This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065585911217520643/0/3130332e3130392e32302e302f32322d3234203d3e2034383136.roa File: 3130332e3130392e32302e302f32322d3234203d3e2034383136.roa (raw, json) Hash identifier: Ir54i6mCJphe0tTKRNEplWXjiN5Eyqy0jZSjS9oxoak= Subject key identifier: A0:D9:67:FF:06:A0:94:50:CB:A5:EE:CB:8B:EA:03:A7:2D:B2:37:C2 Certificate issuer: /CN=95AFB4515D628A1186D20869CFEAF47D559D5337 Certificate serial: 3ED5DB46E5D14FDA0EE3484D299894B50E627122 Authority key identifier: 95:AF:B4:51:5D:62:8A:11:86:D2:08:69:CF:EA:F4:7D:55:9D:53:37 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95AFB4515D628A1186D20869CFEAF47D559D5337.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065585911217520643/0/3130332e3130392e32302e302f32322d3234203d3e2034383136.roa Signing time: Tue 20 Jan 2026 02:08:26 +0000 ROA not before: Tue 20 Jan 2026 02:03:26 +0000 ROA not after: Tue 19 Jan 2027 02:08:26 +0000 asID: 4816 IP address blocks: 103.109.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065585911217520643/0/95AFB4515D628A1186D20869CFEAF47D559D5337.crl rsync://rpki-rps.cnnic.cn/repo/A1065585911217520643/0/95AFB4515D628A1186D20869CFEAF47D559D5337.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95AFB4515D628A1186D20869CFEAF47D559D5337.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 13:48:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d5:db:46:e5:d1:4f:da:0e:e3:48:4d:29:98:94:b5:0e:62:71:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95AFB4515D628A1186D20869CFEAF47D559D5337 Validity Not Before: Jan 20 02:03:26 2026 GMT Not After : Jan 19 02:08:26 2027 GMT Subject: CN=A0D967FF06A09450CBA5EECB8BEA03A72DB237C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:ca:6e:d8:c0:4e:21:fd:2d:08:9e:de:91: d8:99:cd:d0:3a:df:43:3d:5e:76:3f:75:81:32:3f: b7:1d:ac:69:5a:b5:51:95:3a:8f:35:94:7a:86:54: 6d:69:61:a3:8f:8d:e2:2c:19:49:ba:cf:d6:dc:0b: 93:ca:f3:d6:63:43:a4:de:35:50:3b:5b:74:ea:7d: 71:51:53:bf:51:31:bc:b4:0e:59:1e:b1:31:0d:ac: 5d:87:1f:4f:ae:a9:e4:ef:ff:95:89:aa:41:f0:8c: de:e7:83:63:3b:d2:ce:c2:3e:46:fe:91:5f:b9:6e: b8:2f:dc:2e:05:5e:68:1b:09:11:ea:5f:c3:4b:8a: c4:40:4c:ba:c5:36:24:b8:64:a9:a8:6d:ee:86:c8: 25:db:77:a5:97:16:b9:27:ba:34:f3:39:57:ba:21: 02:62:c1:0a:5b:e9:cd:01:43:5b:3c:63:c0:cc:96: 4a:cd:37:f0:5f:a5:00:47:ec:1d:73:2f:33:3c:3e: 8d:c4:56:eb:ac:ab:37:47:c6:83:f5:1f:9c:9e:06: b6:42:73:17:0e:88:e9:f7:ed:8d:af:04:63:d1:92: e4:23:3f:da:be:f1:1d:b8:1a:05:7b:98:48:5e:00: d6:86:cf:68:6a:32:4e:6b:d7:8e:91:7e:91:df:b3: dd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D9:67:FF:06:A0:94:50:CB:A5:EE:CB:8B:EA:03:A7:2D:B2:37:C2 X509v3 Authority Key Identifier: keyid:95:AF:B4:51:5D:62:8A:11:86:D2:08:69:CF:EA:F4:7D:55:9D:53:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217520643/0/95AFB4515D628A1186D20869CFEAF47D559D5337.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/95AFB4515D628A1186D20869CFEAF47D559D5337.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065585911217520643/0/3130332e3130392e32302e302f32322d3234203d3e2034383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.20.0/22 Signature Algorithm: sha256WithRSAEncryption a9:6b:28:4b:b4:40:38:2f:28:dc:06:f7:04:b5:a5:05:14:d1: bc:0f:2c:74:a8:5f:a2:8b:e9:9b:2f:81:a2:24:d4:aa:82:1e: ac:8e:88:b4:62:79:aa:f7:37:aa:8c:04:55:fb:b6:de:1a:83: bc:78:ab:1b:ac:c5:a9:6d:9b:39:5f:aa:1c:1d:26:b2:2f:a0: 46:9e:95:3f:53:a5:56:b2:b0:e3:a2:61:61:28:f8:d4:01:6f: fa:84:7b:fb:71:15:5f:cb:70:f6:2f:fd:c0:bd:cb:3d:d0:26: 61:a2:9b:9d:eb:01:9b:07:5b:e9:c7:2c:40:fc:6f:1f:e3:7b: 3a:d4:f2:4c:77:be:d8:6d:01:e1:37:1a:06:9d:08:5e:b3:4c: e0:2a:ca:59:c8:3b:09:30:a9:a0:1f:98:d0:6c:c0:95:2d:1f: 35:22:77:49:06:9e:e0:66:e4:ae:3e:21:bb:ff:e6:89:2b:b8: fb:45:af:86:10:e9:8a:2a:e4:72:56:2f:a2:d1:8e:6e:39:70: b6:d5:1a:eb:8f:ae:dd:11:42:4f:1c:ce:49:22:76:73:1f:71: c8:a5:41:71:34:54:56:f8:ed:cb:8a:ec:da:94:9e:aa:d6:86: 81:13:ca:1b:4e:50:9e:00:fe:a6:e9:57:52:69:8f:a7:f9:d4: 94:7c:7e:32 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUPtXbRuXRT9oO40hNKZiUtQ5icSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVBRkI0NTE1RDYyOEExMTg2RDIwODY5Q0ZFQUY0N0Q1 NTlENTMzNzAeFw0yNjAxMjAwMjAzMjZaFw0yNzAxMTkwMjA4MjZaMDMxMTAvBgNV BAMTKEEwRDk2N0ZGMDZBMDk0NTBDQkE1RUVDQjhCRUEwM0E3MkRCMjM3QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ncpu2MBOIf0tCJ7ekdiZzdA6 30M9XnY/dYEyP7cdrGlatVGVOo81lHqGVG1pYaOPjeIsGUm6z9bcC5PK89ZjQ6Te NVA7W3TqfXFRU79RMby0DlkesTENrF2HH0+uqeTv/5WJqkHwjN7ng2M70s7CPkb+ kV+5brgv3C4FXmgbCRHqX8NLisRATLrFNiS4ZKmobe6GyCXbd6WXFrknujTzOVe6 IQJiwQpb6c0BQ1s8Y8DMlkrNN/BfpQBH7B1zLzM8Po3EVuusqzdHxoP1H5yeBrZC cxcOiOn37Y2vBGPRkuQjP9q+8R24GgV7mEheANaGz2hqMk5r146RfpHfs90LAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUoNln/waglFDLpe7Li+oDpy2yN8IwHwYDVR0j BBgwFoAUla+0UV1iihGG0ghpz+r0fVWdUzcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4NTkxMTIxNzUyMDY0My8wLzk1QUZCNDUxNUQ2MjhBMTE4NkQyMDg2OUNGRUFG NDdENTU5RDUzMzcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTVBRkI0NTE1RDYyOEExMTg2RDIwODY5Q0ZFQUY0N0Q1NTlENTMzNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg1OTExMjE3NTIwNjQzLzAvMzEzMDMzMmUzMTMw MzkyZTMyMzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM4MzEzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdtFDANBgkqhkiG9w0BAQsFAAOCAQEAqWsoS7RAOC8o3Ab3BLWlBRTRvA8s dKhfoovpmy+BoiTUqoIerI6ItGJ5qvc3qowEVfu23hqDvHirG6zFqW2bOV+qHB0m si+gRp6VP1OlVrKw46JhYSj41AFv+oR7+3EVX8tw9i/9wL3LPdAmYaKbnesBmwdb 6ccsQPxvH+N7OtTyTHe+2G0B4TcaBp0IXrNM4CrKWcg7CTCpoB+Y0GzAlS0fNSJ3 SQae4Gbkrj4hu//miSu4+0WvhhDpiirkclYvotGObjlwttUa64+u3RFCTxzOSSJ2 cx9xyKVBcTRUVvjty4rs2pSeqtaGgRPKG05QngD+pulXUmmPp/nUlHx+Mg== -----END CERTIFICATE-----Generated at Sun Jan 25 18:50:24 2026 by rpki-client