This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/XIlb3zxGMVy4fWYyO-_oDjt4lxY.roa File: XIlb3zxGMVy4fWYyO-_oDjt4lxY.roa (raw, json) Hash identifier: hZAxaHyCPnikA8PiL7Cp30Dz/NoiwI0SIo02+D2dHPA= Subject key identifier: 5C:89:5B:DF:3C:46:31:5C:B8:7D:66:32:3B:EF:E8:0E:3B:78:97:16 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 423F Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/XIlb3zxGMVy4fWYyO-_oDjt4lxY.roa Signing time: Tue 16 Apr 2024 21:53:24 +0000 ROA not before: Tue 16 Apr 2024 21:53:24 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 36.0.64.0/18 maxlen: 18 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 16959 (0x423f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Apr 16 21:53:24 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=5C895BDF3C46315CB87D66323BEFE80E3B789716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:54:44:db:34:28:86:54:9a:6b:99:b6:f6: 5c:35:f7:b1:9e:7a:1d:9c:d5:a9:7b:85:ae:52:45: 38:c1:0a:b6:30:43:74:d3:38:b6:a7:99:a7:e9:7c: a7:bc:fe:56:f4:12:16:bf:96:61:ac:cd:0b:f4:16: fc:eb:54:b3:58:a8:2b:00:de:af:a7:4d:98:f4:e5: 51:88:19:d2:ee:77:e9:d7:8b:1e:78:f0:c7:30:c6: 96:29:83:df:78:b4:ec:bd:eb:43:1c:5f:d9:8c:a0: 82:da:15:d6:31:2c:58:b3:be:7e:b5:b0:a7:95:6b: bf:2b:01:26:f2:5c:32:05:ed:87:db:f9:c6:b0:d4: 1b:05:b1:93:fd:57:9f:dd:fd:14:f1:ed:17:66:f5: 91:32:3e:f0:40:9c:36:49:6c:6a:60:17:a4:56:a1: 0b:e9:18:57:48:d2:60:43:b1:2d:59:6b:c5:9b:2c: 09:68:9b:62:f4:7d:50:4f:80:0f:f0:88:92:c6:06: b3:3d:e2:40:18:39:ca:4d:9d:51:37:29:60:f2:83: f3:07:c0:94:0b:cf:6e:1d:27:09:4e:2a:e1:8b:a1: 35:42:84:21:f9:81:53:05:eb:85:0e:50:bd:0f:a9: 1b:e5:9c:8c:4e:17:fa:e7:6e:ff:2b:58:49:ed:27: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:89:5B:DF:3C:46:31:5C:B8:7D:66:32:3B:EF:E8:0E:3B:78:97:16 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/XIlb3zxGMVy4fWYyO-_oDjt4lxY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:fb:80:0e:f7:73:98:76:66:ab:58:60:34:d7:e3:c1:fb:cc: ab:d5:c0:b3:a8:1a:df:0b:76:5e:a2:db:fa:81:cd:88:e7:88: ac:31:60:de:b3:a8:d1:f0:18:fb:43:c4:e0:df:e0:35:96:42: d5:23:ed:92:8f:0d:51:cc:cf:e2:70:8a:c0:57:3b:1a:44:1a: 13:7b:27:e6:9a:7f:04:bd:c1:f8:dc:9a:20:39:69:00:17:36: 06:a2:a8:02:cd:6b:a5:8e:c1:29:70:5f:5e:da:31:db:05:31: 5d:fb:8f:6a:af:43:ac:45:fe:e7:c6:29:a4:13:49:bd:90:c0: 2d:b8:cd:87:67:09:b3:0c:da:e8:49:2d:ed:08:2b:e9:0e:a9: 5a:97:29:03:6c:b8:4e:31:9d:0e:74:5d:90:9f:29:c6:88:68: b8:e2:ec:cd:99:a4:16:51:3d:bd:4a:2f:6f:fb:91:2e:54:c1: 49:1a:4d:d1:19:cb:d4:be:6e:34:ba:3d:8d:42:25:5a:e4:58: 8f:0f:a2:f7:50:75:59:3d:53:98:d7:8d:dd:71:f9:49:2e:68: 1e:27:9c:81:19:69:58:64:03:fb:54:df:c7:10:cd:ca:de:31: ca:59:64:45:17:e9:83:f1:09:6a:83:43:b5:03:f0:6f:ff:1b: b1:dc:0e:75 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICQj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MTYy MTUzMjRaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDVDODk1QkRGM0M0NjMx NUNCODdENjYzMjNCRUZFODBFM0I3ODk3MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKplRE2zQohlSaa5m29lw197Geeh2c1al7ha5SRTjBCrYwQ3TT OLanmafpfKe8/lb0Eha/lmGszQv0FvzrVLNYqCsA3q+nTZj05VGIGdLud+nXix54 8McwxpYpg994tOy960McX9mMoILaFdYxLFizvn61sKeVa78rASbyXDIF7Yfb+caw 1BsFsZP9V5/d/RTx7Rdm9ZEyPvBAnDZJbGpgF6RWoQvpGFdI0mBDsS1Za8WbLAlo m2L0fVBPgA/wiJLGBrM94kAYOcpNnVE3KWDyg/MHwJQLz24dJwlOKuGLoTVChCH5 gVMF64UOUL0PqRvlnIxOF/rnbv8rWEntJ+ItAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUXIlb3zxGMVy4fWYyO+/oDjt4lxYwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L1hJbGIzenhHTVZ5NGZX WXlPLV9vRGp0NGx4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAI/7gA73c5h2ZqtYYDTX48H7zKvVwLOo Gt8Ldl6i2/qBzYjniKwxYN6zqNHwGPtDxODf4DWWQtUj7ZKPDVHMz+JwisBXOxpE GhN7J+aafwS9wfjcmiA5aQAXNgaiqALNa6WOwSlwX17aMdsFMV37j2qvQ6xF/ufG KaQTSb2QwC24zYdnCbMM2uhJLe0IK+kOqVqXKQNsuE4xnQ50XZCfKcaIaLji7M2Z pBZRPb1KL2/7kS5UwUkaTdEZy9S+bjS6PY1CJVrkWI8PovdQdVk9U5jXjd1x+Uku aB4nnIEZaVhkA/tU38cQzcreMcpZZEUX6YPxCWqDQ7UD8G//G7HcDnU= -----END CERTIFICATE-----Generated at Thu Jan 8 23:12:54 2026 by rpki-client