This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/zgJJuefVZubL61d9djs8y7Gwqy0.cer File: zgJJuefVZubL61d9djs8y7Gwqy0.cer (raw, json) Hash identifier: KR+MH4+HtgXvKsIZv7+hiT0MstjVGJMXEZWoXcZeE9M= Subject key identifier: CE:02:49:B9:E7:D5:66:E6:CB:EB:57:7D:76:3B:3C:CB:B1:B0:AB:2D Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E68E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:27:07 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 24424 IP: 203.208.32.0/19 IP: 2401:3800::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 06:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59022 (0xe68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:27:07 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=CE0249B9E7D566E6CBEB577D763B3CCBB1B0AB2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fa:68:78:94:78:94:44:b1:41:bc:6f:b2:3f: 51:69:7e:2a:c2:c0:0f:d1:5b:4f:e2:fe:a5:17:c6: f8:03:f7:82:05:48:a5:fd:b5:3c:14:91:ce:7e:ac: 3f:eb:f2:d2:35:d6:e6:a7:df:97:05:40:b7:c2:54: f3:3f:29:7b:67:02:a0:f7:91:63:52:0c:30:25:68: 65:5d:3f:71:b2:9f:22:80:1d:48:c8:cc:7f:07:41: c6:cb:78:21:e4:b3:a5:8f:4e:b0:2f:a7:e4:15:d8: a8:65:6f:b2:cc:c2:76:f2:03:45:e6:20:4e:dd:2e: d8:06:2e:2c:0c:9e:58:a2:bd:01:0f:35:e3:96:96: a9:c8:5f:dc:70:d3:94:1e:34:de:94:6c:ca:01:a1: 13:9c:01:8b:7e:f6:8c:a0:a4:8e:a4:e8:80:8c:11: ff:c6:94:d6:bd:a3:44:e4:75:6f:26:2d:c0:08:ac: 73:2f:12:c9:c8:c4:8c:4b:2e:8d:7b:8c:b5:1a:29: 98:11:dd:d1:cc:6a:a1:ed:80:02:94:20:63:33:ca: e2:0e:80:26:3d:b1:98:3a:c8:a6:4c:ae:13:82:c7: fa:26:7a:38:41:84:ea:b1:e8:37:cd:1d:34:7f:d4: 87:22:40:ce:75:c3:49:44:8f:02:cf:4b:cb:d6:45: fc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:02:49:B9:E7:D5:66:E6:CB:EB:57:7D:76:3B:3C:CB:B1:B0:AB:2D X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/332/zgJJuefVZubL61d9djs8y7Gwqy0.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 24424 sbgp-ipAddrBlock: critical IPv4: 203.208.32.0/19 IPv6: 2401:3800::/32 Signature Algorithm: sha256WithRSAEncryption ae:77:44:10:fe:03:2b:55:5f:71:b8:c0:38:94:d0:e6:67:cd: 08:7d:4a:80:70:1a:3f:70:80:84:3d:98:79:27:5a:9e:cb:1e: 2d:8f:93:87:42:e4:07:a4:01:16:68:7d:eb:86:3a:ad:4c:33: d3:30:ff:0e:17:8e:44:8e:89:c2:a9:8a:6a:0e:a5:c9:b9:4e: 23:fc:4c:16:6e:1f:4b:ed:3a:3c:e2:71:52:99:bb:b3:8c:cf: 5a:94:3a:b6:87:d7:36:3a:d4:64:2b:3c:37:76:a9:92:69:e7: ae:6a:ec:02:78:25:20:76:85:89:2c:19:08:c0:ca:50:9a:c1: 5c:c9:e2:a9:dd:de:55:4d:8b:78:f2:69:53:46:c2:ed:8b:65: df:d4:4b:9b:21:39:00:34:3d:c4:db:fe:e2:e5:6f:37:34:4f: ec:51:d8:f2:03:6a:62:c0:5d:4b:b1:34:f9:44:cc:41:98:ae: 30:05:0e:f9:b6:fd:37:a7:ae:21:da:a2:b7:6d:5d:c0:05:bb: ea:53:23:71:7d:c0:a3:a3:27:86:05:65:c7:a9:0b:41:6d:b4: c5:cd:71:a9:bf:24:fa:b5:bb:ab:d9:a6:b0:43:fe:3f:32:1a: a8:ad:5b:95:05:f4:f3:24:ee:c2:36:21:43:70:9a:35:cb:c1: b5:eb:db:4d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIDAOaOMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODI3MDdaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKENFMDI0OUI5RTdENTY2RTZDQkVCNTc3RDc2M0IzQ0NCQjFCMEFC MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl+mh4lHiURLFBvG+y P1FpfirCwA/RW0/i/qUXxvgD94IFSKX9tTwUkc5+rD/r8tI11uan35cFQLfCVPM/ KXtnAqD3kWNSDDAlaGVdP3GynyKAHUjIzH8HQcbLeCHks6WPTrAvp+QV2Khlb7LM wnbyA0XmIE7dLtgGLiwMnliivQEPNeOWlqnIX9xw05QeNN6UbMoBoROcAYt+9oyg pI6k6ICMEf/GlNa9o0TkdW8mLcAIrHMvEsnIxIxLLo17jLUaKZgR3dHMaqHtgAKU IGMzyuIOgCY9sZg6yKZMrhOCx/omejhBhOqx6DfNHTR/1IciQM51w0lEjwLPS8vW RfzTAgMBAAGjggJ9MIICeTAdBgNVHQ4EFgQUzgJJuefVZubL61d9djs8y7Gwqy0w HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMz Mi8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8zMzIvemdKSnVlZlZadWJMNjFkOWRqczh5N0d3cXkwLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAZ BggrBgEFBQcBCAEB/wQKMAigBjAEAgJfaDAuBggrBgEFBQcBBwEB/wQfMB0wDAQC AAEwBgMEBcvQIDANBAIAAjAHAwUAJAE4ADANBgkqhkiG9w0BAQsFAAOCAQEArndE EP4DK1VfcbjAOJTQ5mfNCH1KgHAaP3CAhD2YeSdansseLY+Th0LkB6QBFmh964Y6 rUwz0zD/DheORI6JwqmKag6lyblOI/xMFm4fS+06POJxUpm7s4zPWpQ6tofXNjrU ZCs8N3apkmnnrmrsAnglIHaFiSwZCMDKUJrBXMniqd3eVU2LePJpU0bC7Ytl39RL myE5ADQ9xNv+4uVvNzRP7FHY8gNqYsBdS7E0+UTMQZiuMAUO+bb9N6euIdqit21d wAW76lMjcX3Ao6MnhgVlx6kLQW20xc1xqb8k+rW7q9mmsEP+PzIaqK1blQX08yTu wjYhQ3CaNcvBtevbTQ== -----END CERTIFICATE-----Generated at Sun Jan 25 04:29:19 2026 by rpki-client