This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588335524708353/0/323430323a323632303a3a2f33322d3332203d3e20313331353131.roa File: 323430323a323632303a3a2f33322d3332203d3e20313331353131.roa (raw, json) Hash identifier: QId4aS71+qx1TdphNuAsX2ch4TXYnsIco/I+te5mv30= Subject key identifier: 28:34:0C:2A:B9:FE:69:1B:6F:3F:7A:3B:97:8C:89:15:0C:93:54:43 Certificate issuer: /CN=39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5 Certificate serial: 04644E515655F67A4652C2A2714238FC03A2541F Authority key identifier: 39:87:26:73:DC:CD:C8:67:20:A2:E1:C2:4F:3D:CF:26:B4:DA:B8:F5 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588335524708353/0/323430323a323632303a3a2f33322d3332203d3e20313331353131.roa Signing time: Tue 20 Jan 2026 02:13:11 +0000 ROA not before: Tue 20 Jan 2026 02:08:11 +0000 ROA not after: Tue 19 Jan 2027 02:13:11 +0000 asID: 131511 IP address blocks: 2402:2620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588335524708353/0/39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5.crl rsync://rpki-rps.cnnic.cn/repo/A1065588335524708353/0/39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 19:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:64:4e:51:56:55:f6:7a:46:52:c2:a2:71:42:38:fc:03:a2:54:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5 Validity Not Before: Jan 20 02:08:11 2026 GMT Not After : Jan 19 02:13:11 2027 GMT Subject: CN=28340C2AB9FE691B6F3F7A3B978C89150C935443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:5b:f0:0f:70:8f:1c:e3:d7:29:13:6c:56:fd: 00:d1:5c:01:18:87:66:26:a3:c5:2e:d7:b6:f0:f9: a1:30:b7:ae:31:a4:2e:d5:13:ce:65:7b:4f:ce:0d: f9:ba:20:d9:a5:21:9e:b2:74:0e:7c:68:2b:a2:cb: 75:3b:5b:0b:fb:6e:ab:9c:43:b8:14:ae:f5:d5:ba: c1:3e:0a:58:f7:27:7c:e5:ba:44:a0:48:26:d3:8e: d5:f2:fb:81:13:70:65:fb:88:61:6a:0f:86:af:4e: 62:5c:f2:16:7a:c4:63:37:0b:55:1a:38:84:6d:30: 78:45:01:7d:fd:30:88:80:e3:f7:b0:0b:1b:24:06: e7:fe:ad:c5:34:8c:8c:6d:c2:42:2e:ff:e2:41:b9: ff:73:d2:22:77:0a:c7:45:ce:de:c6:a1:4b:e3:63: b2:b8:72:7f:98:fb:16:19:ec:26:a1:da:1c:9d:d2: 76:68:67:db:bd:7e:03:57:a4:40:ec:13:ca:5a:f7: 4b:77:a8:11:8c:3a:80:4a:f4:04:32:79:b7:d2:cf: ac:b6:d9:f8:6d:a7:37:59:48:86:72:08:9f:11:49: 36:a0:19:ec:60:3b:b5:00:4c:db:70:6d:27:a5:31: eb:2b:01:9b:4f:a7:0b:62:c6:e6:e4:84:fc:02:d9: ae:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:34:0C:2A:B9:FE:69:1B:6F:3F:7A:3B:97:8C:89:15:0C:93:54:43 X509v3 Authority Key Identifier: keyid:39:87:26:73:DC:CD:C8:67:20:A2:E1:C2:4F:3D:CF:26:B4:DA:B8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588335524708353/0/39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/39872673DCCDC86720A2E1C24F3DCF26B4DAB8F5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588335524708353/0/323430323a323632303a3a2f33322d3332203d3e20313331353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:2620::/32 Signature Algorithm: sha256WithRSAEncryption 86:b6:8d:d7:df:7e:fd:6b:08:4c:ac:8b:d8:19:23:c7:25:df: 40:0d:cc:0a:3f:46:8c:2a:a9:f5:6f:5b:18:4f:e7:52:4e:2b: 91:3e:27:2d:4d:0e:8f:54:e1:04:49:5f:54:ff:95:86:83:b9: ff:16:40:f8:01:21:aa:cc:72:98:d8:db:ba:54:ed:00:11:3a: e6:15:c4:b6:a3:1f:6e:cb:06:f1:10:9c:39:e6:fe:67:97:80: 17:8f:f3:1a:1f:da:51:ce:83:2f:43:fe:a6:7a:cb:e1:1c:7d: 39:a8:1c:3d:19:66:8c:da:1e:03:4f:02:7c:2a:ee:89:b3:15: d1:09:d0:78:f3:15:e9:4a:2d:d4:7f:8e:6b:1b:63:30:30:bb: 12:c6:98:40:bf:89:20:e1:50:3b:1c:c7:ea:40:ae:bb:e0:32: b7:2e:e5:63:a1:37:3f:fb:62:fe:4d:95:ea:a5:5a:96:cf:40: c8:38:8d:89:7b:e0:7d:1f:30:a3:be:16:e5:18:37:d0:9f:8e: 61:44:f5:87:fa:35:d3:aa:3c:93:31:49:2f:82:e0:a6:cb:32: ea:5a:f4:9b:1c:9e:f0:cd:a5:ed:b1:c9:3e:17:14:a5:58:24: 70:d3:da:f0:6d:ab:5c:f4:fb:eb:75:ec:c0:2d:06:6f:fa:79: d3:fe:32:ac -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIUBGROUVZV9npGUsKicUI4/AOiVB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk4NzI2NzNEQ0NEQzg2NzIwQTJFMUMyNEYzRENGMjZC NERBQjhGNTAeFw0yNjAxMjAwMjA4MTFaFw0yNzAxMTkwMjEzMTFaMDMxMTAvBgNV BAMTKDI4MzQwQzJBQjlGRTY5MUI2RjNGN0EzQjk3OEM4OTE1MEM5MzU0NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNW/APcI8c49cpE2xW/QDRXAEY h2Ymo8Uu17bw+aEwt64xpC7VE85le0/ODfm6INmlIZ6ydA58aCuiy3U7Wwv7bquc Q7gUrvXVusE+Clj3J3zlukSgSCbTjtXy+4ETcGX7iGFqD4avTmJc8hZ6xGM3C1Ua OIRtMHhFAX39MIiA4/ewCxskBuf+rcU0jIxtwkIu/+JBuf9z0iJ3CsdFzt7GoUvj Y7K4cn+Y+xYZ7Cah2hyd0nZoZ9u9fgNXpEDsE8pa90t3qBGMOoBK9AQyebfSz6y2 2fhtpzdZSIZyCJ8RSTagGexgO7UATNtwbSelMesrAZtPpwtixubkhPwC2a4dAgMB AAGjggIVMIICETAdBgNVHQ4EFgQUKDQMKrn+aRtvP3o7l4yJFQyTVEMwHwYDVR0j BBgwFoAUOYcmc9zNyGcgouHCTz3PJrTauPUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODMzNTUyNDcwODM1My8wLzM5ODcyNjczRENDREM4NjcyMEEyRTFDMjRGM0RD RjI2QjREQUI4RjUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMzk4NzI2NzNEQ0NEQzg2NzIwQTJFMUMyNEYzRENGMjZCNERBQjhGNS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4ODMzNTUyNDcwODM1My8wLzMyMzQzMDMyM2Ez MjM2MzIzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMxMzMzMTM1MzEzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQCJiAwDQYJKoZIhvcNAQELBQADggEBAIa2jdfffv1rCEysi9gZI8cl 30ANzAo/RowqqfVvWxhP51JOK5E+Jy1NDo9U4QRJX1T/lYaDuf8WQPgBIarMcpjY 27pU7QAROuYVxLajH27LBvEQnDnm/meXgBeP8xof2lHOgy9D/qZ6y+EcfTmoHD0Z ZozaHgNPAnwq7omzFdEJ0HjzFelKLdR/jmsbYzAwuxLGmEC/iSDhUDscx+pArrvg Mrcu5WOhNz/7Yv5NleqlWpbPQMg4jYl74H0fMKO+FuUYN9CfjmFE9Yf6NdOqPJMx SS+C4KbLMupa9JscnvDNpe2xyT4XFKVYJHDT2vBtq1z0++t17MAtBm/6edP+Mqw= -----END CERTIFICATE-----Generated at Sun Jan 25 09:11:27 2026 by rpki-client