This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/5tcG2ChOGHsjXHrUvw2ThLJtLA4.roa File: 5tcG2ChOGHsjXHrUvw2ThLJtLA4.roa (raw, json) Hash identifier: GtFfHznxRvK/4OH1QOoH+ulZ7u0G1snWmGGt9o28h30= Subject key identifier: E6:D7:06:D8:28:4E:18:7B:23:5C:7A:D4:BF:0D:93:84:B2:6D:2C:0E Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 216F Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/5tcG2ChOGHsjXHrUvw2ThLJtLA4.roa Signing time: Thu 05 Jun 2025 03:38:44 +0000 ROA not before: Thu 05 Jun 2025 03:38:44 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 8559 (0x216f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 5 03:38:44 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E6D706D8284E187B235C7AD4BF0D9384B26D2C0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:92:46:b0:7c:49:c6:af:d6:c4:f1:3e:b3:5d: 05:6f:54:69:b5:3c:42:0a:3a:6c:cb:b8:2e:51:6d: 54:03:57:c1:8d:6b:4f:11:9d:71:f1:07:a2:c9:09: 47:48:ea:de:1a:cd:02:10:4c:f6:63:05:4b:81:d8: 2f:41:e6:1b:cf:10:b2:be:dd:11:ca:b7:56:95:5c: b8:6f:7c:d6:61:f6:a0:20:5b:4f:b1:71:04:88:de: fe:4b:36:b5:c1:0b:3d:8b:2c:f2:c5:a0:41:65:21: 98:7f:df:47:50:4c:9f:15:7e:a9:2b:d7:df:ab:84: e7:db:01:51:1a:68:80:f4:37:21:98:e8:4e:a0:18: 8b:f9:02:2b:52:6e:9e:14:e7:ba:b3:f7:65:65:99: 8f:76:09:0a:f5:dd:28:cf:41:38:da:49:5a:23:aa: aa:73:6f:e3:7c:e6:bf:fd:95:e2:3e:c3:c0:f4:43: ca:c6:7b:fb:c7:2c:3b:e8:83:08:70:a2:ab:e7:39: 2b:a1:4e:04:5f:e3:b5:a9:81:1d:03:e4:c6:ed:65: fb:ac:9c:f9:20:03:9a:e4:6f:7c:90:f2:30:f9:83: 94:36:fb:28:2b:3a:bc:2f:01:f8:ad:c9:ea:43:18: 9f:4c:98:fa:62:05:69:e3:c1:ab:cd:fa:f0:ee:2c: 00:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D7:06:D8:28:4E:18:7B:23:5C:7A:D4:BF:0D:93:84:B2:6D:2C:0E X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/5tcG2ChOGHsjXHrUvw2ThLJtLA4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 48:01:8b:f0:f2:6e:98:ea:2c:a9:9c:1e:59:c3:d0:56:2f:52: c0:84:a0:43:b1:26:02:4e:72:be:aa:a5:4e:08:2d:e0:e0:ab: e0:26:29:2c:81:f1:06:95:d8:cb:a3:ea:f5:e4:ec:c8:40:9e: 77:ed:9c:70:6c:4b:a7:e9:c3:75:14:f2:5b:af:0f:06:1b:f4: a5:ba:03:7d:1b:85:18:05:de:41:30:0e:03:66:a3:59:cb:e2: a4:5f:0e:10:51:9d:bf:56:4f:71:22:34:88:a2:6c:6c:50:78: 1e:00:88:10:aa:ee:64:c5:15:a2:3a:04:70:2e:b5:0f:65:b8: 4d:19:e7:4c:12:56:21:08:89:a2:f3:03:93:79:cd:10:66:01: c8:8d:fc:12:eb:df:7b:7d:e3:61:74:6a:ea:3d:04:fb:cb:06: 20:da:0b:33:f7:a9:9e:bf:39:d2:28:75:bc:da:1e:af:89:00: 99:20:88:e1:a2:5a:96:4d:c8:af:76:9d:d5:d9:a7:82:02:6a: 0d:c8:76:3f:57:42:bb:f6:ef:dd:3b:02:5f:b4:9b:55:77:05: 8f:4d:ce:62:b2:2b:de:9f:7b:b7:bf:52:c4:73:fa:4e:64:75: 6c:58:11:ce:34:92:81:7e:77:2a:b2:12:dd:c4:f1:3e:80:f6: 17:bb:0e:86 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDUw MzM4NDRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEU2RDcwNkQ4Mjg0RTE4 N0IyMzVDN0FENEJGMEQ5Mzg0QjI2RDJDMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrkkawfEnGr9bE8T6zXQVvVGm1PEIKOmzLuC5RbVQDV8GNa08R nXHxB6LJCUdI6t4azQIQTPZjBUuB2C9B5hvPELK+3RHKt1aVXLhvfNZh9qAgW0+x cQSI3v5LNrXBCz2LLPLFoEFlIZh/30dQTJ8Vfqkr19+rhOfbAVEaaID0NyGY6E6g GIv5AitSbp4U57qz92VlmY92CQr13SjPQTjaSVojqqpzb+N85r/9leI+w8D0Q8rG e/vHLDvogwhwoqvnOSuhTgRf47WpgR0D5MbtZfusnPkgA5rkb3yQ8jD5g5Q2+ygr OrwvAfityepDGJ9MmPpiBWnjwavN+vDuLAB7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU5tcG2ChOGHsjXHrUvw2ThLJtLA4wHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvNXRjRzJDaE9HSHNq WEhyVXZ3MlRoTEp0TEE0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAEgBi/DybpjqLKmcHlnD0FYvUsCE oEOxJgJOcr6qpU4ILeDgq+AmKSyB8QaV2Muj6vXk7MhAnnftnHBsS6fpw3UU8luv DwYb9KW6A30bhRgF3kEwDgNmo1nL4qRfDhBRnb9WT3EiNIiibGxQeB4AiBCq7mTF FaI6BHAutQ9luE0Z50wSViEIiaLzA5N5zRBmAciN/BLr33t942F0auo9BPvLBiDa CzP3qZ6/OdIodbzaHq+JAJkgiOGiWpZNyK92ndXZp4ICag3Idj9XQrv27907Al+0 m1V3BY9NzmKyK96fe7e/UsRz+k5kdWxYEc40koF+dyqyEt3E8T6A9he7DoY= -----END CERTIFICATE-----Generated at Sun Jan 11 14:42:43 2026 by rpki-client