This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/IRHz5Ba2PVbYhAGVnjY4ANa4Wo8.roa File: IRHz5Ba2PVbYhAGVnjY4ANa4Wo8.roa (raw, json) Hash identifier: V1igK2gVTZ/Cl+ETVp1SO/iafMgDAC3Q3x3d6pximy4= Subject key identifier: 21:11:F3:E4:16:B6:3D:56:D8:84:01:95:9E:36:38:00:D6:B8:5A:8F Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 531F Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/IRHz5Ba2PVbYhAGVnjY4ANa4Wo8.roa Signing time: Thu 09 May 2024 09:53:58 +0000 ROA not before: Thu 09 May 2024 09:53:58 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 36.0.64.0/18 maxlen: 18 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 21279 (0x531f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 9 09:53:58 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=2111F3E416B63D56D88401959E363800D6B85A8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d2:7b:4e:eb:f5:c4:c2:07:32:8d:46:d9:2e: f1:42:c0:83:12:3e:d9:7b:df:00:c5:12:a0:df:64: 9e:97:cf:eb:c0:31:b1:b2:ae:d7:a0:76:f5:35:b7: 57:05:0d:74:a6:6b:7c:d5:bd:2d:e5:90:7d:c6:5a: b8:48:3e:7e:3c:52:1e:be:30:be:a5:28:e8:b6:f2: 5c:80:b3:e3:16:81:a7:40:a3:c2:77:56:e1:95:b2: fb:18:67:4a:de:90:03:21:2b:0d:af:33:cc:db:7b: 93:62:d3:1b:51:cc:83:8d:5c:f7:49:b1:96:e9:2c: 13:b8:98:c7:2e:67:fc:11:95:d8:22:f3:b4:5e:ad: 6c:15:1e:65:a6:4c:5f:a2:84:5e:f3:84:86:06:eb: e6:85:eb:0e:49:5f:ed:3a:c4:b3:e5:d3:e6:85:0e: 41:f4:08:28:16:7b:78:c4:e0:ac:ce:36:f5:31:45: 58:7d:f3:f4:61:5c:50:16:58:77:a3:30:04:29:62: 1a:bd:b5:03:ed:fc:d7:da:39:d7:ad:75:ee:2a:52: ec:92:8e:cc:55:20:95:df:cd:02:70:a6:46:61:7e: 23:f7:43:47:69:8e:32:65:71:aa:e9:d8:92:85:09: e2:68:df:4f:a7:ae:01:29:25:97:ce:6d:2a:03:ba: 46:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:11:F3:E4:16:B6:3D:56:D8:84:01:95:9E:36:38:00:D6:B8:5A:8F X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/IRHz5Ba2PVbYhAGVnjY4ANa4Wo8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 58:42:b1:e6:aa:52:a5:d4:45:95:08:f2:f0:5e:23:f9:d5:be: 9e:43:92:c7:f3:a8:b2:ce:6b:d4:c0:07:b5:99:67:4a:90:7d: 46:6c:8c:d8:e0:af:0b:51:75:41:3d:2f:93:bb:10:f9:cf:f8: 6e:31:84:d1:d6:0f:c8:cb:62:5f:2e:f1:24:26:96:d3:81:1e: d9:9f:e4:98:84:20:10:d3:a0:be:15:4f:ca:a3:58:30:d6:54: 68:95:ee:b0:30:4d:3a:88:29:31:af:4c:e9:69:57:b5:d6:da: 18:3d:4c:4b:b5:f2:a9:ca:51:ee:80:46:a2:3c:b4:b1:40:86: 32:6a:69:0c:7b:47:cd:41:eb:1e:01:31:3c:58:a8:94:34:39: 52:fb:b7:3b:6c:bd:fe:40:34:98:c2:80:e1:25:c4:65:7d:b8: db:18:49:53:9b:98:d4:77:17:54:83:67:d9:37:f1:5b:41:26: 9a:14:b2:5a:f2:d7:fb:55:87:fb:27:ce:ab:02:79:69:bc:f9: 2d:29:76:2d:46:f2:a9:f8:94:70:6b:53:52:80:96:7b:36:90: ee:b0:c9:74:82:4c:45:74:3c:cb:ad:d0:6c:20:5e:77:55:80: b2:b9:1a:69:04:b4:9d:9a:e3:b7:47:7f:1b:18:4a:c2:1b:40: a1:ca:d2:63 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICUx8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDkw OTUzNThaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDIxMTFGM0U0MTZCNjNE NTZEODg0MDE5NTlFMzYzODAwRDZCODVBOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ0ntO6/XEwgcyjUbZLvFCwIMSPtl73wDFEqDfZJ6Xz+vAMbGy rtegdvU1t1cFDXSma3zVvS3lkH3GWrhIPn48Uh6+ML6lKOi28lyAs+MWgadAo8J3 VuGVsvsYZ0rekAMhKw2vM8zbe5Ni0xtRzIONXPdJsZbpLBO4mMcuZ/wRldgi87Re rWwVHmWmTF+ihF7zhIYG6+aF6w5JX+06xLPl0+aFDkH0CCgWe3jE4KzONvUxRVh9 8/RhXFAWWHejMAQpYhq9tQPt/NfaOdetde4qUuySjsxVIJXfzQJwpkZhfiP3Q0dp jjJlcarp2JKFCeJo30+nrgEpJZfObSoDukZXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUIRHz5Ba2PVbYhAGVnjY4ANa4Wo8wHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L0lSSHo1QmEyUFZiWWhB R1Zualk0QU5hNFdvOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAFhCseaqUqXURZUI8vBeI/nVvp5Dksfz qLLOa9TAB7WZZ0qQfUZsjNjgrwtRdUE9L5O7EPnP+G4xhNHWD8jLYl8u8SQmltOB Htmf5JiEIBDToL4VT8qjWDDWVGiV7rAwTTqIKTGvTOlpV7XW2hg9TEu18qnKUe6A RqI8tLFAhjJqaQx7R81B6x4BMTxYqJQ0OVL7tztsvf5ANJjCgOElxGV9uNsYSVOb mNR3F1SDZ9k38VtBJpoUslry1/tVh/snzqsCeWm8+S0pdi1G8qn4lHBrU1KAlns2 kO6wyXSCTEV0PMut0GwgXndVgLK5GmkEtJ2a47dHfxsYSsIbQKHK0mM= -----END CERTIFICATE-----Generated at Mon Jan 12 16:49:05 2026 by rpki-client