This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065580055121821698/0/3232332e32392e3235352e302f32342d3234203d3e20383334.roa File: 3232332e32392e3235352e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: Hwhc6/LMfejfG1qqJ1XXsALirSYII3xKidrQGY2YB9c= Subject key identifier: B1:F0:50:1B:C6:4A:61:CD:DC:02:43:30:27:1A:EE:88:0C:29:FF:C4 Certificate issuer: /CN=9E7BEB810233369A47D42D81A7F5084338DBC5C8 Certificate serial: 57B024EFE93946CACC621F378041C46E798A8700 Authority key identifier: 9E:7B:EB:81:02:33:36:9A:47:D4:2D:81:A7:F5:08:43:38:DB:C5:C8 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9E7BEB810233369A47D42D81A7F5084338DBC5C8.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065580055121821698/0/3232332e32392e3235352e302f32342d3234203d3e20383334.roa Signing time: Tue 20 Jan 2026 02:08:20 +0000 ROA not before: Tue 20 Jan 2026 02:03:20 +0000 ROA not after: Tue 19 Jan 2027 02:08:20 +0000 asID: 834 IP address blocks: 223.29.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065580055121821698/0/9E7BEB810233369A47D42D81A7F5084338DBC5C8.crl rsync://rpki-rps.cnnic.cn/repo/A1065580055121821698/0/9E7BEB810233369A47D42D81A7F5084338DBC5C8.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9E7BEB810233369A47D42D81A7F5084338DBC5C8.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 13:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b0:24:ef:e9:39:46:ca:cc:62:1f:37:80:41:c4:6e:79:8a:87:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E7BEB810233369A47D42D81A7F5084338DBC5C8 Validity Not Before: Jan 20 02:03:20 2026 GMT Not After : Jan 19 02:08:20 2027 GMT Subject: CN=B1F0501BC64A61CDDC024330271AEE880C29FFC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e9:ba:a0:64:09:0a:b0:6e:87:e2:46:7d:b9: 37:df:f9:39:59:d6:87:df:3b:36:c9:33:96:c8:56: 41:ee:75:ed:8b:7d:65:aa:55:3d:1f:62:75:72:cd: 62:eb:64:90:ce:1f:83:fd:04:86:60:31:8c:3b:0f: e2:c8:6a:ff:a7:52:4f:ab:85:d4:f1:de:d5:65:28: 76:4b:8a:db:86:15:21:0d:f7:a3:a2:12:9e:34:9e: db:bf:fd:ab:0b:54:21:1f:42:88:77:05:d6:c9:d1: 62:7b:50:d9:c2:0b:f8:a1:15:d5:78:cd:99:91:7b: e0:bc:33:d1:e9:54:c4:b6:59:4b:29:7f:6d:c4:de: 20:1d:67:b9:b3:06:69:5d:af:45:98:24:43:42:a5: 88:28:01:de:2b:9b:9d:1d:c5:93:5c:59:7e:0f:a6: 8e:47:74:62:0f:39:bb:f0:ad:1c:ea:b5:51:6c:11: 36:a5:35:dc:4a:ff:ab:8d:13:ce:5d:7a:64:e9:ef: 0c:87:39:ee:70:ae:3e:4b:d7:ea:8d:ff:ed:02:b8: d2:1c:55:d8:2b:73:78:a6:9c:04:78:40:e1:1f:48: 48:10:f3:34:88:26:eb:2d:3b:85:30:e6:3b:d5:d0: 60:36:dc:7a:d3:af:52:b5:1d:37:2d:bf:ca:a2:04: 9f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F0:50:1B:C6:4A:61:CD:DC:02:43:30:27:1A:EE:88:0C:29:FF:C4 X509v3 Authority Key Identifier: keyid:9E:7B:EB:81:02:33:36:9A:47:D4:2D:81:A7:F5:08:43:38:DB:C5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121821698/0/9E7BEB810233369A47D42D81A7F5084338DBC5C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/9E7BEB810233369A47D42D81A7F5084338DBC5C8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065580055121821698/0/3232332e32392e3235352e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.29.255.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:18:c3:23:af:72:92:ff:90:e4:4a:ed:27:f8:af:5c:32:6f: fe:09:3e:c4:dd:81:ac:7d:31:6f:55:e8:c5:84:85:9a:c5:96: 77:dd:8f:3d:9f:fc:0f:c8:3e:7a:0f:f4:5e:13:ce:c2:29:5d: d9:cf:63:7d:93:8d:27:de:3a:2c:1a:94:f0:97:9b:1f:95:92: 11:64:9e:50:3d:33:f0:27:f2:ff:50:9c:1d:28:05:49:9f:8a: a8:97:53:cf:1e:fc:fc:7b:c2:7d:5f:9c:b5:53:00:0f:19:0b: c2:b8:39:b1:44:c2:bd:05:ba:77:68:4c:c2:72:6c:c5:67:26: 39:f8:ef:78:9e:4a:57:7a:0e:7c:5d:f9:f5:c4:f9:b4:32:58: 59:a1:99:13:47:96:19:d7:02:40:53:97:e5:eb:1d:81:25:f4: fc:bf:0f:06:65:f9:ef:42:12:70:26:32:04:c7:44:50:59:03: 18:c3:a3:23:ae:85:22:5a:28:a7:69:d7:8a:40:20:03:6f:8e: 5b:05:e3:ba:ae:26:18:71:c3:50:34:45:f7:8a:a5:d7:64:29: ee:94:ae:c2:d6:74:8d:53:21:86:7c:45:17:98:32:36:77:a8: fc:1d:45:fb:45:16:74:bd:56:3c:6d:c5:67:39:af:2e:f2:31: 39:8a:a5:ec -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUV7Ak7+k5RsrMYh83gEHEbnmKhwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU3QkVCODEwMjMzMzY5QTQ3RDQyRDgxQTdGNTA4NDMz OERCQzVDODAeFw0yNjAxMjAwMjAzMjBaFw0yNzAxMTkwMjA4MjBaMDMxMTAvBgNV BAMTKEIxRjA1MDFCQzY0QTYxQ0REQzAyNDMzMDI3MUFFRTg4MEMyOUZGQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ6bqgZAkKsG6H4kZ9uTff+TlZ 1offOzbJM5bIVkHude2LfWWqVT0fYnVyzWLrZJDOH4P9BIZgMYw7D+LIav+nUk+r hdTx3tVlKHZLituGFSEN96OiEp40ntu//asLVCEfQoh3BdbJ0WJ7UNnCC/ihFdV4 zZmRe+C8M9HpVMS2WUspf23E3iAdZ7mzBmldr0WYJENCpYgoAd4rm50dxZNcWX4P po5HdGIPObvwrRzqtVFsETalNdxK/6uNE85demTp7wyHOe5wrj5L1+qN/+0CuNIc Vdgrc3imnAR4QOEfSEgQ8zSIJustO4Uw5jvV0GA23HrTr1K1HTctv8qiBJ/lAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQUsfBQG8ZKYc3cAkMwJxruiAwp/8QwHwYDVR0j BBgwFoAUnnvrgQIzNppH1C2Bp/UIQzjbxcgwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MDA1NTEyMTgyMTY5OC8wLzlFN0JFQjgxMDIzMzM2OUE0N0Q0MkQ4MUE3RjUw ODQzMzhEQkM1QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOUU3QkVCODEwMjMzMzY5QTQ3RDQyRDgxQTdGNTA4NDMzOERCQzVDOC5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTgwMDU1MTIxODIxNjk4LzAvMzIzMjMzMmUzMjM5 MmUzMjM1MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMzMzQucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADfHf8wDQYJKoZIhvcNAQELBQADggEBADoYwyOvcpL/kORK7Sf4r1wyb/4JPsTd gax9MW9V6MWEhZrFlnfdjz2f/A/IPnoP9F4TzsIpXdnPY32TjSfeOiwalPCXmx+V khFknlA9M/An8v9QnB0oBUmfiqiXU88e/Px7wn1fnLVTAA8ZC8K4ObFEwr0Fundo TMJybMVnJjn473ieSld6Dnxd+fXE+bQyWFmhmRNHlhnXAkBTl+XrHYEl9Py/DwZl +e9CEnAmMgTHRFBZAxjDoyOuhSJaKKdp14pAIANvjlsF47quJhhxw1A0RfeKpddk Ke6UrsLWdI1TIYZ8RReYMjZ3qPwdRftFFnS9VjxtxWc5ry7yMTmKpew= -----END CERTIFICATE-----Generated at Fri Jan 23 02:20:08 2026 by rpki-client