This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/623/-AzGsNpLraHSAfvsXo88_mQOzFk.roa File: -AzGsNpLraHSAfvsXo88_mQOzFk.roa (raw, json) Hash identifier: m8yqoOUtsGDV2GskUUxflcPCHnFfMJkEC53Z01CwhF0= Subject key identifier: F8:0C:C6:B0:DA:4B:AD:A1:D2:01:FB:EC:5E:8F:3C:FE:64:0E:CC:59 Certificate issuer: /CN=DEBFC900EDC34F81DA4827F1F9F63D04E0E2F756 Certificate serial: 0B08 Authority key identifier: DE:BF:C9:00:ED:C3:4F:81:DA:48:27:F1:F9:F6:3D:04:E0:E2:F7:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/-AzGsNpLraHSAfvsXo88_mQOzFk.roa Signing time: Mon 27 Oct 2025 02:31:41 +0000 ROA not before: Mon 27 Oct 2025 02:31:41 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 58834 IP address blocks: 124.240.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 01:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEBFC900EDC34F81DA4827F1F9F63D04E0E2F756 Validity Not Before: Oct 27 02:31:41 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=F80CC6B0DA4BADA1D201FBEC5E8F3CFE640ECC59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9c:22:67:16:39:3c:ce:25:6e:fc:7e:d4:da: af:0e:06:6f:da:80:aa:e5:cf:d8:61:8d:fc:a4:86: 54:21:35:69:5c:ab:27:a3:05:26:05:6a:60:74:d8: 58:3e:3c:c1:f5:91:a3:ce:61:26:c1:fe:e4:58:9c: e1:cb:a4:9f:3b:1d:13:74:89:8b:d9:8c:f1:14:71: b2:07:82:fb:94:88:26:7a:9d:62:0c:7e:a0:18:7b: a2:09:b9:c5:bd:64:e4:9e:10:f8:69:f5:95:6e:ae: 1b:00:d3:6e:c4:48:bf:32:13:2e:f2:08:74:e2:8f: 59:72:ba:ed:ee:ac:b8:79:c8:86:a7:7f:ee:24:ce: f2:94:18:01:67:c2:57:9e:b1:a9:4d:d6:45:ad:7a: c1:d5:56:db:58:5b:04:8a:a5:ab:eb:20:f8:1c:25: df:35:d3:ce:0d:7b:58:2c:0a:ec:01:0d:3e:ef:28: 82:7c:ab:1c:54:5d:55:31:0c:e8:ff:e9:bc:89:06: fc:bf:20:78:1c:29:9d:49:17:22:85:5b:73:95:a9: 81:58:68:a5:de:3b:6c:75:10:cd:8e:a6:60:c7:f0: a7:9f:81:fd:b0:10:38:c8:e2:ce:d7:26:68:34:dd: 1b:74:97:27:03:f8:7f:03:5b:f6:d6:47:a8:97:48: ad:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:0C:C6:B0:DA:4B:AD:A1:D2:01:FB:EC:5E:8F:3C:FE:64:0E:CC:59 X509v3 Authority Key Identifier: keyid:DE:BF:C9:00:ED:C3:4F:81:DA:48:27:F1:F9:F6:3D:04:E0:E2:F7:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/-AzGsNpLraHSAfvsXo88_mQOzFk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.240.32.0/19 Signature Algorithm: sha256WithRSAEncryption 43:04:a8:04:0d:c7:4d:5d:2b:a3:fd:c2:2a:7c:c1:3d:ef:16: 51:51:aa:bc:dd:ef:61:06:3a:42:45:74:ba:ba:0e:6e:c4:70: 9e:ec:34:5a:1c:09:40:a0:5b:d7:88:56:72:a9:64:be:2b:b9: 2a:ed:1b:d8:ef:27:b2:2b:9a:15:11:c6:b2:12:5e:18:2e:6d: 9c:1c:e6:9a:ce:89:9d:fb:c6:4e:fc:77:47:f7:ba:ec:2b:92: 7b:b1:81:ca:b2:52:27:b0:1c:d2:98:e5:8c:b5:03:fb:76:3e: 4f:02:d7:2a:35:1c:5f:27:11:a1:76:85:c4:9e:58:54:76:c8: 6f:c3:b7:ac:87:c7:7a:2c:4e:d3:86:1d:95:be:83:02:31:cc: b1:82:24:97:cb:7a:36:3f:dd:08:94:88:bb:98:6f:f9:98:ed: c0:fa:16:68:68:9b:0f:02:25:c0:64:52:e9:41:d5:f4:b9:ae: 72:fb:40:16:bc:d4:ea:28:d1:f9:cb:d4:4a:63:24:70:92:60: 76:ac:f4:ad:99:8e:cf:32:99:c3:34:a2:0b:dd:18:32:42:82: 7d:27:04:cc:c4:6a:9c:b4:67:f0:68:ce:34:71:c1:61:5c:6b: 09:59:14:e2:c3:ec:a3:f8:87:6d:0f:b2:55:2d:0d:46:cf:a7: 08:d1:e1:a7 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVC RkM5MDBFREMzNEY4MURBNDgyN0YxRjlGNjNEMDRFMEUyRjc1NjAeFw0yNTEwMjcw MjMxNDFaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEY4MENDNkIwREE0QkFE QTFEMjAxRkJFQzVFOEYzQ0ZFNjQwRUNDNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhnCJnFjk8ziVu/H7U2q8OBm/agKrlz9hhjfykhlQhNWlcqyej BSYFamB02Fg+PMH1kaPOYSbB/uRYnOHLpJ87HRN0iYvZjPEUcbIHgvuUiCZ6nWIM fqAYe6IJucW9ZOSeEPhp9ZVurhsA027ESL8yEy7yCHTij1lyuu3urLh5yIanf+4k zvKUGAFnwleesalN1kWtesHVVttYWwSKpavrIPgcJd81084Ne1gsCuwBDT7vKIJ8 qxxUXVUxDOj/6byJBvy/IHgcKZ1JFyKFW3OVqYFYaKXeO2x1EM2OpmDH8Kefgf2w EDjI4s7XJmg03Rt0lycD+H8DW/bWR6iXSK1LAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU+AzGsNpLraHSAfvsXo88/mQOzFkwHwYDVR0jBBgwFoAU3r/JAO3DT4HaSCfx +fY9BODi91YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIz LzNyX0pBTzNEVDRIYVNDZngtZlk5Qk9EaTkxWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvM3JfSkFPM0RUNEhhU0NmeC1mWTlCT0RpOTFZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIzLy1BekdzTnBMcmFIU0Fm dnNYbzg4X21RT3pGay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAV88CAwDQYJKoZIhvcNAQELBQADggEBAEMEqAQNx01dK6P9wip8wT3vFlFRqrzd 72EGOkJFdLq6Dm7EcJ7sNFocCUCgW9eIVnKpZL4ruSrtG9jvJ7IrmhURxrISXhgu bZwc5prOiZ37xk78d0f3uuwrknuxgcqyUiewHNKY5Yy1A/t2Pk8C1yo1HF8nEaF2 hcSeWFR2yG/Dt6yHx3osTtOGHZW+gwIxzLGCJJfLejY/3QiUiLuYb/mY7cD6Fmho mw8CJcBkUulB1fS5rnL7QBa81Ooo0fnL1EpjJHCSYHas9K2Zjs8ymcM0ogvdGDJC gn0nBMzEapy0Z/BozjRxwWFcawlZFOLD7KP4h20PslUtDUbPpwjR4ac= -----END CERTIFICATE-----Generated at Fri Dec 5 00:30:35 2025 by rpki-client