This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/SmgztSx1MDBT234WNiDzpRtCAPo.roa File: SmgztSx1MDBT234WNiDzpRtCAPo.roa (raw, json) Hash identifier: KHRyUPwT6ioxjycy0I26RdMgeTeO7wvCjXZDofziOlQ= Subject key identifier: 4A:68:33:B5:2C:75:30:30:53:DB:7E:16:36:20:F3:A5:1B:42:00:FA Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 4287 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/SmgztSx1MDBT234WNiDzpRtCAPo.roa Signing time: Wed 17 Apr 2024 06:52:59 +0000 ROA not before: Wed 17 Apr 2024 06:52:59 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 36.0.64.0/18 maxlen: 18 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 17031 (0x4287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Apr 17 06:52:59 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=4A6833B52C75303053DB7E163620F3A51B4200FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:56:9c:11:4e:b3:7b:03:10:bb:40:ec:51:e0: 00:16:bf:ec:17:9c:d4:0b:ab:96:a5:4b:9e:a6:52: c0:b9:d6:6a:dc:5b:5f:f6:39:c4:bd:e0:7e:29:2f: 2c:44:71:20:76:3e:64:65:e8:fa:c1:fc:b6:5e:84: cb:e4:9b:92:d2:62:bc:45:d9:47:0f:86:f2:e6:75: f3:43:85:21:70:a0:aa:fd:ef:47:d9:19:10:bb:95: ae:e8:a2:29:1b:0c:b4:7a:77:65:da:6d:0e:49:e1: a2:ea:1d:40:3b:fa:98:92:c3:3b:95:36:38:ca:f8: 5c:04:7a:56:1c:f2:30:93:e6:b5:48:b5:e2:b4:3a: 33:a0:f8:53:73:5c:3b:b0:79:ea:eb:04:47:a7:2c: 42:b7:c6:96:99:bc:9a:45:36:68:cb:ac:ed:d3:58: 93:a5:16:ab:15:59:6b:5c:15:44:7c:52:08:ea:92: 01:d5:94:47:21:57:18:f5:68:93:65:18:4c:55:5d: 94:c0:88:d4:31:42:ec:2b:f3:78:00:d3:75:7d:2f: 41:68:d5:12:0d:0a:a8:b9:6c:ee:e8:59:f8:c1:fb: af:52:c3:58:0e:d5:1d:df:c0:8f:38:a1:80:47:3c: 2c:0e:a1:0a:41:eb:cb:1f:84:b5:ed:c0:6b:f0:c9: b5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:68:33:B5:2C:75:30:30:53:DB:7E:16:36:20:F3:A5:1B:42:00:FA X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/SmgztSx1MDBT234WNiDzpRtCAPo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 72:d6:76:92:18:60:37:e7:3a:13:bd:d1:a7:20:db:b0:92:87: c6:3b:24:7e:e5:f3:72:3a:10:b8:78:ce:23:42:33:d8:69:cf: 22:bc:e9:aa:32:7a:bf:42:9f:77:ba:a1:81:85:6b:1c:5c:6d: 5c:7a:ba:64:f4:c8:45:7b:bd:ff:3b:46:ab:b8:98:77:7e:c6: 19:2f:e9:96:fa:6e:5f:c9:4c:ee:c8:53:71:63:3f:db:e3:7e: d2:0f:b0:94:14:e2:ae:ea:9c:d8:e4:88:3e:f2:14:8d:c6:23: e5:11:1a:b8:25:bd:2f:7a:56:e7:85:fb:28:1f:f5:65:e7:d7: cc:05:e3:c8:08:c9:6d:69:4b:9b:17:be:19:a1:0b:82:0a:ec: 8a:b3:a3:73:08:24:f7:5a:d4:22:8b:f8:c3:cd:39:7f:1c:aa: 27:67:9b:db:58:8f:99:51:b5:8b:40:16:fa:98:34:29:6c:8d: b8:6f:f3:b2:34:5a:40:d0:75:55:79:92:e8:15:27:77:00:0f: db:b6:0a:ec:5a:5a:2c:7a:9e:60:96:65:15:fe:89:bd:32:d0: 0b:53:72:4f:90:02:2e:a3:18:5d:2a:fd:1b:8d:91:3c:18:aa: 92:88:11:32:96:2a:ef:6b:9e:ff:eb:27:e2:17:9f:ce:cb:86: 9d:02:8a:10 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICQocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MTcw NjUyNTlaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDRBNjgzM0I1MkM3NTMw MzA1M0RCN0UxNjM2MjBGM0E1MUI0MjAwRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhVpwRTrN7AxC7QOxR4AAWv+wXnNQLq5alS56mUsC51mrcW1/2 OcS94H4pLyxEcSB2PmRl6PrB/LZehMvkm5LSYrxF2UcPhvLmdfNDhSFwoKr970fZ GRC7la7ooikbDLR6d2XabQ5J4aLqHUA7+piSwzuVNjjK+FwEelYc8jCT5rVIteK0 OjOg+FNzXDuweerrBEenLEK3xpaZvJpFNmjLrO3TWJOlFqsVWWtcFUR8UgjqkgHV lEchVxj1aJNlGExVXZTAiNQxQuwr83gA03V9L0Fo1RINCqi5bO7oWfjB+69Sw1gO 1R3fwI84oYBHPCwOoQpB68sfhLXtwGvwybWbAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSmgztSx1MDBT234WNiDzpRtCAPowHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L1NtZ3p0U3gxTURCVDIz NFdOaUR6cFJ0Q0FQby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAHLWdpIYYDfnOhO90acg27CSh8Y7JH7l 83I6ELh4ziNCM9hpzyK86aoyer9Cn3e6oYGFaxxcbVx6umT0yEV7vf87Rqu4mHd+ xhkv6Zb6bl/JTO7IU3FjP9vjftIPsJQU4q7qnNjkiD7yFI3GI+URGrglvS96VueF +ygf9WXn18wF48gIyW1pS5sXvhmhC4IK7Iqzo3MIJPda1CKL+MPNOX8cqidnm9tY j5lRtYtAFvqYNClsjbhv87I0WkDQdVV5kugVJ3cAD9u2CuxaWix6nmCWZRX+ib0y 0AtTck+QAi6jGF0q/RuNkTwYqpKIETKWKu9rnv/rJ+IXn87Lhp0CihA= -----END CERTIFICATE-----Generated at Mon Jan 12 00:02:54 2026 by rpki-client