This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS25743.roa File: AS25743.roa (raw, json) Hash identifier: jL7OCspekTn5WG0YDVfmdg1IRO40se8eoxW+gIQT9FU= Subject key identifier: 40:25:14:01:75:15:49:55:0E:69:B7:ED:44:DB:00:B0:C0:77:8E:12 Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 501DC4D755BDFDD39F6D7DBED6564F7E622269B3 Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS25743.roa Signing time: Tue 20 Jan 2026 02:15:30 +0000 ROA not before: Tue 20 Jan 2026 02:10:30 +0000 ROA not after: Tue 19 Jan 2027 02:15:30 +0000 asID: 25743 IP address blocks: 45.252.100.0/22 maxlen: 24 45.252.102.0/24 maxlen: 24 45.252.144.0/22 maxlen: 24 103.6.108.0/22 maxlen: 24 103.6.228.0/24 maxlen: 24 103.220.248.0/22 maxlen: 24 103.220.252.0/22 maxlen: 24 103.221.0.0/22 maxlen: 24 103.221.4.0/22 maxlen: 24 103.221.8.0/22 maxlen: 24 103.221.12.0/22 maxlen: 24 103.221.16.0/22 maxlen: 24 103.221.20.0/22 maxlen: 24 103.221.24.0/22 maxlen: 24 103.221.28.0/22 maxlen: 24 103.221.32.0/22 maxlen: 24 103.221.36.0/22 maxlen: 24 103.221.40.0/22 maxlen: 24 103.221.44.0/22 maxlen: 24 103.221.49.0/24 maxlen: 24 103.221.50.0/23 maxlen: 24 103.221.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 20:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:1d:c4:d7:55:bd:fd:d3:9f:6d:7d:be:d6:56:4f:7e:62:22:69:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: Jan 20 02:10:30 2026 GMT Not After : Jan 19 02:15:30 2027 GMT Subject: CN=40251401751549550E69B7ED44DB00B0C0778E12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1f:38:92:e6:d3:bd:b7:66:c0:b4:50:df:7a: 29:61:2e:4a:9c:0c:26:e3:8c:69:09:70:e9:5e:6e: 35:34:52:70:2e:97:9e:0f:46:03:7a:77:37:67:9b: 4b:62:8f:5b:23:7d:03:d1:e7:94:c2:24:bf:87:fa: d9:61:01:13:47:64:34:b8:c7:3c:9b:8c:a7:25:24: 08:66:af:26:c2:71:43:0d:ec:57:b9:b7:85:fd:70: 36:5d:62:cb:99:a5:e5:74:6e:be:64:a6:a0:4b:b5: 6b:9d:0b:dd:c6:15:12:72:26:31:c3:2c:51:c2:2a: 3a:92:bb:06:12:06:dd:41:30:5f:7c:55:13:04:5b: 25:f3:4c:07:ed:e3:4a:d5:cc:b2:c8:24:b6:45:41: a9:42:69:97:1c:14:d4:db:b7:58:b9:14:dd:ea:30: 70:e6:03:48:c3:94:81:73:7b:8a:2f:3c:e6:d3:84: 21:c9:7a:56:f4:12:a2:bf:12:b1:05:b4:35:d0:72: 13:0c:7f:3f:88:95:b1:29:c4:00:e4:45:56:f8:01: 5a:13:1f:6d:2d:94:29:1b:0c:c1:9b:14:cc:ea:9a: 7d:4c:01:71:5d:15:50:a2:cb:e4:e4:2f:28:3f:d2: 04:65:2a:e2:f7:15:3f:c7:90:b8:0e:87:71:e4:17: b4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:25:14:01:75:15:49:55:0E:69:B7:ED:44:DB:00:B0:C0:77:8E:12 X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS25743.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.252.100.0/22 45.252.144.0/22 103.6.108.0/22 103.6.228.0/24 103.220.248.0-103.221.47.255 103.221.49.0-103.221.51.255 103.221.92.0/22 Signature Algorithm: sha256WithRSAEncryption 70:11:22:91:37:cf:33:3f:a2:4c:84:ae:5e:2b:06:6f:4a:63: b2:55:05:8b:b7:53:d8:38:6e:f4:a6:1a:7a:1f:1d:f7:24:90: bd:8e:2f:b8:92:1e:49:c7:e8:17:de:c4:e8:9b:eb:ad:e4:48: 8f:eb:78:9a:7c:91:29:e4:69:65:2f:27:53:9e:c4:0c:cc:84: a8:f5:bc:72:76:a7:69:09:ac:82:33:2b:ab:9d:da:93:c5:d9: 85:cb:55:d7:5c:28:b8:92:c0:e8:1c:42:74:39:e8:13:b7:19: ec:4d:1a:59:4d:02:5b:dd:4b:73:62:22:fc:ec:7b:75:17:05: 0a:a5:86:e0:e7:60:bc:69:ca:ef:1b:92:ac:4d:66:1e:95:01: 93:63:b8:db:de:54:8f:62:9d:08:96:39:c0:03:18:f6:69:31: 2c:f4:a7:28:d2:64:c8:04:c8:a9:a4:9d:1b:66:66:bd:3d:9d: 2e:a3:27:d6:f5:76:56:31:43:dd:6a:b7:19:4c:ca:85:ec:07: 3e:ea:3c:74:57:13:f9:a0:67:90:44:70:84:04:92:30:46:f8: 3d:4d:a3:3d:08:88:66:62:e4:75:4f:13:5d:07:a4:01:dd:05: be:14:d5:23:76:eb:f1:7b:03:8a:02:33:04:98:92:7b:bd:94: 5d:8d:ed:a8 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUUB3E11W9/dOfbX2+1lZPfmIiabMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjAxMjAwMjEwMzBaFw0yNzAxMTkwMjE1MzBaMDMxMTAvBgNV BAMTKDQwMjUxNDAxNzUxNTQ5NTUwRTY5QjdFRDQ0REIwMEIwQzA3NzhFMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClHziS5tO9t2bAtFDfeilhLkqc DCbjjGkJcOlebjU0UnAul54PRgN6dzdnm0tij1sjfQPR55TCJL+H+tlhARNHZDS4 xzybjKclJAhmrybCcUMN7Fe5t4X9cDZdYsuZpeV0br5kpqBLtWudC93GFRJyJjHD LFHCKjqSuwYSBt1BMF98VRMEWyXzTAft40rVzLLIJLZFQalCaZccFNTbt1i5FN3q MHDmA0jDlIFze4ovPObThCHJelb0EqK/ErEFtDXQchMMfz+IlbEpxADkRVb4AVoT H20tlCkbDMGbFMzqmn1MAXFdFVCiy+TkLyg/0gRlKuL3FT/HkLgOh3HkF7TJAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUQCUUAXUVSVUOabftRNsAsMB3jhIwHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzI1NzQzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjBABAIA ATA6AwQCLfxkAwQCLfyQAwQCZwZsAwQAZwbkMAwDBANn3PgDBARn3SAwDAMEAGfd MQMEAmfdMAMEAmfdXDANBgkqhkiG9w0BAQsFAAOCAQEAcBEikTfPMz+iTISuXisG b0pjslUFi7dT2Dhu9KYaeh8d9ySQvY4vuJIeScfoF97E6JvrreRIj+t4mnyRKeRp ZS8nU57EDMyEqPW8cnanaQmsgjMrq53ak8XZhctV11wouJLA6BxCdDnoE7cZ7E0a WU0CW91Lc2Ii/Ox7dRcFCqWG4OdgvGnK7xuSrE1mHpUBk2O4295Uj2KdCJY5wAMY 9mkxLPSnKNJkyATIqaSdG2ZmvT2dLqMn1vV2VjFD3Wq3GUzKhewHPuo8dFcT+aBn kERwhASSMEb4PU2jPQiIZmLkdU8TXQekAd0FvhTVI3br8XsDigIzBJiSe72UXY3t qA== -----END CERTIFICATE-----Generated at Wed Jan 21 12:28:45 2026 by rpki-client