This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/PUQKdgm-y4IfjlZl9poBb47iAp0.roa File: PUQKdgm-y4IfjlZl9poBb47iAp0.roa (raw, json) Hash identifier: e8/IUXNetORhCYuTmcuoc6MpspHqvBsoIaTDTo011oU= Subject key identifier: 3D:44:0A:76:09:BE:CB:82:1F:8E:56:65:F6:9A:01:6F:8E:E2:02:9D Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Certificate serial: 0CC0 Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/PUQKdgm-y4IfjlZl9poBb47iAp0.roa Signing time: Sat 24 May 2025 02:08:32 +0000 ROA not before: Sat 24 May 2025 02:08:32 +0000 ROA not after: Thu 09 Apr 2026 06:33:21 +0000 asID: 9391 IP address blocks: 125.169.0.0/16 maxlen: 16 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Validity Not Before: May 24 02:08:32 2025 GMT Not After : Apr 9 06:33:21 2026 GMT Subject: CN=3D440A7609BECB821F8E5665F69A016F8EE2029D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7c:40:0f:12:f6:06:06:0b:b9:44:db:8f:d3: b0:a2:db:15:bf:e1:2f:f5:19:98:8e:20:d8:be:7a: 34:ba:7a:01:56:ff:09:34:3b:0a:13:ad:bf:a6:52: 31:bd:35:47:25:29:c1:9e:b9:db:f5:5e:cd:1b:e8: 7d:24:f9:86:91:7b:9c:f3:f6:38:ff:c6:24:66:8f: 36:2f:00:e3:26:95:47:0d:ce:83:5b:8d:1c:7d:8d: ca:91:50:9e:b1:f6:6e:2e:5e:91:6c:1a:12:bd:59: 6d:58:43:ad:f3:54:6b:aa:a5:d5:10:9d:b2:21:ad: 4f:08:63:a6:f7:8b:1f:c1:21:8d:f2:c0:a9:c9:51: 2e:24:00:e9:92:a1:53:7a:02:9c:3a:81:e1:a2:4c: 09:75:32:02:e8:6b:8a:75:4a:bf:a9:ac:e0:44:67: 2d:98:cd:cf:26:aa:2e:72:97:08:90:ee:8a:c1:5b: 43:05:ba:ff:9c:14:81:c3:57:72:af:d2:c7:f9:17: 72:ff:9a:b3:c8:a5:60:f2:0a:24:28:f1:bb:e4:58: fa:9a:1e:ed:94:6f:7b:54:32:db:af:a3:33:da:57: 81:5c:ae:3a:9e:70:ce:9b:c0:9a:8f:c4:33:7f:e4: f6:63:93:dc:d2:f9:35:93:cb:cc:ac:00:cd:a0:0c: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:44:0A:76:09:BE:CB:82:1F:8E:56:65:F6:9A:01:6F:8E:E2:02:9D X509v3 Authority Key Identifier: keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/PUQKdgm-y4IfjlZl9poBb47iAp0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 125.169.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:cf:35:b8:51:4f:f9:fb:a5:29:a4:65:75:b9:5c:ba:4a:b7: 09:6c:73:db:04:bb:0e:fd:fc:36:17:f0:d7:21:f2:c8:50:25: 7b:f4:58:ae:38:a1:2f:27:9c:d9:10:9e:71:14:33:87:45:c9: 3f:66:08:12:57:b9:43:cd:97:7f:a2:24:dc:1f:aa:23:e9:ca: a0:17:b3:1f:81:02:0f:06:f7:10:0a:9e:2f:5b:85:01:69:f7: f4:4a:ec:86:e9:b2:10:d0:54:b9:12:74:3d:0a:79:14:55:e5: e5:8e:19:0c:16:9f:34:b3:de:05:fa:3e:dc:a2:4e:24:2c:95: e3:1e:37:20:b0:4b:16:df:83:5e:23:07:db:3c:24:dd:f4:45: a1:42:0c:0a:9e:a7:d3:cf:08:f2:c1:a4:8d:d4:49:5e:ee:6e: 00:a1:07:3b:da:02:87:9c:ce:b3:ed:6f:82:12:83:a3:63:3d: 37:d1:c0:f3:d7:38:3e:8c:52:04:99:8b:b8:e8:96:94:8d:76: 88:c6:c2:ff:93:c4:50:8f:6e:97:4a:a5:ca:5d:2c:06:ec:a5: 46:9d:ef:7b:78:bd:d4:97:95:ce:07:d9:f7:17:b0:43:2b:84: 08:ce:d1:e6:38:18:d9:9d:36:b2:8e:e4:b9:59:77:4a:5e:7d: d6:40:ff:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNTA1MjQw MjA4MzJaFw0yNjA0MDkwNjMzMjFaMDMxMTAvBgNVBAMTKDNENDQwQTc2MDlCRUNC ODIxRjhFNTY2NUY2OUEwMTZGOEVFMjAyOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjfEAPEvYGBgu5RNuP07Ci2xW/4S/1GZiOINi+ejS6egFW/wk0 OwoTrb+mUjG9NUclKcGeudv1Xs0b6H0k+YaRe5zz9jj/xiRmjzYvAOMmlUcNzoNb jRx9jcqRUJ6x9m4uXpFsGhK9WW1YQ63zVGuqpdUQnbIhrU8IY6b3ix/BIY3ywKnJ US4kAOmSoVN6Apw6geGiTAl1MgLoa4p1Sr+prOBEZy2Yzc8mqi5ylwiQ7orBW0MF uv+cFIHDV3Kv0sf5F3L/mrPIpWDyCiQo8bvkWPqaHu2Ub3tUMtuvozPaV4Fcrjqe cM6bwJqPxDN/5PZjk9zS+TWTy8ysAM2gDFqTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPUQKdgm+y4IfjlZl9poBb47iAp0wHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9QVVFLZGdtLXk0SWZqbFps OXBvQmI0N2lBcDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA fakwDQYJKoZIhvcNAQELBQADggEBABPPNbhRT/n7pSmkZXW5XLpKtwlsc9sEuw79 /DYX8Nch8shQJXv0WK44oS8nnNkQnnEUM4dFyT9mCBJXuUPNl3+iJNwfqiPpyqAX sx+BAg8G9xAKni9bhQFp9/RK7IbpshDQVLkSdD0KeRRV5eWOGQwWnzSz3gX6Ptyi TiQsleMeNyCwSxbfg14jB9s8JN30RaFCDAqep9PPCPLBpI3USV7ubgChBzvaAoec zrPtb4ISg6NjPTfRwPPXOD6MUgSZi7jolpSNdojGwv+TxFCPbpdKpcpdLAbspUad 73t4vdSXlc4H2fcXsEMrhAjO0eY4GNmdNrKO5LlZd0pefdZA/9E= -----END CERTIFICATE-----Generated at Mon Jan 12 13:06:54 2026 by rpki-client