This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/KBUcUUgnt-snV8LFnfnYsiHpY9M.roa File: KBUcUUgnt-snV8LFnfnYsiHpY9M.roa (raw, json) Hash identifier: 1R7pS1qsbHVLHn444450Vaa8HqoXFcarGwaK35fPieY= Subject key identifier: 28:15:1C:51:48:27:B7:EB:27:57:C2:C5:9D:F9:D8:B2:21:E9:63:D3 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 1C13 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/KBUcUUgnt-snV8LFnfnYsiHpY9M.roa Signing time: Mon 26 May 2025 15:08:06 +0000 ROA not before: Mon 26 May 2025 15:08:06 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 7187 (0x1c13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: May 26 15:08:06 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=28151C514827B7EB2757C2C59DF9D8B221E963D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ec:11:b3:75:33:b5:01:73:67:72:1f:aa:86: 2c:0f:82:9d:9c:17:ab:c3:f4:a0:d2:d2:cf:ef:4a: f3:da:f0:f2:1a:2a:a1:97:f6:21:03:35:2e:2a:5e: a7:52:db:2e:c7:43:e0:dd:48:33:86:d8:e4:7b:e9: 90:2e:5a:fb:7c:ae:1a:ab:06:1a:88:ed:54:a2:d8: 0e:05:2b:34:e6:df:45:c6:c1:75:a5:57:44:46:47: 82:c1:da:a1:d7:e1:d6:b7:ac:06:52:d9:47:dd:df: 6e:8b:78:a2:a3:b5:9f:8c:5e:aa:d7:88:5e:cf:61: 12:9a:b6:99:59:a0:a3:e7:8b:e4:cb:5b:d5:97:67: 7a:aa:e3:9b:a0:ca:ab:5a:6f:e8:e0:89:e1:c5:5b: 21:b4:ba:ae:eb:04:77:3b:3b:1d:47:e9:55:0b:d0: 2b:02:97:f9:c8:0b:4e:03:42:eb:d2:8a:3a:13:84: c9:83:f1:a9:8b:0f:82:f5:e0:59:1e:34:81:b5:94: e5:70:58:f1:2b:60:4f:b2:24:a4:0a:37:4d:c3:31: 83:a4:d9:eb:c3:75:1d:ac:94:7c:b9:ea:9f:be:27: be:e4:9d:77:16:aa:22:fb:15:a1:24:28:c9:a4:0c: 52:e4:2d:f3:5a:c9:ee:77:61:2a:a4:46:3c:0b:79: 31:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:15:1C:51:48:27:B7:EB:27:57:C2:C5:9D:F9:D8:B2:21:E9:63:D3 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/KBUcUUgnt-snV8LFnfnYsiHpY9M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 8d:ee:3c:6a:85:8d:fa:84:1c:ba:99:a3:f3:38:fd:1c:2a:a2: f1:15:b0:9a:4e:1d:24:9e:79:a3:3d:f8:62:1f:6a:03:c4:51: f3:79:62:ca:3a:63:3f:5c:4f:b5:9c:0b:9c:1e:d1:02:a2:ba: a0:59:21:9a:4e:8e:df:a4:95:08:20:ec:76:0e:b4:58:b8:4c: 54:be:c1:22:27:8e:83:c2:14:84:87:2a:5e:0b:8a:03:74:72: de:ae:a2:c9:0f:92:06:5c:41:98:0e:e6:24:4c:7a:e1:ea:29: d0:f7:8d:d6:f6:ad:e0:e3:38:47:af:07:b5:36:a8:5b:02:98: 01:49:36:e0:4a:ff:c8:bd:02:f5:3d:79:d4:fe:ef:20:1d:c5: 51:d4:c8:88:6f:ed:7d:94:c6:00:53:d4:dd:96:b8:41:7d:df: 05:07:55:4c:bd:6a:71:e9:fa:af:5c:67:d3:9c:a4:f3:40:6c: 22:e1:f9:02:1b:09:3c:da:c1:e2:8e:81:be:78:3f:eb:a8:09: 5d:ae:26:39:63:40:8e:be:6d:5d:f7:83:24:b2:aa:77:2a:ea: 58:ec:59:66:46:86:d2:04:34:28:e4:25:aa:b4:27:89:a0:34: 2b:06:6f:66:56:61:b4:c1:9f:22:71:d2:9b:22:ca:86:42:a8: 2c:15:1f:a3 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICHBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA1MjYx NTA4MDZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDI4MTUxQzUxNDgyN0I3 RUIyNzU3QzJDNTlERjlEOEIyMjFFOTYzRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC27BGzdTO1AXNnch+qhiwPgp2cF6vD9KDS0s/vSvPa8PIaKqGX 9iEDNS4qXqdS2y7HQ+DdSDOG2OR76ZAuWvt8rhqrBhqI7VSi2A4FKzTm30XGwXWl V0RGR4LB2qHX4da3rAZS2Ufd326LeKKjtZ+MXqrXiF7PYRKatplZoKPni+TLW9WX Z3qq45ugyqtab+jgieHFWyG0uq7rBHc7Ox1H6VUL0CsCl/nIC04DQuvSijoThMmD 8amLD4L14FkeNIG1lOVwWPErYE+yJKQKN03DMYOk2evDdR2slHy56p++J77knXcW qiL7FaEkKMmkDFLkLfNaye53YSqkRjwLeTEdAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUKBUcUUgnt+snV8LFnfnYsiHpY9MwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvS0JVY1VVZ250LXNu VjhMRm5mbllzaUhwWTlNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAI3uPGqFjfqEHLqZo/M4/RwqovEV sJpOHSSeeaM9+GIfagPEUfN5Yso6Yz9cT7WcC5we0QKiuqBZIZpOjt+klQgg7HYO tFi4TFS+wSInjoPCFISHKl4LigN0ct6uoskPkgZcQZgO5iRMeuHqKdD3jdb2reDj OEevB7U2qFsCmAFJNuBK/8i9AvU9edT+7yAdxVHUyIhv7X2UxgBT1N2WuEF93wUH VUy9anHp+q9cZ9OcpPNAbCLh+QIbCTzaweKOgb54P+uoCV2uJjljQI6+bV33gySy qncq6ljsWWZGhtIENCjkJaq0J4mgNCsGb2ZWYbTBnyJx0psiyoZCqCwVH6M= -----END CERTIFICATE-----Generated at Mon Jan 12 14:34:00 2026 by rpki-client