This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/AEhYI1O85pY3rY2xDMonetrpG-o.roa File: AEhYI1O85pY3rY2xDMonetrpG-o.roa (raw, json) Hash identifier: Rm9aFtqs8CF5F3trUJhwWlQ6cpbxPD+A9d5R12FePS4= Subject key identifier: 00:48:58:23:53:BC:E6:96:37:AD:8D:B1:0C:CA:27:7A:DA:E9:1B:EA Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 1BED Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/AEhYI1O85pY3rY2xDMonetrpG-o.roa Signing time: Mon 26 May 2025 09:38:06 +0000 ROA not before: Mon 26 May 2025 09:38:06 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 7149 (0x1bed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: May 26 09:38:06 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0048582353BCE69637AD8DB10CCA277ADAE91BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c4:41:da:4f:f0:3f:53:41:4f:ce:2b:f6:71: e4:ee:2c:59:11:74:4e:39:27:be:c0:a0:b0:fc:3b: 58:26:17:11:b4:14:88:69:f0:df:81:ea:49:4d:b0: 05:70:f2:68:30:16:6d:bb:a7:91:ac:03:71:e4:80: 22:bc:db:43:53:0e:ff:a3:38:ec:81:c3:4e:c7:4d: cf:0c:3f:8b:8e:b9:00:3d:7d:99:be:00:18:dc:82: cd:b8:e7:0f:4a:41:47:5a:0a:38:0a:db:e3:a8:55: 40:0a:fd:1e:6f:ea:18:84:fe:57:77:1a:f2:9f:8f: 9b:09:f6:83:08:bd:8d:cf:63:6d:87:4a:93:f2:07: eb:88:c9:82:5f:c4:b6:fb:ce:3f:07:1e:35:be:6f: f6:32:de:6c:d9:f4:a0:40:91:28:f0:b5:b5:8b:28: 89:2f:0d:54:19:bf:10:f4:3b:74:36:cb:89:4b:e5: c2:f2:62:79:db:89:e6:5c:56:74:81:e4:0b:03:32: d8:63:31:47:d9:17:c8:83:e6:d6:4d:22:11:34:17: e8:d5:fd:6f:0f:e8:87:be:2d:76:76:55:41:bd:8a: 91:3e:9f:b7:a4:fb:e0:fa:21:d8:41:5c:af:8a:60: c9:65:cc:9e:24:79:23:9c:e9:a6:1d:87:11:2e:ca: 36:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:48:58:23:53:BC:E6:96:37:AD:8D:B1:0C:CA:27:7A:DA:E9:1B:EA X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/AEhYI1O85pY3rY2xDMonetrpG-o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 8f:4e:5d:e4:51:65:5b:04:1b:97:70:ee:c5:b9:ca:e5:e7:27: 36:69:ed:6b:34:82:c8:ca:36:1a:b1:22:c4:fb:2a:1d:9a:6a: ea:01:98:00:bb:a4:6b:45:13:47:f7:77:6f:a5:95:7f:d2:1c: 8b:2d:24:48:2c:02:49:16:19:7b:5a:45:14:fc:01:01:74:66: d2:ca:20:af:5d:bb:a1:d4:95:21:af:7b:8c:db:a0:28:83:1f: f3:f5:e4:17:8f:12:4e:e9:ca:31:8b:f7:44:64:b1:ea:b8:e1: 1c:ea:cf:7c:db:a1:46:65:e2:50:85:37:69:71:b0:bf:30:1a: ed:f1:68:d5:2b:7a:3b:fe:a2:04:66:42:e4:28:bc:f9:77:2a: 58:6c:2d:44:b3:a5:79:51:80:90:5e:33:c4:a6:c4:1e:55:7a: 3c:e6:13:5c:0e:5d:ab:bc:7a:0c:ab:56:fc:da:d6:65:69:51: c8:c5:ed:ca:eb:ba:ac:0f:99:34:39:94:09:1f:2d:6d:74:eb: c8:8b:89:e4:ad:e6:6a:63:76:1a:28:98:13:0a:6c:08:06:eb: f0:cc:e6:2a:c8:88:04:80:5c:e6:68:a8:11:a4:f4:b9:f3:b4: 27:de:89:f7:f6:cb:48:43:22:0d:59:af:8b:77:67:3a:a3:8c: c5:93:50:05 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICG+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA1MjYw OTM4MDZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDAwNDg1ODIzNTNCQ0U2 OTYzN0FEOERCMTBDQ0EyNzdBREFFOTFCRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDExEHaT/A/U0FPziv2ceTuLFkRdE45J77AoLD8O1gmFxG0FIhp 8N+B6klNsAVw8mgwFm27p5GsA3HkgCK820NTDv+jOOyBw07HTc8MP4uOuQA9fZm+ ABjcgs245w9KQUdaCjgK2+OoVUAK/R5v6hiE/ld3GvKfj5sJ9oMIvY3PY22HSpPy B+uIyYJfxLb7zj8HHjW+b/Yy3mzZ9KBAkSjwtbWLKIkvDVQZvxD0O3Q2y4lL5cLy YnnbieZcVnSB5AsDMthjMUfZF8iD5tZNIhE0F+jV/W8P6Ie+LXZ2VUG9ipE+n7ek ++D6IdhBXK+KYMllzJ4keSOc6aYdhxEuyjbxAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUAEhYI1O85pY3rY2xDMonetrpG+owHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvQUVoWUkxTzg1cFkz clkyeERNb25ldHJwRy1vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAI9OXeRRZVsEG5dw7sW5yuXnJzZp 7Ws0gsjKNhqxIsT7Kh2aauoBmAC7pGtFE0f3d2+llX/SHIstJEgsAkkWGXtaRRT8 AQF0ZtLKIK9du6HUlSGve4zboCiDH/P15BePEk7pyjGL90Rkseq44Rzqz3zboUZl 4lCFN2lxsL8wGu3xaNUrejv+ogRmQuQovPl3KlhsLUSzpXlRgJBeM8SmxB5Vejzm E1wOXau8egyrVvza1mVpUcjF7crruqwPmTQ5lAkfLW1068iLieSt5mpjdhoomBMK bAgG6/DM5irIiASAXOZoqBGk9LnztCfeiff2y0hDIg1Zr4t3ZzqjjMWTUAU= -----END CERTIFICATE-----Generated at Mon Jan 12 04:07:11 2026 by rpki-client