMjA4MjVaMDMxMTAvBgNV BAMTKDNFMkVGRDg0RDk1RDY2MDYyRjdFQzAyRjZBNUY4MjVDRDE1NDJBOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNqQtFRgnyrpRv+eTzzqs6k5/w 5IgOvfKRSwp83JxFeWMokv/IaDQPrtlEfY2sBlPykN3GFgPn7lTA0vEEBHNVAaNM T7UdF/JcrIt8cFB1IN3Adkf6g5Slo4/3mLfjAAjP0f+VDlrVITpOw2wjPsjYHzct fP8hYllQ69d3IEXgYqIMBRrErSxCrg8cN0u5sfWq5ek7Zgmyn5v3byJGsF62SJjW qWHKdh6BP1xpIA2mAl/ChF4DzfUJLjM1c97RJXJhHQZNIhzxkgGimzEdb2P5kMWS yew4uC/RXTEWYi2JU9uDo3gqw+r1qdeiqjmHNQLEOBf1ZaF6FdnhgmFdqOhDAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUPi79hNldZgYvfsAval+CXNFUKp0wHwYDVR0j BBgwFoAUfqyeQ8j65+1bYVlCPWDqcyhI8F8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MTg3Nzg5MS8xLzdFQUM5RTQzQzhGQUU3RUQ1QjYxNTk0MjNENjBF QTczMjg0OEYwNUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMyODQ4RjA1Ri5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcxODc3ODkxLzEvMzQzMDJlMzczMjJl MzEzMjM4MmUzMDJmMzEzNzJkMzMzMjIwM2QzZTIwMzUzODM1MzkzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEByhIgDANBgkqhkiG9w0BAQsFAAOCAQEAOMSgi1dynTKaIZ9tS0ev/EMFbkuJ esaUtRc7kW8dxKEG7aoqCUWGBs+LtAGUahhzWQBzDQbFmkyzD1RlSULOQhtdPEeQ ROeywXkHOrcbMRS3bKHovq8jShSf9nf0nPrub7CdzCAP3A2kxYVwCvoLwV7yfsS3 zPQfM7uA8QLBdH5QJI9x3Zit2sPBjvTd1ucbIEyQEPIYo9FYGShH7HFC7Pfu3CoL sk6ybxRvIKnnERGnzClKEgFaqgi04VugGR3o9wCKsnZiLoW9Z0W1s7f1RDqyHAa3 Jf8Ev/XSh9o1LfAW9MAiC/PpAj51qlwqRpypfVw7iSea87ZuGyq/S8+xDg== -----END CERTIFICATE-----Generated at Sun Jan 25 12:22:44 2026 by rpki-client