This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217324035/0/323430303a356636303a3a2f33322d3332203d3e20313436373632.roa File: 323430303a356636303a3a2f33322d3332203d3e20313436373632.roa (raw, json) Hash identifier: 2zf8ptIuNWz/ytNogvE5KsEgpil1bYy9wjHUWvs6PfU= Subject key identifier: A9:0D:53:3D:D8:B1:C2:A9:D6:30:AD:71:6A:70:32:8E:40:74:57:50 Certificate issuer: /CN=D35F90D8A73FFC160A310A96BC00BEAB7DA2911D Certificate serial: 17D7AA35FB38ED83E1E91A7373BF1B82C07897DF Authority key identifier: D3:5F:90:D8:A7:3F:FC:16:0A:31:0A:96:BC:00:BE:AB:7D:A2:91:1D Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D35F90D8A73FFC160A310A96BC00BEAB7DA2911D.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217324035/0/323430303a356636303a3a2f33322d3332203d3e20313436373632.roa Signing time: Tue 20 Jan 2026 02:26:09 +0000 ROA not before: Tue 20 Jan 2026 02:21:09 +0000 ROA not after: Tue 19 Jan 2027 02:26:09 +0000 asID: 146762 IP address blocks: 2400:5f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217324035/0/D35F90D8A73FFC160A310A96BC00BEAB7DA2911D.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217324035/0/D35F90D8A73FFC160A310A96BC00BEAB7DA2911D.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D35F90D8A73FFC160A310A96BC00BEAB7DA2911D.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d7:aa:35:fb:38:ed:83:e1:e9:1a:73:73:bf:1b:82:c0:78:97:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D35F90D8A73FFC160A310A96BC00BEAB7DA2911D Validity Not Before: Jan 20 02:21:09 2026 GMT Not After : Jan 19 02:26:09 2027 GMT Subject: CN=A90D533DD8B1C2A9D630AD716A70328E40745750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9f:8e:f0:8e:cc:ea:9a:45:ea:40:29:b1:71: 67:00:3d:48:fd:81:6d:e6:81:81:86:63:6f:1d:03: 11:04:31:8d:2b:ef:79:8c:79:65:d1:45:56:7f:6c: 94:58:20:23:c8:34:43:27:27:89:6d:f6:3d:4d:db: c0:8c:8f:bf:53:aa:ea:6b:78:e9:24:c4:b0:52:7d: 49:a2:44:de:7e:67:36:6f:b4:e1:ae:fb:e6:9f:38: d7:7e:f8:a8:45:52:2d:49:ee:35:78:2d:95:b8:fe: 34:2e:3a:ff:9d:5c:b9:ab:f3:26:79:bc:37:94:6e: 31:8c:35:08:d9:eb:12:36:47:41:36:53:b5:1a:4e: 23:80:02:a1:7d:1d:7f:a1:68:da:10:9c:0c:a1:d1: c2:64:3d:e5:f1:c5:14:38:42:69:7a:cb:f7:5b:bc: 9b:9a:77:2c:db:18:f0:e1:ae:07:f0:fe:fb:fe:95: 9a:0e:a4:12:98:39:a3:3e:e8:68:17:3f:53:43:61: 67:35:dc:75:25:f3:1a:86:f7:f6:fd:d0:62:1c:b3: 5f:25:c8:95:57:35:d0:44:af:82:df:c6:cb:fa:3b: 7e:62:c7:63:cf:87:5b:a5:46:87:c9:13:bb:73:20: c2:bd:ee:0c:30:95:6e:ef:13:d4:9a:ea:f4:33:dd: 76:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0D:53:3D:D8:B1:C2:A9:D6:30:AD:71:6A:70:32:8E:40:74:57:50 X509v3 Authority Key Identifier: keyid:D3:5F:90:D8:A7:3F:FC:16:0A:31:0A:96:BC:00:BE:AB:7D:A2:91:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217324035/0/D35F90D8A73FFC160A310A96BC00BEAB7DA2911D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/D35F90D8A73FFC160A310A96BC00BEAB7DA2911D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217324035/0/323430303a356636303a3a2f33322d3332203d3e20313436373632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:5f60::/32 Signature Algorithm: sha256WithRSAEncryption 8c:1d:05:00:12:97:72:2e:4a:bd:15:5d:ea:93:cb:c0:ca:53: ea:58:bd:00:94:a6:2a:6b:28:d5:2f:fd:75:ac:8d:d6:58:1e: ea:cd:1f:29:d9:3c:9c:08:42:e4:c4:6d:30:05:af:c4:8b:eb: 7a:59:a7:58:f9:70:3d:df:4f:51:bb:ca:fd:fd:17:5d:9d:d1: 80:4a:80:5e:9b:5f:af:f2:6b:82:09:5c:65:b6:76:33:49:e2: 92:e3:08:30:19:f3:1b:7f:ad:84:89:41:50:94:31:02:2c:71: 06:1a:a7:a9:06:ba:44:8d:93:ac:da:7a:fc:0a:10:28:53:06: 4b:15:9d:39:d4:29:41:6d:cb:72:4d:24:38:17:61:0d:11:aa: cb:c3:82:02:d9:6c:cb:d7:df:46:36:d6:ca:07:e8:28:91:ac: 7e:ec:08:04:8a:ff:3e:89:aa:14:31:ce:e1:c0:33:fb:b6:86: ed:6a:42:a1:0f:24:6a:52:b4:6a:ea:18:a0:2e:db:04:8e:dc: 2f:fc:38:65:d0:89:79:a7:59:e1:5a:df:59:4c:50:ff:43:66: 1a:5d:0d:df:9d:e7:19:fe:ef:7c:ef:7f:e7:51:cf:de:ec:f3: 8a:ca:25:22:c7:4c:0c:ca:50:c7:04:4b:52:9b:00:56:54:29: 78:4c:a5:e3 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUF9eqNfs47YPh6Rpzc78bgsB4l98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDM1RjkwRDhBNzNGRkMxNjBBMzEwQTk2QkMwMEJFQUI3 REEyOTExRDAeFw0yNjAxMjAwMjIxMDlaFw0yNzAxMTkwMjI2MDlaMDMxMTAvBgNV BAMTKEE5MEQ1MzNERDhCMUMyQTlENjMwQUQ3MTZBNzAzMjhFNDA3NDU3NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXn47wjszqmkXqQCmxcWcAPUj9 gW3mgYGGY28dAxEEMY0r73mMeWXRRVZ/bJRYICPINEMnJ4lt9j1N28CMj79Tqupr eOkkxLBSfUmiRN5+ZzZvtOGu++afONd++KhFUi1J7jV4LZW4/jQuOv+dXLmr8yZ5 vDeUbjGMNQjZ6xI2R0E2U7UaTiOAAqF9HX+haNoQnAyh0cJkPeXxxRQ4Qml6y/db vJuadyzbGPDhrgfw/vv+lZoOpBKYOaM+6GgXP1NDYWc13HUl8xqG9/b90GIcs18l yJVXNdBEr4Lfxsv6O35ix2PPh1ulRofJE7tzIMK97gwwlW7vE9Sa6vQz3XZlAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUqQ1TPdixwqnWMK1xanAyjkB0V1AwHwYDVR0j BBgwFoAU01+Q2Kc//BYKMQqWvAC+q32ikR0wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzMyNDAzNS8wL0QzNUY5MEQ4QTczRkZDMTYwQTMxMEE5NkJDMDBC RUFCN0RBMjkxMUQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvRDM1RjkwRDhBNzNGRkMxNjBBMzEwQTk2QkMwMEJFQUI3REEyOTExRC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTkxMTIxNzMyNDAzNS8wLzMyMzQzMDMwM2Ez NTY2MzYzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzQzNjM3MzYzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQAX2AwDQYJKoZIhvcNAQELBQADggEBAIwdBQASl3IuSr0VXeqTy8DK U+pYvQCUpiprKNUv/XWsjdZYHurNHynZPJwIQuTEbTAFr8SL63pZp1j5cD3fT1G7 yv39F12d0YBKgF6bX6/ya4IJXGW2djNJ4pLjCDAZ8xt/rYSJQVCUMQIscQYap6kG ukSNk6zaevwKEChTBksVnTnUKUFty3JNJDgXYQ0RqsvDggLZbMvX30Y21soH6CiR rH7sCASK/z6JqhQxzuHAM/u2hu1qQqEPJGpStGrqGKAu2wSO3C/8OGXQiXmnWeFa 31lMUP9DZhpdDd+d5xn+73zvf+dRz97s84rKJSLHTAzKUMcES1KbAFZUKXhMpeM= -----END CERTIFICATE-----Generated at Sun Jan 25 09:11:19 2026 by rpki-client