This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/6U8cAQlcSpQ_xfuvCQRfOGNtByw.roa File: 6U8cAQlcSpQ_xfuvCQRfOGNtByw.roa (raw, json) Hash identifier: HyoNbKObNVKxqc6nu5PHO+RirCxsSin7IDSVAhcUWbI= Subject key identifier: E9:4F:1C:01:09:5C:4A:94:3F:C5:FB:AF:09:04:5F:38:63:6D:07:2C Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 6002 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6U8cAQlcSpQ_xfuvCQRfOGNtByw.roa Signing time: Wed 14 May 2025 02:40:23 +0000 ROA not before: Wed 14 May 2025 02:40:23 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 43.239.48.0/22 maxlen: 22 43.246.0.0/22 maxlen: 22 43.246.4.0/22 maxlen: 22 43.246.12.0/22 maxlen: 22 43.246.16.0/22 maxlen: 22 43.246.20.0/22 maxlen: 22 43.246.24.0/22 maxlen: 22 43.246.28.0/22 maxlen: 22 43.246.32.0/22 maxlen: 22 43.246.36.0/22 maxlen: 22 43.246.40.0/22 maxlen: 22 43.246.44.0/22 maxlen: 22 43.246.52.0/22 maxlen: 22 43.246.56.0/22 maxlen: 22 43.246.60.0/22 maxlen: 22 43.246.64.0/22 maxlen: 22 43.246.68.0/22 maxlen: 22 43.246.72.0/22 maxlen: 22 43.246.76.0/22 maxlen: 22 43.246.80.0/22 maxlen: 22 43.246.84.0/22 maxlen: 22 43.246.88.0/22 maxlen: 22 43.246.92.0/22 maxlen: 22 43.246.96.0/22 maxlen: 22 103.35.48.0/22 maxlen: 22 103.236.0.0/22 maxlen: 22 103.236.4.0/22 maxlen: 22 103.236.8.0/22 maxlen: 22 103.236.12.0/22 maxlen: 22 103.236.16.0/22 maxlen: 22 103.236.20.0/22 maxlen: 22 103.236.28.0/22 maxlen: 22 103.236.32.0/22 maxlen: 22 103.236.36.0/22 maxlen: 22 103.236.40.0/22 maxlen: 22 103.236.44.0/22 maxlen: 22 103.236.48.0/22 maxlen: 22 103.236.52.0/22 maxlen: 22 103.236.56.0/22 maxlen: 22 103.236.60.0/22 maxlen: 22 103.236.64.0/22 maxlen: 22 103.236.68.0/22 maxlen: 22 103.236.72.0/22 maxlen: 22 103.236.76.0/22 maxlen: 22 103.236.80.0/22 maxlen: 22 103.236.84.0/22 maxlen: 22 103.236.88.0/22 maxlen: 22 103.236.92.0/22 maxlen: 22 103.236.96.0/22 maxlen: 22 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 24578 (0x6002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 14 02:40:23 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E94F1C01095C4A943FC5FBAF09045F38636D072C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:58:c9:8b:94:4a:55:37:a3:56:b2:7d:8d:fe: 01:f2:52:55:0c:33:b0:77:e4:c0:32:fe:6d:fe:cc: 9a:c1:36:c1:86:05:8a:cb:9a:ab:d9:50:30:48:c1: dc:5b:e2:6a:93:04:e7:1d:b4:2a:10:26:bf:a8:bd: 19:43:22:b5:85:51:96:79:d1:af:38:d0:9c:b4:53: 58:e2:53:d3:65:fb:49:74:5a:aa:5b:56:69:0d:db: 68:cc:b2:93:7c:f6:8f:54:53:31:b2:45:71:d1:9f: b2:95:8f:96:9d:5a:c5:35:5c:85:e6:bd:fc:4c:8f: b6:bb:d4:be:6d:0c:48:e3:7b:9d:0f:59:6e:cc:99: 6c:98:98:54:22:0a:9f:94:24:c6:17:25:25:1e:84: b2:29:8a:c0:8e:87:36:b2:5e:bb:89:e2:68:19:f7: a6:5f:4e:8f:b9:a6:5c:bb:8e:ab:4e:a9:f8:0f:ef: 1c:39:66:80:3d:21:07:cf:50:20:da:49:e3:5a:e2: 9a:41:90:6e:84:50:f1:dd:8a:03:5a:0b:24:74:06: d9:82:14:21:2b:a5:69:74:87:25:45:e5:cb:be:89: b4:49:5d:14:7b:45:41:f8:a9:9f:31:77:85:6b:d2: db:9e:a2:be:08:51:ff:ee:9d:4a:46:e7:13:fb:6e: ae:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4F:1C:01:09:5C:4A:94:3F:C5:FB:AF:09:04:5F:38:63:6D:07:2C X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/6U8cAQlcSpQ_xfuvCQRfOGNtByw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.239.48.0/22 43.246.0.0/21 43.246.12.0-43.246.47.255 43.246.52.0-43.246.99.255 103.35.48.0/22 103.236.0.0-103.236.23.255 103.236.28.0-103.236.99.255 Signature Algorithm: sha256WithRSAEncryption 40:de:b3:5c:05:bd:5c:82:5c:e9:f7:95:fa:7e:0b:cc:83:87: e6:c8:fc:83:2b:63:ba:50:dd:e7:43:8d:8e:1f:07:20:96:1a: 5a:26:e9:51:4b:3d:ff:d1:f2:05:22:b3:e1:55:34:ed:f5:51: 52:66:0c:93:92:06:c5:69:19:69:72:2b:18:54:7a:e3:c6:f8: 08:d6:d7:2b:19:30:17:8b:12:2e:cb:9f:71:d4:4e:ba:e3:17: 38:13:0e:dd:6b:56:5c:69:77:a3:62:86:63:20:c0:04:91:91: d6:4a:fd:7d:e0:20:03:77:85:dd:7a:9c:39:70:8c:f5:0f:2f: de:10:e7:17:b0:8b:91:7a:7b:f9:ea:54:ef:2b:75:46:09:fb: 78:98:26:64:20:24:f4:9b:b4:bc:97:ec:79:f6:98:ce:b1:44: 80:36:b6:dd:17:d0:0a:46:61:fe:1c:31:01:8f:08:cb:3a:e2: 92:3a:36:62:a6:9d:2b:c0:b6:d3:dd:99:08:f4:a0:cb:20:b4: 91:d3:04:d7:f4:0c:a0:1d:ac:5d:64:26:7d:f8:e5:a7:d7:11: da:9c:36:32:45:86:97:fb:72:1f:20:e8:8a:e4:43:c8:06:e4: 04:1b:5f:ab:d6:03:4c:7b:b5:21:58:0d:64:e0:0b:34:3b:01: f5:a4:e2:c2 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgICYAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA1MTQw MjQwMjNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEU5NEYxQzAxMDk1QzRB OTQzRkM1RkJBRjA5MDQ1RjM4NjM2RDA3MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjWMmLlEpVN6NWsn2N/gHyUlUMM7B35MAy/m3+zJrBNsGGBYrL mqvZUDBIwdxb4mqTBOcdtCoQJr+ovRlDIrWFUZZ50a840Jy0U1jiU9Nl+0l0Wqpb VmkN22jMspN89o9UUzGyRXHRn7KVj5adWsU1XIXmvfxMj7a71L5tDEjje50PWW7M mWyYmFQiCp+UJMYXJSUehLIpisCOhzayXruJ4mgZ96ZfTo+5ply7jqtOqfgP7xw5 ZoA9IQfPUCDaSeNa4ppBkG6EUPHdigNaCyR0BtmCFCErpWl0hyVF5cu+ibRJXRR7 RUH4qZ8xd4Vr0tueor4IUf/unUpG5xP7bq7zAgMBAAGjggI0MIICMDAdBgNVHQ4E FgQU6U8cAQlcSpQ/xfuvCQRfOGNtBywwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3LzZVOGNBUWxjU3BRX3hm dXZDUVJmT0dOdEJ5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwYgYIKwYBBQUHAQcBAf8EUzBRME8EAgABMEkD BAIr7zADBAMr9gAwDAMEAiv2DAMEBCv2IDAMAwQCK/Y0AwQCK/ZgAwQCZyMwMAsD AwJn7AMEA2fsEDAMAwQCZ+wcAwQCZ+xgMA0GCSqGSIb3DQEBCwUAA4IBAQBA3rNc Bb1cglzp95X6fgvMg4fmyPyDK2O6UN3nQ42OHwcglhpaJulRSz3/0fIFIrPhVTTt 9VFSZgyTkgbFaRlpcisYVHrjxvgI1tcrGTAXixIuy59x1E664xc4Ew7da1ZcaXej YoZjIMAEkZHWSv194CADd4Xdepw5cIz1Dy/eEOcXsIuRenv56lTvK3VGCft4mCZk ICT0m7S8l+x59pjOsUSANrbdF9AKRmH+HDEBjwjLOuKSOjZipp0rwLbT3ZkI9KDL ILSR0wTX9AygHaxdZCZ9+OWn1xHanDYyRYaX+3IfIOiK5EPIBuQEG1+r1gNMe7Uh WA1k4As0OwH1pOLC -----END CERTIFICATE-----Generated at Mon Dec 22 03:26:23 2025 by rpki-client