This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/k1oQiKiet5xrgYQonaUK1zOwg5k.roa File: k1oQiKiet5xrgYQonaUK1zOwg5k.roa (raw, json) Hash identifier: UqQJQ/EirrXGl6BsEbUiuazpnBJDvPcaa5ah81rk5UA= Subject key identifier: 93:5A:10:88:A8:9E:B7:9C:6B:81:84:28:9D:A5:0A:D7:33:B0:83:99 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 509B Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/k1oQiKiet5xrgYQonaUK1zOwg5k.roa Signing time: Mon 06 May 2024 01:23:51 +0000 ROA not before: Mon 06 May 2024 01:23:51 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 36.0.64.0/18 maxlen: 18 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 20635 (0x509b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 6 01:23:51 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=935A1088A89EB79C6B8184289DA50AD733B08399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ab:a6:b4:ed:0c:09:e8:8c:56:42:06:71:3f: 48:10:28:b7:42:26:39:5b:d5:42:b1:7f:61:56:4f: 68:87:75:db:06:ab:90:2a:70:5e:f2:87:3c:a2:6d: c0:d4:81:f7:40:82:5f:37:eb:83:ac:71:f7:c3:da: 27:fd:e4:6c:1e:25:53:16:b8:80:0a:92:44:9e:9b: 6d:57:d0:aa:8d:90:c6:31:49:16:54:68:cd:78:e7: 7a:b4:ec:fb:8a:24:7b:a0:e0:31:58:f3:b3:56:34: ac:16:a3:ec:82:30:70:45:33:db:d5:f1:71:08:41: 74:47:19:c1:a1:7e:38:99:9b:64:0f:c0:de:ed:65: 58:27:aa:11:f0:68:e8:65:73:73:5b:9a:c5:67:08: f2:a6:61:5a:df:8d:28:91:c7:be:10:34:a2:54:29: 35:89:16:d6:0b:aa:75:58:96:35:b2:70:4f:9f:ac: f5:9f:22:57:71:ff:b4:66:ee:a7:5a:3d:d2:69:ba: ac:90:77:71:90:c9:e3:16:b7:5d:d1:1e:19:ec:17: 89:88:bb:d3:94:52:d6:c1:0b:09:14:29:90:3a:46: 59:00:97:d6:e0:62:63:19:2e:6c:ae:8e:5c:39:c3: 2d:7a:51:e3:c8:e0:6e:39:0d:61:52:df:04:59:67: bf:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:5A:10:88:A8:9E:B7:9C:6B:81:84:28:9D:A5:0A:D7:33:B0:83:99 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/k1oQiKiet5xrgYQonaUK1zOwg5k.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 97:ef:9d:0b:2a:16:27:95:76:26:5b:c4:ae:21:86:5a:5c:69: 4e:1f:07:4d:bf:bf:44:24:23:ff:05:e9:30:0c:c6:e9:70:2b: ba:14:5e:c8:f5:58:23:cb:1d:ac:1b:77:e5:ec:6e:8b:53:5c: 36:32:6b:01:04:b0:20:20:1d:5c:b8:89:96:0e:3d:cf:fa:83: 7b:cd:24:5b:93:0e:1f:d2:7b:87:57:ad:3d:02:b1:1b:4e:57: 61:c6:a8:8a:41:d8:fd:cc:66:87:be:76:42:c6:15:e9:96:82: e5:4b:07:23:c2:9e:92:42:85:7d:f8:49:12:47:55:c1:3e:cd: c4:69:c4:4e:b5:0e:db:12:f6:5e:10:e4:e2:f1:e4:86:d6:46: 8e:69:8d:3d:34:a8:c0:28:f6:ba:31:a5:50:61:de:2b:aa:29: ee:3d:5c:9c:e9:7d:83:c7:79:47:cb:09:24:4c:45:55:cd:b2: 0d:a4:cd:f7:00:8f:1d:96:1a:b1:7b:72:43:c3:1f:c8:bb:d6: 4c:d3:96:18:50:57:49:c6:86:bd:9a:35:8d:9a:1b:35:22:4d: 2e:9e:52:8d:9a:e9:53:32:92:fd:8d:0b:c6:ca:56:ab:c4:b5: 1b:7d:be:1c:96:fa:6c:b2:fb:86:75:08:af:dc:bc:ae:ab:13: b3:1c:01:9e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICUJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA1MDYw MTIzNTFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKDkzNUExMDg4QTg5RUI3 OUM2QjgxODQyODlEQTUwQUQ3MzNCMDgzOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrq6a07QwJ6IxWQgZxP0gQKLdCJjlb1UKxf2FWT2iHddsGq5Aq cF7yhzyibcDUgfdAgl8364OscffD2if95GweJVMWuIAKkkSem21X0KqNkMYxSRZU aM1453q07PuKJHug4DFY87NWNKwWo+yCMHBFM9vV8XEIQXRHGcGhfjiZm2QPwN7t ZVgnqhHwaOhlc3NbmsVnCPKmYVrfjSiRx74QNKJUKTWJFtYLqnVYljWycE+frPWf Ildx/7Rm7qdaPdJpuqyQd3GQyeMWt13RHhnsF4mIu9OUUtbBCwkUKZA6RlkAl9bg YmMZLmyujlw5wy16UePI4G45DWFS3wRZZ7/nAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUk1oQiKiet5xrgYQonaUK1zOwg5kwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2sxb1FpS2lldDV4cmdZ UW9uYVVLMXpPd2c1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYkAEAwDQYJKoZIhvcNAQELBQADggEBAJfvnQsqFieVdiZbxK4hhlpcaU4fB02/ v0QkI/8F6TAMxulwK7oUXsj1WCPLHawbd+XsbotTXDYyawEEsCAgHVy4iZYOPc/6 g3vNJFuTDh/Se4dXrT0CsRtOV2HGqIpB2P3MZoe+dkLGFemWguVLByPCnpJChX34 SRJHVcE+zcRpxE61DtsS9l4Q5OLx5IbWRo5pjT00qMAo9roxpVBh3iuqKe49XJzp fYPHeUfLCSRMRVXNsg2kzfcAjx2WGrF7ckPDH8i71kzTlhhQV0nGhr2aNY2aGzUi TS6eUo2a6VMykv2NC8bKVqvEtRt9vhyW+myy+4Z1CK/cvK6rE7McAZ4= -----END CERTIFICATE-----Generated at Mon Jan 12 23:37:54 2026 by rpki-client