This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/aMCPBCeTtoqsgLYTeFfO9QxY5c8.roa File: aMCPBCeTtoqsgLYTeFfO9QxY5c8.roa (raw, json) Hash identifier: WmjXX++nB0Obgh0fVZstyF8xyDk2MAtDAe0ikiwf5tg= Subject key identifier: 68:C0:8F:04:27:93:B6:8A:AC:80:B6:13:78:57:CE:F5:0C:58:E5:CF Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2492 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/aMCPBCeTtoqsgLYTeFfO9QxY5c8.roa Signing time: Tue 10 Jun 2025 17:39:07 +0000 ROA not before: Tue 10 Jun 2025 17:39:07 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9362 (0x2492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 10 17:39:07 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=68C08F042793B68AAC80B6137857CEF50C58E5CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:75:00:df:76:5a:99:54:cf:6e:da:ae:b7:1d: 9e:1d:12:55:ae:f5:6e:bc:0d:19:3c:64:3f:ac:c3: 54:5e:0a:4c:95:8a:b9:8e:88:f1:e5:21:f1:f6:00: 50:97:1f:df:89:b0:c6:06:bc:d1:0e:a2:95:5d:60: c0:3c:78:2d:cb:34:8e:b0:1a:cd:a2:08:d9:7e:2d: 0c:5c:2c:45:98:4e:62:48:cc:19:4d:b9:d0:c7:62: e4:fc:26:ab:19:f8:3b:0d:07:1a:bd:7c:85:ca:85: 39:2b:69:7f:ee:ba:56:78:97:f1:2f:1a:a9:06:f7: 15:22:9f:54:65:99:f9:e8:2e:14:6c:34:ed:21:7c: 73:f9:f5:9f:68:3b:a2:29:0f:f8:f9:f6:5c:27:b4: 18:1a:ab:2d:12:20:ef:b3:ff:ad:3a:05:81:e8:0d: 3a:c4:66:c6:95:05:9e:3e:ec:9a:36:95:c2:52:6f: a9:3f:a2:06:17:13:bb:3a:85:b9:f9:f4:d9:38:92: 29:34:29:82:47:83:5c:97:23:e9:cb:c6:d7:a5:f3: e5:ec:49:5f:be:c6:fe:65:73:32:20:ba:46:ee:70: e4:5b:58:aa:6d:80:db:0d:03:61:ca:4d:76:91:95: d0:f3:6b:4f:5a:f2:32:77:f4:cb:53:0e:27:29:45: e1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C0:8F:04:27:93:B6:8A:AC:80:B6:13:78:57:CE:F5:0C:58:E5:CF X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/aMCPBCeTtoqsgLYTeFfO9QxY5c8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 21:c5:a2:ce:d8:bb:4a:8a:dc:ec:e9:64:82:b4:f9:75:55:51: 15:36:b5:e1:bd:57:01:82:96:32:f2:68:c2:da:78:46:8d:24: 76:c9:c4:dd:39:30:63:66:79:11:28:40:61:e8:e0:d4:6e:b5: 43:24:43:34:a8:39:84:2b:85:15:e2:2d:d8:40:e7:7d:19:1f: 3b:eb:c7:05:bd:f5:60:76:f2:13:7b:00:2c:86:17:3a:06:bc: 88:8b:3f:0e:c1:5b:b7:81:fc:90:cf:59:14:1e:60:c3:eb:e9: cd:c1:2a:25:8b:fb:17:ab:bb:de:a4:ba:1b:8e:f9:d3:d2:cc: 3c:62:23:16:35:ac:e2:0c:5b:cc:8f:8f:9f:b3:5a:3f:b1:62: 1a:af:ce:b0:1a:3f:4a:eb:92:cc:f9:19:74:c4:99:49:ad:78: b1:9e:f2:43:07:34:96:3f:6e:be:4e:db:08:e9:72:e3:92:d4: 2c:f4:58:a5:64:eb:99:bf:7f:28:cb:a5:10:36:11:78:3e:c4: 64:4d:4b:bc:2e:48:c2:cd:d8:90:d0:8e:72:2c:ed:eb:55:2c: 56:57:bc:5c:80:37:d8:ed:3c:31:3e:b1:70:a7:ac:52:97:3e: 40:c0:39:59:62:61:b5:63:ba:91:de:c8:ea:72:2f:8d:09:9d: d6:5b:46:32 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICJJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MTAx NzM5MDdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDY4QzA4RjA0Mjc5M0I2 OEFBQzgwQjYxMzc4NTdDRUY1MEM1OEU1Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUdQDfdlqZVM9u2q63HZ4dElWu9W68DRk8ZD+sw1ReCkyVirmO iPHlIfH2AFCXH9+JsMYGvNEOopVdYMA8eC3LNI6wGs2iCNl+LQxcLEWYTmJIzBlN udDHYuT8JqsZ+DsNBxq9fIXKhTkraX/uulZ4l/EvGqkG9xUin1RlmfnoLhRsNO0h fHP59Z9oO6IpD/j59lwntBgaqy0SIO+z/606BYHoDTrEZsaVBZ4+7Jo2lcJSb6k/ ogYXE7s6hbn59Nk4kik0KYJHg1yXI+nLxtel8+XsSV++xv5lczIgukbucORbWKpt gNsNA2HKTXaRldDza09a8jJ39MtTDicpReFFAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUaMCPBCeTtoqsgLYTeFfO9QxY5c8wHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvYU1DUEJDZVR0b3Fz Z0xZVGVGZk85UXhZNWM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBACHFos7Yu0qK3OzpZIK0+XVVURU2 teG9VwGCljLyaMLaeEaNJHbJxN05MGNmeREoQGHo4NRutUMkQzSoOYQrhRXiLdhA 530ZHzvrxwW99WB28hN7ACyGFzoGvIiLPw7BW7eB/JDPWRQeYMPr6c3BKiWL+xer u96kuhuO+dPSzDxiIxY1rOIMW8yPj5+zWj+xYhqvzrAaP0rrksz5GXTEmUmteLGe 8kMHNJY/br5O2wjpcuOS1Cz0WKVk65m/fyjLpRA2EXg+xGRNS7wuSMLN2JDQjnIs 7etVLFZXvFyAN9jtPDE+sXCnrFKXPkDAOVliYbVjupHeyOpyL40JndZbRjI= -----END CERTIFICATE-----Generated at Mon Jan 12 13:30:35 2026 by rpki-client