This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/SgxIpaDCU6K2LRZSCNRuu0j9BRo.roa File: SgxIpaDCU6K2LRZSCNRuu0j9BRo.roa (raw, json) Hash identifier: wQElB2LHg/a6kIK8cAOsdaOMWNrjchekPMfUc+SJC8k= Subject key identifier: 4A:0C:48:A5:A0:C2:53:A2:B6:2D:16:52:08:D4:6E:BB:48:FD:05:1A Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 1F83 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/SgxIpaDCU6K2LRZSCNRuu0j9BRo.roa Signing time: Sun 01 Jun 2025 17:38:34 +0000 ROA not before: Sun 01 Jun 2025 17:38:34 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 8067 (0x1f83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 1 17:38:34 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=4A0C48A5A0C253A2B62D165208D46EBB48FD051A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fd:2e:1a:19:8b:9a:61:65:bf:a6:4e:43:4f: dd:a7:88:f0:8b:15:8c:e4:c0:22:20:c9:9a:24:2e: 56:98:0a:50:8d:a2:37:e3:f0:fd:12:9d:05:3d:d9: 42:5b:cf:a2:20:86:04:68:65:16:fd:88:28:fa:8d: 9a:fb:6f:69:03:af:92:20:b6:9c:c3:a1:e5:54:d5: 24:92:3e:b3:a6:66:f9:eb:eb:d6:82:e4:a9:d4:1b: 41:7c:1c:91:42:80:fa:0a:36:09:c0:c7:79:78:f7: a8:45:1e:46:87:1a:27:98:54:d4:e2:16:7a:1c:27: 62:69:21:8c:e3:e7:bd:09:b1:56:b8:26:93:99:79: 43:24:8d:45:0c:27:10:6b:da:d6:5c:d7:a3:9f:a4: f5:98:c7:ac:5e:14:5d:0c:f4:5d:90:bd:e5:57:97: bf:d4:d6:30:4a:8f:80:e3:12:92:2b:8f:25:80:4a: 85:79:37:dc:32:ca:fd:1c:21:fb:fe:6f:d3:03:b2: 6a:c9:c1:1b:1f:c0:ec:6d:b8:0b:7d:82:b8:51:ad: c5:82:01:28:38:cd:db:a7:36:57:ac:d5:00:2a:8b: ee:d8:80:7c:27:e2:0e:57:5f:f0:6b:8f:32:6d:36: 14:df:1d:88:be:39:0e:a3:ae:b8:5d:29:90:18:d5: 3c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:0C:48:A5:A0:C2:53:A2:B6:2D:16:52:08:D4:6E:BB:48:FD:05:1A X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/SgxIpaDCU6K2LRZSCNRuu0j9BRo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 6f:88:2d:f2:d3:cb:50:e0:40:91:0c:6b:96:c2:e2:1d:49:2c: 4e:88:f0:69:cb:33:7a:cc:be:b0:19:ec:5f:19:c4:09:ab:62: 3b:07:37:15:22:86:98:cd:58:1c:e7:1e:5b:a0:14:cf:c4:4a: d5:80:80:d6:39:f4:62:94:8a:1a:89:46:54:17:f3:cf:6a:a8: 14:32:60:1f:09:9f:82:cc:3e:61:ff:5a:1d:72:81:c3:eb:7c: d1:f0:80:1c:99:2e:02:ef:52:d6:0d:8b:ca:39:13:ca:18:34: e3:15:f8:22:22:3f:03:fc:6a:a0:16:22:78:b6:f6:c6:f1:68: 2a:6e:c3:a5:b3:3b:3b:69:1b:f4:9f:e4:d4:f2:6e:8a:57:08: 6c:a7:4c:7c:22:70:49:ed:13:94:78:67:47:6b:2b:51:4f:e0: b4:8f:42:61:cc:06:b5:bd:95:7d:58:48:de:2c:01:ec:a2:6a: 61:81:f9:68:45:02:15:a1:cf:09:a3:f3:bc:00:d5:1a:37:6a: ed:e0:b5:d4:2c:7b:65:11:fd:a7:c8:a1:38:f7:6a:7f:7b:bb: dc:14:9c:dd:35:63:04:38:7d:33:79:39:e7:17:a4:05:75:f9: 79:bf:dc:83:56:20:43:24:36:90:38:28:76:10:b0:77:dc:3b: 8c:0a:94:ad -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICH4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDEx NzM4MzRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDRBMEM0OEE1QTBDMjUz QTJCNjJEMTY1MjA4RDQ2RUJCNDhGRDA1MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq/S4aGYuaYWW/pk5DT92niPCLFYzkwCIgyZokLlaYClCNojfj 8P0SnQU92UJbz6IghgRoZRb9iCj6jZr7b2kDr5IgtpzDoeVU1SSSPrOmZvnr69aC 5KnUG0F8HJFCgPoKNgnAx3l496hFHkaHGieYVNTiFnocJ2JpIYzj570JsVa4JpOZ eUMkjUUMJxBr2tZc16OfpPWYx6xeFF0M9F2QveVXl7/U1jBKj4DjEpIrjyWASoV5 N9wyyv0cIfv+b9MDsmrJwRsfwOxtuAt9grhRrcWCASg4zdunNles1QAqi+7YgHwn 4g5XX/BrjzJtNhTfHYi+OQ6jrrhdKZAY1TzDAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUSgxIpaDCU6K2LRZSCNRuu0j9BRowHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvU2d4SXBhRENVNksy TFJaU0NOUnV1MGo5QlJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAG+ILfLTy1DgQJEMa5bC4h1JLE6I 8GnLM3rMvrAZ7F8ZxAmrYjsHNxUihpjNWBznHlugFM/EStWAgNY59GKUihqJRlQX 889qqBQyYB8Jn4LMPmH/Wh1ygcPrfNHwgByZLgLvUtYNi8o5E8oYNOMV+CIiPwP8 aqAWIni29sbxaCpuw6WzOztpG/Sf5NTybopXCGynTHwicEntE5R4Z0drK1FP4LSP QmHMBrW9lX1YSN4sAeyiamGB+WhFAhWhzwmj87wA1Ro3au3gtdQse2UR/afIoTj3 an97u9wUnN01YwQ4fTN5OecXpAV1+Xm/3INWIEMkNpA4KHYQsHfcO4wKlK0= -----END CERTIFICATE-----Generated at Mon Jan 12 04:04:48 2026 by rpki-client