This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/121/TgaC8usR8mFNmSTO2xTS0Y95_kk.roa File: TgaC8usR8mFNmSTO2xTS0Y95_kk.roa (raw, json) Hash identifier: Jlkjs7rBGmWQWYqxRd92AzlzxKWZvw5TnHgmNoVDdfU= Subject key identifier: 4E:06:82:F2:EB:11:F2:61:4D:99:24:CE:DB:14:D2:D1:8F:79:FE:49 Certificate issuer: /CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Certificate serial: 2155 Authority key identifier: 82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/TgaC8usR8mFNmSTO2xTS0Y95_kk.roa Signing time: Fri 05 Dec 2025 02:36:41 +0000 ROA not before: Fri 05 Dec 2025 02:36:41 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 24147 IP address blocks: 203.86.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 09:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8533 (0x2155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Validity Not Before: Dec 5 02:36:41 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4E0682F2EB11F2614D9924CEDB14D2D18F79FE49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9e:a0:60:1a:5b:47:50:8a:8e:7e:b4:e6:b9: 62:42:7e:f8:8d:4b:e1:1b:99:50:c8:82:8c:ac:81: 7a:ca:49:0c:f2:15:18:8f:b7:db:cd:8d:d5:a5:11: 7c:63:b1:15:1f:d3:b3:d7:08:35:c7:3f:16:89:72: 4d:47:33:36:37:c6:95:62:7c:29:76:1b:1f:13:05: 5e:a8:a9:f6:b4:0b:92:73:e8:c1:3a:14:ec:fb:8a: 3f:40:50:d9:3d:9d:6f:e7:55:aa:cd:d1:7c:6a:b1: d5:34:0d:54:b9:84:86:45:a8:24:6a:f2:a6:39:f1: 64:f2:e5:29:75:0c:0f:d2:2a:82:c0:86:af:84:63: 73:93:6b:da:f1:16:ee:62:1c:4b:9a:72:0e:58:19: 7d:bb:c7:10:a7:f3:29:bf:f0:20:42:3d:64:95:d6: 9b:aa:d0:29:f4:ba:12:9f:8f:4b:6e:ed:72:43:02: e4:a5:15:fa:5a:17:43:a1:3d:8e:e7:3e:02:52:f4: e3:0f:0f:f0:3b:04:fc:2d:00:56:44:73:87:7a:64: e7:14:ac:48:db:ba:e6:93:ee:d8:7d:74:1c:42:4c: 07:14:07:46:43:e7:5a:9c:77:c0:6e:73:7e:7c:f9: 64:7d:7e:66:b2:db:75:4b:35:13:e4:1c:7f:d7:6a: cd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:06:82:F2:EB:11:F2:61:4D:99:24:CE:DB:14:D2:D1:8F:79:FE:49 X509v3 Authority Key Identifier: keyid:82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/TgaC8usR8mFNmSTO2xTS0Y95_kk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.86.54.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:5a:ab:fa:64:fd:88:c1:e0:ce:1c:36:01:b5:26:ea:bb:70: 5a:6b:dc:71:9c:e7:ed:59:a1:e6:6f:60:69:c7:46:1c:b4:f1: 5f:0b:4e:30:ef:48:ee:57:3b:dd:1a:79:e9:26:03:c1:00:57: ca:5b:f9:ad:e8:b7:52:26:35:e2:55:f2:a7:3d:ee:ba:2c:92: 6f:8e:75:59:5c:60:50:6b:10:78:fc:ff:18:1d:5b:b9:ce:54: 10:58:1d:a8:53:4e:69:55:cb:18:55:90:9e:04:5d:e6:d2:11: 8f:6c:a0:ee:0a:32:5a:84:1b:bc:52:13:d5:1f:94:81:4d:45: 25:f3:98:9a:f8:b6:67:e0:80:53:0e:95:e5:dd:2b:46:0b:83: 8d:cd:4c:46:7d:1b:ad:c6:c2:8f:5d:13:85:f9:3e:83:cf:68: 9d:09:c8:22:90:ae:2e:11:c7:66:29:58:b7:26:da:91:06:64: 17:33:d9:f4:b3:9a:4a:c4:e2:3a:90:57:ae:81:17:2d:39:b7: 4a:74:cc:43:bd:4a:cd:11:e2:59:6f:12:a2:e0:24:bf:a0:e9: 30:74:2b:e7:a4:71:3b:76:4f:c3:af:00:d1:82:89:9e:2b:55: 77:ab:8a:e2:fb:c4:ab:f5:aa:e7:9d:9a:33:c8:88:67:c5:55: a5:b3:84:56 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODJF MDE2MkFCQTgwQkJFOEI0RTFGOTYzQkI0NUI2NDcyOTM0NEZBMTAeFw0yNTEyMDUw MjM2NDFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDRFMDY4MkYyRUIxMUYy NjE0RDk5MjRDRURCMTREMkQxOEY3OUZFNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCznqBgGltHUIqOfrTmuWJCfviNS+EbmVDIgoysgXrKSQzyFRiP t9vNjdWlEXxjsRUf07PXCDXHPxaJck1HMzY3xpVifCl2Gx8TBV6oqfa0C5Jz6ME6 FOz7ij9AUNk9nW/nVarN0XxqsdU0DVS5hIZFqCRq8qY58WTy5Sl1DA/SKoLAhq+E Y3OTa9rxFu5iHEuacg5YGX27xxCn8ym/8CBCPWSV1puq0Cn0uhKfj0tu7XJDAuSl FfpaF0OhPY7nPgJS9OMPD/A7BPwtAFZEc4d6ZOcUrEjbuuaT7th9dBxCTAcUB0ZD 51qcd8Buc358+WR9fmay23VLNRPkHH/Xas2JAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUTgaC8usR8mFNmSTO2xTS0Y95/kkwHwYDVR0jBBgwFoAUguAWKrqAu+i04flj u0W2Ryk0T6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIx L2d1QVdLcnFBdS1pMDRmbGp1MFcyUnlrMFQ2RS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZ3VBV0tycUF1LWkwNGZsanUwVzJSeWswVDZFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIxL1RnYUM4dXNSOG1GTm1T VE8yeFRTMFk5NV9ray5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLVjYwDQYJKoZIhvcNAQELBQADggEBAIpaq/pk/YjB4M4cNgG1Juq7cFpr3HGc 5+1ZoeZvYGnHRhy08V8LTjDvSO5XO90aeekmA8EAV8pb+a3ot1ImNeJV8qc97ros km+OdVlcYFBrEHj8/xgdW7nOVBBYHahTTmlVyxhVkJ4EXebSEY9soO4KMlqEG7xS E9UflIFNRSXzmJr4tmfggFMOleXdK0YLg43NTEZ9G63Gwo9dE4X5PoPPaJ0JyCKQ ri4Rx2YpWLcm2pEGZBcz2fSzmkrE4jqQV66BFy05t0p0zEO9Ss0R4llvEqLgJL+g 6TB0K+ekcTt2T8OvANGCiZ4rVXeriuL7xKv1quedmjPIiGfFVaWzhFY= -----END CERTIFICATE-----Generated at Sun Dec 7 08:34:07 2025 by rpki-client