This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/ljv1GSyL7ZaX4z1zXWkz7lkOT1c.roa File: ljv1GSyL7ZaX4z1zXWkz7lkOT1c.roa (raw, json) Hash identifier: p1a3pEp3sC62hU+bfCU8CYAk6SGztAfSr8+YNtW0ylE= Subject key identifier: 96:3B:F5:19:2C:8B:ED:96:97:E3:3D:73:5D:69:33:EE:59:0E:4F:57 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2376 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ljv1GSyL7ZaX4z1zXWkz7lkOT1c.roa Signing time: Sun 08 Jun 2025 18:08:57 +0000 ROA not before: Sun 08 Jun 2025 18:08:57 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9078 (0x2376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 8 18:08:57 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=963BF5192C8BED9697E33D735D6933EE590E4F57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6a:3a:40:b7:f2:18:d8:5f:c5:21:7f:d6:66: 77:94:96:9a:d3:d6:f7:91:2b:63:a3:90:50:9f:99: 10:d9:15:d9:c7:ab:32:10:f5:1f:02:d1:70:06:7c: aa:57:0f:3e:7f:af:80:a9:2c:4f:8a:16:16:77:e1: 7c:cc:9f:3b:38:a0:7e:93:b8:92:e8:4a:5d:f4:85: 18:d7:33:73:b0:11:e0:f2:41:0d:77:98:df:c3:89: 51:c4:47:10:8e:d2:68:02:a4:2e:ad:d5:ba:19:0b: 89:f5:20:01:0c:ea:81:71:af:a9:4e:fb:bf:b4:82: d7:bf:f4:37:bb:9f:c0:01:60:0e:1c:0f:af:03:18: 0e:7c:a5:0d:5a:1e:96:c1:04:1e:92:cd:5d:35:44: 62:ab:a7:8b:3e:fc:52:f9:76:91:8e:3e:cc:8f:ea: 29:8a:8d:b9:d8:bd:e3:52:a6:b2:46:57:7f:c8:93: 42:36:c2:a5:fd:84:c9:6b:74:95:28:88:4f:9a:0d: 8d:95:15:9c:5a:5a:31:0b:14:14:c0:e8:28:1c:35: c3:9a:c5:9b:72:7e:db:00:30:de:bd:58:a4:8a:8d: ca:10:ea:47:55:1d:75:43:bc:c2:11:c3:c5:d8:93: d2:3a:78:34:eb:7e:5c:52:8b:7b:d0:ce:ea:97:8c: e2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3B:F5:19:2C:8B:ED:96:97:E3:3D:73:5D:69:33:EE:59:0E:4F:57 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/ljv1GSyL7ZaX4z1zXWkz7lkOT1c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 47:4e:40:31:46:fb:51:b9:06:49:f2:21:7f:f5:19:0c:7c:cf: bb:62:b4:57:bb:44:9b:24:37:75:ae:34:af:a8:66:94:05:9e: 72:f3:c1:b1:74:e9:b0:45:34:45:ca:f4:2c:37:80:b0:9a:d7: 96:95:e1:c3:6d:83:bb:44:a3:c8:56:68:d0:9e:a9:8a:96:75: cf:a9:b7:d6:c2:7d:bf:18:34:fa:fe:bd:aa:dc:e1:38:cc:f7: 18:35:c0:fa:82:bd:94:87:ba:0b:ce:44:81:0a:aa:45:55:88: e0:3f:ed:a7:8b:12:f9:67:f2:4c:81:fb:5c:30:34:c4:3e:84: dc:c6:0b:6d:89:80:9b:68:ca:f2:1e:b0:40:8b:4f:e9:d4:5a: 0f:35:d3:cb:08:ba:dc:d8:35:33:14:e5:83:e6:b7:d7:23:56: d0:ff:74:b1:b5:85:cd:32:7c:ac:0b:2f:2e:a8:5c:86:28:cc: e3:31:a3:7e:28:14:ba:ee:91:89:d7:8d:aa:e4:b3:bf:6b:10: b0:39:51:7c:d3:5f:4d:1e:10:63:91:c8:8e:6b:88:8c:f5:9a: f7:4f:c9:4b:05:b4:70:f9:fb:41:b7:9e:ee:dc:a2:eb:af:7b: b8:df:f7:ce:df:64:14:4a:01:8b:44:30:09:ca:fd:8f:f8:35: 87:b8:af:42 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICI3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDgx ODA4NTdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDk2M0JGNTE5MkM4QkVE OTY5N0UzM0Q3MzVENjkzM0VFNTkwRTRGNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLajpAt/IY2F/FIX/WZneUlprT1veRK2OjkFCfmRDZFdnHqzIQ 9R8C0XAGfKpXDz5/r4CpLE+KFhZ34XzMnzs4oH6TuJLoSl30hRjXM3OwEeDyQQ13 mN/DiVHERxCO0mgCpC6t1boZC4n1IAEM6oFxr6lO+7+0gte/9De7n8ABYA4cD68D GA58pQ1aHpbBBB6SzV01RGKrp4s+/FL5dpGOPsyP6imKjbnYveNSprJGV3/Ik0I2 wqX9hMlrdJUoiE+aDY2VFZxaWjELFBTA6CgcNcOaxZtyftsAMN69WKSKjcoQ6kdV HXVDvMIRw8XYk9I6eDTrflxSi3vQzuqXjOJLAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUljv1GSyL7ZaX4z1zXWkz7lkOT1cwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvbGp2MUdTeUw3WmFY NHoxelhXa3o3bGtPVDFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAEdOQDFG+1G5BknyIX/1GQx8z7ti tFe7RJskN3WuNK+oZpQFnnLzwbF06bBFNEXK9Cw3gLCa15aV4cNtg7tEo8hWaNCe qYqWdc+pt9bCfb8YNPr+varc4TjM9xg1wPqCvZSHugvORIEKqkVViOA/7aeLEvln 8kyB+1wwNMQ+hNzGC22JgJtoyvIesECLT+nUWg8108sIutzYNTMU5YPmt9cjVtD/ dLG1hc0yfKwLLy6oXIYozOMxo34oFLrukYnXjarks79rELA5UXzTX00eEGORyI5r iIz1mvdPyUsFtHD5+0G3nu7couuve7jf987fZBRKAYtEMAnK/Y/4NYe4r0I= -----END CERTIFICATE-----Generated at Sun Jan 11 19:54:52 2026 by rpki-client