This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/2AO4-43N1-xYWNFNL9SqBQ7Ey5o.roa File: 2AO4-43N1-xYWNFNL9SqBQ7Ey5o.roa (raw, json) Hash identifier: 322LEVEysv63o8wrAjKDXfPViOkRikObDC4PD4nrrIE= Subject key identifier: D8:03:B8:FB:8D:CD:D7:EC:58:58:D1:4D:2F:D4:AA:05:0E:C4:CB:9A Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Certificate serial: 03F9 Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/2AO4-43N1-xYWNFNL9SqBQ7Ey5o.roa Signing time: Mon 12 May 2025 09:08:04 +0000 ROA not before: Mon 12 May 2025 09:08:04 +0000 ROA not after: Thu 09 Apr 2026 06:33:21 +0000 asID: 9391 IP address blocks: 27.103.0.0/16 maxlen: 16 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Validity Not Before: May 12 09:08:04 2025 GMT Not After : Apr 9 06:33:21 2026 GMT Subject: CN=D803B8FB8DCDD7EC5858D14D2FD4AA050EC4CB9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d4:ff:55:b8:28:81:f9:38:30:91:96:53:60: 78:60:4f:43:da:17:02:6c:b4:16:3a:83:99:2d:bb: 83:77:e2:e1:0a:83:81:1c:ab:65:a5:ee:4c:e5:f0: d0:35:ec:41:0d:2e:1f:a5:f4:17:83:cb:c7:56:f9: 34:2e:15:53:cd:a0:23:04:79:41:a1:9a:34:23:9d: cc:82:04:b3:29:cb:2f:bc:a5:80:1a:cb:e3:6a:8a: 5d:d1:17:9e:9f:61:e6:93:03:2e:fb:71:5c:53:5b: 0d:f2:3a:8a:b2:a9:f1:8b:79:40:2f:04:13:06:df: aa:45:13:5a:78:96:2a:06:46:12:46:08:1c:b9:d7: e5:69:53:c5:32:c0:65:10:52:07:31:fa:b8:b6:58: 39:b2:78:4a:f1:5c:8b:7b:8c:43:ca:76:64:5a:d8: a5:5f:07:9c:60:f7:69:b7:c4:fe:93:cd:22:57:93: ac:2a:7a:81:38:83:2d:35:b9:48:65:6d:bd:40:88: f5:a7:70:9f:a8:b5:d1:ae:01:f5:fd:2e:e4:b7:18: a9:b2:18:56:ad:14:9e:eb:6f:58:57:df:42:7d:ff: 8e:f3:a5:02:a0:fa:b5:a6:91:67:a8:65:32:e9:ad: cc:84:1c:63:41:c5:38:9e:fa:f8:0f:a9:f8:78:bc: de:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:03:B8:FB:8D:CD:D7:EC:58:58:D1:4D:2F:D4:AA:05:0E:C4:CB:9A X509v3 Authority Key Identifier: keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/2AO4-43N1-xYWNFNL9SqBQ7Ey5o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.103.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:91:bc:bd:f1:cf:db:dc:41:45:17:0c:be:c0:4a:17:bd:34: df:5e:a2:35:46:f4:b1:25:1b:47:5d:76:13:0c:34:b6:b9:5a: 15:0f:22:48:69:40:c7:4a:0d:c8:87:9e:0d:ba:6f:8b:e6:38: 47:6f:31:9e:67:2e:0a:b0:2f:b9:67:e1:40:c0:75:8b:5c:ab: ec:b0:75:ce:64:bc:33:54:bf:78:1b:c9:f8:02:c5:f9:6b:49: f1:f1:b6:d8:b2:c9:c9:d8:c4:a0:52:3f:ef:ed:05:eb:9e:52: 10:bd:18:a2:02:ad:35:24:d6:10:ab:1b:79:ad:92:5f:b9:7a: 1e:d7:83:aa:93:cd:04:8c:e4:b5:ee:ba:74:30:c7:37:06:44: fb:43:69:12:6e:5e:45:6d:24:fc:ac:06:b9:c9:c8:32:6c:65: c5:d4:52:3e:33:9d:c8:f2:f6:9c:81:c7:0a:79:d7:11:4f:31: ae:e6:f9:c9:f9:d5:02:43:4b:b7:1a:01:34:db:c1:e0:b2:7b: 52:53:6c:9a:2c:fd:81:c9:3b:67:ee:57:69:c6:66:2c:f3:77: 45:5a:68:2c:0e:75:18:b3:bb:a2:10:12:87:96:c8:24:9b:fa: a5:b7:81:56:af:29:79:32:5b:b0:0e:2c:c0:fb:5e:a1:83:cb: aa:26:b9:a7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA1MTIw OTA4MDRaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKEQ4MDNCOEZCOERDREQ3 RUM1ODU4RDE0RDJGRDRBQTA1MEVDNENCOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo1P9VuCiB+TgwkZZTYHhgT0PaFwJstBY6g5ktu4N34uEKg4Ec q2Wl7kzl8NA17EENLh+l9BeDy8dW+TQuFVPNoCMEeUGhmjQjncyCBLMpyy+8pYAa y+Nqil3RF56fYeaTAy77cVxTWw3yOoqyqfGLeUAvBBMG36pFE1p4lioGRhJGCBy5 1+VpU8UywGUQUgcx+ri2WDmyeErxXIt7jEPKdmRa2KVfB5xg92m3xP6TzSJXk6wq eoE4gy01uUhlbb1AiPWncJ+otdGuAfX9LuS3GKmyGFatFJ7rb1hX30J9/47zpQKg +rWmkWeoZTLprcyEHGNBxTie+vgPqfh4vN7hAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU2AO4+43N1+xYWNFNL9SqBQ7Ey5owHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni8yQU80LTQzTjEteFlXTkZO TDlTcUJRN0V5NW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA G2cwDQYJKoZIhvcNAQELBQADggEBAAeRvL3xz9vcQUUXDL7AShe9NN9eojVG9LEl G0dddhMMNLa5WhUPIkhpQMdKDciHng26b4vmOEdvMZ5nLgqwL7ln4UDAdYtcq+yw dc5kvDNUv3gbyfgCxflrSfHxttiyycnYxKBSP+/tBeueUhC9GKICrTUk1hCrG3mt kl+5eh7Xg6qTzQSM5LXuunQwxzcGRPtDaRJuXkVtJPysBrnJyDJsZcXUUj4zncjy 9pyBxwp51xFPMa7m+cn51QJDS7caATTbweCye1JTbJos/YHJO2fuV2nGZizzd0Va aCwOdRizu6IQEoeWyCSb+qW3gVavKXkyW7AOLMD7XqGDy6omuac= -----END CERTIFICATE-----Generated at Fri Jan 9 07:48:13 2026 by rpki-client