This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/52/1QD9kVjRPFCJatRIwWROIBy8kVA.roa File: 1QD9kVjRPFCJatRIwWROIBy8kVA.roa (raw, json) Hash identifier: 8yUL/WPq3yLWhpQ6U2I4iSZV3rfZD+tNqromWAbFU2A= Subject key identifier: D5:00:FD:91:58:D1:3C:50:89:6A:D4:48:C1:64:4E:20:1C:BC:91:50 Certificate issuer: /CN=DA1DABECF1945DFF53B620E0B6C410E91E4471B1 Certificate serial: 062C Authority key identifier: DA:1D:AB:EC:F1:94:5D:FF:53:B6:20:E0:B6:C4:10:E9:1E:44:71:B1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/1QD9kVjRPFCJatRIwWROIBy8kVA.roa Signing time: Thu 06 Nov 2025 02:54:52 +0000 ROA not before: Thu 06 Nov 2025 02:54:52 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 9812 IP address blocks: 211.154.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA1DABECF1945DFF53B620E0B6C410E91E4471B1 Validity Not Before: Nov 6 02:54:52 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D500FD9158D13C50896AD448C1644E201CBC9150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:36:f2:4b:cf:aa:fd:8c:50:ee:a4:78:51: 8e:0d:fc:80:9c:85:26:73:b2:11:45:66:81:9f:89: 3a:5b:46:ff:fd:85:96:8a:a6:ce:e9:99:d0:27:ae: 6e:f2:6b:6e:16:6b:69:c7:01:07:be:02:fa:f9:0a: 14:3b:c8:21:58:47:d5:31:c8:2b:76:c0:80:dd:d7: b5:b5:8a:49:c9:37:bf:13:cb:71:c8:e5:67:23:83: 71:47:16:80:a5:c4:fd:39:91:5e:39:91:5e:7d:a3: 65:47:82:00:5c:32:27:8b:9d:dc:8d:ee:fa:21:fb: 7b:26:4d:af:da:49:58:e6:e2:0a:93:dc:f7:f9:7d: cc:51:f6:ee:7d:03:73:de:63:26:9f:17:97:74:32: 85:21:39:0e:f7:f2:68:71:8e:4b:d5:05:e9:94:72: 6a:2c:48:05:19:e2:c0:0b:6b:98:5b:52:c0:4b:41: ab:64:f9:47:01:a7:34:07:c8:40:8e:e7:ca:e9:ac: 74:dc:67:12:82:f2:ea:48:fc:5d:f5:11:98:ad:b3: 05:1f:f8:dc:d5:1b:37:b7:dc:ad:af:b2:c7:d8:8c: c3:eb:38:bb:ca:cc:2b:ad:b5:58:58:5a:ee:a8:e7: 0e:d4:6a:7d:3a:91:d2:3c:9c:c6:c7:0f:93:8d:4d: 1a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:FD:91:58:D1:3C:50:89:6A:D4:48:C1:64:4E:20:1C:BC:91:50 X509v3 Authority Key Identifier: keyid:DA:1D:AB:EC:F1:94:5D:FF:53:B6:20:E0:B6:C4:10:E9:1E:44:71:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/1QD9kVjRPFCJatRIwWROIBy8kVA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.154.64.0/19 Signature Algorithm: sha256WithRSAEncryption 2d:7a:1c:71:6e:9d:f8:96:35:7a:13:a0:72:6b:08:06:59:c1: af:92:b7:78:cc:b9:ef:d2:60:d8:53:12:41:77:2e:6f:58:b4: 8b:bc:67:10:77:f4:f0:01:83:99:a5:90:bf:a1:ab:23:85:90: be:c3:ea:67:d4:7b:c4:8a:84:9a:4a:1b:ab:87:3b:97:a4:4b: 1f:a0:7c:f8:22:60:4e:09:5b:03:fd:54:a1:5d:f2:32:ed:76: 5a:66:d4:d8:c1:14:cf:da:d3:18:e3:98:f6:14:2d:a5:aa:63: d4:46:b6:82:09:7c:5f:44:d0:00:1b:4b:dd:d5:e3:72:92:1a: 07:f7:03:1f:54:83:2c:80:bf:72:e5:85:ba:f2:74:83:7f:c2: 48:23:00:67:e4:1d:14:a7:43:71:bc:a0:2e:9f:26:ce:61:af: 2d:c6:fb:79:cd:17:95:6c:f6:4d:9e:f7:8e:88:a8:a1:56:f6: 4f:df:be:70:f4:f4:d9:62:0f:29:92:27:75:a7:43:e5:65:ad: d1:8d:b5:1f:03:19:06:e4:9f:e1:3b:e5:85:98:73:af:b2:ff: dd:10:0f:28:b9:1f:58:0b:f8:1d:0d:e7:31:21:03:17:57:7a: bb:cd:8d:18:53:37:58:56:1c:2a:a8:9e:33:0b:0f:87:b7:15: b7:6f:d7:3c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREEx REFCRUNGMTk0NURGRjUzQjYyMEUwQjZDNDEwRTkxRTQ0NzFCMTAeFw0yNTExMDYw MjU0NTJaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQ1MDBGRDkxNThEMTND NTA4OTZBRDQ0OEMxNjQ0RTIwMUNCQzkxNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5LjbyS8+q/YxQ7qR4UY4N/ICchSZzshFFZoGfiTpbRv/9hZaK ps7pmdAnrm7ya24Wa2nHAQe+Avr5ChQ7yCFYR9UxyCt2wIDd17W1iknJN78Ty3HI 5Wcjg3FHFoClxP05kV45kV59o2VHggBcMieLndyN7voh+3smTa/aSVjm4gqT3Pf5 fcxR9u59A3PeYyafF5d0MoUhOQ738mhxjkvVBemUcmosSAUZ4sALa5hbUsBLQatk +UcBpzQHyECO58rprHTcZxKC8upI/F31EZitswUf+NzVGze33K2vssfYjMPrOLvK zCuttVhYWu6o5w7Uan06kdI8nMbHD5ONTRodAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU1QD9kVjRPFCJatRIwWROIBy8kVAwHwYDVR0jBBgwFoAU2h2r7PGUXf9TtiDg tsQQ6R5EcbEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTIv MmgycjdQR1VYZjlUdGlEZ3RzUVE2UjVFY2JFLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC8yaDJyN1BHVVhmOVR0aURndHNRUTZSNUVjYkUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81Mi8xUUQ5a1ZqUlBGQ0phdFJJ d1dST0lCeThrVkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF 05pAMA0GCSqGSIb3DQEBCwUAA4IBAQAtehxxbp34ljV6E6ByawgGWcGvkrd4zLnv 0mDYUxJBdy5vWLSLvGcQd/TwAYOZpZC/oasjhZC+w+pn1HvEioSaShurhzuXpEsf oHz4ImBOCVsD/VShXfIy7XZaZtTYwRTP2tMY45j2FC2lqmPURraCCXxfRNAAG0vd 1eNykhoH9wMfVIMsgL9y5YW68nSDf8JIIwBn5B0Up0NxvKAunybOYa8txvt5zReV bPZNnveOiKihVvZP375w9PTZYg8pkid1p0PlZa3RjbUfAxkG5J/hO+WFmHOvsv/d EA8ouR9YC/gdDecxIQMXV3q7zY0YUzdYVhwqqJ4zCw+HtxW3b9c8 -----END CERTIFICATE-----Generated at Fri Dec 5 00:30:38 2025 by rpki-client