This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/SJtWXcAX8EyPsfV9kHPC--oan7Q.roa File: SJtWXcAX8EyPsfV9kHPC--oan7Q.roa (raw, json) Hash identifier: pmbLuBB+1H3rlYZdDKfL/Q1thsGRbbPZjPdeLWmuaEo= Subject key identifier: 48:9B:56:5D:C0:17:F0:4C:8F:B1:F5:7D:90:73:C2:FB:EA:1A:9F:B4 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 51C1 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/SJtWXcAX8EyPsfV9kHPC--oan7Q.roa Signing time: Tue 07 May 2024 14:24:04 +0000 ROA not before: Tue 07 May 2024 14:24:04 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 43.239.0.0/19 maxlen: 19 101.78.32.0/19 maxlen: 19 103.35.0.0/19 maxlen: 19 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 20929 (0x51c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 7 14:24:04 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=489B565DC017F04C8FB1F57D9073C2FBEA1A9FB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:44:ee:a3:8e:a5:67:fd:fd:16:cd:e1:a1:95: 5b:f2:85:d3:02:df:97:34:b5:87:9d:a4:ac:2a:af: 63:2b:4f:8d:23:b9:77:3c:41:94:5e:69:d4:20:31: 50:ba:aa:ef:04:a6:e9:ba:d6:8e:4f:23:d9:b7:a8: 6f:e4:ce:6e:72:eb:c1:87:07:70:e0:71:15:b5:c1: 26:f4:e5:ba:60:f5:01:97:4d:19:d3:25:62:9a:e4: c6:fa:de:82:a3:4d:0d:b5:21:09:c4:03:44:41:1d: 90:81:b5:73:1c:ed:63:22:e8:86:34:ec:68:66:8d: f1:a3:91:90:a8:48:23:35:59:be:24:5d:73:fb:7d: ad:3b:c1:bd:95:67:67:2f:48:40:74:38:92:5e:ac: 02:5b:b8:eb:74:94:5b:c6:85:da:9a:dd:5d:1e:d4: 4b:1b:4b:27:6e:5e:33:2c:0a:e9:e2:c2:e5:30:70: 78:bb:9d:50:3d:c1:9f:ed:6f:f7:e8:f1:14:26:25: 58:a7:60:27:8f:27:52:24:22:a1:d8:ba:7c:fb:25: 8b:47:f0:88:d9:c1:d1:90:83:8d:e0:0b:e8:54:49: d9:c3:d6:4f:07:a4:6c:c7:f8:e4:2b:8b:7d:8c:f5: 87:aa:85:ac:8f:f7:e8:a5:92:1a:38:b9:81:93:a7: 56:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9B:56:5D:C0:17:F0:4C:8F:B1:F5:7D:90:73:C2:FB:EA:1A:9F:B4 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/SJtWXcAX8EyPsfV9kHPC--oan7Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.239.0.0/19 101.78.32.0/19 103.35.0.0/19 Signature Algorithm: sha256WithRSAEncryption 95:f2:db:b5:91:a1:1c:7b:9c:a3:a5:90:0c:2c:9c:e8:b0:12: 8d:28:52:13:a1:af:36:1b:d2:01:03:a0:67:07:f8:8c:c0:34: 87:09:b6:23:e8:33:c6:08:55:6e:23:92:11:07:0e:f2:eb:18: 07:b6:3a:93:d1:de:db:72:5e:a1:9b:e8:ec:14:3c:8e:1c:7a: 28:fb:9a:c5:b1:56:21:c9:ee:d1:6d:de:c5:c8:7d:87:96:60: 36:32:03:f5:2e:4b:78:1b:74:b4:77:4f:ce:3a:51:1d:bf:32: 01:0f:77:28:ef:c0:b7:31:01:4d:93:e0:8e:b5:38:b0:13:26: c0:50:80:59:3d:41:d7:88:3c:f6:76:00:00:4a:5e:4b:37:e2: 49:a7:24:1a:fd:52:0f:99:c8:f1:3b:90:89:41:9b:1e:6e:5f: 38:20:0f:d2:56:98:87:6f:28:1b:56:08:a9:da:10:2d:24:4b: f7:30:70:81:10:c4:58:7e:0a:85:80:31:c4:43:f6:ca:fe:1e: 5c:d2:3f:97:4a:8d:cd:f3:4f:c8:61:51:85:d1:0e:aa:aa:9c: a4:73:90:9b:c0:8b:54:fa:7d:2e:59:8f:ad:a5:30:6b:65:fc: a0:97:b2:77:34:39:83:52:84:dc:f1:6c:1a:98:2b:e8:cb:43: 86:65:23:f4 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgICUcEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDcx NDI0MDRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDQ4OUI1NjVEQzAxN0Yw NEM4RkIxRjU3RDkwNzNDMkZCRUExQTlGQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnRO6jjqVn/f0WzeGhlVvyhdMC35c0tYedpKwqr2MrT40juXc8 QZReadQgMVC6qu8Epum61o5PI9m3qG/kzm5y68GHB3DgcRW1wSb05bpg9QGXTRnT JWKa5Mb63oKjTQ21IQnEA0RBHZCBtXMc7WMi6IY07GhmjfGjkZCoSCM1Wb4kXXP7 fa07wb2VZ2cvSEB0OJJerAJbuOt0lFvGhdqa3V0e1EsbSyduXjMsCuniwuUwcHi7 nVA9wZ/tb/fo8RQmJVinYCePJ1IkIqHYunz7JYtH8IjZwdGQg43gC+hUSdnD1k8H pGzH+OQri32M9YeqhayP9+ilkho4uYGTp1aFAgMBAAGjggH9MIIB+TAdBgNVHQ4E FgQUSJtWXcAX8EyPsfV9kHPC++oan7QwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L1NKdFdYY0FYOEV5UHNm VjlrSFBDLS1vYW43US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAJXy27WRoRx7nKOl kAwsnOiwEo0oUhOhrzYb0gEDoGcH+IzANIcJtiPoM8YIVW4jkhEHDvLrGAe2OpPR 3ttyXqGb6OwUPI4ceij7msWxViHJ7tFt3sXIfYeWYDYyA/UuS3gbdLR3T846UR2/ MgEPdyjvwLcxAU2T4I61OLATJsBQgFk9QdeIPPZ2AABKXks34kmnJBr9Ug+ZyPE7 kIlBmx5uXzggD9JWmIdvKBtWCKnaEC0kS/cwcIEQxFh+CoWAMcRD9sr+HlzSP5dK jc3zT8hhUYXRDqqqnKRzkJvAi1T6fS5Zj62lMGtl/KCXsnc0OYNShNzxbBqYK+jL Q4ZlI/Q= -----END CERTIFICATE-----Generated at Sun Jan 11 15:13:51 2026 by rpki-client