This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/SyK8ex_Nqj24rgpzEHWdfrUpejM.roa File: SyK8ex_Nqj24rgpzEHWdfrUpejM.roa (raw, json) Hash identifier: I+yl1SFOIb94lOsz0v2k1XYy++7g8x/qNJGfVxL1r4g= Subject key identifier: 4B:22:BC:7B:1F:CD:AA:3D:B8:AE:0A:73:10:75:9D:7E:B5:29:7A:33 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2316 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/SyK8ex_Nqj24rgpzEHWdfrUpejM.roa Signing time: Sun 08 Jun 2025 02:08:54 +0000 ROA not before: Sun 08 Jun 2025 02:08:54 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 8982 (0x2316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 8 02:08:54 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=4B22BC7B1FCDAA3DB8AE0A7310759D7EB5297A33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:64:e8:d1:94:91:24:e9:34:a0:b7:0d:f0:f3: 95:89:5a:1a:91:90:09:e1:de:c5:d2:e7:a4:48:6e: 30:ec:e0:7f:ea:91:1e:5b:31:a1:a4:18:d1:af:ed: c3:b0:0f:09:cb:26:45:3a:45:d8:6f:29:be:06:4f: 29:b1:46:a8:75:fc:87:f3:68:23:53:c8:6c:92:bc: b6:08:65:4d:cb:60:b7:a8:8d:56:1c:d6:58:f0:61: fb:fd:d8:0d:8c:86:27:73:7f:19:7f:d8:af:86:32: da:c1:d9:7c:05:33:17:ee:23:bf:30:32:ed:f8:48: 07:ac:cd:d0:24:97:8e:ba:45:34:dc:a6:46:c5:74: bd:09:2a:25:a4:26:f8:6c:b5:3d:70:51:50:ae:43: b9:cf:46:6e:fb:af:32:24:c3:d2:b2:f8:d6:56:86: 97:2e:9c:4d:4d:90:17:95:0c:12:54:f6:9b:7d:cf: dc:0b:a5:1e:c3:e2:d5:67:87:49:78:b4:64:3d:97: 90:df:03:b3:e7:88:91:9a:bd:a5:ec:b9:2f:8a:13: 21:05:3f:4e:36:60:3c:51:d1:93:53:74:57:92:9c: f9:4a:de:6b:22:8f:41:d3:80:98:08:3f:b0:bb:0b: 97:84:74:76:c9:63:d5:14:ea:9f:9e:2a:33:4f:fc: 98:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:22:BC:7B:1F:CD:AA:3D:B8:AE:0A:73:10:75:9D:7E:B5:29:7A:33 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/SyK8ex_Nqj24rgpzEHWdfrUpejM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 7b:77:5a:32:cb:58:66:37:ca:01:65:40:a7:08:51:8f:a5:84: 6b:0f:f6:b9:a3:0f:7a:65:0c:f2:16:c8:8f:e3:c9:d6:8a:83: d2:96:21:3b:60:18:f4:b7:cb:07:37:5a:38:ad:f8:1c:8f:86: 9e:be:47:7d:d0:70:46:89:85:0c:8b:c0:26:38:7c:85:09:e6: bf:5f:d5:71:ab:a1:d9:3e:ed:13:a5:08:cb:d2:f0:f9:68:76: b4:21:0d:51:97:4f:87:15:2e:b9:1e:85:e8:85:89:d6:3e:73: 68:39:da:af:4b:da:93:05:e2:a4:27:26:f9:79:71:fd:8c:75: 64:10:19:f1:64:d2:5e:c8:55:cb:e4:88:2f:39:c9:38:4a:ea: 43:e9:e3:e0:59:bb:42:27:a4:54:37:a3:96:2c:cc:f6:43:ea: 70:6b:c7:98:24:66:4d:9c:d1:32:58:18:b1:ef:d7:ef:c9:61: 2c:ad:1c:19:14:bd:43:e4:f0:38:79:1d:19:d0:c3:60:b6:b6: 40:d4:5e:e6:9c:73:ce:2b:28:12:32:b8:59:03:31:b0:c7:c3: f1:0e:39:9c:1e:fa:1d:fe:7d:c6:b7:21:e6:57:a6:b8:9e:b7: 23:11:41:e7:02:71:af:96:14:f4:91:6e:bf:55:4d:7d:91:94: 6e:b3:1a:4f -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIxYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDgw MjA4NTRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDRCMjJCQzdCMUZDREFB M0RCOEFFMEE3MzEwNzU5RDdFQjUyOTdBMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRZOjRlJEk6TSgtw3w85WJWhqRkAnh3sXS56RIbjDs4H/qkR5b MaGkGNGv7cOwDwnLJkU6RdhvKb4GTymxRqh1/IfzaCNTyGySvLYIZU3LYLeojVYc 1ljwYfv92A2Mhidzfxl/2K+GMtrB2XwFMxfuI78wMu34SAeszdAkl466RTTcpkbF dL0JKiWkJvhstT1wUVCuQ7nPRm77rzIkw9Ky+NZWhpcunE1NkBeVDBJU9pt9z9wL pR7D4tVnh0l4tGQ9l5DfA7PniJGavaXsuS+KEyEFP042YDxR0ZNTdFeSnPlK3msi j0HTgJgIP7C7C5eEdHbJY9UU6p+eKjNP/JjbAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUSyK8ex/Nqj24rgpzEHWdfrUpejMwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvU3lLOGV4X05xajI0 cmdwekVIV2RmclVwZWpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAHt3WjLLWGY3ygFlQKcIUY+lhGsP 9rmjD3plDPIWyI/jydaKg9KWITtgGPS3ywc3Wjit+ByPhp6+R33QcEaJhQyLwCY4 fIUJ5r9f1XGrodk+7ROlCMvS8PlodrQhDVGXT4cVLrkeheiFidY+c2g52q9L2pMF 4qQnJvl5cf2MdWQQGfFk0l7IVcvkiC85yThK6kPp4+BZu0InpFQ3o5YszPZD6nBr x5gkZk2c0TJYGLHv1+/JYSytHBkUvUPk8Dh5HRnQw2C2tkDUXuacc84rKBIyuFkD MbDHw/EOOZwe+h3+fca3IeZXprietyMRQecCca+WFPSRbr9VTX2RlG6zGk8= -----END CERTIFICATE-----Generated at Mon Jan 12 10:32:06 2026 by rpki-client