This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394589187/0/323430313a333438303a3a2f33362d3336203d3e203539303737.roa File: 323430313a333438303a3a2f33362d3336203d3e203539303737.roa (raw, json) Hash identifier: sBTskDaqKmWv2XmnE4c0BzMwO1weQad+S1zc44+w9eI= Subject key identifier: DA:58:27:DD:5A:3F:6B:FE:4F:79:5D:91:5F:EE:16:6D:C3:D9:04:F6 Certificate issuer: /CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Certificate serial: 24DF5C68B3671B37BDE5D8F23D8064F0D233865A Authority key identifier: 9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/323430313a333438303a3a2f33362d3336203d3e203539303737.roa Signing time: Tue 20 Jan 2026 02:10:51 +0000 ROA not before: Tue 20 Jan 2026 02:05:51 +0000 ROA not after: Tue 19 Jan 2027 02:10:51 +0000 asID: 59077 IP address blocks: 2401:3480::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 22:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:df:5c:68:b3:67:1b:37:bd:e5:d8:f2:3d:80:64:f0:d2:33:86:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Validity Not Before: Jan 20 02:05:51 2026 GMT Not After : Jan 19 02:10:51 2027 GMT Subject: CN=DA5827DD5A3F6BFE4F795D915FEE166DC3D904F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:d5:1d:22:c2:57:2b:95:23:38:04:66:01: 7d:af:dc:e1:23:be:5d:4b:6b:c0:7c:d0:6e:e4:bb: 50:9d:14:4d:57:a0:8a:0e:be:66:fa:41:9c:67:00: 7e:42:f2:64:8b:80:a8:6c:32:fa:28:bc:4e:e8:69: 79:f3:11:4a:4f:94:64:62:ee:30:03:34:17:8c:50: eb:08:46:b4:96:66:c1:ae:2b:d1:24:1c:c0:d4:9b: e5:3e:8f:69:5c:b1:49:5d:ca:79:72:a7:41:5c:73: 3a:01:f5:75:a0:01:db:51:14:4c:7c:0c:71:1b:a2: 22:8f:64:54:45:ba:fa:33:28:7d:95:df:1f:53:7e: f0:b9:90:df:09:6e:82:1c:d1:ea:85:df:5f:83:d8: c0:57:b8:ac:d4:3f:ff:65:f3:a3:1b:6b:c3:c7:90: 77:ef:b3:22:72:25:74:05:57:f9:f6:14:ee:90:ff: ee:5a:16:75:b6:aa:32:0f:ec:25:f5:43:3a:0c:cf: 24:8b:1a:0e:4c:7a:98:1a:b5:56:16:c3:6c:21:bf: 35:b1:95:40:ad:f5:02:7b:b1:0d:69:28:5d:4f:37: 14:91:59:72:39:62:d4:be:8e:75:4e:c7:28:d6:d9: bb:83:c4:3c:cd:3d:b6:34:70:51:1e:4d:7a:8c:fb: 5f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:58:27:DD:5A:3F:6B:FE:4F:79:5D:91:5F:EE:16:6D:C3:D9:04:F6 X509v3 Authority Key Identifier: keyid:9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/323430313a333438303a3a2f33362d3336203d3e203539303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:3480::/36 Signature Algorithm: sha256WithRSAEncryption ca:b5:02:68:1a:a7:1b:38:04:54:72:6e:aa:39:e2:d0:3e:f9: 15:7a:dd:4a:21:4a:06:c9:53:88:7c:fa:cf:6b:4c:eb:f6:8c: e8:5f:db:73:35:6a:af:eb:90:b3:30:9a:6b:b4:6f:e0:c0:40: 90:bf:f7:b8:6e:dc:13:23:44:36:d7:8d:c8:ba:d7:52:ff:b2: 87:c5:1c:74:b4:89:4c:84:d3:61:55:6a:15:6f:dd:fe:47:c5: e7:ec:6e:ef:c8:be:2e:42:5c:46:19:d0:21:eb:31:f7:5d:a6: df:23:81:74:09:19:6f:64:ef:fc:33:5d:31:c7:0c:db:30:31: f9:9f:f8:6b:92:30:80:0f:f1:3b:09:ab:ce:74:f5:f5:9d:a7: 5a:03:99:d7:c5:57:eb:15:18:e5:de:2d:19:dd:4f:63:78:f5: c5:ec:a3:36:45:52:bf:8e:7e:f6:3e:13:78:92:1e:cd:b9:fe: 35:ab:ad:0a:4d:dc:ca:ef:4d:3d:a6:4a:b0:97:1c:5f:1d:01: 0c:a1:d4:6a:e9:02:2b:f9:e3:cc:a8:2f:de:75:ed:43:dc:79: 12:13:95:be:63:6e:29:c0:59:e5:9e:65:64:87:7a:fa:ce:05: 4d:df:4b:20:19:79:8e:b4:68:40:f0:3d:4b:6c:2a:a4:e2:3b: e8:bd:c8:68 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIUJN9caLNnGze95djyPYBk8NIzhlowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNB OUFBM0MyQzAeFw0yNjAxMjAwMjA1NTFaFw0yNzAxMTkwMjEwNTFaMDMxMTAvBgNV BAMTKERBNTgyN0RENUEzRjZCRkU0Rjc5NUQ5MTVGRUUxNjZEQzNEOTA0RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAd9UdIsJXK5UjOARmAX2v3OEj vl1La8B80G7ku1CdFE1XoIoOvmb6QZxnAH5C8mSLgKhsMvoovE7oaXnzEUpPlGRi 7jADNBeMUOsIRrSWZsGuK9EkHMDUm+U+j2lcsUldynlyp0FcczoB9XWgAdtRFEx8 DHEboiKPZFRFuvozKH2V3x9TfvC5kN8JboIc0eqF31+D2MBXuKzUP/9l86Mba8PH kHfvsyJyJXQFV/n2FO6Q/+5aFnW2qjIP7CX1QzoMzySLGg5MepgatVYWw2whvzWx lUCt9QJ7sQ1pKF1PNxSRWXI5YtS+jnVOxyjW2buDxDzNPbY0cFEeTXqM+1/rAgMB AAGjggITMIICDzAdBgNVHQ4EFgQU2lgn3Vo/a/5PeV2RX+4WbcPZBPYwHwYDVR0j BBgwFoAUm/NLOBd0jT5pzDiA8TqDg6mqPCwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDU4OTE4Ny8wLzlCRjM0QjM4MTc3NDhEM0U2OUNDMzg4MEYxM0E4 MzgzQTlBQTNDMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNBOUFBM0MyQy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc5NTM0Mzk0NTg5MTg3LzAvMzIzNDMwMzEzYTMz MzQzODMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzUzOTMwMzczNy5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCQBNIAAMA0GCSqGSIb3DQEBCwUAA4IBAQDKtQJoGqcbOARUcm6qOeLQPvkV et1KIUoGyVOIfPrPa0zr9ozoX9tzNWqv65CzMJprtG/gwECQv/e4btwTI0Q2143I utdS/7KHxRx0tIlMhNNhVWoVb93+R8Xn7G7vyL4uQlxGGdAh6zH3XabfI4F0CRlv ZO/8M10xxwzbMDH5n/hrkjCAD/E7CavOdPX1nadaA5nXxVfrFRjl3i0Z3U9jePXF 7KM2RVK/jn72PhN4kh7Nuf41q60KTdzK7009pkqwlxxfHQEModRq6QIr+ePMqC/e de1D3HkSE5W+Y24pwFnlnmVkh3r6zgVN30sgGXmOtGhA8D1LbCqk4jvovcho -----END CERTIFICATE-----Generated at Wed Jan 21 04:24:27 2026 by rpki-client