This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/RPkNY7zLIlY8rLjsM164PGkDnMs.roa File: RPkNY7zLIlY8rLjsM164PGkDnMs.roa (raw, json) Hash identifier: prGSB5YiSCU7699zJa3YUZrxqwUfVpEsVy9kAwCplqQ= Subject key identifier: 44:F9:0D:63:BC:CB:22:56:3C:AC:B8:EC:33:5E:B8:3C:69:03:9C:CB Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2241 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/RPkNY7zLIlY8rLjsM164PGkDnMs.roa Signing time: Fri 06 Jun 2025 14:38:48 +0000 ROA not before: Fri 06 Jun 2025 14:38:48 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 8769 (0x2241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 6 14:38:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=44F90D63BCCB22563CACB8EC335EB83C69039CCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3f:7e:ea:8c:07:f5:e9:46:46:cd:46:93:1c: af:98:16:c9:ff:a5:af:09:7b:c4:66:17:5c:3c:67: 0c:09:86:b6:bc:57:f1:1e:35:d2:93:8b:95:2a:3c: 7f:eb:34:5b:00:03:03:c0:90:4b:c6:d4:a1:96:66: c8:75:03:3a:d9:44:ef:50:55:99:bd:52:b0:e6:13: 55:df:f8:a7:1e:55:76:8d:f7:6f:ac:af:0e:c2:12: 67:0b:55:94:71:af:16:4c:9c:0b:16:4d:ac:9f:8b: 7d:fd:f9:4f:99:9d:84:54:24:85:21:59:0f:fe:f4: d5:83:dd:ac:9f:81:20:63:2f:06:95:59:dc:3c:c0: a1:5c:ad:94:58:d0:5d:64:bb:28:d4:25:4b:27:9a: 69:d1:13:93:75:f0:7b:e5:9c:2b:a0:30:39:29:a1: 80:f6:11:33:50:d3:4b:d8:25:cb:a7:b5:fe:d1:ea: 54:1c:a5:01:7b:fb:ca:26:3b:70:ca:89:4f:63:9c: 89:34:06:8e:51:1f:81:43:8b:28:88:ed:f6:fb:67: 1f:29:e4:04:e9:45:ac:f2:61:5d:ac:86:85:e9:c0: 75:2c:c4:46:52:c4:2a:38:cb:d5:3c:ec:21:d4:5e: fe:d7:98:73:3d:74:22:00:00:e2:be:fb:e1:4c:8d: c4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F9:0D:63:BC:CB:22:56:3C:AC:B8:EC:33:5E:B8:3C:69:03:9C:CB X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/RPkNY7zLIlY8rLjsM164PGkDnMs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 7f:6f:42:af:ac:80:11:30:fe:2a:f0:c7:0a:e7:9a:7c:d5:99: 7e:6c:07:4a:08:3e:48:3d:c5:df:ae:61:ec:da:8e:3f:b9:47: 43:ff:7b:08:1b:d8:6d:74:02:04:9a:3e:09:74:52:da:b4:62: fb:33:d9:46:e1:f4:87:af:28:67:e5:7c:28:2d:8c:32:7d:4d: 6f:f0:46:69:a2:05:82:07:6b:d7:15:93:7d:75:a3:26:1a:8b: 38:1e:33:1a:2c:2d:8b:dd:20:c3:9c:ee:7c:9c:55:7b:2e:8d: 63:5e:97:6a:d9:b8:84:ff:28:56:b0:fb:f9:10:76:f8:62:27: 17:c3:03:30:c9:70:bd:58:95:89:62:90:71:76:ee:db:d4:1d: 4f:84:3c:8d:6f:73:99:1f:a0:13:80:45:28:1a:ad:6b:3e:65: ac:08:b2:ac:a1:c8:8d:38:9a:d2:17:8e:17:7c:c6:a5:71:bf: 7a:f7:9b:af:a9:90:55:27:a1:8f:bd:6d:fb:fb:fc:c2:79:5b: 5f:5b:42:e3:38:bf:7e:6e:3f:8c:fa:d0:90:63:ea:8a:23:8f: d2:42:a6:9d:bf:98:60:57:d5:de:f5:ad:1a:15:66:80:5e:5c: b1:06:f7:0f:48:57:3b:a9:88:01:c5:d3:5a:dd:90:61:96:2e: e2:f4:95:3d -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDYx NDM4NDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ0RjkwRDYzQkNDQjIy NTYzQ0FDQjhFQzMzNUVCODNDNjkwMzlDQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzP37qjAf16UZGzUaTHK+YFsn/pa8Je8RmF1w8ZwwJhra8V/Ee NdKTi5UqPH/rNFsAAwPAkEvG1KGWZsh1AzrZRO9QVZm9UrDmE1Xf+KceVXaN92+s rw7CEmcLVZRxrxZMnAsWTayfi339+U+ZnYRUJIUhWQ/+9NWD3ayfgSBjLwaVWdw8 wKFcrZRY0F1kuyjUJUsnmmnRE5N18HvlnCugMDkpoYD2ETNQ00vYJcuntf7R6lQc pQF7+8omO3DKiU9jnIk0Bo5RH4FDiyiI7fb7Zx8p5ATpRazyYV2shoXpwHUsxEZS xCo4y9U87CHUXv7XmHM9dCIAAOK+++FMjcShAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQURPkNY7zLIlY8rLjsM164PGkDnMswHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvUlBrTlk3ekxJbFk4 ckxqc00xNjRQR2tEbk1zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAH9vQq+sgBEw/irwxwrnmnzVmX5s B0oIPkg9xd+uYezajj+5R0P/ewgb2G10AgSaPgl0Utq0Yvsz2Ubh9IevKGflfCgt jDJ9TW/wRmmiBYIHa9cVk311oyYaizgeMxosLYvdIMOc7nycVXsujWNel2rZuIT/ KFaw+/kQdvhiJxfDAzDJcL1YlYlikHF27tvUHU+EPI1vc5kfoBOARSgarWs+ZawI sqyhyI04mtIXjhd8xqVxv3r3m6+pkFUnoY+9bfv7/MJ5W19bQuM4v35uP4z60JBj 6oojj9JCpp2/mGBX1d71rRoVZoBeXLEG9w9IVzupiAHF01rdkGGWLuL0lT0= -----END CERTIFICATE-----Generated at Sun Jan 11 23:16:53 2026 by rpki-client