This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/rHvVptMDEcMr0DhZFZILyDuisrY.roa File: rHvVptMDEcMr0DhZFZILyDuisrY.roa (raw, json) Hash identifier: HA4zTThiWbe70daeQA2Bp+0w0r2Vaw18cVT0OBicz1o= Subject key identifier: AC:7B:D5:A6:D3:03:11:C3:2B:D0:38:59:15:92:0B:C8:3B:A2:B2:B6 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 237F Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/rHvVptMDEcMr0DhZFZILyDuisrY.roa Signing time: Sun 08 Jun 2025 19:38:56 +0000 ROA not before: Sun 08 Jun 2025 19:38:56 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9087 (0x237f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 8 19:38:56 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=AC7BD5A6D30311C32BD0385915920BC83BA2B2B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:df:4d:65:b3:38:60:a4:d1:9f:06:94:77:04: 0e:c4:ab:4a:21:95:03:28:0d:ed:e6:8b:5f:52:32: c2:76:23:69:11:d6:72:b1:0e:4f:b1:dc:b6:d2:b1: 7e:93:7d:fe:39:f2:eb:d8:c3:4b:92:be:cc:9a:a7: 3a:50:a9:a2:71:a0:a1:88:58:da:5f:20:03:5a:64: a5:db:2b:71:7b:0c:57:27:2b:48:ab:a9:22:56:54: 06:dc:c6:02:fb:e9:90:85:00:ee:3f:0e:5e:22:ad: a7:86:5a:6e:77:3e:f8:40:fa:bf:1e:bd:b6:c9:d4: aa:eb:f4:a9:ea:8f:5b:c5:b0:81:8d:5d:9d:da:02: 08:33:e1:93:f0:c8:5b:c2:15:6d:62:dd:48:79:77: 93:f6:00:77:50:28:25:b4:e5:87:6d:11:51:bd:9c: c1:71:b0:a6:61:92:f4:40:ad:26:7c:5e:70:d2:c4: a2:48:b6:f4:8d:0b:c8:87:02:c8:8d:e2:ca:9f:51: 8e:95:b8:06:b5:49:53:d5:5d:dd:73:e1:ce:7f:d6: 1c:26:f1:e8:4f:40:68:f9:56:09:65:84:40:e3:28: e9:ff:cf:26:af:bf:ca:5d:e6:21:e1:8b:db:f2:10: 6e:a0:da:f5:0b:fb:b6:26:b1:dd:c6:5a:83:68:6e: a3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7B:D5:A6:D3:03:11:C3:2B:D0:38:59:15:92:0B:C8:3B:A2:B2:B6 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/rHvVptMDEcMr0DhZFZILyDuisrY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption bb:ce:70:3f:26:73:94:2e:46:d3:8f:55:d4:15:77:ba:7b:53: a7:48:8c:5f:f4:85:ca:1f:40:f8:f2:ef:cb:7e:10:ea:68:27: 58:99:aa:d0:81:8c:0e:e1:c4:a0:82:88:13:3f:2a:5c:83:b5: bb:da:a2:85:e9:4a:6b:93:ab:a8:60:e4:b8:09:9f:cf:5b:db: ff:92:2b:41:9e:59:a3:c6:d6:18:c2:ad:fd:b9:ad:5f:6f:88: fb:97:f9:16:96:71:83:5a:00:45:33:f0:12:92:ea:02:be:2b: 15:2e:c1:53:20:b3:39:42:d9:ee:eb:bf:88:d8:1a:85:ef:bc: ad:e5:38:f0:c7:86:37:7d:f9:a7:a3:6d:e3:94:9a:57:c1:40: 8f:0e:33:e7:5b:6a:55:a0:28:6c:58:26:a6:66:aa:a8:94:bc: 27:ae:55:56:64:86:70:73:39:20:c7:c6:2a:45:43:00:08:d5: 9f:12:0e:c5:2f:c7:0a:ef:12:c5:39:29:48:e3:ea:08:31:71: bc:0b:8d:7e:71:a6:1c:4b:7f:da:d0:8c:a1:ae:18:2f:14:b8: b7:d0:df:e7:a7:1b:d7:ca:39:7e:f0:19:bd:4c:06:a4:28:0a: 1b:b4:9b:92:eb:e2:e6:db:f3:fe:0e:3b:56:78:2c:6b:50:91: de:36:5f:d8 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICI38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MDgx OTM4NTZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEFDN0JENUE2RDMwMzEx QzMyQkQwMzg1OTE1OTIwQkM4M0JBMkIyQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo301lszhgpNGfBpR3BA7Eq0ohlQMoDe3mi19SMsJ2I2kR1nKx Dk+x3LbSsX6Tff458uvYw0uSvsyapzpQqaJxoKGIWNpfIANaZKXbK3F7DFcnK0ir qSJWVAbcxgL76ZCFAO4/Dl4iraeGWm53PvhA+r8evbbJ1Krr9Knqj1vFsIGNXZ3a Aggz4ZPwyFvCFW1i3Uh5d5P2AHdQKCW05YdtEVG9nMFxsKZhkvRArSZ8XnDSxKJI tvSNC8iHAsiN4sqfUY6VuAa1SVPVXd1z4c5/1hwm8ehPQGj5VgllhEDjKOn/zyav v8pd5iHhi9vyEG6g2vUL+7Ymsd3GWoNobqNtAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUrHvVptMDEcMr0DhZFZILyDuisrYwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvckh2VnB0TURFY01y MERoWkZaSUx5RHVpc3JZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBALvOcD8mc5QuRtOPVdQVd7p7U6dI jF/0hcofQPjy78t+EOpoJ1iZqtCBjA7hxKCCiBM/KlyDtbvaooXpSmuTq6hg5LgJ n89b2/+SK0GeWaPG1hjCrf25rV9viPuX+RaWcYNaAEUz8BKS6gK+KxUuwVMgszlC 2e7rv4jYGoXvvK3lOPDHhjd9+aejbeOUmlfBQI8OM+dbalWgKGxYJqZmqqiUvCeu VVZkhnBzOSDHxipFQwAI1Z8SDsUvxwrvEsU5KUjj6ggxcbwLjX5xphxLf9rQjKGu GC8UuLfQ3+enG9fKOX7wGb1MBqQoChu0m5Lr4ubb8/4OO1Z4LGtQkd42X9g= -----END CERTIFICATE-----Generated at Mon Jan 12 09:05:19 2026 by rpki-client