This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065591683061972994/0/3135372e36362e34322e302f32332d3233203d3e20323039323432.roa File: 3135372e36362e34322e302f32332d3233203d3e20323039323432.roa (raw, json) Hash identifier: HIHD4+vJEqN67iNJaPRj3O/8PeBUKrUaC2/UlqKhO0A= Subject key identifier: FD:20:C4:D3:68:1B:76:71:D8:56:13:52:00:DB:AD:BC:BB:CF:FD:DE Certificate issuer: /CN=7FC5418B4A590DF15355E167B7AFC0FF7C905516 Certificate serial: 709D1AFE2D3D35E78AE61ED0166330B4C9118A14 Authority key identifier: 7F:C5:41:8B:4A:59:0D:F1:53:55:E1:67:B7:AF:C0:FF:7C:90:55:16 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7FC5418B4A590DF15355E167B7AFC0FF7C905516.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065591683061972994/0/3135372e36362e34322e302f32332d3233203d3e20323039323432.roa Signing time: Tue 20 Jan 2026 02:09:29 +0000 ROA not before: Tue 20 Jan 2026 02:04:29 +0000 ROA not after: Tue 19 Jan 2027 02:09:29 +0000 asID: 209242 IP address blocks: 157.66.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065591683061972994/0/7FC5418B4A590DF15355E167B7AFC0FF7C905516.crl rsync://rpki-rps.cnnic.cn/repo/A1065591683061972994/0/7FC5418B4A590DF15355E167B7AFC0FF7C905516.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7FC5418B4A590DF15355E167B7AFC0FF7C905516.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/CB0214A5C404D6F840433B120CACBB5B8C59E613.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ywIUpcQE1vhAQzsSDKy7W4xZ5hM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 16:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:9d:1a:fe:2d:3d:35:e7:8a:e6:1e:d0:16:63:30:b4:c9:11:8a:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FC5418B4A590DF15355E167B7AFC0FF7C905516 Validity Not Before: Jan 20 02:04:29 2026 GMT Not After : Jan 19 02:09:29 2027 GMT Subject: CN=FD20C4D3681B7671D856135200DBADBCBBCFFDDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:12:50:50:f4:70:b8:df:0f:27:5c:67:d8:e9: dd:3b:7a:ae:36:b8:ab:f7:5f:60:f6:94:af:92:11: 85:1d:f3:1f:35:3d:cc:b5:6a:5c:cd:50:fd:d9:1a: bb:9d:c3:d8:b3:92:0c:4c:4e:32:9f:f0:18:ee:81: 59:af:f2:52:95:3e:5e:8f:16:9f:5a:c5:3b:6b:29: e2:2c:46:78:c9:3f:72:dc:8d:d5:99:d7:09:60:de: 97:c1:ae:cd:0c:34:91:fe:4e:10:09:54:16:8c:7b: c0:ad:86:e8:f0:74:78:fe:de:63:6c:ef:f5:c9:22: 7a:ba:d0:8b:9c:4d:84:87:bf:f7:c5:57:8d:3e:31: 43:df:f3:97:b4:70:00:85:ab:de:10:57:42:6f:60: fa:86:46:fd:b7:11:79:29:d8:4e:f2:66:be:79:f3: d6:3b:d3:38:4d:63:8f:99:f1:1a:75:38:6f:76:d7: 0d:38:8d:32:64:bc:4f:e0:d2:40:4d:dd:f7:f1:f3: 20:d4:14:a8:64:cd:40:2d:b6:71:26:19:38:b0:c6: 7e:64:09:2b:c8:b2:b3:c0:9e:7a:a7:c5:20:1c:2b: 5e:96:72:2c:75:d8:a5:40:62:36:cc:c4:79:72:9f: 70:21:84:80:3d:3d:f9:c0:c8:2e:3a:12:ff:6d:f7: 74:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:20:C4:D3:68:1B:76:71:D8:56:13:52:00:DB:AD:BC:BB:CF:FD:DE X509v3 Authority Key Identifier: keyid:7F:C5:41:8B:4A:59:0D:F1:53:55:E1:67:B7:AF:C0:FF:7C:90:55:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061972994/0/7FC5418B4A590DF15355E167B7AFC0FF7C905516.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/0/7FC5418B4A590DF15355E167B7AFC0FF7C905516.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065591683061972994/0/3135372e36362e34322e302f32332d3233203d3e20323039323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.42.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:2f:13:31:13:55:6d:77:2a:b9:7d:99:4e:82:cd:bd:34:85: 4e:6f:59:37:29:75:75:12:10:20:9a:b0:c1:82:42:76:89:b7: 00:4f:bb:2d:3a:6c:e0:07:94:91:90:32:b9:8d:a8:ba:d6:31: 07:a9:b2:42:10:f0:ea:ea:54:65:a9:5d:b5:12:e6:f2:f5:e0: c6:3c:9f:fe:ef:43:1d:1c:8f:78:ff:97:25:45:80:9c:1d:5c: 09:a2:1d:ba:d1:f9:15:c5:fe:d0:2a:02:54:98:5e:33:6f:7d: 45:c9:18:3f:2c:48:49:8e:58:50:92:64:fb:a7:44:9c:4b:f0: 05:51:e0:c8:f6:91:ae:5c:b0:03:9b:6d:7c:e0:fd:8a:ec:d4: 46:1d:e2:d3:b8:60:ac:ab:79:67:20:cb:b5:61:65:70:b5:f2: c0:20:42:29:6f:04:3e:1e:15:b7:b9:3a:d2:9d:b0:bb:6b:cd: af:88:dd:4e:6f:a0:03:8a:93:b3:f5:21:17:7d:b5:c3:1b:6c: 35:f2:cb:a4:30:05:d6:48:2d:ce:cc:6a:11:ae:a5:72:83:0d: fe:83:29:77:4a:d0:eb:99:4a:d2:50:47:20:c8:d7:7e:96:e2: 71:68:b7:f9:06:83:9e:a2:51:7e:17:94:5b:0d:a9:48:5d:13: a1:fc:89:2c -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUcJ0a/i09NeeK5h7QFmMwtMkRihQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZDNTQxOEI0QTU5MERGMTUzNTVFMTY3QjdBRkMwRkY3 QzkwNTUxNjAeFw0yNjAxMjAwMjA0MjlaFw0yNzAxMTkwMjA5MjlaMDMxMTAvBgNV BAMTKEZEMjBDNEQzNjgxQjc2NzFEODU2MTM1MjAwREJBREJDQkJDRkZEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuElBQ9HC43w8nXGfY6d07eq42 uKv3X2D2lK+SEYUd8x81Pcy1alzNUP3ZGrudw9izkgxMTjKf8BjugVmv8lKVPl6P Fp9axTtrKeIsRnjJP3LcjdWZ1wlg3pfBrs0MNJH+ThAJVBaMe8CthujwdHj+3mNs 7/XJInq60IucTYSHv/fFV40+MUPf85e0cACFq94QV0JvYPqGRv23EXkp2E7yZr55 89Y70zhNY4+Z8Rp1OG921w04jTJkvE/g0kBN3ffx8yDUFKhkzUAttnEmGTiwxn5k CSvIsrPAnnqnxSAcK16Wcix12KVAYjbMxHlyn3AhhIA9PfnAyC46Ev9t93SrAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQU/SDE02gbdnHYVhNSANutvLvP/d4wHwYDVR0j BBgwFoAUf8VBi0pZDfFTVeFnt6/A/3yQVRYwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU5MTY4MzA2MTk3Mjk5NC8wLzdGQzU0MThCNEE1OTBERjE1MzU1RTE2N0I3QUZD MEZGN0M5MDU1MTYuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzAvN0ZDNTQxOEI0QTU5MERGMTUzNTVFMTY3QjdBRkMwRkY3QzkwNTUxNi5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU5MTY4MzA2MTk3Mjk5NC8wLzMxMzUzNzJlMzYz NjJlMzQzMjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMyMzAzOTMyMzQzMi5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAZ1CKjANBgkqhkiG9w0BAQsFAAOCAQEAiy8TMRNVbXcquX2ZToLNvTSF Tm9ZNyl1dRIQIJqwwYJCdom3AE+7LTps4AeUkZAyuY2outYxB6myQhDw6upUZald tRLm8vXgxjyf/u9DHRyPeP+XJUWAnB1cCaIdutH5FcX+0CoCVJheM299RckYPyxI SY5YUJJk+6dEnEvwBVHgyPaRrlywA5ttfOD9iuzURh3i07hgrKt5ZyDLtWFlcLXy wCBCKW8EPh4Vt7k60p2wu2vNr4jdTm+gA4qTs/UhF321wxtsNfLLpDAF1kgtzsxq Ea6lcoMN/oMpd0rQ65lK0lBHIMjXfpbicWi3+QaDnqJRfheUWw2pSF0TofyJLA== -----END CERTIFICATE-----Generated at Sun Jan 25 09:40:45 2026 by rpki-client