This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585389265485825/0/34322e3230312e31362e302f32302d3230203d3e203133333335.roa File: 34322e3230312e31362e302f32302d3230203d3e203133333335.roa (raw, json) Hash identifier: 6bdEd0bqj42iKfmhtGc9g7su73K7YEtlcxEl0H1HjqQ= Subject key identifier: 8B:7A:35:0B:DD:23:01:B9:0F:18:51:64:3D:F8:2C:61:F9:47:1A:02 Certificate issuer: /CN=632A01C4F1D5C990BF6B363A67894CC7D69E478B Certificate serial: 25C723FE695BEE24EA66B2AED95337AEBA202D9E Authority key identifier: 63:2A:01:C4:F1:D5:C9:90:BF:6B:36:3A:67:89:4C:C7:D6:9E:47:8B Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/632A01C4F1D5C990BF6B363A67894CC7D69E478B.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/34322e3230312e31362e302f32302d3230203d3e203133333335.roa Signing time: Tue 20 Jan 2026 02:20:21 +0000 ROA not before: Tue 20 Jan 2026 02:15:21 +0000 ROA not after: Tue 19 Jan 2027 02:20:21 +0000 asID: 13335 IP address blocks: 42.201.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/632A01C4F1D5C990BF6B363A67894CC7D69E478B.crl rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/632A01C4F1D5C990BF6B363A67894CC7D69E478B.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/632A01C4F1D5C990BF6B363A67894CC7D69E478B.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c7:23:fe:69:5b:ee:24:ea:66:b2:ae:d9:53:37:ae:ba:20:2d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=632A01C4F1D5C990BF6B363A67894CC7D69E478B Validity Not Before: Jan 20 02:15:21 2026 GMT Not After : Jan 19 02:20:21 2027 GMT Subject: CN=8B7A350BDD2301B90F1851643DF82C61F9471A02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:59:28:6a:e6:86:b0:64:ad:05:0e:77:8a:e2: a0:e2:af:85:a0:98:3e:d4:07:a4:96:ff:bd:18:35: c7:c0:13:e1:3b:92:81:39:54:dc:d5:5a:81:61:89: 10:64:b6:1e:7f:25:ce:b0:97:12:9a:b8:b0:45:55: 38:a6:21:da:89:17:a9:4a:9b:c8:0a:32:73:ef:4b: 08:eb:33:5f:61:8a:66:02:4c:2e:16:52:ef:d2:31: 5a:d6:e9:d4:3e:5a:90:a1:86:8d:91:a5:a9:bd:6b: 1a:ba:e2:4f:35:3b:4a:c6:11:f7:fb:2c:fc:92:e3: 88:53:b2:bf:97:dc:7c:59:51:9d:35:b5:cd:eb:53: 5c:35:68:73:a1:c4:87:9e:f2:7a:ae:25:9e:56:47: 0d:de:05:5c:17:6b:22:5e:5c:59:a8:80:1d:a4:cb: 63:f0:09:d9:7d:77:28:e7:dd:ed:ae:7f:f0:13:30: b7:5e:97:5b:f6:4d:2b:64:d4:df:20:5d:aa:a2:72: b9:3d:51:9b:e3:c1:c1:35:56:3c:7a:76:67:f9:a2: 4a:75:79:8a:4b:d4:b1:bc:32:36:ed:e1:50:67:9a: bb:64:0e:5a:a7:51:f8:17:da:50:e7:24:49:66:53: 71:4b:7b:c3:39:25:a8:23:6a:86:81:eb:bd:93:af: 86:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7A:35:0B:DD:23:01:B9:0F:18:51:64:3D:F8:2C:61:F9:47:1A:02 X509v3 Authority Key Identifier: keyid:63:2A:01:C4:F1:D5:C9:90:BF:6B:36:3A:67:89:4C:C7:D6:9E:47:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/632A01C4F1D5C990BF6B363A67894CC7D69E478B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/632A01C4F1D5C990BF6B363A67894CC7D69E478B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585389265485825/0/34322e3230312e31362e302f32302d3230203d3e203133333335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.201.16.0/20 Signature Algorithm: sha256WithRSAEncryption 09:99:ef:5d:36:eb:70:c0:65:5e:ef:bd:3a:b8:76:85:b8:de: cb:8d:b0:af:36:2b:23:e3:60:88:56:b5:c5:c9:12:0c:4a:5b: 0c:17:3c:73:a3:3c:66:be:0b:26:43:5d:02:66:79:ac:b4:5b: c7:73:f2:c5:fb:5b:a2:02:07:be:6d:3e:5a:ef:9f:7a:90:a5: 43:3d:66:f2:aa:85:55:1e:e3:eb:92:ff:c7:e8:9b:44:8a:3d: a7:57:02:db:e2:66:11:62:46:ff:7e:b2:40:09:04:fe:92:fd: 0a:ce:1e:25:46:11:21:67:b3:5d:c3:6e:d1:e2:a4:33:f3:45: f5:91:ce:82:40:43:f3:77:91:9c:3a:55:b7:cc:39:cf:9c:53: 3a:73:bf:b7:d1:49:4f:2e:00:53:94:ea:d2:d5:61:10:61:ee: 4c:81:86:8d:29:56:bb:01:12:d2:56:41:9c:e6:ce:8c:08:3d: bf:89:c0:a8:23:e2:82:4c:51:fc:f1:07:75:f7:57:b4:7d:ed: 39:92:e9:4f:ac:c3:2b:b4:3f:c1:0e:c0:0d:04:da:1e:71:63: 86:06:b5:90:c1:1b:c8:3b:5f:52:3e:27:b1:db:1c:dc:07:bd: ce:03:15:65:cc:4a:0e:b3:99:96:98:92:a5:21:cc:14:a2:83: 88:f7:76:90 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUJccj/mlb7iTqZrKu2VM3rrogLZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMyQTAxQzRGMUQ1Qzk5MEJGNkIzNjNBNjc4OTRDQzdE NjlFNDc4QjAeFw0yNjAxMjAwMjE1MjFaFw0yNzAxMTkwMjIwMjFaMDMxMTAvBgNV BAMTKDhCN0EzNTBCREQyMzAxQjkwRjE4NTE2NDNERjgyQzYxRjk0NzFBMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcWShq5oawZK0FDneK4qDir4Wg mD7UB6SW/70YNcfAE+E7koE5VNzVWoFhiRBkth5/Jc6wlxKauLBFVTimIdqJF6lK m8gKMnPvSwjrM19himYCTC4WUu/SMVrW6dQ+WpChho2Rpam9axq64k81O0rGEff7 LPyS44hTsr+X3HxZUZ01tc3rU1w1aHOhxIee8nquJZ5WRw3eBVwXayJeXFmogB2k y2PwCdl9dyjn3e2uf/ATMLdel1v2TStk1N8gXaqicrk9UZvjwcE1Vjx6dmf5okp1 eYpL1LG8Mjbt4VBnmrtkDlqnUfgX2lDnJElmU3FLe8M5JagjaoaB672Tr4brAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUi3o1C90jAbkPGFFkPfgsYflHGgIwHwYDVR0j BBgwFoAUYyoBxPHVyZC/azY6Z4lMx9aeR4swDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTM4OTI2NTQ4NTgyNS8wLzYzMkEwMUM0RjFENUM5OTBCRjZCMzYzQTY3ODk0 Q0M3RDY5RTQ3OEIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNjMyQTAxQzRGMUQ1Qzk5MEJGNkIzNjNBNjc4OTRDQzdENjlFNDc4Qi5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1Mzg5MjY1NDg1ODI1LzAvMzQzMjJlMzIzMDMx MmUzMTM2MmUzMDJmMzIzMDJkMzIzMDIwM2QzZTIwMzEzMzMzMzMzNS5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBCrJEDANBgkqhkiG9w0BAQsFAAOCAQEACZnvXTbrcMBlXu+9Orh2hbjey42w rzYrI+NgiFa1xckSDEpbDBc8c6M8Zr4LJkNdAmZ5rLRbx3PyxftbogIHvm0+Wu+f epClQz1m8qqFVR7j65L/x+ibRIo9p1cC2+JmEWJG/36yQAkE/pL9Cs4eJUYRIWez XcNu0eKkM/NF9ZHOgkBD83eRnDpVt8w5z5xTOnO/t9FJTy4AU5Tq0tVhEGHuTIGG jSlWuwES0lZBnObOjAg9v4nAqCPigkxR/PEHdfdXtH3tOZLpT6zDK7Q/wQ7ADQTa HnFjhga1kMEbyDtfUj4nsdsc3Ae9zgMVZcxKDrOZlpiSpSHMFKKDiPd2kA== -----END CERTIFICATE-----Generated at Sun Jan 25 11:11:32 2026 by rpki-client