This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e3235352e302f32342d3332203d3e203538353933.roa File: 34302e37322e3235352e302f32342d3332203d3e203538353933.roa (raw, json) Hash identifier: N+EpGWN+5eD7X8BPdHo0VUuyK/mruZfTCEv7P/4k7IA= Subject key identifier: D0:1D:CF:F3:87:0B:3B:86:0B:B3:53:2E:6D:A4:3B:23:FB:41:57:3E Certificate issuer: /CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Certificate serial: 5B89E5B995AFDEAAFBF3F2E745177D6A12CB98AD Authority key identifier: 7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e3235352e302f32342d3332203d3e203538353933.roa Signing time: Tue 20 Jan 2026 02:08:24 +0000 ROA not before: Tue 20 Jan 2026 02:03:24 +0000 ROA not after: Tue 19 Jan 2027 02:08:24 +0000 asID: 58593 IP address blocks: 40.72.255.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 17:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:89:e5:b9:95:af:de:aa:fb:f3:f2:e7:45:17:7d:6a:12:cb:98:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Validity Not Before: Jan 20 02:03:24 2026 GMT Not After : Jan 19 02:08:24 2027 GMT Subject: CN=D01DCFF3870B3B860BB3532E6DA43B23FB41573E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:d7:d5:4f:63:42:34:4c:8f:21:8e:ba:b7:f7: bc:04:52:66:c5:81:12:39:ce:45:b8:72:fd:2b:7d: 10:53:10:b8:4f:54:eb:30:d3:82:81:f5:56:17:6d: d2:53:9a:8b:87:d0:0c:51:0b:39:63:77:55:a4:c9: e9:09:66:e7:5a:0a:fb:3f:d2:8c:7f:4b:c3:6f:f0: a2:d3:e2:28:93:5a:d6:cd:14:fb:f3:b5:6f:dc:7b: f2:cc:87:a6:6b:a4:56:14:dc:80:30:1c:7d:b0:74: da:60:4d:0c:48:65:01:b3:79:d0:3b:fd:d7:85:7a: 69:60:20:90:24:d8:65:40:d5:26:e0:ee:3d:89:2e: 39:df:3a:6e:27:0d:5a:c8:a4:7c:3f:76:ea:0a:30: d7:7a:d9:8e:08:d2:b1:ab:eb:82:17:dc:0a:a2:e3: ca:71:a9:c9:17:83:ad:7d:0e:e8:ff:44:23:68:79: b5:a6:ef:0a:31:9e:0b:ee:c8:52:09:02:49:87:c5: ef:54:67:fb:de:7d:ab:f5:c1:e8:0c:c4:bc:87:df: 84:09:e2:de:40:cc:32:e3:91:1c:9d:a0:1f:e1:c8: 08:1d:a9:01:0d:44:86:dc:84:91:dd:f7:38:3a:c4: 64:37:2d:08:84:c1:49:7b:74:63:2f:3f:8b:00:6b: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:1D:CF:F3:87:0B:3B:86:0B:B3:53:2E:6D:A4:3B:23:FB:41:57:3E X509v3 Authority Key Identifier: keyid:7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37322e3235352e302f32342d3332203d3e203538353933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.72.255.0/24 Signature Algorithm: sha256WithRSAEncryption 34:0c:d7:95:70:ab:f3:be:b9:3e:2b:7f:b3:4a:10:a6:f4:df: be:f9:c3:73:b0:06:79:33:d7:ac:79:68:91:96:d1:70:bb:32: db:8d:c2:7d:67:fc:8a:87:e1:1a:5e:ac:e6:35:28:d4:39:60: 32:c1:a2:b6:0e:48:14:e7:67:9b:5f:bb:85:80:a7:61:94:3f: 8e:80:07:13:d8:16:c9:ae:88:0c:0d:5b:60:de:70:b1:37:e8: 93:b4:c3:ec:ee:d1:7c:06:d4:e6:46:d3:f4:07:04:9a:e8:e7: 79:7c:c9:0f:a7:83:12:8d:21:56:ab:16:54:29:b0:36:e5:5c: d1:61:fa:46:28:fa:fe:38:03:1c:91:ab:99:7f:61:34:d7:19: 24:a9:84:a3:77:33:42:5c:fc:63:46:52:e8:61:67:da:e8:3c: 27:d5:62:8b:0e:b6:36:c5:47:aa:41:93:69:c5:79:16:8a:00: 25:2f:19:ce:b0:67:4e:1a:35:3c:08:04:55:85:6c:1f:a9:fd: fe:9b:77:d3:bf:61:c1:ff:cc:bb:44:47:85:c2:98:35:3c:45: 43:6c:c8:9a:f9:8d:b6:7e:a9:6f:15:7d:03:03:a0:3a:9c:fd: 57:b5:98:7d:c2:02:98:15:4c:f1:7c:70:c7:30:eb:cd:3c:3a: 42:b6:5a:99 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUW4nluZWv3qr78/LnRRd9ahLLmK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMy ODQ4RjA1RjAeFw0yNjAxMjAwMjAzMjRaFw0yNzAxMTkwMjA4MjRaMDMxMTAvBgNV BAMTKEQwMURDRkYzODcwQjNCODYwQkIzNTMyRTZEQTQzQjIzRkI0MTU3M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCB19VPY0I0TI8hjrq397wEUmbF gRI5zkW4cv0rfRBTELhPVOsw04KB9VYXbdJTmouH0AxRCzljd1WkyekJZudaCvs/ 0ox/S8Nv8KLT4iiTWtbNFPvztW/ce/LMh6ZrpFYU3IAwHH2wdNpgTQxIZQGzedA7 /deFemlgIJAk2GVA1Sbg7j2JLjnfOm4nDVrIpHw/duoKMNd62Y4I0rGr64IX3Aqi 48pxqckXg619Duj/RCNoebWm7woxngvuyFIJAkmHxe9UZ/vefav1wegMxLyH34QJ 4t5AzDLjkRydoB/hyAgdqQENRIbchJHd9zg6xGQ3LQiEwUl7dGMvP4sAa5utAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQU0B3P84cLO4YLs1MubaQ7I/tBVz4wHwYDVR0j BBgwFoAUfqyeQ8j65+1bYVlCPWDqcyhI8F8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MTg3Nzg5MS8xLzdFQUM5RTQzQzhGQUU3RUQ1QjYxNTk0MjNENjBF QTczMjg0OEYwNUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMyODQ4RjA1Ri5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcxODc3ODkxLzEvMzQzMDJlMzczMjJl MzIzNTM1MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzUzODM1MzkzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAChI/zANBgkqhkiG9w0BAQsFAAOCAQEANAzXlXCr8765Pit/s0oQpvTfvvnD c7AGeTPXrHlokZbRcLsy243CfWf8iofhGl6s5jUo1DlgMsGitg5IFOdnm1+7hYCn YZQ/joAHE9gWya6IDA1bYN5wsTfok7TD7O7RfAbU5kbT9AcEmujneXzJD6eDEo0h VqsWVCmwNuVc0WH6Rij6/jgDHJGrmX9hNNcZJKmEo3czQlz8Y0ZS6GFn2ug8J9Vi iw62NsVHqkGTacV5FooAJS8ZzrBnTho1PAgEVYVsH6n9/pt3079hwf/Mu0RHhcKY NTxFQ2zImvmNtn6pbxV9AwOgOpz9V7WYfcICmBVM8XxwxzDrzTw6QrZamQ== -----END CERTIFICATE-----Generated at Sun Jan 25 12:22:32 2026 by rpki-client