This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/68Tqde62bHEReE-AV0xkuC8rczc.roa File: 68Tqde62bHEReE-AV0xkuC8rczc.roa (raw, json) Hash identifier: 7+jiwCCn7bmstscSdmD7V0KpYV1wfJoRYn+94++UmGE= Subject key identifier: EB:C4:EA:75:EE:B6:6C:71:11:78:4F:80:57:4C:64:B8:2F:2B:73:37 Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 22A9 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/68Tqde62bHEReE-AV0xkuC8rczc.roa Signing time: Fri 19 Dec 2025 03:03:48 +0000 ROA not before: Fri 19 Dec 2025 03:03:48 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 132168 IP address blocks: 202.160.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8873 (0x22a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Dec 19 03:03:48 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=EBC4EA75EEB66C7111784F80574C64B82F2B7337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:14:8b:af:c0:a1:4c:04:e2:8d:08:c1:44:af: 59:45:41:d4:9e:1d:64:32:d8:25:6e:20:53:61:fb: 3a:7d:77:d9:79:99:12:1c:f0:16:ea:00:d2:09:69: ff:dc:10:4e:13:2e:07:f3:dc:1c:d1:03:1f:08:40: 8c:48:b9:94:21:80:54:d7:b0:3e:c8:92:2c:0a:40: e6:67:6c:07:6e:99:1f:52:f9:01:d2:5c:79:73:3c: 43:8d:9b:7a:74:6b:ce:2a:aa:13:3a:eb:29:93:a9: 71:d6:ed:44:67:b5:37:db:fb:4c:1c:da:6b:fc:2e: 45:e4:4a:14:1a:76:4d:15:d9:00:31:cd:d0:c9:13: e6:e8:a5:19:2d:16:b7:dc:ca:22:0d:bc:5d:ab:17: 14:dc:5a:5f:20:a9:6a:c2:f6:3d:b5:e7:14:97:51: bb:72:5e:5a:2e:0d:89:7c:22:6c:b0:44:37:ff:0b: ab:e2:75:30:ce:ff:db:77:b6:9f:0d:3e:9f:86:42: 08:df:e2:4a:b2:54:22:c0:87:e8:61:c3:24:6e:1c: b4:53:bc:78:84:e8:c4:94:bd:2c:71:20:f4:74:8a: 90:4b:3a:1a:6b:56:23:9d:e5:70:08:23:82:cb:b1: a6:41:c4:18:88:1d:45:23:16:44:76:60:d1:ae:dc: 14:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C4:EA:75:EE:B6:6C:71:11:78:4F:80:57:4C:64:B8:2F:2B:73:37 X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/68Tqde62bHEReE-AV0xkuC8rczc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.140.0/24 Signature Algorithm: sha256WithRSAEncryption 29:b4:0f:f5:ac:64:ef:c8:3b:43:af:45:1b:09:2d:19:54:98: 62:3a:7e:ca:3f:9e:d3:c4:b5:f4:32:21:03:f8:a1:07:3c:40: 12:6b:c4:f0:53:a3:ea:35:b6:0a:79:54:42:41:f5:1d:a3:77: 3c:8e:62:38:da:06:ea:13:0a:0e:84:93:38:3f:15:c9:2e:24: be:37:0b:19:8f:bc:30:00:09:43:97:26:59:b3:14:c3:12:5c: fe:55:dc:00:68:ea:79:a8:7f:cd:7a:bf:79:6d:00:0b:be:6f: 35:c1:91:ce:64:ab:ce:78:5f:1a:2d:57:ee:30:ce:be:97:75: d0:dd:d1:c4:2e:5b:1c:85:e0:e0:e7:ae:b4:51:ab:ba:51:67: c4:44:19:50:88:17:26:02:8b:55:fb:6f:fc:c9:6b:40:d3:e6: 56:ea:9c:c2:e8:6d:55:1d:5a:f2:97:f2:1e:bf:29:0c:15:94: bc:16:01:4d:29:74:e6:64:89:a5:6b:3d:4d:0c:20:1f:81:a8: c6:3f:fa:77:73:fc:16:37:d9:62:50:87:e4:34:36:43:5d:a1: 04:3e:d3:0c:c9:50:18:0d:29:fe:32:f4:6a:25:dc:ba:e5:73: 71:dc:92:94:5d:4c:26:af:b2:44:10:57:21:a2:7c:bf:0d:37: 08:c2:c2:bd -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTEyMTkw MzAzNDhaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKEVCQzRFQTc1RUVCNjZD NzExMTc4NEY4MDU3NEM2NEI4MkYyQjczMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDFIuvwKFMBOKNCMFEr1lFQdSeHWQy2CVuIFNh+zp9d9l5mRIc 8BbqANIJaf/cEE4TLgfz3BzRAx8IQIxIuZQhgFTXsD7IkiwKQOZnbAdumR9S+QHS XHlzPEONm3p0a84qqhM66ymTqXHW7URntTfb+0wc2mv8LkXkShQadk0V2QAxzdDJ E+bopRktFrfcyiINvF2rFxTcWl8gqWrC9j215xSXUbtyXlouDYl8ImywRDf/C6vi dTDO/9t3tp8NPp+GQgjf4kqyVCLAh+hhwyRuHLRTvHiE6MSUvSxxIPR0ipBLOhpr ViOd5XAII4LLsaZBxBiIHUUjFkR2YNGu3BStAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU68Tqde62bHEReE+AV0xkuC8rczcwHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvNjhUcWRlNjJiSEVS ZUUtQVYweGt1QzhyY3pjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMqgjDANBgkqhkiG9w0BAQsFAAOCAQEAKbQP9axk78g7Q69FGwktGVSYYjp+ yj+e08S19DIhA/ihBzxAEmvE8FOj6jW2CnlUQkH1HaN3PI5iONoG6hMKDoSTOD8V yS4kvjcLGY+8MAAJQ5cmWbMUwxJc/lXcAGjqeah/zXq/eW0AC75vNcGRzmSrznhf Gi1X7jDOvpd10N3RxC5bHIXg4OeutFGrulFnxEQZUIgXJgKLVftv/MlrQNPmVuqc wuhtVR1a8pfyHr8pDBWUvBYBTSl05mSJpWs9TQwgH4Goxj/6d3P8FjfZYlCH5DQ2 Q12hBD7TDMlQGA0p/jL0aiXcuuVzcdySlF1MJq+yRBBXIaJ8vw03CMLCvQ== -----END CERTIFICATE-----Generated at Sun Dec 21 20:00:56 2025 by rpki-client