This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/p9TSHuYMtoGZYR8Dnh3lxx8DBIc.roa File: p9TSHuYMtoGZYR8Dnh3lxx8DBIc.roa (raw, json) Hash identifier: 469/0XFusR+kEtqSsprJ1MUdaWRZnheTqyFJslSUq4Q= Subject key identifier: A7:D4:D2:1E:E6:0C:B6:81:99:61:1F:03:9E:1D:E5:C7:1F:03:04:87 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 48BF Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/p9TSHuYMtoGZYR8Dnh3lxx8DBIc.roa Signing time: Thu 25 Apr 2024 13:53:18 +0000 ROA not before: Thu 25 Apr 2024 13:53:18 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 36.0.64.0/18 maxlen: 18 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 18623 (0x48bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Apr 25 13:53:18 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=A7D4D21EE60CB68199611F039E1DE5C71F030487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bf:52:59:dd:a0:52:5c:c8:47:60:0b:7a:71: 4f:b8:84:03:b0:f8:f4:8b:2e:d9:37:54:4e:d1:4c: 01:20:f1:97:6b:b4:de:89:55:c0:f5:04:4a:37:22: 18:23:7e:1a:2a:6d:08:a9:94:58:8c:56:f8:8d:ec: c3:81:64:11:88:2a:6f:52:6f:ea:18:71:fa:b5:2e: 94:ba:7f:65:15:0e:d1:54:43:e8:97:78:df:3a:2a: ca:2e:e2:b9:65:7a:e2:c5:46:d0:0c:02:e7:a5:c1: fd:d4:8d:cd:7e:1c:6b:eb:6a:ad:2e:a5:c8:32:22: 72:ee:d3:45:50:c7:77:b2:63:62:f4:6d:ed:bb:5b: 7b:53:bc:e9:5b:cc:74:02:dd:7b:f9:10:ed:e3:d9: ab:cb:61:3f:72:07:c0:05:71:b3:3e:56:a1:b0:03: 44:40:be:47:d8:13:bd:fe:93:16:0a:4f:1f:d2:fa: 59:80:a4:a3:bc:dd:77:af:28:0b:a8:c5:4f:62:46: 34:45:a1:83:59:64:dc:63:43:b2:5e:51:93:73:35: 31:ad:14:b9:bf:f6:8e:66:9f:ac:68:98:33:db:b5: 91:77:22:e2:cb:31:01:27:60:6c:d2:9f:c1:f2:17: cb:5d:d3:89:be:b3:fe:2c:b7:32:d4:59:e8:22:c7: 47:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D4:D2:1E:E6:0C:B6:81:99:61:1F:03:9E:1D:E5:C7:1F:03:04:87 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/p9TSHuYMtoGZYR8Dnh3lxx8DBIc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 11:ba:55:f6:8f:f6:05:df:e3:3e:24:bf:22:41:1b:99:ca:d2: b8:0d:d1:05:71:f7:73:81:e6:5b:00:31:21:08:c2:a2:1f:52: 15:31:78:21:f5:81:bb:56:a4:bd:b6:3a:9a:ab:1b:c0:31:84: 51:ef:d3:cd:6e:62:58:19:a7:6b:35:ed:ef:c3:60:f9:3e:27: 0a:ee:4f:78:73:26:5b:94:66:fd:25:80:11:c1:28:4b:04:13: 29:33:53:ff:cb:e4:f7:d2:e2:b6:dd:0f:5e:f0:31:56:5d:f3: 56:b2:a2:25:84:61:64:10:29:90:ee:53:1b:e2:b1:38:3d:00: ed:69:78:6e:02:86:96:f0:49:54:b5:4d:c3:99:d0:88:1f:13: 20:b1:49:70:46:a2:e2:45:08:da:ab:25:3d:f9:e6:b3:b6:8d: 32:1c:a4:99:e3:5f:54:33:3c:0c:ec:26:cf:2a:6b:52:5f:f1: ef:1a:fe:df:60:37:b1:75:99:6b:70:32:f3:bc:2a:32:33:20: c4:09:8d:65:c0:ef:73:83:7e:f8:d3:cd:4d:91:8c:d7:37:00: 4b:3e:da:36:f1:b0:aa:15:75:67:e9:3b:40:30:8c:63:5d:5f: 74:22:40:b7:92:c5:01:ac:ce:a1:c7:bd:00:56:0c:90:42:3b: 86:9e:cc:5d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICSL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MjUx MzUzMThaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEE3RDREMjFFRTYwQ0I2 ODE5OTYxMUYwMzlFMURFNUM3MUYwMzA0ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpv1JZ3aBSXMhHYAt6cU+4hAOw+PSLLtk3VE7RTAEg8ZdrtN6J VcD1BEo3IhgjfhoqbQiplFiMVviN7MOBZBGIKm9Sb+oYcfq1LpS6f2UVDtFUQ+iX eN86Ksou4rlleuLFRtAMAuelwf3Ujc1+HGvraq0upcgyInLu00VQx3eyY2L0be27 W3tTvOlbzHQC3Xv5EO3j2avLYT9yB8AFcbM+VqGwA0RAvkfYE73+kxYKTx/S+lmA pKO83XevKAuoxU9iRjRFoYNZZNxjQ7JeUZNzNTGtFLm/9o5mn6xomDPbtZF3IuLL MQEnYGzSn8HyF8td04m+s/4stzLUWegix0c3AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUp9TSHuYMtoGZYR8Dnh3lxx8DBIcwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3A5VFNIdVlNdG9HWllS OERuaDNseHg4REJJYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAYkAEAwDQYJKoZIhvcNAQELBQADggEBABG6VfaP9gXf4z4kvyJBG5nK0rgN0QVx 93OB5lsAMSEIwqIfUhUxeCH1gbtWpL22OpqrG8AxhFHv081uYlgZp2s17e/DYPk+ JwruT3hzJluUZv0lgBHBKEsEEykzU//L5PfS4rbdD17wMVZd81ayoiWEYWQQKZDu UxvisTg9AO1peG4ChpbwSVS1TcOZ0IgfEyCxSXBGouJFCNqrJT355rO2jTIcpJnj X1QzPAzsJs8qa1Jf8e8a/t9gN7F1mWtwMvO8KjIzIMQJjWXA73ODfvjTzU2RjNc3 AEs+2jbxsKoVdWfpO0AwjGNdX3QiQLeSxQGszqHHvQBWDJBCO4aezF0= -----END CERTIFICATE-----Generated at Sun Jan 11 23:57:06 2026 by rpki-client