This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/5fG0R3Nf3kWEErNATVZG5lEYy2I.roa File: 5fG0R3Nf3kWEErNATVZG5lEYy2I.roa (raw, json) Hash identifier: tVU3T4CMlNYpnyXcywOZ3NT8vKt/ZmK+1PVgA8Alssw= Subject key identifier: E5:F1:B4:47:73:5F:DE:45:84:12:B3:40:4D:56:46:E6:51:18:CB:62 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BD8D Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/5fG0R3Nf3kWEErNATVZG5lEYy2I.roa Signing time: Sun 07 Dec 2025 21:47:31 +0000 ROA not before: Sun 07 Dec 2025 21:47:31 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 134762 IP address blocks: 43.226.49.0/24 maxlen: 24 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 48525 (0xbd8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 7 21:47:31 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=E5F1B447735FDE458412B3404D5646E65118CB62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d8:a2:3e:11:e1:cb:8d:f0:8b:e8:d9:a2:94: 3a:1e:05:15:7a:65:0c:dc:74:99:f6:fe:62:b1:88: d1:99:fe:53:9d:53:ec:0f:4c:32:40:93:74:6e:a9: 8d:5f:89:a6:5d:72:57:92:17:c8:5e:db:02:98:ed: 10:fd:b0:05:11:68:b7:bd:68:61:42:4b:9f:c5:a2: 7e:78:44:06:56:23:ec:08:60:6b:be:fb:bf:d5:26: bc:ac:92:37:76:0e:20:57:27:66:e4:69:75:3c:b5: 70:42:b8:9e:8b:b0:34:ae:4f:bd:d1:37:8c:9a:5f: 6e:12:f5:51:31:5d:47:7e:8d:41:b2:60:c6:02:a5: 0d:2b:6b:5a:8b:d1:33:07:c3:43:ab:4d:b0:36:14: 91:52:3c:e9:c5:03:b1:10:79:6b:3a:a9:8e:ea:6f: 92:fb:59:26:a8:51:44:52:50:5d:be:0d:7b:4a:09: d7:9d:11:62:1c:1d:39:fd:71:4e:19:21:09:20:c5: 71:b3:41:5c:e8:1c:5a:dd:ea:5a:f8:7c:df:8e:3b: 93:02:0d:e1:8a:a9:b4:8a:59:af:b2:a2:7c:8e:85: d4:02:03:d2:c9:ea:ac:a4:d0:19:fb:bc:aa:b6:46: e1:79:26:a7:e2:97:f9:ad:36:bd:b9:c0:47:ea:14: 51:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F1:B4:47:73:5F:DE:45:84:12:B3:40:4D:56:46:E6:51:18:CB:62 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/5fG0R3Nf3kWEErNATVZG5lEYy2I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.49.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f3:3a:23:58:3e:69:38:b5:0e:6d:2c:65:ab:e1:b6:3f:34: 82:0e:0c:d0:0f:eb:63:8e:11:75:f5:e9:82:cd:50:99:c7:e3: 27:ad:c0:2e:7d:e2:b0:01:c2:42:5f:02:24:1d:26:a4:3f:a2: c4:59:21:fc:07:d2:fe:af:0f:72:38:d5:d6:e2:ff:ae:ca:71: eb:b3:13:f8:4e:d9:1f:47:65:fa:29:5e:ea:5d:a1:20:7d:60: 5c:fc:a6:95:ee:e9:34:ca:3c:1f:50:ed:9c:c5:be:bd:b8:04: 71:88:28:f5:4f:63:dd:ec:47:bd:7d:a2:11:58:57:7a:ae:1e: a8:52:9b:a7:25:6c:03:ea:7b:e6:7c:51:57:b1:e3:7a:06:2a: aa:46:67:b3:39:b7:48:b1:8a:88:93:0b:10:1d:8f:cf:cb:1c: fb:4e:15:02:3c:43:22:1d:38:af:04:c3:7b:c4:dc:c7:60:e5: c8:ea:93:f5:dd:b0:f8:5a:37:c4:c5:fb:92:fe:f2:72:85:43: 5e:41:3e:4e:5a:70:86:d8:05:46:d3:cf:b9:a5:7c:0b:c4:8e: 75:49:c1:33:67:4e:6b:c1:b5:a2:f3:23:59:b3:fb:ea:9f:4e: 31:00:50:db:0a:ed:48:67:38:98:fc:16:67:52:e5:21:fc:11: e7:2e:6e:7e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDAL2NMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA3 MjE0NzMxWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyhFNUYxQjQ0NzczNUZE RTQ1ODQxMkIzNDA0RDU2NDZFNjUxMThDQjYyMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA69iiPhHhy43wi+jZopQ6HgUVemUM3HSZ9v5isYjRmf5TnVPs D0wyQJN0bqmNX4mmXXJXkhfIXtsCmO0Q/bAFEWi3vWhhQkufxaJ+eEQGViPsCGBr vvu/1Sa8rJI3dg4gVydm5Gl1PLVwQriei7A0rk+90TeMml9uEvVRMV1Hfo1BsmDG AqUNK2tai9EzB8NDq02wNhSRUjzpxQOxEHlrOqmO6m+S+1kmqFFEUlBdvg17SgnX nRFiHB05/XFOGSEJIMVxs0Fc6Bxa3epa+HzfjjuTAg3hiqm0ilmvsqJ8joXUAgPS yeqspNAZ+7yqtkbheSan4pf5rTa9ucBH6hRRWQIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFOXxtEdzX95FhBKzQE1WRuZRGMtiMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzLzVmRzBSM05mM2tX RUVyTkFUVlpHNWxFWXkySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr4jEwDQYJKoZIhvcNAQELBQADggEBAFPzOiNYPmk4tQ5tLGWr4bY/NIIO DNAP62OOEXX16YLNUJnH4yetwC594rABwkJfAiQdJqQ/osRZIfwH0v6vD3I41dbi /67KceuzE/hO2R9HZfopXupdoSB9YFz8ppXu6TTKPB9Q7ZzFvr24BHGIKPVPY93s R719ohFYV3quHqhSm6clbAPqe+Z8UVex43oGKqpGZ7M5t0ixioiTCxAdj8/LHPtO FQI8QyIdOK8Ew3vE3Mdg5cjqk/XdsPhaN8TF+5L+8nKFQ15BPk5acIbYBUbTz7ml fAvEjnVJwTNnTmvBtaLzI1mz++qfTjEAUNsK7UhnOJj8FmdS5SH8Eecubn4= -----END CERTIFICATE-----Generated at Mon Dec 8 10:24:08 2025 by rpki-client