This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/EqNZn_eaLUL8Cjz_M4CjX3hnYdY.roa File: EqNZn_eaLUL8Cjz_M4CjX3hnYdY.roa (raw, json) Hash identifier: x+yd8kAKucRwe1Rc9TtF7ZzSPZXmUHuBwPGiPXZrU60= Subject key identifier: 12:A3:59:9F:F7:9A:2D:42:FC:0A:3C:FF:33:80:A3:5F:78:67:61:D6 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 204B Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/EqNZn_eaLUL8Cjz_M4CjX3hnYdY.roa Signing time: Tue 03 Jun 2025 03:08:38 +0000 ROA not before: Tue 03 Jun 2025 03:08:38 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 8267 (0x204b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 3 03:08:38 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=12A3599FF79A2D42FC0A3CFF3380A35F786761D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:23:1a:91:8d:ab:9d:2c:5f:63:af:8c:04: 60:da:53:70:56:5a:51:d0:23:78:8c:f3:17:38:1d: 9c:c7:9d:7d:34:4c:1b:d2:9b:b3:47:14:9b:f9:61: 2a:30:a9:48:4f:98:2c:19:2b:a5:45:c2:be:27:c5: 43:a7:69:39:c4:c8:01:07:f0:29:88:0c:c3:4c:2d: d9:2d:0c:f3:f2:07:ee:f1:96:e5:08:b1:ec:99:f3: 54:78:ee:58:21:5a:aa:9b:0b:b8:ee:a2:52:ee:4e: b7:2c:ee:ab:ad:e9:66:0b:34:39:c7:2e:68:41:9b: 1b:83:8d:b9:1e:a6:ea:47:88:44:ec:f6:06:b1:62: 2a:e9:ed:b6:a8:f1:29:73:a6:16:92:69:5a:5b:32: 26:65:d4:f0:ea:f9:22:17:42:14:be:08:03:b6:be: af:c7:08:16:bc:33:fe:d4:f0:ce:b3:d3:15:56:48: 33:fb:e6:f5:2a:e9:b2:c7:87:98:38:08:3b:3d:67: f2:3a:e0:9c:75:f9:b0:e3:57:66:e0:67:84:53:72: 01:70:b0:7a:ae:a4:cf:02:4b:42:0d:7b:e5:3d:7b: d5:13:b5:bb:65:58:9c:31:d2:f5:2e:52:70:0f:f6: d3:44:44:8c:a9:86:fc:bc:bc:f1:4a:d1:b0:18:00: 29:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A3:59:9F:F7:9A:2D:42:FC:0A:3C:FF:33:80:A3:5F:78:67:61:D6 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/EqNZn_eaLUL8Cjz_M4CjX3hnYdY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 24:c9:1e:de:82:29:3a:4f:63:01:ea:1d:2b:59:4a:d0:cd:ae: bd:38:66:44:95:12:fc:36:a4:66:79:c3:11:29:21:51:f3:fd: 66:bc:f6:cb:fb:6f:73:ea:6d:10:7d:2e:5a:6e:bf:40:b7:c5: b0:06:19:d3:89:ba:cc:b4:1b:3b:7b:50:c4:82:ad:1b:d4:ba: f9:23:aa:fa:71:e3:05:46:1f:00:2f:8f:56:66:8f:3a:30:31: 4c:a9:38:b4:d4:2c:b0:ab:a8:2e:27:d1:58:5d:dc:38:ff:f0: 9e:52:3f:6e:f2:c0:ed:51:0f:e3:c2:de:65:39:53:05:6c:e5: 7f:a2:7b:69:54:8e:99:f7:e3:cb:7c:53:ee:90:ed:23:2b:a6: 8f:bc:74:15:33:cc:26:d7:c8:51:1b:ca:ce:ee:0d:6b:56:3f: d8:64:13:51:71:0e:e9:31:c2:e5:18:a0:57:cf:f7:15:c0:3e: 78:8e:c2:44:e2:85:29:04:7d:5c:de:40:f5:93:70:ad:23:11: 0c:b3:5f:d3:d9:a1:93:2b:bf:9c:f7:8a:66:34:3c:70:07:f6: 8f:49:a7:6f:40:aa:0a:1d:cb:5d:36:05:5d:02:df:cd:a8:69: 80:11:0e:f4:a7:7e:7e:8d:f8:dc:17:75:8f:5e:e8:b5:53:b3: c4:2c:ea:b8 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDMw MzA4MzhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDEyQTM1OTlGRjc5QTJE NDJGQzBBM0NGRjMzODBBMzVGNzg2NzYxRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2nCMakY2rnSxfY6+MBGDaU3BWWlHQI3iM8xc4HZzHnX00TBvS m7NHFJv5YSowqUhPmCwZK6VFwr4nxUOnaTnEyAEH8CmIDMNMLdktDPPyB+7xluUI seyZ81R47lghWqqbC7juolLuTrcs7qut6WYLNDnHLmhBmxuDjbkepupHiETs9gax Yirp7bao8SlzphaSaVpbMiZl1PDq+SIXQhS+CAO2vq/HCBa8M/7U8M6z0xVWSDP7 5vUq6bLHh5g4CDs9Z/I64Jx1+bDjV2bgZ4RTcgFwsHqupM8CS0INe+U9e9UTtbtl WJwx0vUuUnAP9tNERIyphvy8vPFK0bAYACmzAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUEqNZn/eaLUL8Cjz/M4CjX3hnYdYwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvRXFOWm5fZWFMVUw4 Q2p6X000Q2pYM2huWWRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBACTJHt6CKTpPYwHqHStZStDNrr04 ZkSVEvw2pGZ5wxEpIVHz/Wa89sv7b3PqbRB9Llpuv0C3xbAGGdOJusy0Gzt7UMSC rRvUuvkjqvpx4wVGHwAvj1ZmjzowMUypOLTULLCrqC4n0Vhd3Dj/8J5SP27ywO1R D+PC3mU5UwVs5X+ie2lUjpn348t8U+6Q7SMrpo+8dBUzzCbXyFEbys7uDWtWP9hk E1FxDukxwuUYoFfP9xXAPniOwkTihSkEfVzeQPWTcK0jEQyzX9PZoZMrv5z3imY0 PHAH9o9Jp29Aqgody102BV0C382oaYARDvSnfn6N+NwXdY9e6LVTs8Qs6rg= -----END CERTIFICATE-----Generated at Mon Jan 12 09:06:00 2026 by rpki-client