This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/121/p5e6uyCFfVpDwOZYwmIjPJj2ZqY.roa File: p5e6uyCFfVpDwOZYwmIjPJj2ZqY.roa (raw, json) Hash identifier: UqfIQtOs/5RQwBgOxogb+2FTcwxu4gPzGvTCdaAdTQY= Subject key identifier: A7:97:BA:BB:20:85:7D:5A:43:C0:E6:58:C2:62:23:3C:98:F6:66:A6 Certificate issuer: /CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Certificate serial: 214D Authority key identifier: 82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/p5e6uyCFfVpDwOZYwmIjPJj2ZqY.roa Signing time: Fri 05 Dec 2025 02:36:39 +0000 ROA not before: Fri 05 Dec 2025 02:36:39 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 24147 IP address blocks: 203.86.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 09:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8525 (0x214d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82E0162ABA80BBE8B4E1F963BB45B64729344FA1 Validity Not Before: Dec 5 02:36:39 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=A797BABB20857D5A43C0E658C262233C98F666A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e8:19:d1:af:93:dd:ee:f9:e7:84:3f:48:d7: 80:b0:3e:a1:09:8b:41:0a:41:f5:9e:f2:12:69:16: b9:7f:e8:ac:aa:e9:d3:6b:01:09:24:00:42:e2:8d: 91:2d:1d:06:a0:c8:36:45:75:03:15:1c:a5:d4:46: 99:fe:e0:41:43:21:4b:8b:9c:80:c9:8d:33:a4:29: f9:95:63:ad:32:18:33:5c:22:dc:24:af:11:72:15: 07:e6:03:a4:61:5f:52:be:f4:b5:e6:c5:9f:85:b8: fc:ca:85:89:a7:4b:15:d1:3d:5b:5e:53:95:e0:39: 1e:47:f7:5b:fc:2a:96:c1:36:fe:e5:cf:6c:68:fd: 2f:63:ca:59:98:66:3f:c2:a1:b8:e5:2e:39:d4:17: 02:2c:fd:f6:0b:30:05:ba:22:fb:13:66:91:ab:0a: 5a:27:26:93:ae:45:88:ba:a1:44:19:95:5b:eb:85: fa:d5:d8:64:1c:cc:93:b3:8e:7f:4d:75:ec:40:90: 8e:29:e1:fb:78:ea:49:d4:43:d2:7d:25:b7:6e:04: 18:a8:a3:8c:87:38:e4:42:d6:ee:fb:2d:fe:62:f7: ad:6f:0e:4b:fd:c3:e7:d3:36:48:ef:a1:4e:b6:46: 34:32:4d:5e:f8:e0:9d:aa:56:a7:eb:d4:01:5e:11: 5f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:97:BA:BB:20:85:7D:5A:43:C0:E6:58:C2:62:23:3C:98:F6:66:A6 X509v3 Authority Key Identifier: keyid:82:E0:16:2A:BA:80:BB:E8:B4:E1:F9:63:BB:45:B6:47:29:34:4F:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/guAWKrqAu-i04flju0W2Ryk0T6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/guAWKrqAu-i04flju0W2Ryk0T6E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/121/p5e6uyCFfVpDwOZYwmIjPJj2ZqY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.86.60.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:c6:b5:aa:19:37:0c:be:56:39:e9:a5:63:49:85:1b:21:33: 12:5e:c5:ad:5c:db:89:fc:7f:c6:f2:5a:1f:31:3d:91:70:c0: 75:64:db:e0:0b:d4:b7:6b:f6:78:5e:df:a1:7c:99:b6:32:b8: 31:ec:1a:f7:e3:6d:df:e0:26:7e:7a:2d:5a:9a:9a:17:95:77: 76:cf:f5:7d:85:6f:ba:ec:e3:28:45:4e:d4:30:20:44:85:35: 7c:03:3f:4f:8f:b8:d1:c3:28:84:ee:c2:da:d0:60:44:01:e1: b1:38:6b:c9:f6:e6:a5:8a:1c:9d:50:73:24:61:d8:88:a2:a6: 64:6d:9a:42:75:ce:0f:8e:5a:78:28:87:6c:cb:66:2e:03:1c: 0d:aa:89:fc:d8:51:85:b5:9a:4b:c4:32:c1:b3:bf:86:79:89: 7d:1d:a4:18:1a:1a:e8:90:2b:e3:d6:96:10:42:98:3b:4e:e8: ee:56:0b:28:c5:d8:c8:9f:c0:f1:9d:07:68:b5:d0:a8:cf:9a: 21:ff:02:bf:e4:c1:d3:16:e5:5b:32:dc:8b:ce:27:00:49:4f: 5c:80:12:86:68:21:d1:1f:9f:08:bd:9e:db:b5:66:7a:f3:87: ab:d8:5f:27:99:a5:0b:fe:95:6b:06:3d:14:bb:83:4f:29:38: 9c:a3:23:41 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIU0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODJF MDE2MkFCQTgwQkJFOEI0RTFGOTYzQkI0NUI2NDcyOTM0NEZBMTAeFw0yNTEyMDUw MjM2MzlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEE3OTdCQUJCMjA4NTdE NUE0M0MwRTY1OEMyNjIyMzNDOThGNjY2QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA6BnRr5Pd7vnnhD9I14CwPqEJi0EKQfWe8hJpFrl/6Kyq6dNr AQkkAELijZEtHQagyDZFdQMVHKXURpn+4EFDIUuLnIDJjTOkKfmVY60yGDNcItwk rxFyFQfmA6RhX1K+9LXmxZ+FuPzKhYmnSxXRPVteU5XgOR5H91v8KpbBNv7lz2xo /S9jylmYZj/CobjlLjnUFwIs/fYLMAW6IvsTZpGrClonJpOuRYi6oUQZlVvrhfrV 2GQczJOzjn9NdexAkI4p4ft46knUQ9J9JbduBBioo4yHOORC1u77Lf5i961vDkv9 w+fTNkjvoU62RjQyTV744J2qVqfr1AFeEV8vAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUp5e6uyCFfVpDwOZYwmIjPJj2ZqYwHwYDVR0jBBgwFoAUguAWKrqAu+i04flj u0W2Ryk0T6EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIx L2d1QVdLcnFBdS1pMDRmbGp1MFcyUnlrMFQ2RS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZ3VBV0tycUF1LWkwNGZsanUwVzJSeWswVDZFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIxL3A1ZTZ1eUNGZlZwRHdP Wll3bUlqUEpqMlpxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLVjwwDQYJKoZIhvcNAQELBQADggEBABvGtaoZNwy+VjnppWNJhRshMxJexa1c 24n8f8byWh8xPZFwwHVk2+AL1Ldr9nhe36F8mbYyuDHsGvfjbd/gJn56LVqamheV d3bP9X2Fb7rs4yhFTtQwIESFNXwDP0+PuNHDKITuwtrQYEQB4bE4a8n25qWKHJ1Q cyRh2IiipmRtmkJ1zg+OWngoh2zLZi4DHA2qifzYUYW1mkvEMsGzv4Z5iX0dpBga GuiQK+PWlhBCmDtO6O5WCyjF2MifwPGdB2i10KjPmiH/Ar/kwdMW5Vsy3IvOJwBJ T1yAEoZoIdEfnwi9ntu1Znrzh6vYXyeZpQv+lWsGPRS7g08pOJyjI0E= -----END CERTIFICATE-----Generated at Sun Dec 7 08:34:06 2025 by rpki-client