This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3390/RACpLUBQ0i1ujG3QAqGS5xkf9os.roa File: RACpLUBQ0i1ujG3QAqGS5xkf9os.roa (raw, json) Hash identifier: 3ASs2aUUwsQVfE67KCrIK/SrzGj7NXE5h2RVHKCNsAM= Subject key identifier: 44:00:A9:2D:40:50:D2:2D:6E:8C:6D:D0:02:A1:92:E7:19:1F:F6:8B Certificate issuer: /CN=226549B6299640B4815E70F0403521A2960160DD Certificate serial: 018B Authority key identifier: 22:65:49:B6:29:96:40:B4:81:5E:70:F0:40:35:21:A2:96:01:60:DD Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ImVJtimWQLSBXnDwQDUhopYBYN0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3390/RACpLUBQ0i1ujG3QAqGS5xkf9os.roa Signing time: Mon 17 Nov 2025 02:01:52 +0000 ROA not before: Mon 17 Nov 2025 02:01:52 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 131511 IP address blocks: 157.119.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3390/ImVJtimWQLSBXnDwQDUhopYBYN0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3390/ImVJtimWQLSBXnDwQDUhopYBYN0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ImVJtimWQLSBXnDwQDUhopYBYN0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=226549B6299640B4815E70F0403521A2960160DD Validity Not Before: Nov 17 02:01:52 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4400A92D4050D22D6E8C6DD002A192E7191FF68B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:b2:e7:ce:3f:0e:a8:01:91:ad:2c:37:0a: 81:76:e8:a2:0c:bd:55:00:f4:5a:43:4f:32:b2:46: 06:64:a0:ad:2d:ec:af:ff:b3:06:98:da:e1:e9:56: a8:c8:cc:1c:d1:06:97:07:35:e5:9a:57:c8:e8:a4: ba:a3:68:52:7c:c4:35:1f:a1:bf:47:46:4f:00:82: f8:af:57:a3:84:94:7b:98:72:2e:15:e4:73:3f:89: 04:7a:c5:ab:75:82:07:6e:99:d9:54:fb:4e:c4:a9: d1:fb:02:de:be:eb:76:46:5c:f7:36:f7:7a:6d:c1: a8:e5:3b:84:86:e3:96:56:d7:0a:d8:a9:2c:58:2f: 2d:a8:ef:f1:da:85:0b:69:fe:2e:c4:f8:5f:7a:44: a3:95:cb:86:5a:11:e6:29:25:9f:62:89:bd:79:4b: 2a:29:43:ce:66:14:2b:01:3f:3e:22:eb:32:d0:6b: 96:60:e5:55:7d:e4:cf:1a:b7:6d:d6:47:dc:20:b1: 19:c8:74:db:a9:fb:78:b0:24:5e:11:c6:0f:d7:df: d4:53:f4:96:98:05:40:30:7d:83:65:af:46:1a:d2: 4b:32:84:8e:11:b4:ce:62:d7:43:fc:0f:39:a8:91: ac:1c:b9:70:9b:b5:a5:52:19:2f:1f:dd:04:26:66: 3c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:00:A9:2D:40:50:D2:2D:6E:8C:6D:D0:02:A1:92:E7:19:1F:F6:8B X509v3 Authority Key Identifier: keyid:22:65:49:B6:29:96:40:B4:81:5E:70:F0:40:35:21:A2:96:01:60:DD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3390/ImVJtimWQLSBXnDwQDUhopYBYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ImVJtimWQLSBXnDwQDUhopYBYN0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3390/RACpLUBQ0i1ujG3QAqGS5xkf9os.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.119.252.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:1c:b5:bf:3c:21:62:78:d0:bc:85:ea:63:c1:69:7d:ba:76: 5d:99:64:65:9d:9d:03:e5:31:d8:25:df:13:13:9c:47:2d:81: ba:dc:80:90:ef:0c:9f:08:59:50:cc:e5:73:b4:cb:a3:3b:48: b7:19:8e:d3:1e:b6:6e:85:eb:30:68:40:58:85:a9:0b:5e:72: b0:46:e7:b4:c4:1b:6d:e3:b4:a5:26:bd:75:a5:ce:ed:fa:dd: 72:f1:13:5f:b7:d2:fe:b5:9c:64:50:0c:49:f7:68:a7:14:e3: 98:39:71:6d:c2:0e:2e:f4:32:fb:13:3b:75:5d:f5:94:e4:06: db:f7:82:d0:c8:30:9d:46:4b:10:81:f6:03:1b:46:47:af:a8: 24:2d:a3:0b:30:85:1c:ee:f6:06:92:f9:b1:53:35:38:55:8f: b7:34:6f:4b:1a:aa:08:01:d0:a4:22:2b:fe:64:16:9f:7b:a1: 12:d3:d0:54:ad:98:0b:d0:23:b7:2e:63:83:b2:8a:50:54:68: a2:44:3e:6a:59:dc:43:53:87:f7:ad:42:2c:61:de:b3:f1:f0: fe:9d:40:51:9e:58:ef:61:b9:64:3a:28:7f:6c:30:12:25:35: 88:a4:7b:51:90:03:27:da:aa:5b:79:07:be:08:c4:e9:a4:e9: 24:72:84:c9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAYswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjI2 NTQ5QjYyOTk2NDBCNDgxNUU3MEYwNDAzNTIxQTI5NjAxNjBERDAeFw0yNTExMTcw MjAxNTJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDQ0MDBBOTJENDA1MEQy MkQ2RThDNkREMDAyQTE5MkU3MTkxRkY2OEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2eLLnzj8OqAGRrSw3CoF26KIMvVUA9FpDTzKyRgZkoK0t7K// swaY2uHpVqjIzBzRBpcHNeWaV8jopLqjaFJ8xDUfob9HRk8AgvivV6OElHuYci4V 5HM/iQR6xat1ggdumdlU+07EqdH7At6+63ZGXPc293ptwajlO4SG45ZW1wrYqSxY Ly2o7/HahQtp/i7E+F96RKOVy4ZaEeYpJZ9iib15SyopQ85mFCsBPz4i6zLQa5Zg 5VV95M8at23WR9wgsRnIdNup+3iwJF4Rxg/X39RT9JaYBUAwfYNlr0Ya0ksyhI4R tM5i10P8DzmokawcuXCbtaVSGS8f3QQmZjwJAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQURACpLUBQ0i1ujG3QAqGS5xkf9oswHwYDVR0jBBgwFoAUImVJtimWQLSBXnDw QDUhopYBYN0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5 MC9JbVZKdGltV1FMU0JYbkR3UURVaG9wWUJZTjAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0ltVkp0aW1XUUxTQlhuRHdRRFVob3BZQllOMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzOTAvUkFDcExVQlEwaTF1 akczUUFxR1M1eGtmOW9zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAp13/DANBgkqhkiG9w0BAQsFAAOCAQEALRy1vzwhYnjQvIXqY8Fpfbp2XZlk ZZ2dA+Ux2CXfExOcRy2ButyAkO8MnwhZUMzlc7TLoztItxmO0x62boXrMGhAWIWp C15ysEbntMQbbeO0pSa9daXO7frdcvETX7fS/rWcZFAMSfdopxTjmDlxbcIOLvQy +xM7dV31lOQG2/eC0MgwnUZLEIH2AxtGR6+oJC2jCzCFHO72BpL5sVM1OFWPtzRv SxqqCAHQpCIr/mQWn3uhEtPQVK2YC9Ajty5jg7KKUFRookQ+alncQ1OH961CLGHe s/Hw/p1AUZ5Y72G5ZDoof2wwEiU1iKR7UZADJ9qqW3kHvgjE6aTpJHKEyQ== -----END CERTIFICATE-----Generated at Fri Dec 5 00:30:37 2025 by rpki-client