This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS4812.roa File: AS4812.roa (raw, json) Hash identifier: pOmoghD0ExIFLzXl7hIa61iDEtf+bzoFL7dduBmk+Pw= Subject key identifier: 6E:FA:64:FE:13:8F:5E:58:33:D9:97:B2:CA:1E:59:CF:04:33:4A:37 Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 6F43CFC2E7D8A0FBBC4B59CF5FE14705DC72937D Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS4812.roa Signing time: Tue 20 Jan 2026 02:15:29 +0000 ROA not before: Tue 20 Jan 2026 02:10:29 +0000 ROA not after: Tue 19 Jan 2027 02:15:29 +0000 asID: 4812 IP address blocks: 43.254.152.0/24 maxlen: 24 103.5.192.0/22 maxlen: 24 103.5.192.0/23 maxlen: 24 103.5.194.0/24 maxlen: 24 103.24.116.0/24 maxlen: 24 103.24.118.0/23 maxlen: 24 150.242.238.0/23 maxlen: 24 202.89.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 20:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:43:cf:c2:e7:d8:a0:fb:bc:4b:59:cf:5f:e1:47:05:dc:72:93:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: Jan 20 02:10:29 2026 GMT Not After : Jan 19 02:15:29 2027 GMT Subject: CN=6EFA64FE138F5E5833D997B2CA1E59CF04334A37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:9f:62:b7:b7:85:bc:02:04:00:e1:6d:f2:79: e0:fd:6d:3d:59:ef:93:f0:fd:6e:b4:f5:2a:75:b0: f0:66:a6:93:fe:11:b6:ac:d3:74:7c:c3:f8:30:3f: ae:1f:51:5e:6e:8f:2c:5c:50:07:eb:0c:8b:2d:46: c8:ff:9c:d1:1f:55:bc:2c:c4:4a:ac:a4:a8:a8:3a: 6b:5d:ee:ea:d7:7f:cf:54:07:65:6a:2c:65:9a:3b: 00:5a:9b:e6:fc:f8:bd:c6:c7:47:22:57:d8:6d:c2: 78:e4:72:78:d3:d1:6b:5a:8b:57:37:8a:a9:ea:87: 75:24:3b:d9:ec:11:e9:d1:ab:1a:ba:49:ab:1b:ed: 5e:25:55:c3:d4:f8:34:19:b5:74:2c:9e:3e:9b:dc: 5c:a8:cc:20:6b:e5:32:77:5f:e2:d2:69:73:38:03: df:76:d8:96:83:b3:dc:c0:2d:d6:0d:cc:fd:04:71: 2f:d5:ed:30:78:d1:6d:2d:1c:fd:a4:2e:3f:a0:7f: 6f:b9:8a:b4:5d:12:5d:4e:a6:43:1f:7e:ed:2b:25: 52:bf:2b:02:2b:c8:ad:42:0a:fc:54:86:ff:21:40: 29:52:0c:98:f1:c0:4b:16:3d:07:74:c4:35:7b:c8: 68:30:ee:bd:cf:32:32:01:5f:0e:95:7a:b7:d4:a3: 06:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:FA:64:FE:13:8F:5E:58:33:D9:97:B2:CA:1E:59:CF:04:33:4A:37 X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS4812.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.152.0/24 103.5.192.0/22 103.24.116.0/24 103.24.118.0/23 150.242.238.0/23 202.89.96.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:68:77:8f:41:b3:77:8d:a7:94:da:cc:c9:46:20:90:7b:2f: 70:f2:94:57:43:d5:a2:cf:28:de:51:2a:24:d6:1a:62:16:5b: fd:5e:b4:43:3d:84:27:32:a6:ab:d7:b3:cc:a0:d5:ba:e9:a0: dd:0f:c2:2d:22:34:db:79:13:3f:1b:be:5a:cb:25:2e:eb:a5: 54:71:d9:e7:b0:b7:0d:fd:a1:e7:3a:ad:ca:c1:5f:e6:71:3f: 74:04:27:c2:09:97:88:32:fe:70:13:4d:29:7e:90:05:39:bf: eb:16:e2:3d:b9:e8:c7:53:ad:a0:34:4b:75:c3:97:85:fd:a3: 68:4c:de:01:67:47:b8:e1:17:80:31:2b:31:84:23:90:7e:85: 47:47:23:13:ef:6e:7d:ab:f0:40:13:49:99:6d:f6:7f:b8:0d: 63:c5:4a:56:3f:0b:8a:fb:dd:a0:60:69:58:90:e6:e4:56:ea: e8:4a:2b:ac:94:b9:97:79:fb:39:e8:2e:05:8c:b0:bb:c3:3e: eb:4c:62:dd:90:26:4f:d5:15:26:8b:94:a7:91:b6:12:53:82: a8:3a:fe:a0:fb:1e:68:e5:07:ab:ec:d3:ab:bb:d7:b2:55:e4: 0a:eb:cf:d6:fc:25:e3:84:b6:32:4a:95:48:53:8f:b9:ec:70: 50:04:38:06 -----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgIUb0PPwufYoPu8S1nPX+FHBdxyk30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjAxMjAwMjEwMjlaFw0yNzAxMTkwMjE1MjlaMDMxMTAvBgNV BAMTKDZFRkE2NEZFMTM4RjVFNTgzM0Q5OTdCMkNBMUU1OUNGMDQzMzRBMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrn2K3t4W8AgQA4W3yeeD9bT1Z 75Pw/W609Sp1sPBmppP+Ebas03R8w/gwP64fUV5ujyxcUAfrDIstRsj/nNEfVbws xEqspKioOmtd7urXf89UB2VqLGWaOwBam+b8+L3Gx0ciV9htwnjkcnjT0Wtai1c3 iqnqh3UkO9nsEenRqxq6Sasb7V4lVcPU+DQZtXQsnj6b3FyozCBr5TJ3X+LSaXM4 A9922JaDs9zALdYNzP0EcS/V7TB40W0tHP2kLj+gf2+5irRdEl1OpkMffu0rJVK/ KwIryK1CCvxUhv8hQClSDJjxwEsWPQd0xDV7yGgw7r3PMjIBXw6VerfUowbvAgMB AAGjggIAMIIB/DAdBgNVHQ4EFgQUbvpk/hOPXlgz2Zeyyh5ZzwQzSjcwHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw XAYIKwYBBQUHAQsEUDBOMEwGCCsGAQUFBzALhkByc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzQ4MTIucm9hMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwPQYIKwYBBQUHAQcBAf8ELjAsMCoEAgAB MCQDBAAr/pgDBAJnBcADBABnGHQDBAFnGHYDBAGW8u4DBADKWWAwDQYJKoZIhvcN AQELBQADggEBADtod49Bs3eNp5TazMlGIJB7L3DylFdD1aLPKN5RKiTWGmIWW/1e tEM9hCcypqvXs8yg1brpoN0Pwi0iNNt5Ez8bvlrLJS7rpVRx2eewtw39oec6rcrB X+ZxP3QEJ8IJl4gy/nATTSl+kAU5v+sW4j256MdTraA0S3XDl4X9o2hM3gFnR7jh F4AxKzGEI5B+hUdHIxPvbn2r8EATSZlt9n+4DWPFSlY/C4r73aBgaViQ5uRW6uhK K6yUuZd5+znoLgWMsLvDPutMYt2QJk/VFSaLlKeRthJTgqg6/qD7HmjlB6vs06u7 17JV5Arrz9b8JeOEtjJKlUhTj7nscFAEOAY= -----END CERTIFICATE-----Generated at Wed Jan 21 12:28:47 2026 by rpki-client