This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/52/aV7Ri-lUYzB8dhFblTd71eGtEEg.roa File: aV7Ri-lUYzB8dhFblTd71eGtEEg.roa (raw, json) Hash identifier: CFuKIxDGpbjtt0HUmXbA/K6k/ZpYa3Z3aMgKu5AtAPY= Subject key identifier: 69:5E:D1:8B:E9:54:63:30:7C:76:11:5B:95:37:7B:D5:E1:AD:10:48 Certificate issuer: /CN=DA1DABECF1945DFF53B620E0B6C410E91E4471B1 Certificate serial: 0626 Authority key identifier: DA:1D:AB:EC:F1:94:5D:FF:53:B6:20:E0:B6:C4:10:E9:1E:44:71:B1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/aV7Ri-lUYzB8dhFblTd71eGtEEg.roa Signing time: Thu 06 Nov 2025 02:54:51 +0000 ROA not before: Thu 06 Nov 2025 02:54:51 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 9812 IP address blocks: 220.232.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA1DABECF1945DFF53B620E0B6C410E91E4471B1 Validity Not Before: Nov 6 02:54:51 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=695ED18BE95463307C76115B95377BD5E1AD1048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:95:4e:d1:e9:45:97:c5:f3:7e:e2:66:fb:d3: af:21:a9:60:e0:7b:a3:ed:77:c2:f6:d4:c4:fa:7d: b2:30:92:09:68:1f:70:e0:07:9e:36:cd:67:f4:87: 5f:5a:d3:65:33:ef:1b:fc:05:0e:b9:be:62:4d:09: d3:dc:fa:5e:ac:a3:f3:48:d7:52:3a:b8:ec:e0:00: ed:f1:8a:5a:d1:ef:8c:e0:e4:97:78:ea:c7:87:ee: 37:39:7e:94:31:56:28:f9:12:3f:38:64:f6:41:2e: 36:32:9b:2f:c8:13:ce:73:7d:cb:f8:b5:d6:2f:b7: 57:3b:1f:3d:54:fb:62:97:53:23:54:a8:7d:c8:42: a6:dc:61:58:e9:41:98:4f:c2:a5:26:b5:ce:e7:ac: 90:e5:11:7b:d7:de:68:94:38:5c:95:38:43:f5:c7: 54:c2:0a:05:8b:0e:7a:ec:29:f0:31:3e:8f:39:60: 94:e9:cf:0f:2b:e1:42:c4:12:47:f1:36:6c:cc:07: a9:89:ac:40:45:5d:72:07:0b:90:1b:b4:5f:2a:43: d5:d1:16:40:98:85:78:b7:4c:f3:18:7b:8c:b1:18: bf:89:ce:1c:5d:22:4d:98:2c:16:4f:1e:72:c2:17: de:84:8e:2a:a3:f2:ff:35:f8:01:ed:a8:6d:80:06: ce:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5E:D1:8B:E9:54:63:30:7C:76:11:5B:95:37:7B:D5:E1:AD:10:48 X509v3 Authority Key Identifier: keyid:DA:1D:AB:EC:F1:94:5D:FF:53:B6:20:E0:B6:C4:10:E9:1E:44:71:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2h2r7PGUXf9TtiDgtsQQ6R5EcbE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/52/aV7Ri-lUYzB8dhFblTd71eGtEEg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.232.64.0/18 Signature Algorithm: sha256WithRSAEncryption 3a:3d:84:27:51:cf:2f:d4:ce:9e:95:3c:2f:66:44:1c:9f:15: f8:c8:fa:0e:2f:f3:1c:15:66:53:02:22:f9:61:4e:4d:30:a6: bf:35:52:c7:44:0a:d2:b0:9f:d7:bf:9d:1d:24:d0:f1:d7:d0: bb:e4:93:5f:36:8e:d9:c6:9c:35:26:7c:2d:1b:f9:c8:43:1f: 24:2f:94:e1:c3:fc:48:2d:5d:60:69:68:30:cc:2f:c3:8f:fa: bf:a3:f6:b1:50:6d:af:18:42:08:83:ad:e0:0e:73:80:a2:fe: ca:d9:92:0b:cb:50:1e:51:03:a1:95:6e:d2:ac:56:7b:38:e5: 22:25:20:91:24:a9:35:0b:71:0e:03:a7:d5:0d:46:97:94:df: 0f:60:00:11:d0:2c:81:a0:d9:a6:21:1d:9b:48:8d:c2:c9:59: 3a:c3:09:0a:68:a7:45:d0:47:7c:ca:46:4d:ae:5b:a3:16:ad: 9a:83:f3:d3:6c:9f:ff:44:2e:48:53:c0:6d:27:45:2d:0a:16: cb:ee:b7:d2:e4:55:06:b1:d1:5b:7f:7c:8e:59:f3:3c:c9:b0: 35:58:3a:2a:1b:97:3b:53:2f:d9:77:87:30:75:40:1a:49:9c: 0a:96:8e:3d:b4:29:1d:cc:0e:83:e1:2e:12:52:30:a0:0f:fa: ba:f0:2f:6b -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREEx REFCRUNGMTk0NURGRjUzQjYyMEUwQjZDNDEwRTkxRTQ0NzFCMTAeFw0yNTExMDYw MjU0NTFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDY5NUVEMThCRTk1NDYz MzA3Qzc2MTE1Qjk1Mzc3QkQ1RTFBRDEwNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJlU7R6UWXxfN+4mb7068hqWDge6Ptd8L21MT6fbIwkgloH3Dg B542zWf0h19a02Uz7xv8BQ65vmJNCdPc+l6so/NI11I6uOzgAO3xilrR74zg5Jd4 6seH7jc5fpQxVij5Ej84ZPZBLjYymy/IE85zfcv4tdYvt1c7Hz1U+2KXUyNUqH3I QqbcYVjpQZhPwqUmtc7nrJDlEXvX3miUOFyVOEP1x1TCCgWLDnrsKfAxPo85YJTp zw8r4ULEEkfxNmzMB6mJrEBFXXIHC5AbtF8qQ9XRFkCYhXi3TPMYe4yxGL+Jzhxd Ik2YLBZPHnLCF96Ejiqj8v81+AHtqG2ABs4lAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUaV7Ri+lUYzB8dhFblTd71eGtEEgwHwYDVR0jBBgwFoAU2h2r7PGUXf9TtiDg tsQQ6R5EcbEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTIv MmgycjdQR1VYZjlUdGlEZ3RzUVE2UjVFY2JFLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC8yaDJyN1BHVVhmOVR0aURndHNRUTZSNUVjYkUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81Mi9hVjdSaS1sVVl6QjhkaEZi bFRkNzFlR3RFRWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG 3OhAMA0GCSqGSIb3DQEBCwUAA4IBAQA6PYQnUc8v1M6elTwvZkQcnxX4yPoOL/Mc FWZTAiL5YU5NMKa/NVLHRArSsJ/Xv50dJNDx19C75JNfNo7Zxpw1JnwtG/nIQx8k L5Thw/xILV1gaWgwzC/Dj/q/o/axUG2vGEIIg63gDnOAov7K2ZILy1AeUQOhlW7S rFZ7OOUiJSCRJKk1C3EOA6fVDUaXlN8PYAAR0CyBoNmmIR2bSI3CyVk6wwkKaKdF 0Ed8ykZNrlujFq2ag/PTbJ//RC5IU8BtJ0UtChbL7rfS5FUGsdFbf3yOWfM8ybA1 WDoqG5c7Uy/Zd4cwdUAaSZwKlo49tCkdzA6D4S4SUjCgD/q68C9r -----END CERTIFICATE-----Generated at Fri Dec 5 00:30:31 2025 by rpki-client