This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065579534394589187/0/34322e3234302e3132382e302f32302d3230203d3e20313336393538.roa File: 34322e3234302e3132382e302f32302d3230203d3e20313336393538.roa (raw, json) Hash identifier: 5Lm1eVvBCjqQuFrHqZyfeLVv39uOsxp8OxdJ3jThBds= Subject key identifier: A7:59:61:27:75:52:13:8D:26:0E:8B:C6:CB:6A:A5:9D:F5:AE:C1:E3 Certificate issuer: /CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Certificate serial: 78F059F238E7AA91C57BA63E292321AFE4F56A7F Authority key identifier: 9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/34322e3234302e3132382e302f32302d3230203d3e20313336393538.roa Signing time: Tue 20 Jan 2026 02:10:47 +0000 ROA not before: Tue 20 Jan 2026 02:05:47 +0000 ROA not after: Tue 19 Jan 2027 02:10:47 +0000 asID: 136958 IP address blocks: 42.240.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 22:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f0:59:f2:38:e7:aa:91:c5:7b:a6:3e:29:23:21:af:e4:f5:6a:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF34B3817748D3E69CC3880F13A8383A9AA3C2C Validity Not Before: Jan 20 02:05:47 2026 GMT Not After : Jan 19 02:10:47 2027 GMT Subject: CN=A75961277552138D260E8BC6CB6AA59DF5AEC1E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f3:b4:fc:e4:95:6a:06:af:bd:b1:67:bc:f9: 8e:3e:00:86:34:78:d7:c0:5d:5a:d3:67:98:d3:ca: 36:28:61:29:b6:6a:8b:1e:fb:f9:73:2b:09:bf:db: 1c:92:58:d5:c7:d4:98:cc:3e:8f:14:88:ae:17:0d: 08:db:cb:c5:12:34:3f:00:2d:8c:0b:ac:84:a2:01: bf:03:04:d1:7a:9e:93:ba:26:c3:97:13:66:4a:8d: ff:4b:6d:17:a1:62:b7:f7:55:2e:8e:f0:ce:3a:f3: f6:02:83:97:29:76:e2:d5:45:2c:7d:b2:af:55:d6: 6c:ce:d1:e7:f4:29:fe:ca:4f:7d:77:f3:73:f3:c9: 19:92:9e:f0:2a:24:42:d7:2b:16:a0:bf:e2:65:f5: e4:fe:18:d5:22:f0:a6:db:a3:84:97:92:76:3c:54: 83:0b:7d:41:f9:2e:2f:8a:33:ce:16:4c:ed:22:c9: 1d:1d:4b:01:4d:45:db:06:a8:c5:a2:97:08:98:ba: f9:3d:26:43:d7:82:c2:b8:f8:8f:97:e4:4e:1f:72: 56:03:24:9b:88:11:ee:50:58:b3:9a:ec:5e:f7:bf: f1:c9:98:e9:ac:4d:3a:64:27:79:d5:62:3b:cb:f7: 81:90:0e:8a:f2:a6:e4:18:ba:e1:c2:cb:66:8c:43: 4a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:59:61:27:75:52:13:8D:26:0E:8B:C6:CB:6A:A5:9D:F5:AE:C1:E3 X509v3 Authority Key Identifier: keyid:9B:F3:4B:38:17:74:8D:3E:69:CC:38:80:F1:3A:83:83:A9:AA:3C:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9BF34B3817748D3E69CC3880F13A8383A9AA3C2C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065579534394589187/0/34322e3234302e3132382e302f32302d3230203d3e20313336393538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 42.240.128.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:f7:e6:e9:f7:ee:27:e4:9c:74:20:ad:76:51:df:47:be:ad: b5:15:0d:7d:8e:50:d5:52:8c:a3:36:9d:b5:76:78:20:e6:86: 4e:a9:78:e5:bf:15:b1:fc:8c:06:bd:8a:4c:ec:7c:31:48:9c: 35:80:60:13:d2:9e:ca:46:95:fc:d8:d4:61:fa:f2:b2:1b:5d: 66:87:fa:c6:97:2c:1e:d2:3e:47:e3:27:37:49:54:60:c1:17: c1:8b:ba:6e:1d:b2:fb:33:f8:97:0e:03:0b:9b:54:ac:99:d4: 9a:e6:2e:58:f6:3a:c1:db:1c:88:12:40:88:8d:ee:3d:08:31: c8:a2:9e:7c:c8:27:88:f5:af:b9:b6:f5:b5:8d:5e:ba:e6:fc: 26:00:5f:20:24:c6:76:0f:ac:4c:52:05:8f:a6:14:6c:ed:24: 12:f7:e8:c0:c9:c6:cf:49:9b:d3:43:d6:57:bf:ae:69:5f:9d: 75:99:1a:83:2d:b1:20:d6:1b:b6:5f:fa:d9:28:87:4a:28:5b: e6:7e:3a:26:cd:2c:fb:3d:36:8f:08:30:09:7b:75:ea:f2:39: 88:0e:5b:89:be:81:5e:61:b5:5f:22:f1:d0:60:43:73:3e:d1: a3:84:94:b9:b8:cf:0c:59:57:79:1c:c5:ef:25:7b:e8:da:a6: 0f:a1:ff:a6 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIUePBZ8jjnqpHFe6Y+KSMhr+T1an8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNB OUFBM0MyQzAeFw0yNjAxMjAwMjA1NDdaFw0yNzAxMTkwMjEwNDdaMDMxMTAvBgNV BAMTKEE3NTk2MTI3NzU1MjEzOEQyNjBFOEJDNkNCNkFBNTlERjVBRUMxRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy87T85JVqBq+9sWe8+Y4+AIY0 eNfAXVrTZ5jTyjYoYSm2aose+/lzKwm/2xySWNXH1JjMPo8UiK4XDQjby8USND8A LYwLrISiAb8DBNF6npO6JsOXE2ZKjf9LbRehYrf3VS6O8M468/YCg5cpduLVRSx9 sq9V1mzO0ef0Kf7KT31383PzyRmSnvAqJELXKxagv+Jl9eT+GNUi8Kbbo4SXknY8 VIMLfUH5Li+KM84WTO0iyR0dSwFNRdsGqMWilwiYuvk9JkPXgsK4+I+X5E4fclYD JJuIEe5QWLOa7F73v/HJmOmsTTpkJ3nVYjvL94GQDorypuQYuuHCy2aMQ0pvAgMB AAGjggIXMIICEzAdBgNVHQ4EFgQUp1lhJ3VSE40mDovGy2qlnfWuweMwHwYDVR0j BBgwFoAUm/NLOBd0jT5pzDiA8TqDg6mqPCwwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3OTUzNDM5NDU4OTE4Ny8wLzlCRjM0QjM4MTc3NDhEM0U2OUNDMzg4MEYxM0E4 MzgzQTlBQTNDMkMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUJGMzRCMzgxNzc0OEQzRTY5Q0MzODgwRjEzQTgzODNBOUFBM0MyQy5jZXIw gZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzALhnJyc3luYzovL3Jwa2ktcnBz LmNubmljLmNuL3JlcG8vQTEwNjU1Nzk1MzQzOTQ1ODkxODcvMC8zNDMyMmUzMjM0 MzAyZTMxMzIzODJlMzAyZjMyMzAyZDMyMzAyMDNkM2UyMDMxMzMzNjM5MzUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEBCrwgDANBgkqhkiG9w0BAQsFAAOCAQEAfvfm6ffuJ+ScdCCtdlHf R76ttRUNfY5Q1VKMozadtXZ4IOaGTql45b8VsfyMBr2KTOx8MUicNYBgE9KeykaV /NjUYfryshtdZof6xpcsHtI+R+MnN0lUYMEXwYu6bh2y+zP4lw4DC5tUrJnUmuYu WPY6wdsciBJAiI3uPQgxyKKefMgniPWvubb1tY1euub8JgBfICTGdg+sTFIFj6YU bO0kEvfowMnGz0mb00PWV7+uaV+ddZkagy2xINYbtl/62SiHSihb5n46Js0s+z02 jwgwCXt16vI5iA5bib6BXmG1XyLx0GBDcz7Ro4SUubjPDFlXeRzF7yV76NqmD6H/ pg== -----END CERTIFICATE-----Generated at Wed Jan 21 04:24:28 2026 by rpki-client