This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3205/5XnCSzGATjHGQwp3GAfZw2yGtLI.roa File: 5XnCSzGATjHGQwp3GAfZw2yGtLI.roa (raw, json) Hash identifier: kibjdqmNmTToHS3CZgZslsBKwiZoRopVGqQimpu8FYA= Subject key identifier: E5:79:C2:4B:31:80:4E:31:C6:43:0A:77:18:07:D9:C3:6C:86:B4:B2 Certificate issuer: /CN=581041F42679F5E17F19C37E490A7794863B2BEB Certificate serial: 1205 Authority key identifier: 58:10:41:F4:26:79:F5:E1:7F:19:C3:7E:49:0A:77:94:86:3B:2B:EB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WBBB9CZ59eF_GcN-SQp3lIY7K-s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3205/5XnCSzGATjHGQwp3GAfZw2yGtLI.roa Signing time: Mon 26 Jan 2026 06:54:06 +0000 ROA not before: Mon 26 Jan 2026 06:54:06 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 17621 IP address blocks: 103.96.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3205/WBBB9CZ59eF_GcN-SQp3lIY7K-s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3205/WBBB9CZ59eF_GcN-SQp3lIY7K-s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WBBB9CZ59eF_GcN-SQp3lIY7K-s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 22:27:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4613 (0x1205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=581041F42679F5E17F19C37E490A7794863B2BEB Validity Not Before: Jan 26 06:54:06 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E579C24B31804E31C6430A771807D9C36C86B4B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f7:a4:01:4f:80:45:19:20:9c:b8:d0:e9:a1: b1:ad:fc:3a:64:37:a1:47:8f:71:15:91:6c:f9:ed: e1:92:1a:fa:c3:91:d1:ee:04:aa:d6:a0:cb:71:e2: 94:45:5d:6d:4b:b6:be:3b:c9:2c:88:2a:0e:52:dc: cd:58:27:26:6a:64:13:59:19:dc:db:8d:a4:42:1d: f9:6f:a5:31:60:92:3b:9d:01:35:dc:18:ec:2e:49: c7:eb:54:3d:74:d0:a8:82:d2:60:bf:2a:25:8e:55: eb:14:18:24:de:b3:71:40:eb:0a:16:5b:58:05:50: dd:81:a6:74:77:56:31:cc:79:75:92:b4:07:0c:cc: 0e:74:ae:69:3d:7c:ee:41:42:b9:55:cd:a4:74:73: 25:22:0a:c4:11:98:88:9e:eb:6f:87:f7:86:76:4c: 05:d4:e9:df:3b:80:fd:2c:c9:05:5e:40:1d:af:9a: 4f:2d:47:c2:0f:e4:3a:7e:88:4d:04:b4:47:5c:9d: 24:1a:30:f9:10:a7:b2:a9:f5:a6:b6:15:80:5f:ae: 50:12:42:ad:26:33:37:fa:45:f5:b7:13:ab:a8:52: 3c:e0:69:3b:00:76:83:9a:35:8c:67:e4:c9:65:8f: 59:44:fb:a6:65:4f:e2:30:62:29:55:cc:63:87:22: 97:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:79:C2:4B:31:80:4E:31:C6:43:0A:77:18:07:D9:C3:6C:86:B4:B2 X509v3 Authority Key Identifier: keyid:58:10:41:F4:26:79:F5:E1:7F:19:C3:7E:49:0A:77:94:86:3B:2B:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3205/WBBB9CZ59eF_GcN-SQp3lIY7K-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WBBB9CZ59eF_GcN-SQp3lIY7K-s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3205/5XnCSzGATjHGQwp3GAfZw2yGtLI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.96.224.0/23 Signature Algorithm: sha256WithRSAEncryption 35:e7:45:75:35:1e:a2:7a:f9:59:40:3a:e0:5e:cb:15:36:34: f8:23:44:ab:0f:8f:d7:21:78:66:cd:73:5b:3a:9a:70:b2:1f: 44:ad:92:21:4a:2e:88:f0:2e:11:6d:49:c1:e9:b8:6f:da:07: fa:01:e3:7b:7f:d8:16:a3:6d:20:4d:2b:33:16:24:8b:1e:f8: 02:ab:e7:a9:c2:94:de:be:05:be:55:62:c7:ae:ff:5d:14:8e: e2:dd:cd:06:3a:18:f4:b8:b3:6d:15:0a:81:dc:37:ae:69:c8: b1:88:d8:16:57:d7:78:45:79:99:6a:b4:38:08:a4:16:58:4d: 5a:fc:14:77:06:d0:16:19:9b:d7:06:52:48:23:4e:61:e5:8e: de:c3:f1:76:97:ff:02:e8:5b:b3:46:8a:57:18:f2:e8:54:bc: 66:2a:43:1f:0a:4e:19:9b:f1:f0:da:a6:f9:3a:de:ae:95:a8: aa:5f:3b:31:5c:ea:97:ec:88:be:80:16:3a:45:1a:31:54:e2: 7d:c3:72:dc:2b:35:dd:20:ac:03:13:3f:42:3c:8c:a5:8e:9f: d0:6f:77:06:cc:6e:e8:17:2b:be:9d:eb:36:61:39:91:57:43: da:3d:3c:48:3c:12:ec:b9:dd:fd:bf:ea:c5:d7:92:3e:62:93: 7d:f2:fa:3d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEgUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTgx MDQxRjQyNjc5RjVFMTdGMTlDMzdFNDkwQTc3OTQ4NjNCMkJFQjAeFw0yNjAxMjYw NjU0MDZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEU1NzlDMjRCMzE4MDRF MzFDNjQzMEE3NzE4MDdEOUMzNkM4NkI0QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ96QBT4BFGSCcuNDpobGt/DpkN6FHj3EVkWz57eGSGvrDkdHu BKrWoMtx4pRFXW1Ltr47ySyIKg5S3M1YJyZqZBNZGdzbjaRCHflvpTFgkjudATXc GOwuScfrVD100KiC0mC/KiWOVesUGCTes3FA6woWW1gFUN2BpnR3VjHMeXWStAcM zA50rmk9fO5BQrlVzaR0cyUiCsQRmIie62+H94Z2TAXU6d87gP0syQVeQB2vmk8t R8IP5Dp+iE0EtEdcnSQaMPkQp7Kp9aa2FYBfrlASQq0mMzf6RfW3E6uoUjzgaTsA doOaNYxn5Mllj1lE+6ZlT+IwYilVzGOHIpe3AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU5XnCSzGATjHGQwp3GAfZw2yGtLIwHwYDVR0jBBgwFoAUWBBB9CZ59eF/GcN+ SQp3lIY7K+swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzIw NS9XQkJCOUNaNTllRl9HY04tU1FwM2xJWTdLLXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1dCQkI5Q1o1OWVGX0djTi1TUXAzbElZN0stcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyMDUvNVhuQ1N6R0FUakhH UXdwM0dBZlp3MnlHdExJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWdg4DANBgkqhkiG9w0BAQsFAAOCAQEANedFdTUeonr5WUA64F7LFTY0+CNE qw+P1yF4Zs1zWzqacLIfRK2SIUouiPAuEW1Jwem4b9oH+gHje3/YFqNtIE0rMxYk ix74AqvnqcKU3r4FvlVix67/XRSO4t3NBjoY9LizbRUKgdw3rmnIsYjYFlfXeEV5 mWq0OAikFlhNWvwUdwbQFhmb1wZSSCNOYeWO3sPxdpf/Auhbs0aKVxjy6FS8ZipD HwpOGZvx8Nqm+TrerpWoql87MVzql+yIvoAWOkUaMVTifcNy3Cs13SCsAxM/QjyM pY6f0G93Bsxu6Bcrvp3rNmE5kVdD2j08SDwS7Lnd/b/qxdeSPmKTffL6PQ== -----END CERTIFICATE-----Generated at Mon Jan 26 18:19:32 2026 by rpki-client