This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/620/RT-W2Ny9gq6Q5FL_XX84ZUtvb7o.roa File: RT-W2Ny9gq6Q5FL_XX84ZUtvb7o.roa (raw, json) Hash identifier: QGBAWkYafxYkK/NQcVRa/qLXSMkE7Hg/FbgZS7Iw7+Y= Subject key identifier: 45:3F:96:D8:DC:BD:82:AE:90:E4:52:FF:5D:7F:38:65:4B:6F:6F:BA Certificate issuer: /CN=309C2A943B28DC0858C39B9208A1609C0973E49A Certificate serial: 0717 Authority key identifier: 30:9C:2A:94:3B:28:DC:08:58:C3:9B:92:08:A1:60:9C:09:73:E4:9A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/RT-W2Ny9gq6Q5FL_XX84ZUtvb7o.roa Signing time: Tue 30 Dec 2025 01:40:10 +0000 ROA not before: Tue 30 Dec 2025 01:40:10 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 142132 IP address blocks: 114.28.202.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 11:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309C2A943B28DC0858C39B9208A1609C0973E49A Validity Not Before: Dec 30 01:40:10 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=453F96D8DCBD82AE90E452FF5D7F38654B6F6FBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:04:85:35:15:ea:ab:b6:e7:87:2e:56:8a:20: 29:fb:26:41:a3:ab:3b:84:ed:79:a4:aa:1c:bf:d2: cb:e8:18:d7:bf:ed:c4:c6:6e:9d:a9:bc:7b:6c:2c: 0b:14:b4:79:59:57:d0:fd:3a:51:a0:78:a2:58:62: 00:f6:f1:e4:27:6c:2f:0e:86:fc:62:63:d4:e3:fe: fd:0b:68:b9:7c:2a:2b:fa:04:03:34:26:0d:7c:21: 9f:ea:3b:88:28:09:d8:ca:ca:00:ea:3b:99:ee:5d: 2c:f1:ce:ef:f0:fc:ee:85:37:e6:b7:2f:46:c5:f3: ba:e3:2b:61:53:dc:63:30:f7:62:34:00:20:45:c8: b1:2e:9c:9d:fd:cb:d3:01:19:db:ee:be:29:63:15: ba:09:02:67:d3:2e:26:68:63:b6:67:ce:6e:f3:ad: a2:5e:83:ae:a8:83:91:aa:78:61:f9:8b:24:28:c0: dc:b4:73:5e:72:1d:a3:a0:22:86:2f:84:46:a2:a5: 3b:29:d9:63:f7:23:99:dc:b7:c7:b6:02:b3:44:f9: 66:32:42:25:ed:6e:82:86:9a:a0:7d:14:eb:98:b4: c0:e9:5d:fa:55:44:65:52:45:c4:fb:96:47:73:c5: cc:c3:da:f5:db:e1:c6:08:a8:97:38:fd:90:20:d3: 73:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3F:96:D8:DC:BD:82:AE:90:E4:52:FF:5D:7F:38:65:4B:6F:6F:BA X509v3 Authority Key Identifier: keyid:30:9C:2A:94:3B:28:DC:08:58:C3:9B:92:08:A1:60:9C:09:73:E4:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/RT-W2Ny9gq6Q5FL_XX84ZUtvb7o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.28.202.0/24 Signature Algorithm: sha256WithRSAEncryption 75:66:fe:98:cf:65:1a:b7:fe:bc:ca:ce:64:55:95:0d:7c:a4: 25:0a:53:ca:73:6b:4b:c6:80:ee:75:fc:30:ea:fa:39:38:b9: 83:0d:fa:a5:d6:4d:e7:68:0d:87:66:23:73:ea:2c:7d:b2:08: fd:0b:66:05:57:13:1b:45:9d:f5:63:53:45:02:60:48:10:40: af:6a:66:69:ef:1c:65:dd:58:bc:ba:f7:05:b1:e3:ee:36:8f: 81:42:1a:0e:d7:33:47:dc:95:b0:7d:11:39:d2:4d:91:5d:d7: 14:cf:d7:af:f7:bd:1c:fe:13:95:03:76:70:12:a5:c4:41:18: eb:c2:0f:3a:6c:1e:38:af:4a:8c:bf:96:25:99:e8:8d:0d:fa: 4a:77:7c:04:60:92:56:2d:a5:fc:d2:68:61:0f:90:b0:6d:cd: 1b:e5:59:10:02:ae:03:e3:2f:35:26:52:44:89:69:5e:20:27: 5c:d9:9a:2d:cd:3b:5a:c1:eb:66:d3:18:30:b3:72:01:f9:ed: f2:8e:22:a1:66:53:92:5d:e9:93:8d:56:58:46:d4:6d:92:0f: 0a:e1:65:9c:67:45:13:91:90:fc:30:cc:dc:18:b6:4d:f0:5f: 62:e0:76:34:33:28:b0:46:15:89:b1:b2:62:98:29:79:6e:b0: 0e:67:39:dd -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzA5 QzJBOTQzQjI4REMwODU4QzM5QjkyMDhBMTYwOUMwOTczRTQ5QTAeFw0yNTEyMzAw MTQwMTBaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDQ1M0Y5NkQ4RENCRDgy QUU5MEU0NTJGRjVEN0YzODY1NEI2RjZGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrBIU1FeqrtueHLlaKICn7JkGjqzuE7Xmkqhy/0svoGNe/7cTG bp2pvHtsLAsUtHlZV9D9OlGgeKJYYgD28eQnbC8OhvxiY9Tj/v0LaLl8Kiv6BAM0 Jg18IZ/qO4goCdjKygDqO5nuXSzxzu/w/O6FN+a3L0bF87rjK2FT3GMw92I0ACBF yLEunJ39y9MBGdvuviljFboJAmfTLiZoY7Znzm7zraJeg66og5GqeGH5iyQowNy0 c15yHaOgIoYvhEaipTsp2WP3I5nct8e2ArNE+WYyQiXtboKGmqB9FOuYtMDpXfpV RGVSRcT7lkdzxczD2vXb4cYIqJc4/ZAg03PrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQURT+W2Ny9gq6Q5FL/XX84ZUtvb7owHwYDVR0jBBgwFoAUMJwqlDso3AhYw5uS CKFgnAlz5JowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIw L01Kd3FsRHNvM0FoWXc1dVNDS0ZnbkFsejVKby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTUp3cWxEc28zQWhZdzV1U0NLRmduQWx6NUpvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIwL1JULVcyTnk5Z3E2UTVG TF9YWDg0WlV0dmI3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAByHMowDQYJKoZIhvcNAQELBQADggEBAHVm/pjPZRq3/rzKzmRVlQ18pCUKU8pz a0vGgO51/DDq+jk4uYMN+qXWTedoDYdmI3PqLH2yCP0LZgVXExtFnfVjU0UCYEgQ QK9qZmnvHGXdWLy69wWx4+42j4FCGg7XM0fclbB9ETnSTZFd1xTP16/3vRz+E5UD dnASpcRBGOvCDzpsHjivSoy/liWZ6I0N+kp3fARgklYtpfzSaGEPkLBtzRvlWRAC rgPjLzUmUkSJaV4gJ1zZmi3NO1rB62bTGDCzcgH57fKOIqFmU5Jd6ZONVlhG1G2S DwrhZZxnRRORkPwwzNwYtk3wX2LgdjQzKLBGFYmxsmKYKXlusA5nOd0= -----END CERTIFICATE-----Generated at Mon Jan 19 11:23:52 2026 by rpki-client