This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/VQiR1EIqXEsPeSHoGttt6sC7vvw.roa File: VQiR1EIqXEsPeSHoGttt6sC7vvw.roa (raw, json) Hash identifier: jBOn8MPSS4dsFr8CMWbButO0QF3PKN8Y3oNYXrkVg3w= Subject key identifier: 55:08:91:D4:42:2A:5C:4B:0F:79:21:E8:1A:DB:6D:EA:C0:BB:BE:FC Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 57EE Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VQiR1EIqXEsPeSHoGttt6sC7vvw.roa Signing time: Wed 15 May 2024 19:54:13 +0000 ROA not before: Wed 15 May 2024 19:54:13 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 43.236.0.0/16 maxlen: 16 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 22510 (0x57ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 15 19:54:13 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=550891D4422A5C4B0F7921E81ADB6DEAC0BBBEFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:92:7e:f9:7c:68:fa:c6:b9:ed:11:fb:db:5e: 50:1d:1e:d0:8f:ed:0c:19:cc:a5:d6:ad:b3:61:4d: 60:04:12:13:2b:53:4f:53:1d:49:2c:f0:f3:32:b8: 9b:92:b4:6a:b1:76:7c:31:2b:8e:0d:28:bd:1f:d6: e3:22:39:81:60:c0:ff:8d:ac:0e:94:3b:78:34:1d: c4:d1:20:69:77:5f:ea:b5:0f:a3:7d:b7:08:fd:3f: 0e:d5:e3:7a:32:01:13:12:c6:52:b3:b7:ca:a3:29: 44:f9:60:96:02:97:2c:99:4d:ba:9d:c3:89:f4:2b: f4:ed:03:f1:01:d4:eb:b5:e7:f5:e1:76:c8:f1:64: 57:aa:51:45:5c:92:15:d9:63:a2:c5:0e:d1:bd:33: 26:26:21:31:14:c4:cb:c5:03:67:80:bf:f6:19:7c: da:30:fd:06:a6:ce:24:ed:ef:2f:10:6c:0e:37:55: 38:78:a2:15:c4:fa:3b:d0:d9:a5:f5:6c:34:81:b8: 7f:07:f5:55:53:95:da:c8:45:ff:7f:26:22:1a:74: 4b:e6:57:d4:fb:56:64:31:f7:49:27:68:1f:f6:d0: 2e:f5:09:8f:00:b3:29:3b:ee:31:63:0c:d9:4e:c8: 57:83:47:f1:8f:2d:4c:a0:50:61:41:64:e6:56:f6: 72:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:08:91:D4:42:2A:5C:4B:0F:79:21:E8:1A:DB:6D:EA:C0:BB:BE:FC X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/VQiR1EIqXEsPeSHoGttt6sC7vvw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 17:dd:e7:94:bb:a9:93:42:ce:8e:83:08:32:40:2b:71:6b:27: 34:53:f7:ab:f3:8f:d4:b6:e9:2d:9e:c6:fa:5d:2f:93:9f:cb: 99:80:2d:a9:3d:fa:f9:38:33:ad:6a:81:53:63:67:d8:31:6b: e1:17:b4:57:e7:b8:d0:ae:9d:67:f1:9d:7a:96:ec:31:04:93: 05:70:5c:f2:ca:96:ac:42:e0:56:f5:7e:45:0e:b2:0e:48:53: e9:74:ee:e8:19:05:c0:c9:48:8c:b2:85:f7:77:61:65:0a:55: 52:e3:70:3f:83:9d:75:27:7e:f5:54:0c:67:a8:5b:c5:27:f8: 53:45:21:0b:db:b7:6f:a9:53:45:44:17:6d:b7:57:47:e8:e0: 48:fc:0e:2c:49:08:53:2c:53:91:8e:d4:fa:33:34:c9:82:bc: 5d:ec:40:fc:77:ad:f8:05:e3:a8:2e:ae:a5:e5:a4:5d:7d:0c: e8:bc:dd:c6:56:af:a2:bb:64:b0:50:c0:f7:26:aa:96:b7:0f: c2:d9:45:b5:89:5a:3e:30:2f:91:7d:7e:ff:fa:44:06:81:36: e5:96:32:f0:19:10:01:63:d8:fc:7b:d9:7a:09:36:41:f3:d3: e0:fa:03:69:e9:f3:e5:58:26:0c:a3:35:ce:0c:b9:17:15:4a: 43:a4:8d:c1 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICV+4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MTUx OTU0MTNaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDU1MDg5MUQ0NDIyQTVD NEIwRjc5MjFFODFBREI2REVBQzBCQkJFRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNkn75fGj6xrntEfvbXlAdHtCP7QwZzKXWrbNhTWAEEhMrU09T HUks8PMyuJuStGqxdnwxK44NKL0f1uMiOYFgwP+NrA6UO3g0HcTRIGl3X+q1D6N9 twj9Pw7V43oyARMSxlKzt8qjKUT5YJYClyyZTbqdw4n0K/TtA/EB1Ou15/Xhdsjx ZFeqUUVckhXZY6LFDtG9MyYmITEUxMvFA2eAv/YZfNow/QamziTt7y8QbA43VTh4 ohXE+jvQ2aX1bDSBuH8H9VVTldrIRf9/JiIadEvmV9T7VmQx90knaB/20C71CY8A syk77jFjDNlOyFeDR/GPLUygUGFBZOZW9nINAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUVQiR1EIqXEsPeSHoGttt6sC7vvwwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L1ZRaVIxRUlxWEVzUGVT SG9HdHR0NnNDN3Z2dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwAr7DANBgkqhkiG9w0BAQsFAAOCAQEAF93nlLupk0LOjoMIMkArcWsnNFP3q/OP 1LbpLZ7G+l0vk5/LmYAtqT36+TgzrWqBU2Nn2DFr4Re0V+e40K6dZ/GdepbsMQST BXBc8sqWrELgVvV+RQ6yDkhT6XTu6BkFwMlIjLKF93dhZQpVUuNwP4OddSd+9VQM Z6hbxSf4U0UhC9u3b6lTRUQXbbdXR+jgSPwOLEkIUyxTkY7U+jM0yYK8XexA/Het +AXjqC6upeWkXX0M6LzdxlavortksFDA9yaqlrcPwtlFtYlaPjAvkX1+//pEBoE2 5ZYy8BkQAWPY/HvZegk2QfPT4PoDaenz5VgmDKM1zgy5FxVKQ6SNwQ== -----END CERTIFICATE-----Generated at Mon Jan 12 02:23:51 2026 by rpki-client