This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217389571/0/323430313a626461303a3a2f33322d3332203d3e20313531323737.roa File: 323430313a626461303a3a2f33322d3332203d3e20313531323737.roa (raw, json) Hash identifier: 9fwFD84ztG9UUivDa4dFwK8Y6fw7uNd0odjWh9t4he8= Subject key identifier: CA:75:B2:D8:06:4D:A0:B4:57:9A:CA:81:C0:40:13:DA:AD:F5:E5:EB Certificate issuer: /CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Certificate serial: 14468EDAD3D604410C930220848DD4774F1D17CC Authority key identifier: 0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/323430313a626461303a3a2f33322d3332203d3e20313531323737.roa Signing time: Tue 20 Jan 2026 01:19:11 +0000 ROA not before: Tue 20 Jan 2026 01:14:11 +0000 ROA not after: Tue 19 Jan 2027 01:19:11 +0000 asID: 151277 IP address blocks: 2401:bda0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:46:8e:da:d3:d6:04:41:0c:93:02:20:84:8d:d4:77:4f:1d:17:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AFFEB3DB5B290035312103A162969BF6E9D25E6 Validity Not Before: Jan 20 01:14:11 2026 GMT Not After : Jan 19 01:19:11 2027 GMT Subject: CN=CA75B2D8064DA0B4579ACA81C04013DAADF5E5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:a6:e8:d2:25:72:ab:d3:41:93:56:4a:62: 8a:29:a8:b0:19:30:d1:d3:52:3c:c6:cc:d6:d7:c7: 5b:5b:aa:26:b1:75:d7:37:20:65:a0:70:e2:d9:66: 64:bf:d6:b0:50:db:65:54:ce:e3:d0:dc:ef:b4:70: 51:77:4a:5e:00:c6:3a:eb:7f:08:86:04:0e:a8:f9: 13:fc:75:cc:5e:4c:e2:88:47:40:f8:39:12:9d:84: d4:57:ca:f6:59:79:07:d6:80:15:a3:d6:27:74:7b: 57:19:20:b2:fa:0e:7b:da:7c:78:ca:c8:94:a2:bc: 78:2c:a7:7e:4c:a4:f1:df:4d:87:b2:65:50:99:c5: 53:5f:1e:7c:e8:7f:6f:79:9b:06:34:08:76:4b:0a: 3b:96:b6:49:c9:b5:a7:4a:87:69:f9:bd:82:af:2c: ca:b0:6e:df:8a:25:61:67:64:53:56:c4:66:20:32: 85:b8:c2:d4:61:72:7e:e6:1e:69:f0:db:15:87:db: c4:49:e0:ec:48:dd:82:d3:af:0a:8c:01:3d:96:4e: 45:0f:20:06:45:3d:d2:6b:33:de:5f:2e:80:2f:44: fe:85:74:b6:2a:db:e6:90:21:08:0d:69:36:2e:bb: 56:b3:81:60:58:1a:26:ed:4c:6a:c3:66:51:9c:07: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:75:B2:D8:06:4D:A0:B4:57:9A:CA:81:C0:40:13:DA:AD:F5:E5:EB X509v3 Authority Key Identifier: keyid:0A:FF:EB:3D:B5:B2:90:03:53:12:10:3A:16:29:69:BF:6E:9D:25:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/0AFFEB3DB5B290035312103A162969BF6E9D25E6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/0AFFEB3DB5B290035312103A162969BF6E9D25E6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217389571/0/323430313a626461303a3a2f33322d3332203d3e20313531323737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:bda0::/32 Signature Algorithm: sha256WithRSAEncryption 68:7c:d6:d8:52:15:94:af:86:4a:c8:cc:fe:9c:9d:6f:6b:28: a4:f8:ed:34:86:e6:72:e1:e6:99:e0:89:cd:cb:7e:28:08:98: be:82:f6:5d:13:89:d2:f6:59:2a:fd:ef:84:8f:95:3c:4a:63: 93:23:7e:b3:ac:7e:c8:54:e8:76:47:b4:d5:b2:66:22:ec:6b: af:5e:88:51:7c:f6:22:87:56:12:9c:31:f6:f8:a3:5a:95:76: 0a:78:55:06:24:80:aa:0b:94:24:4f:3b:ef:d5:86:f7:f5:ef: 4f:8c:bf:67:cc:27:53:2a:33:6c:22:af:d6:cc:ab:82:fd:99: e8:96:82:3c:2b:40:56:cf:5f:7b:5b:a9:b5:7a:31:d9:ff:60: 3b:c5:12:b1:a1:df:9b:a6:53:85:c5:41:f6:b3:f8:07:6c:e5: da:c9:d8:2b:d0:26:fc:6f:4f:36:10:19:6f:dd:ef:e2:2f:71: 7b:7f:af:39:91:60:62:78:cc:7b:44:9c:3e:24:45:d9:01:8e: 5e:a6:93:b5:76:e3:d0:03:06:94:5d:ca:ac:72:97:76:3b:12: 4b:bd:4a:87:3e:af:6c:ad:12:1d:7a:bb:aa:40:30:b6:fc:73: 7b:fa:d4:c6:e1:9d:94:c0:bb:55:08:a9:55:dd:77:43:b8:a1: e5:50:d2:26 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUFEaO2tPWBEEMkwIghI3Ud08dF8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2 RTlEMjVFNjAeFw0yNjAxMjAwMTE0MTFaFw0yNzAxMTkwMTE5MTFaMDMxMTAvBgNV BAMTKENBNzVCMkQ4MDY0REEwQjQ1NzlBQ0E4MUMwNDAxM0RBQURGNUU1RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw96bo0iVyq9NBk1ZKYoopqLAZ MNHTUjzGzNbXx1tbqiaxddc3IGWgcOLZZmS/1rBQ22VUzuPQ3O+0cFF3Sl4Axjrr fwiGBA6o+RP8dcxeTOKIR0D4ORKdhNRXyvZZeQfWgBWj1id0e1cZILL6DnvafHjK yJSivHgsp35MpPHfTYeyZVCZxVNfHnzof295mwY0CHZLCjuWtknJtadKh2n5vYKv LMqwbt+KJWFnZFNWxGYgMoW4wtRhcn7mHmnw2xWH28RJ4OxI3YLTrwqMAT2WTkUP IAZFPdJrM95fLoAvRP6FdLYq2+aQIQgNaTYuu1azgWBYGibtTGrDZlGcBxlPAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUynWy2AZNoLRXmsqBwEAT2q315eswHwYDVR0j BBgwFoAUCv/rPbWykANTEhA6Filpv26dJeYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzM4OTU3MS8wLzBBRkZFQjNEQjVCMjkwMDM1MzEyMTAzQTE2Mjk2 OUJGNkU5RDI1RTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMEFGRkVCM0RCNUIyOTAwMzUzMTIxMDNBMTYyOTY5QkY2RTlEMjVFNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4NTkxMTIxNzM4OTU3MS8wLzMyMzQzMDMxM2E2 MjY0NjEzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzUzMTMyMzczNy5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQBvaAwDQYJKoZIhvcNAQELBQADggEBAGh81thSFZSvhkrIzP6cnW9r KKT47TSG5nLh5pngic3LfigImL6C9l0TidL2WSr974SPlTxKY5MjfrOsfshU6HZH tNWyZiLsa69eiFF89iKHVhKcMfb4o1qVdgp4VQYkgKoLlCRPO+/Vhvf170+Mv2fM J1MqM2wir9bMq4L9meiWgjwrQFbPX3tbqbV6Mdn/YDvFErGh35umU4XFQfaz+Ads 5drJ2CvQJvxvTzYQGW/d7+IvcXt/rzmRYGJ4zHtEnD4kRdkBjl6mk7V249ADBpRd yqxyl3Y7Eku9Soc+r2ytEh16u6pAMLb8c3v61MbhnZTAu1UIqVXdd0O4oeVQ0iY= -----END CERTIFICATE-----Generated at Sun Jan 25 12:22:02 2026 by rpki-client