This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS59083.roa File: AS59083.roa (raw, json) Hash identifier: JGX98b/AHLYrVIkUKlpnnStVHUWgU4CqWbdxWDSwWqY= Subject key identifier: D7:45:65:6C:46:A9:54:96:1C:D4:6B:6B:72:FA:79:E6:CC:84:A8:C4 Certificate issuer: /CN=1FFF263C64163BC58514B539C10375CCB553D75E Certificate serial: 6029A74ED5687AC0C10CE7CC2C226034FAC0C9C1 Authority key identifier: 1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS59083.roa Signing time: Tue 20 Jan 2026 02:15:30 +0000 ROA not before: Tue 20 Jan 2026 02:10:30 +0000 ROA not after: Tue 19 Jan 2027 02:15:30 +0000 asID: 59083 IP address blocks: 43.254.152.0/22 maxlen: 24 43.254.153.0/24 maxlen: 24 43.254.154.0/23 maxlen: 24 43.254.154.0/24 maxlen: 24 43.254.155.0/24 maxlen: 24 59.153.168.0/23 maxlen: 24 103.5.192.0/22 maxlen: 24 103.10.0.0/22 maxlen: 22 103.10.0.0/23 maxlen: 24 103.10.0.0/24 maxlen: 24 103.10.1.0/24 maxlen: 24 103.10.2.0/23 maxlen: 24 103.10.2.0/24 maxlen: 24 103.10.3.0/24 maxlen: 24 103.24.116.0/22 maxlen: 24 103.24.117.0/24 maxlen: 24 150.242.238.0/23 maxlen: 24 202.89.108.0/22 maxlen: 24 202.89.108.0/23 maxlen: 24 202.89.110.0/23 maxlen: 24 202.136.248.0/22 maxlen: 24 202.136.248.0/23 maxlen: 24 202.136.249.0/24 maxlen: 24 202.136.250.0/23 maxlen: 24 202.136.250.0/24 maxlen: 24 202.174.124.0/22 maxlen: 24 2403:1b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 20:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:29:a7:4e:d5:68:7a:c0:c1:0c:e7:cc:2c:22:60:34:fa:c0:c9:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FFF263C64163BC58514B539C10375CCB553D75E Validity Not Before: Jan 20 02:10:30 2026 GMT Not After : Jan 19 02:15:30 2027 GMT Subject: CN=D745656C46A954961CD46B6B72FA79E6CC84A8C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d2:63:40:09:13:e1:d2:24:78:45:6c:bc:f4: 2a:12:f1:6c:48:5a:3b:5f:1a:f8:38:37:75:f2:f0: 1d:fa:b7:52:68:06:fa:90:5d:29:a2:85:36:12:f1: 68:88:42:a6:28:d2:1c:68:95:83:a4:71:a9:3a:9c: d5:00:8b:1d:30:f6:34:36:86:71:fd:63:03:af:32: 10:44:00:96:ed:0a:7b:e5:9c:7e:e2:c2:ae:e6:d3: 44:2a:54:e3:9b:be:b5:e4:d1:21:c5:da:4d:cb:f0: 4a:a9:20:bf:e6:bb:ea:e0:93:09:67:e1:05:60:43: 00:c5:96:32:7b:b1:8b:87:79:4d:a4:bd:fb:cd:a3: b7:bd:db:37:16:4b:7d:0b:31:3e:4b:58:8e:7e:f4: b8:31:d5:07:48:e7:86:63:bb:11:c6:cf:c2:39:86: b0:8f:5c:8f:ae:ac:23:2b:f4:e0:43:46:b1:f0:1f: bb:16:74:5a:c7:c7:05:9f:9e:4e:1f:1b:1c:c5:ae: 80:80:95:59:59:35:b3:19:e6:fe:d0:df:92:b6:06: 2d:85:71:6c:63:8d:00:7e:7a:3c:91:75:fc:12:fd: 1a:fe:2d:52:57:4e:ba:3c:df:ab:d6:4f:dd:d7:5e: a5:ae:c1:b6:03:40:47:cc:44:19:dd:92:fb:0c:ec: b6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:45:65:6C:46:A9:54:96:1C:D4:6B:6B:72:FA:79:E6:CC:84:A8:C4 X509v3 Authority Key Identifier: keyid:1F:FF:26:3C:64:16:3B:C5:85:14:B5:39:C1:03:75:CC:B5:53:D7:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/1FFF263C64163BC58514B539C10375CCB553D75E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/1FFF263C64163BC58514B539C10375CCB553D75E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394327043/0/AS59083.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.254.152.0/22 59.153.168.0/23 103.5.192.0/22 103.10.0.0/22 103.24.116.0/22 150.242.238.0/23 202.89.108.0/22 202.136.248.0/22 202.174.124.0/22 IPv6: 2403:1b80::/48 Signature Algorithm: sha256WithRSAEncryption 6e:3f:40:51:7c:71:cb:4f:ac:93:a6:28:57:26:be:83:4b:e4: 76:a5:97:91:c8:dd:63:0c:93:3f:43:d2:14:71:7e:b8:7f:b1: d0:f7:93:0d:87:a4:f7:cc:bf:55:57:3c:d8:77:24:c8:c9:c4: 87:8f:b6:91:74:77:ef:ed:7b:0e:ee:68:07:f9:00:1f:43:e1: 50:46:5e:26:56:fc:8f:8c:df:92:00:34:7d:ce:0a:0e:90:b8: 9f:2d:09:70:5d:9b:b4:9e:bf:77:63:b6:f7:af:59:33:e5:da: 9d:fa:f6:a2:02:2b:d2:aa:af:20:b9:18:0c:37:41:5a:b8:54: dd:4d:6e:94:5d:58:77:2a:c1:9f:8c:89:30:45:00:18:db:b4: 78:8c:70:bd:b9:f9:23:38:9f:08:a3:12:2a:3b:cd:17:da:d9: d3:8d:d4:d0:47:26:15:b7:72:86:cc:1b:2a:83:30:82:6a:c3: 2d:9b:0f:ca:04:1b:54:ed:37:4a:70:57:81:1d:94:6f:40:4f: 2f:49:fa:f5:35:07:a7:5f:b1:61:57:bd:bb:20:e4:96:a2:bb: ba:8a:b8:d4:e7:fa:4e:53:f3:56:74:0b:33:da:a2:00:bb:e0: 60:33:f9:75:e0:77:55:50:19:c9:ee:e4:9c:b1:56:1b:17:49: 38:64:1d:16 -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIUYCmnTtVoesDBDOfMLCJgNPrAycEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NC NTUzRDc1RTAeFw0yNjAxMjAwMjEwMzBaFw0yNzAxMTkwMjE1MzBaMDMxMTAvBgNV BAMTKEQ3NDU2NTZDNDZBOTU0OTYxQ0Q0NkI2QjcyRkE3OUU2Q0M4NEE4QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC60mNACRPh0iR4RWy89CoS8WxI WjtfGvg4N3Xy8B36t1JoBvqQXSmihTYS8WiIQqYo0hxolYOkcak6nNUAix0w9jQ2 hnH9YwOvMhBEAJbtCnvlnH7iwq7m00QqVOObvrXk0SHF2k3L8EqpIL/mu+rgkwln 4QVgQwDFljJ7sYuHeU2kvfvNo7e92zcWS30LMT5LWI5+9Lgx1QdI54ZjuxHGz8I5 hrCPXI+urCMr9OBDRrHwH7sWdFrHxwWfnk4fGxzFroCAlVlZNbMZ5v7Q35K2Bi2F cWxjjQB+ejyRdfwS/Rr+LVJXTro836vWT93XXqWuwbYDQEfMRBndkvsM7LZNAgMB AAGjggIkMIICIDAdBgNVHQ4EFgQU10VlbEapVJYc1Gtrcvp55syEqMQwHwYDVR0j BBgwFoAUH/8mPGQWO8WFFLU5wQN1zLVT114wDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDMyNzA0My8wLzFGRkYyNjNDNjQxNjNCQzU4NTE0QjUzOUMxMDM3 NUNDQjU1M0Q3NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMUZGRjI2M0M2NDE2M0JDNTg1MTRCNTM5QzEwMzc1Q0NCNTUzRDc1RS5jZXIw XQYIKwYBBQUHAQsEUTBPME0GCCsGAQUFBzALhkFyc3luYzovL3Jwa2ktcnBzLmNu bmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQzMjcwNDMvMC9BUzU5MDgzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGCCsGAQUFBwEHAQH/BFEwTzA8BAIA ATA2AwQCK/6YAwQBO5moAwQCZwXAAwQCZwoAAwQCZxh0AwQBlvLuAwQCyllsAwQC yoj4AwQCyq58MA8EAgACMAkDBwAkAxuAAAAwDQYJKoZIhvcNAQELBQADggEBAG4/ QFF8cctPrJOmKFcmvoNL5Hall5HI3WMMkz9D0hRxfrh/sdD3kw2HpPfMv1VXPNh3 JMjJxIePtpF0d+/tew7uaAf5AB9D4VBGXiZW/I+M35IANH3OCg6QuJ8tCXBdm7Se v3djtvevWTPl2p369qICK9KqryC5GAw3QVq4VN1NbpRdWHcqwZ+MiTBFABjbtHiM cL25+SM4nwijEio7zRfa2dON1NBHJhW3cobMGyqDMIJqwy2bD8oEG1TtN0pwV4Ed lG9ATy9J+vU1B6dfsWFXvbsg5Jaiu7qKuNTn+k5T81Z0CzPaogC74GAz+XXgd1VQ Gcnu5JyxVhsXSThkHRY= -----END CERTIFICATE-----Generated at Wed Jan 21 12:28:46 2026 by rpki-client