This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3231322e302f32322d3234203d3e203633363737.roa File: 32372e302e3231322e302f32322d3234203d3e203633363737.roa (raw, json) Hash identifier: ixjJUr/2XMEk+vezfUTfViQ2eX2Nagx8bYlSwGNoOV8= Subject key identifier: FD:1D:AF:BD:51:FE:EF:70:79:BD:22:99:D3:9A:C4:B7:24:39:5E:57 Certificate issuer: /CN=9B22C19D842E45AA84439366694E4C828C309CEE Certificate serial: 5CFB0572AFA810047BCC317A8ADEC15DA54AB406 Authority key identifier: 9B:22:C1:9D:84:2E:45:AA:84:43:93:66:69:4E:4C:82:8C:30:9C:EE Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3231322e302f32322d3234203d3e203633363737.roa Signing time: Tue 20 Jan 2026 01:19:08 +0000 ROA not before: Tue 20 Jan 2026 01:14:08 +0000 ROA not after: Tue 19 Jan 2027 01:19:08 +0000 asID: 63677 IP address blocks: 27.0.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.crl rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 05:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:fb:05:72:af:a8:10:04:7b:cc:31:7a:8a:de:c1:5d:a5:4a:b4:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B22C19D842E45AA84439366694E4C828C309CEE Validity Not Before: Jan 20 01:14:08 2026 GMT Not After : Jan 19 01:19:08 2027 GMT Subject: CN=FD1DAFBD51FEEF7079BD2299D39AC4B724395E57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0f:ca:ff:97:04:ef:47:16:17:72:b0:36:35: ef:d8:fa:b2:bb:03:21:e5:be:eb:b2:dc:41:30:d7: cd:39:dc:d6:3c:47:3c:fe:f1:64:ab:8d:fb:fc:5c: 59:38:7e:91:73:a3:70:61:6b:88:79:b8:f3:86:2b: 9e:ce:fb:52:26:bd:f6:31:7e:98:24:22:09:82:c4: 77:b4:a9:9a:a1:3c:3a:80:a3:df:10:ab:79:77:b6: 78:0f:f4:92:da:cd:86:b8:f0:72:02:c7:16:a4:45: 82:88:20:9e:9e:f6:25:d8:0a:6e:ef:8f:95:03:90: fd:9e:88:79:44:98:8f:5a:7b:6e:89:fd:89:ad:23: 53:05:2f:5d:9d:5f:a0:c4:12:c0:17:64:71:93:5a: e7:4d:d2:30:2c:eb:85:f5:ef:61:9d:b5:ea:51:96: af:7e:d2:e6:1e:46:d2:2d:d5:0e:c6:dd:b1:b9:f4: ab:2d:eb:9b:e1:bb:b5:f5:df:e5:3f:cb:dd:3f:ac: 04:24:95:9e:95:1d:77:1c:5f:81:7d:71:ab:62:e7: 0d:16:e3:b3:76:f8:78:9e:5e:c0:66:19:5b:b1:bb: 6f:59:65:2a:6d:4b:ec:02:0d:85:43:7b:a7:e4:6a: 3a:30:78:01:6a:19:d2:8f:20:02:96:9f:3f:98:83: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1D:AF:BD:51:FE:EF:70:79:BD:22:99:D3:9A:C4:B7:24:39:5E:57 X509v3 Authority Key Identifier: keyid:9B:22:C1:9D:84:2E:45:AA:84:43:93:66:69:4E:4C:82:8C:30:9C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/9B22C19D842E45AA84439366694E4C828C309CEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9B22C19D842E45AA84439366694E4C828C309CEE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065588553129721859/0/32372e302e3231322e302f32322d3234203d3e203633363737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.212.0/22 Signature Algorithm: sha256WithRSAEncryption 83:0d:99:ab:cf:67:bf:10:f8:94:b8:99:28:75:7c:c2:03:79: a0:3b:de:f8:ac:bd:de:50:ab:52:b3:43:e5:7f:3f:49:17:7b: a1:d4:cd:58:f2:79:c5:97:a5:08:6e:94:9d:d9:73:0c:71:64: 47:6c:a6:b6:f0:7d:33:0d:72:2a:00:1a:3e:ee:8d:20:1c:74: 6f:56:64:5f:b2:e9:e8:bb:8c:df:4a:e5:46:0e:16:40:6f:db: 8e:e1:27:54:24:0a:3b:ea:ff:75:ca:fd:5e:62:98:77:fe:4d: 64:9c:76:75:84:51:23:2d:7e:eb:ec:b5:80:79:1e:a4:19:d6: 82:d3:11:5d:71:da:f5:5e:bf:43:5a:0e:ed:71:ae:6b:65:81: 6c:e2:ee:c6:49:54:a4:aa:2d:42:11:64:03:ba:dd:84:07:cc: ba:0a:84:25:6b:12:68:17:03:06:3f:fe:e2:a4:58:c6:73:eb: fb:0e:01:aa:fc:65:1e:2c:26:b6:93:e2:89:dd:00:30:2e:7e: 7b:0a:56:dd:04:de:c2:74:be:16:27:2e:ed:43:87:9c:97:5e: 3c:20:ab:78:d1:f4:41:e8:86:ca:47:97:58:71:4e:70:25:1d: d1:87:73:7a:ea:7b:2b:57:e5:f3:33:3a:cf:55:32:f1:2b:3c: f5:a2:b4:fb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUXPsFcq+oEAR7zDF6it7BXaVKtAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyMkMxOUQ4NDJFNDVBQTg0NDM5MzY2Njk0RTRDODI4 QzMwOUNFRTAeFw0yNjAxMjAwMTE0MDhaFw0yNzAxMTkwMTE5MDhaMDMxMTAvBgNV BAMTKEZEMURBRkJENTFGRUVGNzA3OUJEMjI5OUQzOUFDNEI3MjQzOTVFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDD8r/lwTvRxYXcrA2Ne/Y+rK7 AyHlvuuy3EEw18053NY8Rzz+8WSrjfv8XFk4fpFzo3Bha4h5uPOGK57O+1ImvfYx fpgkIgmCxHe0qZqhPDqAo98Qq3l3tngP9JLazYa48HICxxakRYKIIJ6e9iXYCm7v j5UDkP2eiHlEmI9ae26J/YmtI1MFL12dX6DEEsAXZHGTWudN0jAs64X172GdtepR lq9+0uYeRtIt1Q7G3bG59Kst65vhu7X13+U/y90/rAQklZ6VHXccX4F9cati5w0W 47N2+HieXsBmGVuxu29ZZSptS+wCDYVDe6fkajoweAFqGdKPIAKWnz+Yg5oFAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU/R2vvVH+73B5vSKZ05rEtyQ5XlcwHwYDVR0j BBgwFoAUmyLBnYQuRaqEQ5NmaU5MgowwnO4wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4ODU1MzEyOTcyMTg1OS8wLzlCMjJDMTlEODQyRTQ1QUE4NDQzOTM2NjY5NEU0 QzgyOEMzMDlDRUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUIyMkMxOUQ4NDJFNDVBQTg0NDM5MzY2Njk0RTRDODI4QzMwOUNFRS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTg4NTUzMTI5NzIxODU5LzAvMzIzNzJlMzAyZTMy MzEzMjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDM2MzMzNjM3Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIbANQwDQYJKoZIhvcNAQELBQADggEBAIMNmavPZ78Q+JS4mSh1fMIDeaA73vis vd5Qq1KzQ+V/P0kXe6HUzVjyecWXpQhulJ3ZcwxxZEdsprbwfTMNcioAGj7ujSAc dG9WZF+y6ei7jN9K5UYOFkBv247hJ1QkCjvq/3XK/V5imHf+TWScdnWEUSMtfuvs tYB5HqQZ1oLTEV1x2vVev0NaDu1xrmtlgWzi7sZJVKSqLUIRZAO63YQHzLoKhCVr EmgXAwY//uKkWMZz6/sOAar8ZR4sJraT4ondADAufnsKVt0E3sJ0vhYnLu1Dh5yX Xjwgq3jR9EHohspHl1hxTnAlHdGHc3rqeytX5fMzOs9VMvErPPWitPs= -----END CERTIFICATE-----Generated at Sun Jan 25 17:16:15 2026 by rpki-client