This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/-SlWRxNRxd9KtIoS-x_7Ur2-SNY.roa File: -SlWRxNRxd9KtIoS-x_7Ur2-SNY.roa (raw, json) Hash identifier: /o7GDbuSuknwC5J4z+HzPqHPDpV946W1kExPyDKobSg= Subject key identifier: F9:29:56:47:13:51:C5:DF:4A:B4:8A:12:FB:1F:FB:52:BD:BE:48:D6 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 250A Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/-SlWRxNRxd9KtIoS-x_7Ur2-SNY.roa Signing time: Wed 11 Jun 2025 13:39:16 +0000 ROA not before: Wed 11 Jun 2025 13:39:16 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9482 (0x250a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 11 13:39:16 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=F92956471351C5DF4AB48A12FB1FFB52BDBE48D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:96:5c:8b:5a:3c:e9:62:65:8c:d8:87:66:24: e4:b6:9a:d9:e5:77:7e:df:77:82:c2:9f:d2:8a:bb: 27:2c:4c:3b:9c:53:88:ae:19:d5:2d:10:d2:7b:41: a4:21:85:21:32:be:75:7b:2d:0c:94:04:92:e4:97: aa:84:1a:59:6d:ac:fd:74:bd:21:26:c7:f9:1d:78: b2:f8:b2:f3:0f:fe:f1:6e:81:2b:3e:98:ab:58:0b: ee:34:7e:c0:83:5f:7e:7c:77:84:ac:51:fa:5d:fe: 4b:de:d5:6c:47:fc:86:9b:f6:7f:0e:5f:8f:e1:7b: 60:ad:5b:ac:07:e3:0f:7c:08:38:7a:11:02:ed:3c: 15:f6:c6:01:12:9b:8e:12:c7:e6:73:1f:26:4b:f6: f9:a5:44:8a:85:83:d8:a4:47:3a:f2:2c:ee:52:11: 80:b3:27:d5:d9:c4:4d:08:94:31:6c:51:6c:61:1a: 6e:17:db:d4:4e:5b:1f:46:d0:60:4b:42:a7:33:b9: 9b:9a:17:20:fa:a4:bf:df:fd:48:df:e1:35:7f:12: 40:1f:1e:e6:a4:fb:cb:25:d6:f0:91:5b:ee:7a:0d: f5:29:34:4a:81:39:70:d8:f6:1f:bf:44:0f:27:b7: 9e:f9:2f:e8:07:9c:e2:81:df:05:c2:95:69:9d:cc: 6a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:29:56:47:13:51:C5:DF:4A:B4:8A:12:FB:1F:FB:52:BD:BE:48:D6 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/-SlWRxNRxd9KtIoS-x_7Ur2-SNY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 15:21:db:4c:71:20:98:6a:fb:d3:2f:33:d5:d8:9e:33:82:e8: fb:28:dd:e5:c1:59:db:51:b7:98:5a:aa:b4:64:0c:33:2b:3a: 15:53:43:6c:0f:35:50:df:26:8e:b2:a3:29:3e:f6:26:e1:0a: 4a:38:6e:7f:f1:4d:69:26:9e:13:9f:09:c7:79:0f:5f:5e:bd: 48:c5:72:fc:bd:5e:66:0b:b2:c0:a0:65:0a:ca:d7:bd:b8:9b: bb:1f:9f:dd:8c:61:43:9e:d2:90:d1:7e:f6:b7:33:de:7f:73: 9a:46:1b:84:f1:df:f7:e9:7e:68:db:86:fc:5c:19:4e:11:69: a2:fe:98:33:0a:a3:5d:42:43:ae:70:76:71:89:55:07:dd:6d: 3c:14:51:e1:f3:7f:fc:74:26:c4:2d:19:99:53:d1:76:53:f7: 3b:c8:7d:f8:69:d1:76:69:0c:b6:85:b9:f3:66:ce:25:de:ad: 1c:af:ab:97:c9:54:4e:d3:fc:6f:7e:22:8d:42:45:d8:ce:c1: 74:d2:6f:fb:89:b3:34:b6:80:a5:48:be:7b:da:f8:18:72:22: 1b:4f:e5:be:8e:58:04:52:7b:5c:d4:bf:fd:70:db:5c:49:9e: a7:55:e5:bf:72:c6:8f:cd:7e:0d:74:e1:91:af:d4:81:0c:07: 43:5b:f0:1c -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICJQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MTEx MzM5MTZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEY5Mjk1NjQ3MTM1MUM1 REY0QUI0OEExMkZCMUZGQjUyQkRCRTQ4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwllyLWjzpYmWM2IdmJOS2mtnld37fd4LCn9KKuycsTDucU4iu GdUtENJ7QaQhhSEyvnV7LQyUBJLkl6qEGlltrP10vSEmx/kdeLL4svMP/vFugSs+ mKtYC+40fsCDX358d4SsUfpd/kve1WxH/Iab9n8OX4/he2CtW6wH4w98CDh6EQLt PBX2xgESm44Sx+ZzHyZL9vmlRIqFg9ikRzryLO5SEYCzJ9XZxE0IlDFsUWxhGm4X 29ROWx9G0GBLQqczuZuaFyD6pL/f/Ujf4TV/EkAfHuak+8sl1vCRW+56DfUpNEqB OXDY9h+/RA8nt575L+gHnOKB3wXClWmdzGpLAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU+SlWRxNRxd9KtIoS+x/7Ur2+SNYwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvLVNsV1J4TlJ4ZDlL dElvUy14XzdVcjItU05ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBABUh20xxIJhq+9MvM9XYnjOC6Pso 3eXBWdtRt5haqrRkDDMrOhVTQ2wPNVDfJo6yoyk+9ibhCko4bn/xTWkmnhOfCcd5 D19evUjFcvy9XmYLssCgZQrK1724m7sfn92MYUOe0pDRfva3M95/c5pGG4Tx3/fp fmjbhvxcGU4RaaL+mDMKo11CQ65wdnGJVQfdbTwUUeHzf/x0JsQtGZlT0XZT9zvI ffhp0XZpDLaFufNmziXerRyvq5fJVE7T/G9+Io1CRdjOwXTSb/uJszS2gKVIvnva +BhyIhtP5b6OWARSe1zUv/1w21xJnqdV5b9yxo/Nfg104ZGv1IEMB0Nb8Bw= -----END CERTIFICATE-----Generated at Mon Jan 12 13:43:54 2026 by rpki-client