This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/AE8oYVkzj3n-XEgL5MN9wovEGek.roa File: AE8oYVkzj3n-XEgL5MN9wovEGek.roa (raw, json) Hash identifier: ogD45dm6xpWl6Mr/CIJ3NdDr8lAGb60vw9nVXnnF7wM= Subject key identifier: 00:4F:28:61:59:33:8F:79:FE:5C:48:0B:E4:C3:7D:C2:8B:C4:19:E9 Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 22BD Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/AE8oYVkzj3n-XEgL5MN9wovEGek.roa Signing time: Fri 19 Dec 2025 03:07:13 +0000 ROA not before: Fri 19 Dec 2025 03:07:13 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 59033 IP address blocks: 103.204.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8893 (0x22bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Dec 19 03:07:13 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=004F286159338F79FE5C480BE4C37DC28BC419E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d2:38:75:17:a2:ca:f6:4e:06:78:c3:c1:5b: 8c:03:98:3c:89:41:81:8e:07:cb:ef:c1:82:ad:1b: 6a:25:03:91:55:d3:46:8c:48:23:b3:6a:54:f9:9b: cc:a6:75:69:90:b2:28:ae:06:a2:98:84:bb:7f:0d: 56:99:02:e2:47:5a:40:47:f9:de:cd:1b:b2:68:1a: 38:c7:85:fd:34:dc:e5:20:0a:fc:cb:e7:6b:e3:42: 40:02:ba:43:f2:f4:4b:e7:be:36:b1:38:79:ae:6b: c9:b1:e8:f5:b9:32:a8:e8:0b:4b:06:f7:a5:6b:76: 7c:a3:3e:f5:1d:f7:d6:de:95:74:d7:c1:7b:e3:9b: 5a:42:70:2e:e1:42:f5:c7:85:75:09:8b:aa:31:47: 1c:e0:f8:2c:f8:d7:41:6d:ee:68:9b:8c:bd:20:aa: 5c:7a:2d:9b:fb:3f:da:f7:fa:61:f6:39:56:87:6d: 23:dd:f0:32:29:13:7a:7c:70:19:8a:c1:5c:e1:e5: 6b:40:5b:0d:5d:52:8b:03:b3:04:69:3d:f9:c5:76: 8c:c9:35:6f:7b:0c:16:07:bc:48:f4:54:48:14:5d: 2d:b1:39:77:23:f7:b4:53:b0:2b:25:94:06:04:46: c5:14:b9:e6:9a:6f:1b:da:0b:54:16:91:5f:83:9c: 54:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4F:28:61:59:33:8F:79:FE:5C:48:0B:E4:C3:7D:C2:8B:C4:19:E9 X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/AE8oYVkzj3n-XEgL5MN9wovEGek.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.204.74.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:8f:47:80:70:6d:14:db:f9:b6:e8:40:cf:b0:0c:5c:ce:6d: d0:c5:9b:2f:d7:ff:6d:d7:02:ea:d0:86:4c:ce:22:17:44:cd: e2:a7:9a:66:ee:9d:04:1c:c1:a4:93:34:8d:7f:c6:c2:82:05: 58:04:48:7b:ba:35:ff:4d:a2:93:ba:28:f9:75:ff:bf:6a:19: 5c:f2:ce:19:3f:f4:b2:dd:4b:f4:26:d6:69:fd:dc:af:68:f8: f5:23:44:55:78:e6:c6:bf:64:d7:90:cb:85:44:65:9d:39:54: 64:60:d2:52:4a:0b:bd:0f:88:74:06:79:99:e4:59:99:fb:fe: 04:4b:35:fa:c4:4f:38:b3:94:9d:88:05:1a:b7:28:6a:dd:2a: af:e3:32:64:4f:eb:67:9d:9a:11:17:d3:b8:17:9e:5a:2d:11: 5e:7c:96:eb:0e:ce:a0:66:06:1e:d0:b1:17:76:97:2b:2c:a0: 83:96:24:8d:f9:5f:5e:4c:f8:39:1a:5c:8f:93:72:1b:6b:8f: 26:88:31:7a:c9:6a:8c:a6:17:01:3b:7c:44:31:86:24:b9:11: 11:24:35:32:8f:38:2a:13:c9:51:68:38:72:ae:d9:12:82:a7: 07:b8:43:14:da:af:84:d4:1f:f2:77:9d:f2:d4:0b:ab:0a:f7: c3:02:66:36 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIr0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTEyMTkw MzA3MTNaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDAwNEYyODYxNTkzMzhG NzlGRTVDNDgwQkU0QzM3REMyOEJDNDE5RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw0jh1F6LK9k4GeMPBW4wDmDyJQYGOB8vvwYKtG2olA5FV00aM SCOzalT5m8ymdWmQsiiuBqKYhLt/DVaZAuJHWkBH+d7NG7JoGjjHhf003OUgCvzL 52vjQkACukPy9EvnvjaxOHmua8mx6PW5MqjoC0sG96VrdnyjPvUd99belXTXwXvj m1pCcC7hQvXHhXUJi6oxRxzg+Cz410Ft7mibjL0gqlx6LZv7P9r3+mH2OVaHbSPd 8DIpE3p8cBmKwVzh5WtAWw1dUosDswRpPfnFdozJNW97DBYHvEj0VEgUXS2xOXcj 97RTsCsllAYERsUUueaabxvaC1QWkV+DnFRrAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUAE8oYVkzj3n+XEgL5MN9wovEGekwHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvQUU4b1lWa3pqM24t WEVnTDVNTjl3b3ZFR2VrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWfMSjANBgkqhkiG9w0BAQsFAAOCAQEAbo9HgHBtFNv5tuhAz7AMXM5t0MWb L9f/bdcC6tCGTM4iF0TN4qeaZu6dBBzBpJM0jX/GwoIFWARIe7o1/02ik7oo+XX/ v2oZXPLOGT/0st1L9CbWaf3cr2j49SNEVXjmxr9k15DLhURlnTlUZGDSUkoLvQ+I dAZ5meRZmfv+BEs1+sRPOLOUnYgFGrcoat0qr+MyZE/rZ52aERfTuBeeWi0RXnyW 6w7OoGYGHtCxF3aXKyygg5YkjflfXkz4ORpcj5NyG2uPJogxeslqjKYXATt8RDGG JLkRESQ1Mo84KhPJUWg4cq7ZEoKnB7hDFNqvhNQf8ned8tQLqwr3wwJmNg== -----END CERTIFICATE-----Generated at Sun Dec 21 20:03:09 2025 by rpki-client