This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/bpTo600kCOeFbKu1J6BrcDjo-0A.roa File: bpTo600kCOeFbKu1J6BrcDjo-0A.roa (raw, json) Hash identifier: 1hKF2n8uXE/YH36uY50eWcjXtVnUQrq1ZvpbYhuNUO0= Subject key identifier: 6E:94:E8:EB:4D:24:08:E7:85:6C:AB:B5:27:A0:6B:70:38:E8:FB:40 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 55DA Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/bpTo600kCOeFbKu1J6BrcDjo-0A.roa Signing time: Mon 13 May 2024 01:24:06 +0000 ROA not before: Mon 13 May 2024 01:24:06 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 43.236.0.0/16 maxlen: 16 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 21978 (0x55da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 13 01:24:06 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=6E94E8EB4D2408E7856CABB527A06B7038E8FB40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ee:80:ad:af:ee:8d:e6:ef:a0:ca:30:76:f8: 05:7e:22:b5:03:cc:de:2b:4e:93:cf:04:5d:63:cf: c3:b3:a2:05:76:6e:0d:fe:72:3a:1a:82:fe:c2:9e: c8:86:e1:a0:a1:a9:93:7a:3f:ff:f3:0c:44:f5:49: 07:aa:51:eb:8d:7f:39:f0:f3:33:32:e4:95:df:8b: 90:cc:2f:16:fc:09:c2:73:90:5f:57:46:b1:37:ab: 52:2a:d0:d2:06:2c:68:98:19:94:71:c5:55:8d:2e: 95:69:05:4f:61:4d:56:f2:74:22:ec:02:3f:92:87: 93:27:cf:ad:c9:f8:f5:3a:aa:55:ec:cd:92:38:4d: e5:9b:05:87:a7:05:27:5b:b2:2b:7e:b4:18:0e:54: d6:45:5b:f6:4b:0c:e2:79:bb:d9:56:fb:3f:5f:22: f9:2a:21:a7:67:e8:20:c1:b2:17:97:59:df:6c:01: 64:7e:62:04:13:14:c9:42:6f:e9:6c:f7:21:3a:f7: 17:f2:b6:e5:29:6d:61:ff:6a:fc:1e:75:ab:90:1e: 6a:2f:a6:c9:e4:fe:56:66:3b:a9:fa:4d:ce:59:6b: 45:19:0e:15:d8:ae:4b:3b:9a:1a:32:df:e3:5e:55: 2f:20:f8:5c:c8:ff:b9:9d:bb:06:45:06:d8:65:1c: cf:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:94:E8:EB:4D:24:08:E7:85:6C:AB:B5:27:A0:6B:70:38:E8:FB:40 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/bpTo600kCOeFbKu1J6BrcDjo-0A.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:58:d1:c0:1d:2a:6a:5b:20:0e:76:77:6d:c8:2f:09:4e:49: b8:d4:f1:b7:4e:9a:ee:54:14:59:44:26:19:0a:40:53:60:9f: e9:3a:a5:a2:fc:ac:cc:de:bd:7e:88:28:36:5f:48:58:54:05: 44:6f:7f:41:7c:b9:7a:df:0a:b7:d5:92:15:d1:8d:a8:a2:fc: f6:57:bf:84:dc:f4:55:c5:47:6d:da:42:71:e7:ee:34:a5:de: 83:17:64:30:db:52:7c:36:91:f7:37:51:48:cc:e1:e0:ec:c6: 12:89:12:ed:01:93:cf:41:94:3f:00:8f:05:04:e2:9e:90:75: 34:4d:0b:6e:17:6d:60:27:25:7f:bc:f0:9c:23:b0:a8:54:45: bb:da:c6:24:e2:2e:74:f0:24:9b:5d:09:b1:63:2f:c9:c3:61: fd:e9:d1:c7:75:15:d2:12:bb:34:f9:fe:4f:88:f7:2f:fa:51: 4c:a6:ff:db:a0:6c:9d:ad:7c:2b:c9:63:1c:76:fa:96:81:02: 0d:17:b0:23:eb:33:03:9e:72:b9:be:06:3c:7e:b0:07:6f:d5: 52:c1:33:14:cd:58:7b:2d:ef:e8:5b:c3:9d:24:fa:ac:84:d8: 6a:be:b6:41:26:fb:20:e4:02:53:f5:c1:f5:2c:d5:16:aa:c9: 84:16:97:be -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICVdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MTMw MTI0MDZaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDZFOTRFOEVCNEQyNDA4 RTc4NTZDQUJCNTI3QTA2QjcwMzhFOEZCNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv7oCtr+6N5u+gyjB2+AV+IrUDzN4rTpPPBF1jz8OzogV2bg3+ cjoagv7CnsiG4aChqZN6P//zDET1SQeqUeuNfznw8zMy5JXfi5DMLxb8CcJzkF9X RrE3q1Iq0NIGLGiYGZRxxVWNLpVpBU9hTVbydCLsAj+Sh5Mnz63J+PU6qlXszZI4 TeWbBYenBSdbsit+tBgOVNZFW/ZLDOJ5u9lW+z9fIvkqIadn6CDBsheXWd9sAWR+ YgQTFMlCb+ls9yE69xfytuUpbWH/avwedauQHmovpsnk/lZmO6n6Tc5Za0UZDhXY rks7mhoy3+NeVS8g+FzI/7mduwZFBthlHM8JAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUbpTo600kCOeFbKu1J6BrcDjo+0AwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2JwVG82MDBrQ09lRmJL dTFKNkJyY0Rqby0wQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwAr7DANBgkqhkiG9w0BAQsFAAOCAQEAWFjRwB0qalsgDnZ3bcgvCU5JuNTxt06a 7lQUWUQmGQpAU2Cf6TqlovyszN69fogoNl9IWFQFRG9/QXy5et8Kt9WSFdGNqKL8 9le/hNz0VcVHbdpCcefuNKXegxdkMNtSfDaR9zdRSMzh4OzGEokS7QGTz0GUPwCP BQTinpB1NE0LbhdtYCclf7zwnCOwqFRFu9rGJOIudPAkm10JsWMvycNh/enRx3UV 0hK7NPn+T4j3L/pRTKb/26Bsna18K8ljHHb6loECDRewI+szA55yub4GPH6wB2/V UsEzFM1Yey3v6FvDnST6rITYar62QSb7IOQCU/XB9SzVFqrJhBaXvg== -----END CERTIFICATE-----Generated at Mon Jan 12 10:50:06 2026 by rpki-client