This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37332e3132382e302f31372d3332203d3e203538353933.roa File: 34302e37332e3132382e302f31372d3332203d3e203538353933.roa (raw, json) Hash identifier: CiPHFGZqvfKg4LSjdZddwLwpgrGQUYVCQQV/0MxCEaY= Subject key identifier: 98:A4:57:80:7F:39:92:2A:F1:3E:F3:0D:E0:98:05:97:9A:7B:23:68 Certificate issuer: /CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Certificate serial: 54F0CCF7242B57509F01B1F51079E92E02E91299 Authority key identifier: 7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37332e3132382e302f31372d3332203d3e203538353933.roa Signing time: Tue 20 Jan 2026 02:08:23 +0000 ROA not before: Tue 20 Jan 2026 02:03:23 +0000 ROA not after: Tue 19 Jan 2027 02:08:23 +0000 asID: 58593 IP address blocks: 40.73.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 17:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f0:cc:f7:24:2b:57:50:9f:01:b1:f5:10:79:e9:2e:02:e9:12:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EAC9E43C8FAE7ED5B6159423D60EA732848F05F Validity Not Before: Jan 20 02:03:23 2026 GMT Not After : Jan 19 02:08:23 2027 GMT Subject: CN=98A457807F39922AF13EF30DE09805979A7B2368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5b:00:0b:a9:3f:66:64:a2:20:4f:a6:b8:0e: 6f:7d:6d:db:03:0b:7e:a8:33:ac:5a:4f:06:56:7d: ef:83:9c:a6:29:ad:8b:3b:ef:ec:17:07:29:70:9e: 1e:57:d0:4c:51:88:1b:8c:7c:1a:42:d3:15:2a:69: 4f:2a:8f:ef:bc:0f:4b:06:83:44:1b:36:d7:ac:a8: a6:9c:6f:b3:72:15:37:98:a3:63:c3:c2:4c:aa:55: e0:ee:5f:d6:6e:0c:4f:55:7a:97:4a:9d:81:14:fc: af:ca:89:b4:93:39:e8:82:4f:66:46:b6:cf:f4:3d: 0b:c4:ec:e4:c6:97:3c:b5:00:9d:59:13:b3:11:63: b1:ce:1c:22:6c:5e:02:8a:f8:43:22:98:52:d2:80: e1:cf:19:c7:13:e0:8f:9f:78:f7:f3:55:72:b4:76: 9d:91:1c:de:13:f6:6c:9e:be:6f:de:48:47:08:d7: 7c:60:36:cb:32:74:1c:df:19:56:0d:d7:f9:81:89: cc:b7:bb:f9:2c:d9:32:bf:bb:5a:16:1e:c2:ae:a8: d2:aa:de:37:c1:ee:06:6f:f2:2e:35:1e:21:0b:95: e4:b1:af:6b:ac:10:9a:dc:b6:ff:6b:e7:68:8f:93: 5a:b1:48:f8:39:d9:6c:0f:5c:e2:39:04:06:2e:68: 39:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:A4:57:80:7F:39:92:2A:F1:3E:F3:0D:E0:98:05:97:9A:7B:23:68 X509v3 Authority Key Identifier: keyid:7E:AC:9E:43:C8:FA:E7:ED:5B:61:59:42:3D:60:EA:73:28:48:F0:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7EAC9E43C8FAE7ED5B6159423D60EA732848F05F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065583221971877891/1/34302e37332e3132382e302f31372d3332203d3e203538353933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.73.128.0/17 Signature Algorithm: sha256WithRSAEncryption 37:7d:01:5b:9d:06:a3:e9:5f:b9:d9:72:c4:dd:3a:4b:a6:c6: c5:8b:b3:73:98:4f:d2:2d:16:a8:06:f3:5f:fd:69:c5:2b:2d: 56:9e:be:4a:f6:9a:36:e7:0d:7d:55:19:9e:37:0b:41:f1:85: 7e:ea:2e:f2:f7:d2:9c:76:6d:df:ba:14:fd:3e:eb:ca:44:45: 20:98:c3:fc:f7:a5:22:aa:82:9d:b1:e7:f5:9d:aa:26:49:0f: fd:e1:9a:5e:d4:8e:e0:31:7d:66:63:f6:0f:15:2a:3b:81:05: 1c:28:b8:61:1d:1f:56:57:1b:4b:e8:0a:a8:eb:fc:f8:c5:7a: bd:06:13:a1:72:6a:20:af:83:cc:89:03:ca:ee:9d:65:cd:7a: f1:73:7c:0b:fe:ed:77:23:0a:9d:3a:57:ea:23:c0:e6:0a:69: e4:84:0b:2f:45:c6:55:02:67:95:b5:3a:3e:6e:14:a5:bf:85: 91:56:3a:3a:37:0d:83:c9:d5:53:fe:68:4d:3c:83:79:c8:ad: c3:4d:08:b1:f1:54:ba:63:7f:d9:bd:41:74:2a:97:ee:4a:85: b5:41:1f:c1:30:f9:ec:8a:93:8e:7c:66:59:70:10:b6:a2:14: 83:03:d2:9b:f1:8d:13:e2:79:3d:71:31:a5:15:e5:2f:8b:79: 64:4e:e1:5c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUVPDM9yQrV1CfAbH1EHnpLgLpEpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMy ODQ4RjA1RjAeFw0yNjAxMjAwMjAzMjNaFw0yNzAxMTkwMjA4MjNaMDMxMTAvBgNV BAMTKDk4QTQ1NzgwN0YzOTkyMkFGMTNFRjMwREUwOTgwNTk3OUE3QjIzNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3WwALqT9mZKIgT6a4Dm99bdsD C36oM6xaTwZWfe+DnKYprYs77+wXBylwnh5X0ExRiBuMfBpC0xUqaU8qj++8D0sG g0QbNtesqKacb7NyFTeYo2PDwkyqVeDuX9ZuDE9VepdKnYEU/K/KibSTOeiCT2ZG ts/0PQvE7OTGlzy1AJ1ZE7MRY7HOHCJsXgKK+EMimFLSgOHPGccT4I+fePfzVXK0 dp2RHN4T9myevm/eSEcI13xgNssydBzfGVYN1/mBicy3u/ks2TK/u1oWHsKuqNKq 3jfB7gZv8i41HiELleSxr2usEJrctv9r52iPk1qxSPg52WwPXOI5BAYuaDknAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUmKRXgH85kirxPvMN4JgFl5p7I2gwHwYDVR0j BBgwFoAUfqyeQ8j65+1bYVlCPWDqcyhI8F8wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MzIyMTk3MTg3Nzg5MS8xLzdFQUM5RTQzQzhGQUU3RUQ1QjYxNTk0MjNENjBF QTczMjg0OEYwNUYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvN0VBQzlFNDNDOEZBRTdFRDVCNjE1OTQyM0Q2MEVBNzMyODQ4RjA1Ri5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgzMjIxOTcxODc3ODkxLzEvMzQzMDJlMzczMzJl MzEzMjM4MmUzMDJmMzEzNzJkMzMzMjIwM2QzZTIwMzUzODM1MzkzMy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEByhJgDANBgkqhkiG9w0BAQsFAAOCAQEAN30BW50Go+lfudlyxN06S6bGxYuz c5hP0i0WqAbzX/1pxSstVp6+SvaaNucNfVUZnjcLQfGFfuou8vfSnHZt37oU/T7r ykRFIJjD/PelIqqCnbHn9Z2qJkkP/eGaXtSO4DF9ZmP2DxUqO4EFHCi4YR0fVlcb S+gKqOv8+MV6vQYToXJqIK+DzIkDyu6dZc168XN8C/7tdyMKnTpX6iPA5gpp5IQL L0XGVQJnlbU6Pm4Upb+FkVY6OjcNg8nVU/5oTTyDecitw00IsfFUumN/2b1BdCqX 7kqFtUEfwTD57IqTjnxmWXAQtqIUgwPSm/GNE+J5PXExpRXlL4t5ZE7hXA== -----END CERTIFICATE-----Generated at Sun Jan 25 12:23:07 2026 by rpki-client