This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/r1emBo8ieuhHof6w7jrFUwGLhqA.roa File: r1emBo8ieuhHof6w7jrFUwGLhqA.roa (raw, json) Hash identifier: oxyE0NjRL7QW2aMTkU+FNjtWHZNTw5mjco04QXOSVSQ= Subject key identifier: AF:57:A6:06:8F:22:7A:E8:47:A1:FE:B0:EE:3A:C5:53:01:8B:86:A0 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 4029 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/r1emBo8ieuhHof6w7jrFUwGLhqA.roa Signing time: Sun 14 Apr 2024 03:22:51 +0000 ROA not before: Sun 14 Apr 2024 03:22:51 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 43.239.0.0/19 maxlen: 19 101.78.32.0/19 maxlen: 19 103.35.0.0/19 maxlen: 19 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 16425 (0x4029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Apr 14 03:22:51 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=AF57A6068F227AE847A1FEB0EE3AC553018B86A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:89:f1:1a:1e:87:9d:39:3c:da:db:e3:a1:d3: 20:b8:ed:0a:1a:9a:f4:0b:53:8d:62:cd:eb:c4:70: 46:91:4c:c3:89:32:56:d3:66:d6:23:0d:1e:2c:4c: 94:ba:d7:94:ac:97:14:05:41:b2:4e:48:bc:e4:2c: 1c:cd:38:c2:1b:bc:c4:7f:f0:15:0d:e1:90:34:b7: 9d:ba:90:4a:63:fb:93:82:85:c3:8c:45:47:a7:e0: a6:23:a6:88:b2:e0:75:5a:be:15:2f:11:17:5b:6c: a3:53:9d:1a:2d:88:e0:33:76:78:4b:f4:06:c1:d5: 10:85:31:46:1e:a8:b7:84:97:92:b3:af:02:88:be: 15:1c:d1:af:99:0f:a0:29:38:57:e3:9e:85:5a:ef: 5e:7a:92:9b:d0:60:40:f9:74:36:02:97:ef:04:f6: f5:07:bb:c2:fc:df:5b:e8:38:af:29:b2:1a:4d:48: cd:30:53:7b:55:07:b7:94:11:a3:c3:6b:fd:f6:3e: ff:b0:8f:d4:7f:ce:5c:9a:83:43:4e:10:93:99:70: 2b:2b:50:e8:cc:a9:cf:c9:a1:d0:dd:43:b0:17:0a: 5d:ee:3e:a5:81:9b:08:7b:5f:20:1a:20:4c:0a:33: 31:42:fe:0e:b8:9e:2b:2d:81:b9:85:84:c4:c5:73: 4d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:57:A6:06:8F:22:7A:E8:47:A1:FE:B0:EE:3A:C5:53:01:8B:86:A0 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/r1emBo8ieuhHof6w7jrFUwGLhqA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.239.0.0/19 101.78.32.0/19 103.35.0.0/19 Signature Algorithm: sha256WithRSAEncryption 07:df:b1:89:de:31:c5:8a:c3:10:77:8e:40:66:57:17:14:90: 75:c5:06:91:56:ed:a3:17:1d:32:a4:00:e6:9c:8e:3c:0f:5b: af:d4:8d:b7:b0:a2:4a:46:cc:ed:5e:3a:ea:8b:de:9f:7f:50: 2b:d7:f2:ab:01:67:f7:01:2f:f3:6e:89:ac:1c:9e:c4:64:c3: 19:cf:1e:96:4a:db:38:5d:87:27:56:68:7d:7e:36:c6:5c:a3: 89:11:b9:ae:0f:fa:e7:a2:97:fd:d6:a6:80:02:49:c5:c0:fc: 9b:63:74:53:15:84:c7:1d:56:28:f2:dc:25:4c:8a:b0:ca:72: e3:61:b8:e0:a5:0c:6b:24:2d:b4:78:2f:be:c6:66:e3:dd:ef: 62:2a:1d:ef:84:61:0e:e1:10:58:81:3f:ce:e3:36:3d:c5:07: 3f:a8:65:c5:d3:43:97:90:97:c7:7e:44:42:90:03:5b:03:09: 0d:ce:28:d3:d5:a3:7f:c3:5e:ad:c4:bf:25:79:21:fc:af:f6: 7a:1a:8b:2d:01:cb:06:10:ed:a6:b7:c4:2f:5a:4a:40:ad:b9: 72:84:91:54:2f:51:69:92:d8:23:a9:ce:7c:9a:95:2e:1b:d9: be:e2:cd:f5:14:d2:ba:5c:05:65:88:ed:39:26:69:7c:45:94: 7d:ae:17:72 -----BEGIN CERTIFICATE----- MIIE4TCCA8mgAwIBAgICQCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MTQw MzIyNTFaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEFGNTdBNjA2OEYyMjdB RTg0N0ExRkVCMEVFM0FDNTUzMDE4Qjg2QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6ifEaHoedOTza2+Oh0yC47QoamvQLU41izevEcEaRTMOJMlbT ZtYjDR4sTJS615SslxQFQbJOSLzkLBzNOMIbvMR/8BUN4ZA0t526kEpj+5OChcOM RUen4KYjpoiy4HVavhUvERdbbKNTnRotiOAzdnhL9AbB1RCFMUYeqLeEl5KzrwKI vhUc0a+ZD6ApOFfjnoVa7156kpvQYED5dDYCl+8E9vUHu8L831voOK8pshpNSM0w U3tVB7eUEaPDa/32Pv+wj9R/zlyag0NOEJOZcCsrUOjMqc/JodDdQ7AXCl3uPqWB mwh7XyAaIEwKMzFC/g64nistgbmFhMTFc03jAgMBAAGjggH9MIIB+TAdBgNVHQ4E FgQUr1emBo8ieuhHof6w7jrFUwGLhqAwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3IxZW1CbzhpZXVoSG9m Nnc3anJGVXdHTGhxQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID BAUr7wADBAVlTiADBAVnIwAwDQYJKoZIhvcNAQELBQADggEBAAffsYneMcWKwxB3 jkBmVxcUkHXFBpFW7aMXHTKkAOacjjwPW6/UjbewokpGzO1eOuqL3p9/UCvX8qsB Z/cBL/NuiawcnsRkwxnPHpZK2zhdhydWaH1+NsZco4kRua4P+ueil/3WpoACScXA /JtjdFMVhMcdVijy3CVMirDKcuNhuOClDGskLbR4L77GZuPd72IqHe+EYQ7hEFiB P87jNj3FBz+oZcXTQ5eQl8d+REKQA1sDCQ3OKNPVo3/DXq3EvyV5Ifyv9noaiy0B ywYQ7aa3xC9aSkCtuXKEkVQvUWmS2COpznyalS4b2b7izfUU0rpcBWWI7TkmaXxF lH2uF3I= -----END CERTIFICATE-----Generated at Sun Jan 11 14:38:23 2026 by rpki-client