This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/rzbv1YHNN9AlwbV09e5FDdB_7u4.roa File: rzbv1YHNN9AlwbV09e5FDdB_7u4.roa (raw, json) Hash identifier: mRbycXvXRC42KmiHhojUC+sa6QQQyyRwD/HxI3XktxE= Subject key identifier: AF:36:EF:D5:81:CD:37:D0:25:C1:B5:74:F5:EE:45:0D:D0:7F:EE:EE Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2559 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/rzbv1YHNN9AlwbV09e5FDdB_7u4.roa Signing time: Thu 12 Jun 2025 02:39:12 +0000 ROA not before: Thu 12 Jun 2025 02:39:12 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9561 (0x2559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 12 02:39:12 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=AF36EFD581CD37D025C1B574F5EE450DD07FEEEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:ae:b9:0f:b3:4f:67:d4:85:71:31:34:ff: 32:c2:31:fb:7a:76:da:7f:7a:75:4b:54:6f:25:d6: 3c:ff:b1:ee:c6:21:d3:98:30:c1:65:64:d8:7d:97: 4f:af:ab:19:43:00:c7:43:c3:ef:d6:b0:25:15:4c: d2:fb:ce:9b:f9:2e:3b:39:04:d5:c9:be:3c:fa:b8: f2:9f:1b:78:72:89:d0:8c:42:ca:9f:eb:f9:c6:93: 82:a6:2f:5d:63:81:d1:ed:5e:b4:0b:f3:70:18:b8: 4e:66:3c:d8:36:55:7c:12:c0:58:0c:fc:dd:5f:0b: ff:de:59:63:87:ba:61:f8:a3:33:ce:52:95:46:1d: 31:2a:16:54:35:1d:42:27:96:70:ee:df:76:dc:1e: 98:29:96:64:d3:73:bd:86:10:d9:7d:5b:08:c6:90: 41:a8:f1:c7:a4:f4:3c:09:32:e9:3d:6e:82:90:36: a5:a4:a4:e8:17:9e:5c:d1:0d:c1:5f:0b:e8:90:40: f9:2c:23:a0:be:dd:fe:49:97:3c:44:c6:42:91:b7: 26:21:4a:17:25:d1:c9:e7:3b:d6:34:85:e7:a9:bf: 8a:4d:f8:c2:f7:38:7e:d4:6d:aa:e9:d0:d0:95:0d: 19:27:dc:9b:c0:36:e9:dc:d6:10:05:48:cf:07:18: a0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:36:EF:D5:81:CD:37:D0:25:C1:B5:74:F5:EE:45:0D:D0:7F:EE:EE X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/rzbv1YHNN9AlwbV09e5FDdB_7u4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 80:58:46:ff:6e:c6:10:3c:be:de:06:37:a4:a2:fc:d2:8c:ae: 16:e7:f6:65:86:cd:57:bb:71:9e:9b:48:13:6d:28:f0:77:24: 50:13:48:e7:9b:56:35:16:20:9a:1b:0e:86:64:10:60:a7:38: ea:33:fc:8a:a8:50:c0:01:8b:47:f8:cc:d5:7c:07:f2:87:ad: a6:29:86:ca:c6:f0:8a:6b:f7:fc:11:23:d9:7a:dd:45:4b:86: da:04:6c:cb:26:09:37:b5:21:02:d7:31:11:57:e4:21:21:b2: 78:e2:8a:1e:be:5a:2e:d0:e8:fd:2d:30:b5:a6:15:60:4a:e3: ba:69:26:d4:0c:b8:33:bb:2f:66:6d:53:88:99:c7:38:61:10: fc:e3:c5:4a:d1:65:c4:00:7b:e0:c3:b2:74:5e:fa:91:be:d8: e3:cf:8f:ed:1c:f8:b7:57:4c:59:d8:b8:30:a1:d5:44:39:d3: 66:ae:9a:6a:66:6e:ae:43:5a:1c:0b:de:f3:3a:cf:0c:18:30: 65:d4:26:50:8f:6c:6f:0d:f6:e1:60:63:7a:41:5d:00:20:07: 66:0f:1b:9c:8b:09:20:3e:f2:8a:68:bb:20:17:dd:47:fa:33: 13:58:d9:6f:e0:7b:2b:cd:1c:92:73:10:f8:5a:92:e2:e0:3f: 9b:35:e2:35 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICJVkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MTIw MjM5MTJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEFGMzZFRkQ1ODFDRDM3 RDAyNUMxQjU3NEY1RUU0NTBERDA3RkVFRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE4665D7NPZ9SFcTE0/zLCMft6dtp/enVLVG8l1jz/se7GIdOY MMFlZNh9l0+vqxlDAMdDw+/WsCUVTNL7zpv5Ljs5BNXJvjz6uPKfG3hyidCMQsqf 6/nGk4KmL11jgdHtXrQL83AYuE5mPNg2VXwSwFgM/N1fC//eWWOHumH4ozPOUpVG HTEqFlQ1HUInlnDu33bcHpgplmTTc72GENl9WwjGkEGo8cek9DwJMuk9boKQNqWk pOgXnlzRDcFfC+iQQPksI6C+3f5JlzxExkKRtyYhShcl0cnnO9Y0heepv4pN+ML3 OH7Ubarp0NCVDRkn3JvANunc1hAFSM8HGKD7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUrzbv1YHNN9AlwbV09e5FDdB/7u4wHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvcnpidjFZSE5OOUFs d2JWMDllNUZEZEJfN3U0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAIBYRv9uxhA8vt4GN6Si/NKMrhbn 9mWGzVe7cZ6bSBNtKPB3JFATSOebVjUWIJobDoZkEGCnOOoz/IqoUMABi0f4zNV8 B/KHraYphsrG8Ipr9/wRI9l63UVLhtoEbMsmCTe1IQLXMRFX5CEhsnjiih6+Wi7Q 6P0tMLWmFWBK47ppJtQMuDO7L2ZtU4iZxzhhEPzjxUrRZcQAe+DDsnRe+pG+2OPP j+0c+LdXTFnYuDCh1UQ502aummpmbq5DWhwL3vM6zwwYMGXUJlCPbG8N9uFgY3pB XQAgB2YPG5yLCSA+8opouyAX3Uf6MxNY2W/geyvNHJJzEPhakuLgP5s14jU= -----END CERTIFICATE-----Generated at Wed Jan 7 22:15:22 2026 by rpki-client