This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/Jt1TfVplKkIQmAZIT9DHKj3EYVk.roa File: Jt1TfVplKkIQmAZIT9DHKj3EYVk.roa (raw, json) Hash identifier: 5RZ1bF2X6pO+ztK2qRvxd+z9dP/mExx0NFEx/pMXXl4= Subject key identifier: 26:DD:53:7D:5A:65:2A:42:10:98:06:48:4F:D0:C7:2A:3D:C4:61:59 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2331 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/Jt1TfVplKkIQmAZIT9DHKj3EYVk.roa Signing time: Sun 08 Jun 2025 06:38:55 +0000 ROA not before: Sun 08 Jun 2025 06:38:55 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9009 (0x2331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 8 06:38:55 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=26DD537D5A652A42109806484FD0C72A3DC46159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:05:c5:54:13:3b:50:ad:e6:56:ff:53:87:50: bd:f4:0f:79:33:b0:a0:7e:69:da:c5:3b:1d:9f:66: d4:03:7e:b0:f2:5f:5c:9b:8d:0d:a4:68:8a:d8:d1: 9e:fd:5e:d3:a3:95:2b:48:93:50:e8:7a:2f:f2:9e: 1f:9b:eb:38:bf:73:1e:ea:4c:54:b6:17:bd:d3:2c: 90:a6:df:84:4d:94:e0:bd:9c:51:ac:90:25:27:af: 62:00:22:82:c4:b2:c4:d4:c5:46:10:a2:dd:b1:ff: bb:aa:78:9d:78:63:58:84:4a:c5:cb:30:32:04:fd: 9f:8e:28:05:6a:30:b9:6f:91:e3:d6:f1:fd:9a:17: f9:d2:10:29:6e:49:f2:be:bf:b9:ec:8a:9b:cc:d7: 63:31:fb:80:92:66:21:a0:a5:09:c1:a4:53:7b:35: 31:6c:f4:0c:ff:09:1d:73:42:13:c3:2d:75:84:4e: ed:ae:4f:66:2b:7e:3a:2e:4e:61:f2:7f:07:77:2b: 1d:3d:de:e1:fb:7e:82:1c:bf:af:22:fc:fc:34:2a: c3:3a:0a:2f:42:26:2f:2c:df:0f:4a:cc:ab:56:fd: 1f:fe:bb:ba:be:4e:fe:f9:e5:2f:fd:59:4c:22:ba: 46:7d:5d:c7:bf:84:62:a2:8c:3d:0e:19:78:41:69: 97:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:DD:53:7D:5A:65:2A:42:10:98:06:48:4F:D0:C7:2A:3D:C4:61:59 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/Jt1TfVplKkIQmAZIT9DHKj3EYVk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 36:d9:7e:91:7e:16:48:30:35:dd:e9:4d:bb:13:43:13:66:00: c0:f7:51:e8:1d:80:07:70:fd:cc:27:ed:3d:f3:95:6c:e2:02: c9:de:ec:32:d7:ba:07:fc:bf:91:62:c4:1e:db:35:41:fa:3b: e3:31:74:b5:a9:8a:a1:2f:11:4e:ef:b9:c7:01:aa:b0:48:38: 89:48:ec:d9:1b:ce:c3:11:dc:45:76:a3:4e:1b:f1:e1:1a:ee: 1b:43:3c:4a:68:cc:e8:7e:51:1f:d8:d9:ce:6a:65:1c:54:15: 45:20:39:cd:bb:26:37:73:dc:64:93:6a:aa:69:8b:9b:75:58: fd:84:32:d8:73:e0:e2:70:bb:62:59:5a:cf:73:26:ad:72:8b: 5b:68:79:8f:fe:2d:fc:7f:5a:6f:57:dc:41:0e:4c:fc:46:0f: 5c:64:46:fb:d6:5f:1a:24:c4:9d:88:01:ae:37:3f:f2:4d:5f: 73:bd:32:fa:8a:13:21:59:ef:97:9f:65:a8:12:95:a0:fd:05: 65:ae:da:0e:d0:01:ec:b8:88:ce:f3:27:db:64:94:43:d9:cf: 90:0a:77:46:dc:3b:af:a8:a6:ed:b9:33:9a:20:f2:9b:a5:f2: 72:4a:72:0e:89:c8:2a:f5:3b:70:00:29:bc:e3:54:27:7c:5d: d7:8b:54:04 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDgw NjM4NTVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDI2REQ1MzdENUE2NTJB NDIxMDk4MDY0ODRGRDBDNzJBM0RDNDYxNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7BcVUEztQreZW/1OHUL30D3kzsKB+adrFOx2fZtQDfrDyX1yb jQ2kaIrY0Z79XtOjlStIk1Doei/ynh+b6zi/cx7qTFS2F73TLJCm34RNlOC9nFGs kCUnr2IAIoLEssTUxUYQot2x/7uqeJ14Y1iESsXLMDIE/Z+OKAVqMLlvkePW8f2a F/nSECluSfK+v7nsipvM12Mx+4CSZiGgpQnBpFN7NTFs9Az/CR1zQhPDLXWETu2u T2YrfjouTmHyfwd3Kx093uH7foIcv68i/Pw0KsM6Ci9CJi8s3w9KzKtW/R/+u7q+ Tv755S/9WUwiukZ9Xce/hGKijD0OGXhBaZcLAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUJt1TfVplKkIQmAZIT9DHKj3EYVkwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvSnQxVGZWcGxLa0lR bUFaSVQ5REhLajNFWVZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBADbZfpF+FkgwNd3pTbsTQxNmAMD3 UegdgAdw/cwn7T3zlWziAsne7DLXugf8v5FixB7bNUH6O+MxdLWpiqEvEU7vuccB qrBIOIlI7NkbzsMR3EV2o04b8eEa7htDPEpozOh+UR/Y2c5qZRxUFUUgOc27Jjdz 3GSTaqppi5t1WP2EMthz4OJwu2JZWs9zJq1yi1toeY/+Lfx/Wm9X3EEOTPxGD1xk RvvWXxokxJ2IAa43P/JNX3O9MvqKEyFZ75efZagSlaD9BWWu2g7QAey4iM7zJ9tk lEPZz5AKd0bcO6+opu25M5og8pul8nJKcg6JyCr1O3AAKbzjVCd8XdeLVAQ= -----END CERTIFICATE-----Generated at Mon Jan 12 13:44:39 2026 by rpki-client