This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/54uPeoRLD2LcMFxI6apX4s7yK44.roa File: 54uPeoRLD2LcMFxI6apX4s7yK44.roa (raw, json) Hash identifier: 1hiicEC/s4Zv7UUVcUlW9Yd1qXsoa3HJpa9skUM512s= Subject key identifier: E7:8B:8F:7A:84:4B:0F:62:DC:30:5C:48:E9:AA:57:E2:CE:F2:2B:8E Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Certificate serial: 15D5 Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/54uPeoRLD2LcMFxI6apX4s7yK44.roa Signing time: Sat 13 Sep 2025 03:03:56 +0000 ROA not before: Sat 13 Sep 2025 03:03:56 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 137443 IP address blocks: 103.218.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Dec 2025 13:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5589 (0x15d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Validity Not Before: Sep 13 03:03:56 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E78B8F7A844B0F62DC305C48E9AA57E2CEF22B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e5:97:f6:6b:de:b2:2e:dd:17:94:16:ed:a5: 08:5a:70:4e:18:ed:b2:48:ff:73:81:06:e6:9f:d6: 14:da:5b:25:b8:0b:10:9d:ca:39:1a:06:6d:39:4b: ba:26:2f:97:25:fe:d9:b3:bc:51:10:d1:d5:5a:79: 2c:39:57:75:56:7c:93:6b:f7:b9:60:3c:02:de:39: 55:f0:62:08:58:ac:dc:a7:e8:c6:89:e9:dd:28:ea: 6e:e7:dd:9b:17:b3:2a:2a:27:41:84:40:f1:c5:6a: f1:06:9d:c1:de:df:71:6b:85:ff:c7:cd:b0:3a:02: e6:5a:40:c2:40:96:f5:37:df:cf:00:c1:44:38:5f: 1b:49:4f:ce:49:52:de:65:93:a2:2e:32:e6:c4:ae: 8c:a3:69:b2:56:15:76:f0:f6:a6:76:0c:f0:df:7b: f7:9d:c5:97:08:ae:f6:ff:43:18:49:69:10:ca:a8: f2:f0:28:b9:c7:35:d0:2b:15:c6:ea:a3:88:8b:99: 71:26:f0:55:80:71:50:12:79:2e:92:bb:36:22:2f: 50:74:e2:30:0b:48:52:b9:c6:da:ce:bc:ab:a6:ab: 06:25:9a:70:f4:46:87:88:35:c2:64:33:35:6a:63: 99:08:3b:48:fe:04:0f:ea:9f:bf:28:6b:8c:ad:cd: dc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:8B:8F:7A:84:4B:0F:62:DC:30:5C:48:E9:AA:57:E2:CE:F2:2B:8E X509v3 Authority Key Identifier: keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/54uPeoRLD2LcMFxI6apX4s7yK44.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.218.92.0/24 Signature Algorithm: sha256WithRSAEncryption cf:2e:09:d0:56:db:31:5b:01:1c:1a:01:96:62:e9:4c:d6:82: c9:00:ee:f4:2f:93:a3:6a:4d:32:db:05:f3:7e:54:cf:a9:2e: 65:4d:b0:0b:e9:a6:01:72:a7:54:8b:ab:36:d8:8c:0b:7d:32: d6:e1:65:d9:0a:e7:87:1e:ae:f2:fb:cd:91:e4:91:27:f0:84: c4:16:00:2f:67:a6:f2:86:51:97:da:d5:ff:81:82:1a:e3:b7: 0a:9d:18:0e:b9:8e:61:02:54:4b:86:8a:c4:36:a0:e8:43:9e: f4:54:88:b8:66:e4:ac:b2:d2:e2:4e:4d:4c:f1:5b:a6:2c:d0: 2f:5f:7d:87:de:e5:03:2c:61:ea:d1:8f:03:6b:bd:2c:66:3a: 87:bd:b8:7c:51:6f:ef:f3:c3:16:5c:df:29:a4:34:b3:b8:fe: af:cb:df:1b:69:d4:03:b4:77:d4:1d:c4:3d:4f:6a:b2:1e:1d: d9:ed:f4:22:6e:92:57:01:87:19:fe:97:e5:07:c0:d1:2a:d6: 3c:b1:fb:82:ca:3c:fc:5c:23:19:ff:d7:46:96:17:f9:1f:46: 0b:a5:e2:06:be:0a:15:3f:88:b5:44:d6:aa:dc:d9:18:82:15: 59:62:c5:5a:d8:ff:73:9f:f5:4b:32:42:af:b5:12:fd:a9:70: fb:40:42:43 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDJG QjA1REUzQzU0NEE5RjFDMzQ0QTYzRUI1RjZDRkREMzQ4MTE1NjAeFw0yNTA5MTMw MzAzNTZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU3OEI4RjdBODQ0QjBG NjJEQzMwNUM0OEU5QUE1N0UyQ0VGMjJCOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz5Zf2a96yLt0XlBbtpQhacE4Y7bJI/3OBBuaf1hTaWyW4CxCd yjkaBm05S7omL5cl/tmzvFEQ0dVaeSw5V3VWfJNr97lgPALeOVXwYghYrNyn6MaJ 6d0o6m7n3ZsXsyoqJ0GEQPHFavEGncHe33Frhf/HzbA6AuZaQMJAlvU3388AwUQ4 XxtJT85JUt5lk6IuMubEroyjabJWFXbw9qZ2DPDfe/edxZcIrvb/QxhJaRDKqPLw KLnHNdArFcbqo4iLmXEm8FWAcVASeS6SuzYiL1B04jALSFK5xtrOvKumqwYlmnD0 RoeINcJkMzVqY5kIO0j+BA/qn78oa4ytzdxjAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU54uPeoRLD2LcMFxI6apX4s7yK44wHwYDVR0jBBgwFoAUAvsF3jxUSp8cNEpj 619s/dNIEVYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0F2c0YzanhVU3A4Y05FcGo2MTlzX2ROSUVWWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzEvNTR1UGVvUkxEMkxj TUZ4STZhcFg0czd5SzQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfaXDANBgkqhkiG9w0BAQsFAAOCAQEAzy4J0FbbMVsBHBoBlmLpTNaCyQDu 9C+To2pNMtsF835Uz6kuZU2wC+mmAXKnVIurNtiMC30y1uFl2Qrnhx6u8vvNkeSR J/CExBYAL2em8oZRl9rV/4GCGuO3Cp0YDrmOYQJUS4aKxDag6EOe9FSIuGbkrLLS 4k5NTPFbpizQL199h97lAyxh6tGPA2u9LGY6h724fFFv7/PDFlzfKaQ0s7j+r8vf G2nUA7R31B3EPU9qsh4d2e30Im6SVwGHGf6X5QfA0SrWPLH7gso8/FwjGf/XRpYX +R9GC6XiBr4KFT+ItUTWqtzZGIIVWWLFWtj/c5/1SzJCr7US/alw+0BCQw== -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:48 2025 by rpki-client