This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/6r-84h0M5NIU3fqxM66E5dPcoII.roa File: 6r-84h0M5NIU3fqxM66E5dPcoII.roa (raw, json) Hash identifier: E6rymrQVofpc7Lkbhc6pdHXSrbAl43wAMS9kNwX1zEU= Subject key identifier: EA:BF:BC:E2:1D:0C:E4:D2:14:DD:FA:B1:33:AE:84:E5:D3:DC:A0:82 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 249B Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/6r-84h0M5NIU3fqxM66E5dPcoII.roa Signing time: Tue 10 Jun 2025 19:09:06 +0000 ROA not before: Tue 10 Jun 2025 19:09:06 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9371 (0x249b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 10 19:09:06 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=EABFBCE21D0CE4D214DDFAB133AE84E5D3DCA082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:68:e1:6b:90:56:bc:93:bc:af:b8:1f:45:be: f0:d2:58:d5:dc:1a:11:e7:f6:4e:e0:40:4b:d4:a5: e1:b2:3b:b7:a4:4a:09:d2:64:ac:bb:c4:0a:9e:37: e1:6c:9d:e3:9e:30:0f:2f:3f:1b:7b:6a:14:b5:dc: 67:82:bd:37:6d:69:50:17:02:a5:25:4c:2c:38:84: 8a:61:30:36:d9:9a:12:2a:41:74:11:45:59:dc:e8: 95:96:e6:cb:6a:b2:07:28:01:12:7c:57:ce:d9:01: 08:a2:82:03:cd:00:4c:4c:ea:05:03:2c:f4:05:7c: 36:d2:e8:07:ac:71:8f:4f:c3:2f:37:bf:9f:6d:ef: 75:6f:58:d6:e5:e8:b9:15:c0:0f:8a:2d:ab:d0:83: 7c:ea:06:c7:bd:32:bb:4a:ac:8a:6b:36:7c:25:15: bd:53:66:9a:e0:77:b1:5c:5c:de:55:88:c7:bc:f4: e3:1e:d7:b8:f6:d8:30:9c:bd:1f:f6:3f:bb:ab:15: da:fd:a8:84:2d:27:5b:a1:ea:77:9a:8f:94:ca:a9: 05:b1:64:e0:cc:a5:5b:45:c5:94:f2:d0:a5:db:94: 92:99:ac:e5:43:87:5e:e5:ef:b4:ad:d0:e6:c9:96: b7:32:6c:59:a4:19:72:25:b7:72:6c:b5:1c:ed:d2: 7f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:BF:BC:E2:1D:0C:E4:D2:14:DD:FA:B1:33:AE:84:E5:D3:DC:A0:82 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/6r-84h0M5NIU3fqxM66E5dPcoII.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 27:47:34:a2:d3:b8:39:42:62:df:6a:9a:c4:a7:a5:06:e3:7d: 3f:4e:5e:57:7a:5c:d8:ec:23:39:f8:43:e7:28:87:30:0c:52: 1b:e1:94:26:89:d4:34:48:f1:d5:f1:1d:95:e0:69:da:dd:59: 7f:5b:bb:f7:2a:e1:c3:c8:8f:42:31:ac:75:19:1f:4a:b2:a5: 5c:51:7f:28:67:c8:17:90:dd:9b:f1:4d:b5:67:c7:67:b6:5b: 01:53:95:00:9b:1a:5b:86:b9:cf:87:a0:2e:8a:ef:ac:00:f0: 94:71:0e:e1:e8:ba:63:d6:be:5d:08:31:c6:1a:8c:95:b3:59: 48:da:48:c6:fd:4c:c4:ea:8e:b7:3a:fe:ba:ed:59:15:6b:3b: 42:88:8b:b5:22:0a:80:6b:90:06:b3:a0:6e:67:66:c2:28:0a: e2:16:45:1a:ff:3f:3b:71:da:12:65:e3:62:49:f8:e0:b8:f7: d8:a6:57:2f:c5:a8:00:06:b9:ce:18:4a:65:96:ed:94:30:90: ee:d2:1b:b2:36:b2:c5:54:6a:68:8c:83:f9:e1:ab:9e:9b:e9: e8:ef:9b:2e:72:bc:46:91:cb:24:a4:8d:ce:6b:1e:4e:7d:9c: 92:80:ae:74:b9:5c:c4:0a:66:bd:b4:f9:3c:f7:e7:79:d5:8b: 02:81:5e:ec -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICJJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MTAx OTA5MDZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEVBQkZCQ0UyMUQwQ0U0 RDIxNERERkFCMTMzQUU4NEU1RDNEQ0EwODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDaOFrkFa8k7yvuB9FvvDSWNXcGhHn9k7gQEvUpeGyO7ekSgnS ZKy7xAqeN+FsneOeMA8vPxt7ahS13GeCvTdtaVAXAqUlTCw4hIphMDbZmhIqQXQR RVnc6JWW5stqsgcoARJ8V87ZAQiiggPNAExM6gUDLPQFfDbS6AescY9Pwy83v59t 73VvWNbl6LkVwA+KLavQg3zqBse9MrtKrIprNnwlFb1TZprgd7FcXN5ViMe89OMe 17j22DCcvR/2P7urFdr9qIQtJ1uh6neaj5TKqQWxZODMpVtFxZTy0KXblJKZrOVD h17l77St0ObJlrcybFmkGXIlt3JstRzt0n9TAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU6r+84h0M5NIU3fqxM66E5dPcoIIwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvNnItODRoME01TklV M2ZxeE02NkU1ZFBjb0lJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBACdHNKLTuDlCYt9qmsSnpQbjfT9O Xld6XNjsIzn4Q+cohzAMUhvhlCaJ1DRI8dXxHZXgadrdWX9bu/cq4cPIj0IxrHUZ H0qypVxRfyhnyBeQ3ZvxTbVnx2e2WwFTlQCbGluGuc+HoC6K76wA8JRxDuHoumPW vl0IMcYajJWzWUjaSMb9TMTqjrc6/rrtWRVrO0KIi7UiCoBrkAazoG5nZsIoCuIW RRr/Pztx2hJl42JJ+OC499imVy/FqAAGuc4YSmWW7ZQwkO7SG7I2ssVUamiMg/nh q56b6ejvmy5yvEaRyySkjc5rHk59nJKArnS5XMQKZr20+Tz353nViwKBXuw= -----END CERTIFICATE-----Generated at Sun Jan 11 23:40:07 2026 by rpki-client