This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/sKA-144vgWx8iA_JNxoSyaB08Wg.roa File: sKA-144vgWx8iA_JNxoSyaB08Wg.roa (raw, json) Hash identifier: mJ/5Tz3FJ8lIUdgjmlag7ssu3yhi33H7cKifTgMrgU0= Subject key identifier: B0:A0:3E:D7:8E:2F:81:6C:7C:88:0F:C9:37:1A:12:C9:A0:74:F1:68 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 2558 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/sKA-144vgWx8iA_JNxoSyaB08Wg.roa Signing time: Thu 12 Jun 2025 02:39:11 +0000 ROA not before: Thu 12 Jun 2025 02:39:11 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 9560 (0x2558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jun 12 02:39:11 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=B0A03ED78E2F816C7C880FC9371A12C9A074F168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:59:f6:af:85:d2:19:c9:f9:37:73:27:df:e4: 27:cb:44:b2:fa:1a:1f:17:e6:a4:15:6c:ec:97:32: 98:19:d1:d2:1f:e0:87:7d:5d:c3:1c:7e:7e:24:04: 5d:ab:7e:85:61:40:94:6a:99:5d:c2:9a:53:02:0b: ec:12:78:81:bd:ac:0a:9c:f4:a1:5d:37:aa:cf:7e: f6:5f:a3:ef:ea:54:5a:07:84:b3:92:4e:b5:df:54: e4:46:3a:4e:6d:ef:a9:49:9e:66:36:5f:9f:ea:97: 13:82:13:0d:29:78:5f:ac:d3:f2:cc:b4:05:e3:b3: 3c:6c:df:4d:f7:8f:c0:19:df:71:7c:94:ec:40:31: 01:79:61:fc:13:73:c4:10:0f:c1:6a:9b:3d:83:53: 45:7c:f3:1c:dd:d5:1a:50:da:cb:c3:b8:a3:d9:7f: ed:25:a0:12:ca:d3:07:25:7a:ee:b8:72:65:29:3c: ba:9e:f9:f5:fe:8c:ef:8d:49:88:ac:91:7f:0a:a2: 4a:36:c9:4b:0d:8e:7d:6f:c1:51:1a:11:87:c6:7f: a3:29:50:83:ee:90:17:97:5d:44:f4:6c:e4:99:31: 80:da:2d:2d:74:c3:1d:0b:1e:b7:b3:50:08:f3:73: da:ef:ed:c3:6d:21:99:70:dc:50:6f:e3:e2:d9:9e: 82:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A0:3E:D7:8E:2F:81:6C:7C:88:0F:C9:37:1A:12:C9:A0:74:F1:68 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/sKA-144vgWx8iA_JNxoSyaB08Wg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 05:7b:30:77:dd:eb:9b:b9:16:50:ef:e4:99:b0:0a:c5:d5:85: ea:b9:fc:b0:ad:00:8f:5d:c5:d8:f7:e1:d1:c0:90:fa:77:58: 60:7f:70:f0:55:ea:fd:b2:f5:2f:84:17:20:53:4b:c3:56:83: 49:fe:78:56:58:a5:dd:e7:4b:3c:a7:a5:3a:9f:53:fa:70:6a: 3f:00:f3:5a:7e:b6:89:0a:d2:b5:33:1e:d9:c0:53:fd:1b:cc: 3b:b9:cc:40:fd:93:98:c4:90:4f:47:ac:38:f8:06:ce:a7:f6: c0:a8:6a:0b:f6:15:7e:ef:31:a7:97:47:39:e5:45:55:97:e4: fa:a6:62:fc:4d:1b:34:39:a7:ad:1f:f2:9e:95:ed:ca:58:42: 76:1d:38:e5:13:d3:b9:48:ad:03:76:f7:a8:30:04:52:44:16: d1:31:9c:28:4c:1d:c2:34:cf:2d:9a:4d:72:fe:8a:b0:ba:f7: cf:91:b4:46:33:b6:ef:4d:62:6d:37:26:cc:c5:0d:59:5c:97: 72:6e:45:f8:d8:bb:7f:89:c9:e2:a6:f4:f3:b1:46:c9:20:7c: 3f:5b:8a:de:86:50:09:71:63:9b:34:8c:e8:b2:d8:6f:18:1a: 97:fd:6d:e6:b8:0a:72:1e:ee:f4:33:89:75:a6:8f:a1:60:15: 70:c2:48:6a -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICJVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB QjZDOUI2RTE2NTMzNEMwMzJEMDUxRDVGQzdEMTU0N0U0RTM1MzAeFw0yNTA2MTIw MjM5MTFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEIwQTAzRUQ3OEUyRjgx NkM3Qzg4MEZDOTM3MUExMkM5QTA3NEYxNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNWfavhdIZyfk3cyff5CfLRLL6Gh8X5qQVbOyXMpgZ0dIf4Id9 XcMcfn4kBF2rfoVhQJRqmV3CmlMCC+wSeIG9rAqc9KFdN6rPfvZfo+/qVFoHhLOS TrXfVORGOk5t76lJnmY2X5/qlxOCEw0peF+s0/LMtAXjszxs3033j8AZ33F8lOxA MQF5YfwTc8QQD8Fqmz2DU0V88xzd1RpQ2svDuKPZf+0loBLK0wcleu64cmUpPLqe +fX+jO+NSYiskX8Koko2yUsNjn1vwVEaEYfGf6MpUIPukBeXXUT0bOSZMYDaLS10 wx0LHrezUAjzc9rv7cNtIZlw3FBv4+LZnoJHAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUsKA+144vgWx8iA/JNxoSyaB08WgwHwYDVR0jBBgwFoAU0qtsm24WUzTAMtBR 1fx9FUfk41MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA5 OC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzBxdHNtMjRXVXpUQU10QlIxZng5RlVmazQxTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwOTgvc0tBLTE0NHZnV3g4 aUFfSk54b1N5YUIwOFdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQHm0AwDQYJKoZIhvcNAQELBQADggEBAAV7MHfd65u5FlDv5JmwCsXVheq5 /LCtAI9dxdj34dHAkPp3WGB/cPBV6v2y9S+EFyBTS8NWg0n+eFZYpd3nSzynpTqf U/pwaj8A81p+tokK0rUzHtnAU/0bzDu5zED9k5jEkE9HrDj4Bs6n9sCoagv2FX7v MaeXRznlRVWX5PqmYvxNGzQ5p60f8p6V7cpYQnYdOOUT07lIrQN296gwBFJEFtEx nChMHcI0zy2aTXL+irC698+RtEYztu9NYm03JszFDVlcl3JuRfjYu3+JyeKm9POx RskgfD9bit6GUAlxY5s0jOiy2G8YGpf9bea4CnIe7vQziXWmj6FgFXDCSGo= -----END CERTIFICATE-----Generated at Mon Jan 12 15:31:13 2026 by rpki-client