This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3232342e3234302e302f32342d3234203d3e2034383038.roa File: 34332e3232342e3234302e302f32342d3234203d3e2034383038.roa (raw, json) Hash identifier: VZdouybWTmMR/dD6/6+ICJKr/ZGHu6EZhyfCeNZnSRA= Subject key identifier: 4E:82:16:42:8D:94:E3:CA:86:D6:4D:9D:9D:23:D1:76:4A:18:F6:EE Certificate issuer: /CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Certificate serial: 2B00807B76E2A07D7F11D8977AB638ED96CAF992 Authority key identifier: B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3232342e3234302e302f32342d3234203d3e2034383038.roa Signing time: Tue 20 Jan 2026 02:10:55 +0000 ROA not before: Tue 20 Jan 2026 02:05:55 +0000 ROA not after: Tue 19 Jan 2027 02:10:55 +0000 asID: 4808 IP address blocks: 43.224.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 22:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:00:80:7b:76:e2:a0:7d:7f:11:d8:97:7a:b6:38:ed:96:ca:f9:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C15036932176BBE4E7217ED5772ACA3DB00427 Validity Not Before: Jan 20 02:05:55 2026 GMT Not After : Jan 19 02:10:55 2027 GMT Subject: CN=4E8216428D94E3CA86D64D9D9D23D1764A18F6EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:63:b8:e2:f4:d6:31:7a:91:5e:fe:8d:87:e5: 4c:e3:2d:7c:11:ef:c3:21:88:10:68:63:34:ba:cc: 1f:5a:79:a9:06:c9:2f:a7:b4:ba:16:80:f7:ef:79: 26:ff:ab:97:03:c2:cd:63:23:70:2f:31:43:26:12: ff:a3:be:82:a8:30:c0:3e:de:72:af:63:e2:23:46: f3:63:45:96:d8:6b:ce:60:3d:5f:91:fe:4d:ef:59: 40:f6:c0:b5:df:77:12:c5:0a:cc:4b:dc:5d:c9:ad: 3f:c8:d2:4f:81:71:95:1d:e9:e6:c6:66:d2:c6:76: 55:d4:24:78:37:b2:23:e7:52:47:8f:97:12:66:d3: c7:33:ef:ff:bc:03:38:a9:67:ab:d0:db:7a:aa:f9: 6c:63:c4:f9:08:82:ea:ee:4e:3e:85:8d:4c:54:81: fc:84:af:af:fb:ce:0d:cf:9a:57:24:1d:fa:1e:4a: 05:a5:73:63:00:ac:cd:34:ee:28:29:43:5d:cd:2f: 01:e1:ec:d8:d6:a3:6d:a5:9c:56:46:21:6b:15:dd: 1b:1c:25:7e:97:62:1e:6c:f2:98:f1:da:42:23:fe: db:c5:38:d6:59:c9:45:9e:23:a7:c4:0f:b2:2c:72: 6b:50:78:07:c5:a2:e9:4e:35:33:0f:01:d0:24:ff: ec:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:82:16:42:8D:94:E3:CA:86:D6:4D:9D:9D:23:D1:76:4A:18:F6:EE X509v3 Authority Key Identifier: keyid:B8:C1:50:36:93:21:76:BB:E4:E7:21:7E:D5:77:2A:CA:3D:B0:04:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/B8C15036932176BBE4E7217ED5772ACA3DB00427.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/B8C15036932176BBE4E7217ED5772ACA3DB00427.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121690626/0/34332e3232342e3234302e302f32342d3234203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.240.0/24 Signature Algorithm: sha256WithRSAEncryption 15:ce:2e:9d:0a:6c:8f:3c:6f:d7:16:3b:69:ad:f1:3a:1c:fb: 71:d9:68:bb:9f:24:64:e2:fc:83:fc:fe:82:cc:b1:3c:c2:b3: aa:fc:6a:44:92:ac:66:80:3c:27:07:27:83:8a:05:82:5c:6d: 36:0a:a9:81:c1:0e:65:68:ec:75:6b:ed:5b:96:05:e9:d1:fa: 19:0e:5e:86:ac:43:2d:7b:85:5e:51:b7:c3:f5:20:25:03:19: 0e:ee:88:af:32:19:2d:27:ed:ce:d9:87:2b:37:a7:a7:e2:e7: 6c:44:fc:bf:60:61:26:29:53:65:29:d2:43:cf:82:59:64:b0: 85:b2:99:61:e1:8e:45:ad:63:14:1e:6c:1e:d0:1f:09:fb:1e: 87:c2:3d:f9:e3:ff:b3:c6:c3:4d:a2:e6:5c:02:2f:c1:90:86: 58:44:71:91:75:89:81:5c:0b:3c:9d:d8:60:b5:1b:e6:50:b5: db:cd:cc:d8:5d:b6:e6:28:b6:92:ca:f0:9f:05:d4:18:26:a7: 36:6a:0b:68:0d:50:ce:08:dc:23:8a:c8:b6:36:19:2e:48:88: 29:fc:4f:33:41:84:7d:7e:14:96:d8:ff:1c:fc:d8:e6:d2:f4: 06:fb:31:dc:e3:0c:53:dd:51:6a:87:01:db:4c:53:e7:a5:07: e7:93:0f:ef -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUKwCAe3bioH1/EdiXerY47ZbK+ZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0Ez REIwMDQyNzAeFw0yNjAxMjAwMjA1NTVaFw0yNzAxMTkwMjEwNTVaMDMxMTAvBgNV BAMTKDRFODIxNjQyOEQ5NEUzQ0E4NkQ2NEQ5RDlEMjNEMTc2NEExOEY2RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaY7ji9NYxepFe/o2H5UzjLXwR 78MhiBBoYzS6zB9aeakGyS+ntLoWgPfveSb/q5cDws1jI3AvMUMmEv+jvoKoMMA+ 3nKvY+IjRvNjRZbYa85gPV+R/k3vWUD2wLXfdxLFCsxL3F3JrT/I0k+BcZUd6ebG ZtLGdlXUJHg3siPnUkePlxJm08cz7/+8AzipZ6vQ23qq+WxjxPkIguruTj6FjUxU gfyEr6/7zg3PmlckHfoeSgWlc2MArM007igpQ13NLwHh7NjWo22lnFZGIWsV3Rsc JX6XYh5s8pjx2kIj/tvFONZZyUWeI6fED7IscmtQeAfFoulONTMPAdAk/+zPAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUToIWQo2U48qG1k2dnSPRdkoY9u4wHwYDVR0j BBgwFoAUuMFQNpMhdrvk5yF+1Xcqyj2wBCcwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MDA1NTEyMTY5MDYyNi8wL0I4QzE1MDM2OTMyMTc2QkJFNEU3MjE3RUQ1Nzcy QUNBM0RCMDA0MjcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQjhDMTUwMzY5MzIxNzZCQkU0RTcyMTdFRDU3NzJBQ0EzREIwMDQyNy5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgwMDU1MTIxNjkwNjI2LzAvMzQzMzJlMzIzMjM0 MmUzMjM0MzAyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzOC5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACvg8DANBgkqhkiG9w0BAQsFAAOCAQEAFc4unQpsjzxv1xY7aa3xOhz7cdlo u58kZOL8g/z+gsyxPMKzqvxqRJKsZoA8Jwcng4oFglxtNgqpgcEOZWjsdWvtW5YF 6dH6GQ5ehqxDLXuFXlG3w/UgJQMZDu6IrzIZLSftztmHKzenp+LnbET8v2BhJilT ZSnSQ8+CWWSwhbKZYeGORa1jFB5sHtAfCfseh8I9+eP/s8bDTaLmXAIvwZCGWERx kXWJgVwLPJ3YYLUb5lC1283M2F225ii2ksrwnwXUGCanNmoLaA1QzgjcI4rItjYZ LkiIKfxPM0GEfX4Ultj/HPzY5tL0Bvsx3OMMU91RaocB20xT56UH55MP7w== -----END CERTIFICATE-----Generated at Fri Jan 23 16:28:57 2026 by rpki-client