This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/M_LmPw48o2Z5uRaN7p7APy-ueI4.roa File: M_LmPw48o2Z5uRaN7p7APy-ueI4.roa (raw, json) Hash identifier: 9afjV3V8QgmGj/0VnvkgmcEA9x0gNPO9MGWFo+ddfsA= Subject key identifier: 33:F2:E6:3F:0E:3C:A3:66:79:B9:16:8D:EE:9E:C0:3F:2F:AE:78:8E Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: CA6E Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/M_LmPw48o2Z5uRaN7p7APy-ueI4.roa Signing time: Fri 19 Dec 2025 09:09:41 +0000 ROA not before: Fri 19 Dec 2025 09:09:41 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 134762 IP address blocks: 43.226.72.0/22 maxlen: 22 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 51822 (0xca6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 19 09:09:41 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=33F2E63F0E3CA36679B9168DEE9EC03F2FAE788E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6a:c6:85:3c:0e:bf:53:86:01:98:13:5c:55: bf:00:7e:06:1f:d8:63:0d:7c:b5:67:af:65:2a:9a: fa:a2:9e:b7:8b:a8:57:99:ea:f8:f4:21:ff:de:82: c3:65:db:de:02:2b:69:ab:ff:0a:65:a0:7a:63:d0: 92:41:69:44:a1:77:a4:33:5d:c8:7f:59:08:85:59: 1c:b5:f9:45:29:74:04:cd:62:c8:07:75:80:38:df: bd:f2:5b:8c:39:6b:b5:98:9e:cb:c2:3b:63:31:dc: 73:6c:28:1f:8e:70:44:d2:a3:94:0e:a1:6b:89:7e: 3b:d1:65:32:7d:62:a9:6a:09:50:3b:9c:cc:b2:5f: 66:93:1d:01:80:46:c6:4e:6a:84:3f:49:01:48:15: af:61:07:f0:65:12:09:be:7f:45:ea:2c:7f:83:aa: 61:32:0f:b8:bb:e1:e2:11:cc:e5:3a:e7:72:99:64: 28:51:73:0f:54:d1:15:4a:84:2e:22:77:e2:cc:38: d7:bc:d8:69:73:73:32:87:97:0f:b1:0b:92:50:13: 58:c6:ef:7d:b5:e0:6d:dc:63:17:cf:33:bd:ea:cf: ae:14:78:72:30:68:99:c6:a0:28:1f:ae:82:9e:74: 23:b0:ae:7c:d2:fa:eb:4d:79:51:2a:aa:f7:0c:96: b8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F2:E6:3F:0E:3C:A3:66:79:B9:16:8D:EE:9E:C0:3F:2F:AE:78:8E X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/M_LmPw48o2Z5uRaN7p7APy-ueI4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.72.0/22 Signature Algorithm: sha256WithRSAEncryption 32:74:1e:50:35:85:23:54:1c:a3:31:a6:63:21:10:e7:ba:1b: 21:ff:8e:b3:b0:f6:d8:97:73:82:37:2a:39:21:0f:cc:00:79: 3e:84:32:30:da:09:f0:cf:ca:0e:52:90:12:86:d3:1b:6c:d7: f0:79:df:cd:63:e3:71:a6:e2:ee:75:0e:ec:49:ee:0b:7f:a6: 8f:67:28:0b:74:5f:2f:cd:b5:21:4e:aa:c9:f6:b6:4f:ec:21: b8:e1:41:76:96:1e:92:a8:56:b1:f6:ba:a8:a6:a2:e3:9d:72: 80:66:d4:c6:48:71:ae:18:a5:c1:b3:ea:c6:67:1c:aa:91:14: e4:de:02:40:5a:29:97:ba:5b:6d:d5:08:10:c1:ff:e7:1e:f3: 8d:9f:18:2d:a9:81:b8:71:c4:7c:ee:67:d3:9e:f0:8c:68:1a: 6c:cf:5c:b0:ce:13:9c:92:f9:7e:3e:8f:d0:d9:2f:c6:32:5a: 6b:e1:9a:5e:30:b8:c7:e7:5a:ad:2b:ca:6a:9e:d2:82:49:bf: 1c:65:9f:f8:17:07:cf:6c:ed:70:14:48:83:2f:a4:56:09:00: de:ea:d4:d4:84:a6:77:23:b2:83:7b:92:d3:a7:5c:a6:45:e7: 37:99:cf:65:32:75:53:de:f9:2f:0b:55:fe:0a:0b:df:7a:34: b4:de:a1:0b -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDAMpuMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjE5 MDkwOTQxWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEygzM0YyRTYzRjBFM0NB MzY2NzlCOTE2OERFRTlFQzAzRjJGQUU3ODhFMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAz2rGhTwOv1OGAZgTXFW/AH4GH9hjDXy1Z69lKpr6op63i6hX mer49CH/3oLDZdveAitpq/8KZaB6Y9CSQWlEoXekM13If1kIhVkctflFKXQEzWLI B3WAON+98luMOWu1mJ7LwjtjMdxzbCgfjnBE0qOUDqFriX470WUyfWKpaglQO5zM sl9mkx0BgEbGTmqEP0kBSBWvYQfwZRIJvn9F6ix/g6phMg+4u+HiEczlOudymWQo UXMPVNEVSoQuInfizDjXvNhpc3Myh5cPsQuSUBNYxu99teBt3GMXzzO96s+uFHhy MGiZxqAoH66CnnQjsK580vrrTXlRKqr3DJa4CQIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFDPy5j8OPKNmebkWje6ewD8vrniOMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL01fTG1QdzQ4bzJa NXVSYU43cDdBUHktdWVJNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr4kgwDQYJKoZIhvcNAQELBQADggEBADJ0HlA1hSNUHKMxpmMhEOe6GyH/ jrOw9tiXc4I3KjkhD8wAeT6EMjDaCfDPyg5SkBKG0xts1/B5381j43Gm4u51DuxJ 7gt/po9nKAt0Xy/NtSFOqsn2tk/sIbjhQXaWHpKoVrH2uqimouOdcoBm1MZIca4Y pcGz6sZnHKqRFOTeAkBaKZe6W23VCBDB/+ce842fGC2pgbhxxHzuZ9Oe8IxoGmzP XLDOE5yS+X4+j9DZL8YyWmvhml4wuMfnWq0rymqe0oJJvxxln/gXB89s7XAUSIMv pFYJAN7q1NSEpncjsoN7ktOnXKZF5zeZz2UydVPe+S8LVf4KC996NLTeoQs= -----END CERTIFICATE-----Generated at Fri Dec 19 13:25:17 2025 by rpki-client