This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/0FXUGR0Ppx3XpniNrIufqRnpwQ0.roa File: 0FXUGR0Ppx3XpniNrIufqRnpwQ0.roa (raw, json) Hash identifier: dNqskDL/L4ISRKgppox21BVoqBa9Mm1N2hX4byq0AFE= Subject key identifier: D0:55:D4:19:1D:0F:A7:1D:D7:A6:78:8D:AC:8B:9F:A9:19:E9:C1:0D Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 22A4 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/0FXUGR0Ppx3XpniNrIufqRnpwQ0.roa Signing time: Fri 19 Dec 2025 03:03:47 +0000 ROA not before: Fri 19 Dec 2025 03:03:47 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 132168 IP address blocks: 202.160.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8868 (0x22a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Dec 19 03:03:47 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=D055D4191D0FA71DD7A6788DAC8B9FA919E9C10D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b8:99:a4:26:b0:f7:45:43:66:17:bd:f0:07: 36:b9:1a:7b:cb:39:0d:92:59:a6:a7:8e:4b:c9:bc: 3e:44:ba:3b:3c:98:2f:a9:48:fb:97:2a:3a:9e:80: c3:5b:a0:b1:4f:7a:9d:45:e7:fc:a9:7d:90:4a:b9: 81:44:f6:40:fa:d0:ba:2f:1e:69:0b:a7:f8:22:8d: 13:5d:8b:6b:f7:d0:8e:96:96:87:99:99:d2:3a:86: 39:64:3e:13:64:e5:4c:7d:c0:4a:73:9b:92:ae:08: 05:b7:cf:29:b2:f5:9a:f9:28:c4:dd:4e:0d:94:60: 53:1a:57:b9:8d:46:1f:7f:9a:3b:4e:d1:aa:60:1f: 50:67:1d:05:fe:c9:56:38:0e:fa:c1:0d:a6:69:cc: 52:38:ee:db:9b:f3:27:1e:cd:15:22:cf:76:03:71: 71:c6:fe:a7:d9:ac:47:7d:4c:f4:75:e3:2c:86:35: 62:24:e8:9c:69:ec:e3:b4:9c:0e:f5:6b:87:f9:3e: 6c:12:7f:ee:09:4d:02:7b:7d:fd:b0:99:ee:7e:21: 08:0c:60:38:ed:dc:f2:31:88:0f:15:57:86:cf:3f: 44:78:85:8c:86:ef:a7:03:de:04:02:83:75:f7:83: ff:e9:fd:d5:8f:7a:86:e6:6f:53:f8:6a:1f:7b:5a: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:55:D4:19:1D:0F:A7:1D:D7:A6:78:8D:AC:8B:9F:A9:19:E9:C1:0D X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/0FXUGR0Ppx3XpniNrIufqRnpwQ0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.141.0/24 Signature Algorithm: sha256WithRSAEncryption b3:f4:a8:08:43:28:3c:c5:ed:4f:56:c4:a0:00:65:2b:31:24: fc:cd:3b:29:6f:e1:d4:21:a3:bc:39:9d:19:06:3f:d8:80:31: a7:95:ad:84:5e:7c:13:44:96:b2:0f:e0:ce:73:e3:84:76:df: 06:2d:cc:8b:f5:c0:b3:4f:c2:bb:b6:d6:1a:93:45:e2:5b:67: cd:ce:8d:c0:1a:02:0c:6b:19:8b:90:f7:a2:58:0e:db:d2:6d: af:6b:10:1a:e9:fb:f5:56:0a:15:13:93:cf:51:dd:c4:c2:f9: 78:b7:d0:a5:89:07:96:93:b9:19:8f:a5:21:e8:0a:a0:32:3e: bd:17:6f:49:35:33:71:6a:96:a7:c3:46:4a:05:a9:55:c7:d2: f2:e3:0e:5d:5e:0c:40:9d:a7:59:27:c4:6c:fb:8b:a3:46:db: 5c:40:f2:ea:d9:52:37:ce:ea:6c:5d:3c:85:fe:04:98:c5:d2: c5:55:69:d1:b9:d9:ec:65:c6:73:f9:8b:6b:cd:dc:a1:15:de: 3c:35:2c:79:63:39:98:25:de:be:f5:00:56:3d:96:51:22:2c: 49:71:b7:77:a8:97:26:b8:18:f2:02:6a:4f:7a:86:d2:66:a8: 67:cd:64:ac:92:9d:86:3c:85:54:4e:b6:29:d8:85:3f:24:24: 32:e7:4d:b6 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIqQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTEyMTkw MzAzNDdaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEQwNTVENDE5MUQwRkE3 MUREN0E2Nzg4REFDOEI5RkE5MTlFOUMxMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxuJmkJrD3RUNmF73wBza5GnvLOQ2SWaanjkvJvD5Eujs8mC+p SPuXKjqegMNboLFPep1F5/ypfZBKuYFE9kD60LovHmkLp/gijRNdi2v30I6WloeZ mdI6hjlkPhNk5Ux9wEpzm5KuCAW3zymy9Zr5KMTdTg2UYFMaV7mNRh9/mjtO0apg H1BnHQX+yVY4DvrBDaZpzFI47tub8ycezRUiz3YDcXHG/qfZrEd9TPR14yyGNWIk 6Jxp7OO0nA71a4f5PmwSf+4JTQJ7ff2wme5+IQgMYDjt3PIxiA8VV4bPP0R4hYyG 76cD3gQCg3X3g//p/dWPeobmb1P4ah97WtSPAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU0FXUGR0Ppx3XpniNrIufqRnpwQ0wHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvMEZYVUdSMFBweDNY cG5pTnJJdWZxUm5wd1EwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMqgjTANBgkqhkiG9w0BAQsFAAOCAQEAs/SoCEMoPMXtT1bEoABlKzEk/M07 KW/h1CGjvDmdGQY/2IAxp5WthF58E0SWsg/gznPjhHbfBi3Mi/XAs0/Cu7bWGpNF 4ltnzc6NwBoCDGsZi5D3olgO29Jtr2sQGun79VYKFROTz1HdxML5eLfQpYkHlpO5 GY+lIegKoDI+vRdvSTUzcWqWp8NGSgWpVcfS8uMOXV4MQJ2nWSfEbPuLo0bbXEDy 6tlSN87qbF08hf4EmMXSxVVp0bnZ7GXGc/mLa83coRXePDUseWM5mCXevvUAVj2W USIsSXG3d6iXJrgY8gJqT3qG0maoZ81krJKdhjyFVE62KdiFPyQkMudNtg== -----END CERTIFICATE-----Generated at Sun Dec 21 20:04:02 2025 by rpki-client