This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/121/4YOzomKcJUXAFw9fKmEbyIc_I_E.roa File: 4YOzomKcJUXAFw9fKmEbyIc_I_E.roa (raw, json) Hash identifier: xlrCviDFUJgMiG0Z3VPRhgttohoFYmMqntpCxYLbY14= Subject key identifier: E1:83:B3:A2:62:9C:25:45:C0:17:0F:5F:2A:61:1B:C8:87:3F:23:F1 Certificate issuer: /CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Certificate serial: 214C Authority key identifier: 82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/4YOzomKcJUXAFw9fKmEbyIc_I_E.roa Signing time: Fri 05 Dec 2025 02:36:39 +0000 ROA not before: Fri 05 Dec 2025 02:36:39 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 24147 IP address blocks: 203.86.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 09:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8524 (0x214c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Validity Not Before: Dec 5 02:36:39 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E183B3A2629C2545C0170F5F2A611BC8873F23F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:3b:74:d3:f6:67:fd:0b:a7:72:bc:04:2a: 3f:fb:d0:a1:79:f5:cc:fb:df:f0:98:50:ba:97:fe: 89:5d:cb:d7:d7:72:91:91:98:72:3a:fd:94:40:f4: 63:54:ea:0e:0d:89:0c:a6:d3:aa:67:a3:82:39:4f: ba:48:1c:fc:14:50:1a:04:b3:40:40:f2:31:1a:ab: c9:bd:ef:c3:88:6d:ab:4a:11:20:0e:89:5a:16:33: fa:77:28:a2:30:c8:4d:6e:2f:a7:51:e0:e2:4c:25: 8d:15:e4:3b:34:60:9e:47:99:f7:bf:ad:90:b5:e5: 18:6e:68:e2:be:de:3b:f8:81:8b:91:36:bb:a5:6a: d9:c5:c2:f3:14:15:26:ad:f8:80:20:32:4f:93:0f: a7:90:1a:19:bf:bd:6b:dd:08:bc:ed:ca:1b:bc:ff: ec:6d:0c:d5:e1:08:92:8a:3f:19:5f:69:9f:0e:10: 0d:b3:37:b3:04:85:43:14:69:c6:fc:f0:5d:fd:61: 85:25:f3:3c:06:68:a4:28:7d:ff:7b:9f:5d:c5:7e: ab:9a:98:d2:92:59:66:65:a8:57:c5:c7:44:8b:80: a9:43:49:41:3b:82:09:07:d8:56:82:05:79:d0:cd: 86:db:20:9a:fe:b1:da:9d:a8:be:12:2a:cb:b3:42: c8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:83:B3:A2:62:9C:25:45:C0:17:0F:5F:2A:61:1B:C8:87:3F:23:F1 X509v3 Authority Key Identifier: keyid:82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/4YOzomKcJUXAFw9fKmEbyIc_I_E.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.86.49.0/24 Signature Algorithm: sha256WithRSAEncryption b0:54:99:96:93:9c:b8:1f:9c:95:1b:e4:56:40:28:fc:ec:18: eb:e8:a6:6d:57:c4:80:69:82:42:e3:c1:8c:75:e1:f8:42:86: c5:ab:99:e4:43:2a:f8:86:ce:c8:55:ae:b3:a9:94:2e:c0:89: 2f:3e:57:7f:e6:22:74:bb:9a:43:98:cf:0e:65:f1:d2:e0:59: 55:bf:ed:a5:d1:b7:0e:fb:ca:8c:c4:49:ce:1f:74:a2:30:9d: 26:bd:37:0c:3d:18:3c:52:60:e4:5e:4a:45:2c:c3:51:a0:50: c0:65:65:56:d2:6a:22:bc:ca:6d:8c:b3:d0:43:a1:47:e1:9d: 0e:f8:6e:89:8a:0f:0f:f8:95:bd:fb:9f:7e:68:f0:20:7b:aa: 75:fe:b1:50:bd:e7:ef:4a:df:ed:10:12:20:3e:8b:30:bc:0e: a5:0a:8b:42:80:be:8c:ec:ae:44:f0:87:6c:fd:ab:03:00:c3: 95:66:a9:b2:bf:cb:1e:55:aa:5c:b9:0f:9a:de:bc:73:cf:d9: e5:7c:59:45:43:d6:b9:68:a6:5c:d0:9b:2b:c0:70:d4:e4:4d: dd:8d:ea:48:e1:a7:31:db:4a:1e:ca:a2:5d:87:03:0c:8b:62: 78:10:56:1b:b4:c7:07:80:0e:91:e4:5e:19:d4:5d:f2:c2:8c: fa:b4:e5:00 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIUwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODJF MDE2MkFCQTgwQkJFOEI0RTFGOTYzQkI0NUI2NDcyOTM0NEZBMTAeFw0yNTEyMDUw MjM2MzlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEUxODNCM0EyNjI5QzI1 NDVDMDE3MEY1RjJBNjExQkM4ODczRjIzRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmOzt00/Zn/QuncrwEKj/70KF59cz73/CYULqX/oldy9fXcpGR mHI6/ZRA9GNU6g4NiQym06pno4I5T7pIHPwUUBoEs0BA8jEaq8m978OIbatKESAO iVoWM/p3KKIwyE1uL6dR4OJMJY0V5Ds0YJ5Hmfe/rZC15RhuaOK+3jv4gYuRNrul atnFwvMUFSat+IAgMk+TD6eQGhm/vWvdCLztyhu8/+xtDNXhCJKKPxlfaZ8OEA2z N7MEhUMUacb88F39YYUl8zwGaKQoff97n13FfquamNKSWWZlqFfFx0SLgKlDSUE7 ggkH2FaCBXnQzYbbIJr+sdqdqL4SKsuzQsiXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU4YOzomKcJUXAFw9fKmEbyIc/I/EwHwYDVR0jBBgwFoAUguAWKrqAu+i04flj u0W2Ryk0T6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIx L2d1QVdLcnFBdS1pMDRmbGp1MFcyUnlrMFQ2RS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZ3VBV0tycUF1LWkwNGZsanUwVzJSeWswVDZFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIxLzRZT3pvbUtjSlVYQUZ3 OWZLbUVieUljX0lfRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLVjEwDQYJKoZIhvcNAQELBQADggEBALBUmZaTnLgfnJUb5FZAKPzsGOvopm1X xIBpgkLjwYx14fhChsWrmeRDKviGzshVrrOplC7AiS8+V3/mInS7mkOYzw5l8dLg WVW/7aXRtw77yozESc4fdKIwnSa9Nww9GDxSYOReSkUsw1GgUMBlZVbSaiK8ym2M s9BDoUfhnQ74bomKDw/4lb37n35o8CB7qnX+sVC95+9K3+0QEiA+izC8DqUKi0KA vozsrkTwh2z9qwMAw5VmqbK/yx5Vqly5D5revHPP2eV8WUVD1rloplzQmyvAcNTk Td2N6kjhpzHbSh7Kol2HAwyLYngQVhu0xweADpHkXhnUXfLCjPq05QA= -----END CERTIFICATE-----Generated at Sun Dec 7 08:29:16 2025 by rpki-client