This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/121/Ta_itm9cCwLMDRPIADeBG6S47y8.roa File: Ta_itm9cCwLMDRPIADeBG6S47y8.roa (raw, json) Hash identifier: e2n1k/hDBPrm8VUTWum5XntniMTtDYm7llBQxjUHYg8= Subject key identifier: 4D:AF:E2:B6:6F:5C:0B:02:CC:0D:13:C8:00:37:81:1B:A4:B8:EF:2F Certificate issuer: /CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Certificate serial: 215B Authority key identifier: 82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/Ta_itm9cCwLMDRPIADeBG6S47y8.roa Signing time: Fri 05 Dec 2025 02:36:42 +0000 ROA not before: Fri 05 Dec 2025 02:36:42 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 24147 IP address blocks: 203.86.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 09:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8539 (0x215b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Validity Not Before: Dec 5 02:36:42 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4DAFE2B66F5C0B02CC0D13C80037811BA4B8EF2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:7b:1a:00:e8:f2:5a:da:56:48:88:58:97: 11:00:b9:f9:47:7b:6f:2e:57:80:ee:2a:47:f7:a1: d3:26:da:4f:d0:7a:7a:1b:ec:2f:1c:90:da:6e:f6: c5:a3:45:dc:05:ce:e6:31:13:37:91:e2:4f:eb:1a: 21:88:ce:e7:ad:97:2d:c7:a0:70:fc:6d:b8:79:da: 15:fb:8b:32:4d:b0:27:05:d8:24:2c:b8:9d:56:33: 5e:3b:22:ff:31:45:7d:55:8a:45:ac:c1:63:b5:b9: bb:8f:6a:6f:59:98:e5:4a:28:cf:74:fb:d8:89:ff: bc:e0:53:2e:b7:6f:b2:ff:5d:57:6e:ea:35:2f:9a: 2c:f9:a0:20:a5:2e:3a:dd:f0:e8:bc:92:00:31:05: 99:c5:3d:36:5c:f6:f7:9f:ec:96:d3:96:07:22:70: 15:5a:3e:e5:fb:17:48:e2:16:19:dc:40:2b:4f:95: d5:34:29:92:31:ee:90:ba:35:e0:f6:62:05:ae:2b: 60:06:09:40:36:20:b4:0a:a7:bf:60:32:85:b9:d8: 79:e9:f8:4c:a6:62:bb:57:56:76:32:49:3a:1d:00: e0:32:91:d9:d8:df:2c:f8:1c:0a:7c:b8:dc:91:82: 2d:c1:ae:34:f9:28:b1:cc:9d:6e:43:ad:2c:69:f4: 47:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:AF:E2:B6:6F:5C:0B:02:CC:0D:13:C8:00:37:81:1B:A4:B8:EF:2F X509v3 Authority Key Identifier: keyid:82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/Ta_itm9cCwLMDRPIADeBG6S47y8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.86.52.0/24 Signature Algorithm: sha256WithRSAEncryption 76:70:e1:cd:6b:f9:64:82:c7:49:68:2b:4c:ff:fe:76:eb:ed: 82:ba:ec:00:37:b6:ea:83:a0:86:74:fa:1c:0a:70:b3:90:f0: a7:a2:f9:30:bc:ca:e5:2b:18:e0:3d:21:0e:2f:08:9b:c7:c3: 8b:5e:b2:30:fd:a1:c7:78:1b:74:1c:1a:5d:7a:af:25:dd:ac: 33:01:c8:ea:89:a0:1b:35:86:37:da:f1:97:f1:6e:21:b5:fc: a1:11:89:4d:b4:a1:42:a3:5f:f6:38:63:46:d0:9d:1d:8d:a0: d4:ed:cd:81:a1:75:00:ef:c3:5f:46:41:42:b4:5f:e6:a1:37: 71:2f:93:ba:3a:8d:10:37:cb:d1:1d:a6:d7:f0:4f:13:97:f8: 51:23:a0:53:f0:b0:ac:63:59:ed:52:52:10:d9:06:d6:e8:87: 58:25:c9:dc:85:e9:c6:a1:a7:89:45:09:eb:e5:f6:5a:3a:01: 75:bf:9c:93:80:98:53:0d:b8:7a:76:4a:2c:52:28:42:ae:8d: 95:ac:c4:fb:bd:01:31:0c:23:38:c3:78:0e:ac:bb:eb:63:f5: fb:94:25:75:aa:e2:0b:63:0c:5f:4b:e4:2f:ec:54:c6:0d:e5: 5d:44:66:96:80:6d:95:d7:94:f4:32:26:d7:84:a4:f8:88:51: 4e:1a:e3:3f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODJF MDE2MkFCQTgwQkJFOEI0RTFGOTYzQkI0NUI2NDcyOTM0NEZBMTAeFw0yNTEyMDUw MjM2NDJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDREQUZFMkI2NkY1QzBC MDJDQzBEMTNDODAwMzc4MTFCQTRCOEVGMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLeXsaAOjyWtpWSIhYlxEAuflHe28uV4DuKkf3odMm2k/Qenob 7C8ckNpu9sWjRdwFzuYxEzeR4k/rGiGIzuetly3HoHD8bbh52hX7izJNsCcF2CQs uJ1WM147Iv8xRX1VikWswWO1ubuPam9ZmOVKKM90+9iJ/7zgUy63b7L/XVdu6jUv miz5oCClLjrd8Oi8kgAxBZnFPTZc9vef7JbTlgcicBVaPuX7F0jiFhncQCtPldU0 KZIx7pC6NeD2YgWuK2AGCUA2ILQKp79gMoW52Hnp+EymYrtXVnYySTodAOAykdnY 3yz4HAp8uNyRgi3BrjT5KLHMnW5DrSxp9Ed1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUTa/itm9cCwLMDRPIADeBG6S47y8wHwYDVR0jBBgwFoAUguAWKrqAu+i04flj u0W2Ryk0T6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIx L2d1QVdLcnFBdS1pMDRmbGp1MFcyUnlrMFQ2RS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZ3VBV0tycUF1LWkwNGZsanUwVzJSeWswVDZFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIxL1RhX2l0bTljQ3dMTURS UElBRGVCRzZTNDd5OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLVjQwDQYJKoZIhvcNAQELBQADggEBAHZw4c1r+WSCx0loK0z//nbr7YK67AA3 tuqDoIZ0+hwKcLOQ8Kei+TC8yuUrGOA9IQ4vCJvHw4tesjD9ocd4G3QcGl16ryXd rDMByOqJoBs1hjfa8ZfxbiG1/KERiU20oUKjX/Y4Y0bQnR2NoNTtzYGhdQDvw19G QUK0X+ahN3Evk7o6jRA3y9EdptfwTxOX+FEjoFPwsKxjWe1SUhDZBtboh1glydyF 6cahp4lFCevl9lo6AXW/nJOAmFMNuHp2SixSKEKujZWsxPu9ATEMIzjDeA6su+tj 9fuUJXWq4gtjDF9L5C/sVMYN5V1EZpaAbZXXlPQyJteEpPiIUU4a4z8= -----END CERTIFICATE-----Generated at Sun Dec 7 08:29:18 2025 by rpki-client