This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/_lTpdKKSErbtK-h-nWtyiuUD0Ww.roa File: _lTpdKKSErbtK-h-nWtyiuUD0Ww.roa (raw, json) Hash identifier: 2v/6hNUXIl4Yj5ACShZIT4iaOxYnL78vuzgcvi3TyJE= Subject key identifier: FE:54:E9:74:A2:92:12:B6:ED:2B:E8:7E:9D:6B:72:8A:E5:03:D1:6C Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 23AF Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/_lTpdKKSErbtK-h-nWtyiuUD0Ww.roa Signing time: Mon 09 Jun 2025 03:38:58 +0000 ROA not before: Mon 09 Jun 2025 03:38:58 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9135 (0x23af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 9 03:38:58 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=FE54E974A29212B6ED2BE87E9D6B728AE503D16C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:cd:71:ad:07:53:0b:a6:87:9e:b2:fb:a8: e2:d6:7d:19:4c:68:c9:58:03:d8:25:2e:b7:95:1a: dc:55:e4:d2:a0:96:95:f4:6e:06:64:e2:91:9c:52: ed:09:4f:a4:38:09:8e:38:19:3e:16:44:6e:ad:c3: 89:77:72:f0:09:42:52:3a:85:66:9d:98:02:31:f5: 12:57:68:ae:97:3d:1e:d1:b7:e2:06:e3:40:54:0b: 83:10:ee:66:bb:a7:de:2c:45:7d:d7:ef:2b:c7:94: 3c:2a:22:0a:0f:22:d7:bd:f3:5c:fe:5a:d0:e9:99: 1a:e2:b7:2a:de:54:e4:10:89:36:55:91:81:1b:0e: 73:87:45:79:9f:20:1e:f6:e8:af:6c:71:22:88:30: ec:75:e5:e2:d7:da:63:21:27:80:f5:19:d1:40:05: db:89:c7:61:88:40:fb:83:59:f3:e6:c4:c8:bb:66: 98:62:6b:34:c6:f1:32:ef:2a:fc:cb:8e:9f:af:5f: 7a:81:cf:ee:7c:bb:7a:7b:40:e0:f3:da:1b:de:69: a9:18:f9:ae:0e:bf:0b:9b:5d:48:a3:7d:f7:2e:a7: 3b:3d:0d:87:c6:3e:11:3c:8d:0b:04:ee:aa:e2:f8: b8:d2:7f:1c:5f:85:26:d4:dc:a1:66:ad:6c:31:59: 41:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:54:E9:74:A2:92:12:B6:ED:2B:E8:7E:9D:6B:72:8A:E5:03:D1:6C X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/_lTpdKKSErbtK-h-nWtyiuUD0Ww.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 3b:c8:4f:22:8e:33:0f:bf:22:6e:ab:a8:eb:5e:c7:15:8c:e9: b0:1f:97:0d:1f:f0:de:f7:4f:51:b1:d2:9c:95:ee:05:6f:77: 36:65:23:d2:40:41:dd:90:56:0c:69:77:b0:a1:76:bd:fe:23: 7f:98:18:a2:3c:60:89:91:7b:74:1c:b7:ba:bd:e0:92:13:2f: 4e:15:1a:d8:56:2a:57:ce:91:aa:cc:5d:fc:81:a8:b1:91:7d: 5a:9f:86:4e:6e:f7:02:f9:17:87:40:60:00:b5:a4:42:0d:35: 4a:d8:65:b1:7f:e2:f2:80:74:bc:60:c7:28:c6:6a:a5:43:e6: 16:58:ec:bf:f4:03:a7:7d:a4:eb:92:3e:f0:43:17:c9:ef:12: 39:81:26:e9:6d:6e:54:d3:f5:91:79:2e:77:59:9b:64:01:55: e8:26:77:5d:ef:52:b6:4d:f7:9f:1c:8d:1c:a8:9b:a1:8d:28: 12:89:0b:94:7a:8a:b5:66:50:fc:d5:ba:b5:e0:35:38:ea:2e: 00:a2:e2:be:1e:f3:9f:36:46:86:fe:82:3d:fa:4e:59:26:d3: da:45:90:f9:1b:a1:3f:7c:8d:5d:42:5d:eb:7e:c5:8e:d3:9c: 0e:5f:45:6d:84:d6:8c:eb:83:3b:e6:37:65:5d:09:b1:78:ff: 05:4c:1a:58 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICI68wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDkw MzM4NThaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEZFNTRFOTc0QTI5MjEy QjZFRDJCRTg3RTlENkI3MjhBRTUwM0QxNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCw81xrQdTC6aHnrL7qOLWfRlMaMlYA9glLreVGtxV5NKglpX0 bgZk4pGcUu0JT6Q4CY44GT4WRG6tw4l3cvAJQlI6hWadmAIx9RJXaK6XPR7Rt+IG 40BUC4MQ7ma7p94sRX3X7yvHlDwqIgoPIte981z+WtDpmRrityreVOQQiTZVkYEb DnOHRXmfIB726K9scSKIMOx15eLX2mMhJ4D1GdFABduJx2GIQPuDWfPmxMi7Zphi azTG8TLvKvzLjp+vX3qBz+58u3p7QODz2hveaakY+a4OvwubXUijffcupzs9DYfG PhE8jQsE7qri+LjSfxxfhSbU3KFmrWwxWUGBAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU/lTpdKKSErbtK+h+nWtyiuUD0WwwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvX2xUcGRLS1NFcmJ0 Sy1oLW5XdHlpdVVEMFd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBADvITyKOMw+/Im6rqOtexxWM6bAf lw0f8N73T1Gx0pyV7gVvdzZlI9JAQd2QVgxpd7Chdr3+I3+YGKI8YImRe3Qct7q9 4JITL04VGthWKlfOkarMXfyBqLGRfVqfhk5u9wL5F4dAYAC1pEINNUrYZbF/4vKA dLxgxyjGaqVD5hZY7L/0A6d9pOuSPvBDF8nvEjmBJultblTT9ZF5LndZm2QBVegm d13vUrZN958cjRyom6GNKBKJC5R6irVmUPzVurXgNTjqLgCi4r4e8582Rob+gj36 Tlkm09pFkPkboT98jV1CXet+xY7TnA5fRW2E1ozrgzvmN2VdCbF4/wVMGlg= -----END CERTIFICATE-----Generated at Mon Jan 12 13:06:48 2026 by rpki-client