This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/9yJx6nLUoNjGuAwc_8JPzxvayAI.roa File: 9yJx6nLUoNjGuAwc_8JPzxvayAI.roa (raw, json) Hash identifier: qi/T2PqYQ/e6HpxviS+p/H0A+NcmRDsvSCbJ6xNBVvs= Subject key identifier: F7:22:71:EA:72:D4:A0:D8:C6:B8:0C:1C:FF:C2:4F:CF:1B:DA:C8:02 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 37F6 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/9yJx6nLUoNjGuAwc_8JPzxvayAI.roa Signing time: Wed 03 Apr 2024 04:52:17 +0000 ROA not before: Wed 03 Apr 2024 04:52:17 +0000 ROA not after: Fri 31 Jan 2025 01:13:46 +0000 asID: 24426 IP address blocks: 43.236.0.0/16 maxlen: 16 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 14326 (0x37f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Apr 3 04:52:17 2024 GMT Not After : Jan 31 01:13:46 2025 GMT Subject: CN=F72271EA72D4A0D8C6B80C1CFFC24FCF1BDAC802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:08:22:e0:fa:af:75:d5:50:c0:f8:9a:5c:3c: bc:c8:b6:12:fe:da:74:ab:a7:62:80:ab:8b:15:a9: f3:09:b2:33:ee:ac:7a:23:7e:cc:2c:e0:93:32:c5: 65:f1:c2:16:5e:45:ca:65:45:2b:7d:d5:40:96:4d: 7e:89:14:be:a5:45:29:e8:8b:73:85:86:cb:f6:5c: 48:79:ea:39:fd:b7:02:b3:81:0e:c8:82:43:af:b9: 9e:d1:a7:70:d0:79:93:a6:d0:be:d5:9f:90:7f:9d: cd:e5:f8:77:04:d8:5d:fa:6e:5c:96:0c:f5:8d:9a: c9:31:ba:79:b6:c9:90:b3:de:04:08:8d:10:e7:d1: 80:1f:d9:01:41:c2:b5:64:a9:d5:41:e5:53:3a:a1: d0:ce:18:78:5c:37:88:fa:fc:c8:cf:a0:45:e1:a1: 4f:b1:45:92:33:d3:4e:8d:a4:65:b4:b0:37:ec:24: 74:39:18:1d:dd:f2:3c:e4:68:21:74:2c:47:d1:d7: b7:13:64:01:a0:4d:40:23:0e:1e:c1:0d:b2:3c:80: eb:b9:90:30:20:3c:d5:01:73:93:94:82:64:98:8c: 9b:c0:42:cb:75:18:83:27:e0:4f:97:a4:b5:d1:53: 57:b7:63:e2:1f:d4:fe:13:11:9b:81:d6:50:43:fd: 7a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:22:71:EA:72:D4:A0:D8:C6:B8:0C:1C:FF:C2:4F:CF:1B:DA:C8:02 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/9yJx6nLUoNjGuAwc_8JPzxvayAI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:85:f3:ae:1e:cd:c5:99:7a:45:68:f3:57:58:8f:8e:f3:15: c5:f8:c5:47:71:0f:2c:a3:e7:50:9e:c7:62:8c:18:d7:bf:c3: 33:f6:f0:ab:ed:ed:17:ec:86:62:01:e1:1c:26:ea:b3:dc:f0: 82:0c:58:ae:18:a0:ae:67:b4:2e:ea:0b:a0:ce:b8:3b:6c:34: 91:50:09:87:67:47:87:68:02:78:cb:f6:df:8a:8e:9b:ac:51: 0e:fd:07:15:b9:74:e9:f9:d2:58:c6:22:5e:cd:30:8e:a1:5a: 21:01:d7:36:18:af:e2:1f:a3:23:39:50:29:05:ce:d9:e2:a5: d6:1f:dd:93:a1:ef:06:b8:96:99:02:89:5c:72:d0:0e:01:2b: 66:7f:bd:a2:6c:c5:ce:bf:40:d7:8e:25:55:1b:8b:14:4c:23: b8:31:57:2f:0b:3f:6c:da:84:22:fc:53:ee:c1:1e:18:1e:57: 8e:4c:39:65:ae:fb:09:4d:2a:26:14:6a:76:37:4c:c5:ff:fd: 5d:95:fd:9a:0d:c4:9c:76:d1:85:89:49:f3:5e:61:08:dd:3f: a7:69:d5:c1:42:cf:23:44:5d:53:c4:75:30:9f:86:b0:06:94: 92:54:b2:ab:80:52:5f:02:a8:50:51:98:8d:34:1b:26:86:79: ef:a9:88:a7 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICN/YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNDA0MDMw NDUyMTdaFw0yNTAxMzEwMTEzNDZaMDMxMTAvBgNVBAMTKEY3MjI3MUVBNzJENEEw RDhDNkI4MEMxQ0ZGQzI0RkNGMUJEQUM4MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBCCLg+q911VDA+JpcPLzIthL+2nSrp2KAq4sVqfMJsjPurHoj fsws4JMyxWXxwhZeRcplRSt91UCWTX6JFL6lRSnoi3OFhsv2XEh56jn9twKzgQ7I gkOvuZ7Rp3DQeZOm0L7Vn5B/nc3l+HcE2F36blyWDPWNmskxunm2yZCz3gQIjRDn 0YAf2QFBwrVkqdVB5VM6odDOGHhcN4j6/MjPoEXhoU+xRZIz006NpGW0sDfsJHQ5 GB3d8jzkaCF0LEfR17cTZAGgTUAjDh7BDbI8gOu5kDAgPNUBc5OUgmSYjJvAQst1 GIMn4E+XpLXRU1e3Y+If1P4TEZuB1lBD/XrfAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9yJx6nLUoNjGuAwc/8JPzxvayAIwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3Lzl5Sng2bkxVb05qR3VB d2NfOEpQenh2YXlBSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwAr7DANBgkqhkiG9w0BAQsFAAOCAQEAj4Xzrh7NxZl6RWjzV1iPjvMVxfjFR3EP LKPnUJ7HYowY17/DM/bwq+3tF+yGYgHhHCbqs9zwggxYrhigrme0LuoLoM64O2w0 kVAJh2dHh2gCeMv234qOm6xRDv0HFbl06fnSWMYiXs0wjqFaIQHXNhiv4h+jIzlQ KQXO2eKl1h/dk6HvBriWmQKJXHLQDgErZn+9omzFzr9A144lVRuLFEwjuDFXLws/ bNqEIvxT7sEeGB5Xjkw5Za77CU0qJhRqdjdMxf/9XZX9mg3EnHbRhYlJ815hCN0/ p2nVwULPI0RdU8R1MJ+GsAaUklSyq4BSXwKoUFGYjTQbJoZ576mIpw== -----END CERTIFICATE-----Generated at Mon Dec 22 01:08:20 2025 by rpki-client