This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/bE4DAmcQpD9A4Ub-BnaJGlEE4bQ.roa File: bE4DAmcQpD9A4Ub-BnaJGlEE4bQ.roa (raw, json) Hash identifier: /JFMsgL56nNoIuStyuDfmb8ll7ix/LZyVpXmMZBQ4GA= Subject key identifier: 6C:4E:03:02:67:10:A4:3F:40:E1:46:FE:06:76:89:1A:51:04:E1:B4 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: CC96 Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/bE4DAmcQpD9A4Ub-BnaJGlEE4bQ.roa Signing time: Sun 21 Dec 2025 07:09:47 +0000 ROA not before: Sun 21 Dec 2025 07:09:47 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 134762 IP address blocks: 43.226.72.0/22 maxlen: 22 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 52374 (0xcc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 21 07:09:47 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6C4E03026710A43F40E146FE0676891A5104E1B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:82:c9:4e:42:0f:43:a4:d6:78:8d:b7:fa: e7:e8:cf:6b:2e:b5:73:a3:6c:84:f2:4d:fb:d8:df: 81:6a:c1:75:96:f5:8e:c1:4b:2b:ca:98:a8:53:a4: 98:e3:ab:54:35:bf:8d:9d:7d:9f:fb:f2:29:1d:7b: 72:32:bb:b3:23:1d:ea:42:0b:97:f3:68:bc:d8:01: 92:03:7d:93:bd:36:c6:1d:c5:e8:dd:22:b3:97:54: ea:6f:f2:8e:b5:f0:8f:ee:4f:6e:02:13:f5:3d:b6: 23:64:ef:cb:5f:13:d7:a0:e0:29:1a:63:7e:8a:dc: a8:a4:09:a6:bf:e6:92:a8:d9:c5:97:a7:7d:41:9f: 8b:42:a3:5e:e6:0e:b2:9c:ff:7b:6f:59:aa:bf:f5: 6c:22:2d:11:fc:85:e2:eb:4a:10:06:39:ee:4f:83: a9:4f:34:2f:df:78:44:b4:74:b8:a2:34:79:82:79: b4:1a:e6:65:bb:36:b9:bb:8b:06:d0:bd:f5:70:48: 7f:a5:7c:fc:82:a9:e3:02:d7:a1:4d:d2:44:09:b5: fa:0a:f1:a8:54:39:c6:70:94:cd:3d:da:8d:62:c5: 29:10:73:91:0a:11:77:c1:88:3b:05:17:70:97:74: e4:0a:c1:92:0d:40:1d:f6:4d:bd:e4:cc:c2:63:f1: 13:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4E:03:02:67:10:A4:3F:40:E1:46:FE:06:76:89:1A:51:04:E1:B4 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/bE4DAmcQpD9A4Ub-BnaJGlEE4bQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.72.0/22 Signature Algorithm: sha256WithRSAEncryption 98:f3:da:1f:37:e9:83:63:d2:d1:9b:e8:bc:4f:61:c9:d6:61: d7:15:7c:1b:2f:60:c6:7c:b1:a6:89:16:e1:22:38:eb:99:28: c1:8a:37:59:f1:1f:6d:05:21:50:f8:cb:b3:f3:82:03:67:38: 5f:3a:12:73:d8:aa:c8:62:f9:66:8e:fd:31:50:5d:66:e4:cd: 24:13:98:95:84:42:fb:89:ae:60:e9:69:0b:61:50:97:49:c1: 86:f8:fc:1d:8a:01:4b:3b:89:74:57:a0:1e:fd:e9:93:c4:4d: ad:76:c6:9f:2b:84:9a:7f:58:c6:e2:b9:9a:57:d2:a1:ed:67: af:64:0c:81:6c:4e:a8:9d:24:6e:61:35:99:45:94:2c:54:c6: 30:f8:08:3b:19:c3:de:a8:14:05:5d:c3:ce:be:58:4e:5d:c8: 1c:21:af:bc:d0:54:1c:68:c1:d4:cf:fd:14:98:cd:81:ce:d8: 22:4a:ba:52:05:73:e3:61:a7:3e:8e:21:2c:58:16:18:f2:30: 41:ea:21:a4:c7:e3:bb:c5:13:fa:c1:a7:3f:74:ac:a7:9a:9a: 30:af:84:7d:d8:4c:68:19:d1:0d:e9:d2:ca:ed:b2:ff:5f:02: 70:58:6f:e4:94:c4:32:e4:6d:5e:fd:b6:86:03:68:22:0a:09: 74:25:32:ce -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDAMyWMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjIx MDcwOTQ3WhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg2QzRFMDMwMjY3MTBB NDNGNDBFMTQ2RkUwNjc2ODkxQTUxMDRFMUI0MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAtBuCyU5CD0Ok1niNt/rn6M9rLrVzo2yE8k372N+BasF1lvWO wUsrypioU6SY46tUNb+NnX2f+/IpHXtyMruzIx3qQguX82i82AGSA32TvTbGHcXo 3SKzl1Tqb/KOtfCP7k9uAhP1PbYjZO/LXxPXoOApGmN+ityopAmmv+aSqNnFl6d9 QZ+LQqNe5g6ynP97b1mqv/VsIi0R/IXi60oQBjnuT4OpTzQv33hEtHS4ojR5gnm0 GuZluza5u4sG0L31cEh/pXz8gqnjAtehTdJECbX6CvGoVDnGcJTNPdqNYsUpEHOR ChF3wYg7BRdwl3TkCsGSDUAd9k295MzCY/ETbQIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFGxOAwJnEKQ/QOFG/gZ2iRpRBOG0MB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL2JFNERBbWNRcEQ5 QTRVYi1CbmFKR2xFRTRiUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr4kgwDQYJKoZIhvcNAQELBQADggEBAJjz2h836YNj0tGb6LxPYcnWYdcV fBsvYMZ8saaJFuEiOOuZKMGKN1nxH20FIVD4y7PzggNnOF86EnPYqshi+WaO/TFQ XWbkzSQTmJWEQvuJrmDpaQthUJdJwYb4/B2KAUs7iXRXoB796ZPETa12xp8rhJp/ WMbiuZpX0qHtZ69kDIFsTqidJG5hNZlFlCxUxjD4CDsZw96oFAVdw86+WE5dyBwh r7zQVBxowdTP/RSYzYHO2CJKulIFc+Nhpz6OISxYFhjyMEHqIaTH47vFE/rBpz90 rKeamjCvhH3YTGgZ0Q3p0srtsv9fAnBYb+SUxDLkbV79toYDaCIKCXQlMs4= -----END CERTIFICATE-----Generated at Sun Dec 21 09:42:40 2025 by rpki-client