This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/NzIHXK7WTEQ3pwMlU75yil77CeA.roa File: NzIHXK7WTEQ3pwMlU75yil77CeA.roa (raw, json) Hash identifier: 5XiUlbHyeUKh6eBOsSCGAH6irHZ5fzvoMltYbYMqwlY= Subject key identifier: 37:32:07:5C:AE:D6:4C:44:37:A7:03:25:53:BE:72:8A:5E:FB:09:E0 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: F42C Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/NzIHXK7WTEQ3pwMlU75yil77CeA.roa Signing time: Sun 25 Jan 2026 10:59:20 +0000 ROA not before: Sun 25 Jan 2026 10:59:20 +0000 ROA not after: Sat 09 Jan 2027 08:23:18 +0000 asID: 134762 IP address blocks: 43.226.72.0/22 maxlen: 22 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 62508 (0xf42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Jan 25 10:59:20 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=3732075CAED64C4437A7032553BE728A5EFB09E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:60:44:af:49:de:bf:f7:a4:89:81:5d:45: 27:ed:b6:bb:d8:26:80:0d:9c:6e:7e:5b:8d:7d:78: a9:d8:6f:4b:71:eb:08:08:97:30:a9:79:56:03:48: 92:77:8b:fb:a4:01:c7:40:39:e3:a1:ac:ae:0d:41: ed:71:b7:1c:07:8a:b0:e0:89:14:e8:52:78:92:64: f1:8e:3e:86:f6:43:96:a3:15:b2:e5:da:87:2f:7f: 19:28:8c:dc:c9:5d:c0:78:84:39:c3:e3:94:40:e4: 40:16:95:5b:a7:75:d2:96:c3:9a:0d:e3:fb:c1:5b: fa:c9:6a:43:d4:73:71:f8:ba:1f:09:e3:f5:a1:d0: 69:22:5e:53:eb:79:6d:db:cc:94:3e:58:6b:0e:55: 1a:84:2d:ae:bd:8e:00:d8:56:cd:ab:7b:a1:09:75: 55:81:77:b4:50:27:e4:a5:c6:49:8e:ad:a7:1f:5b: ee:ea:35:22:86:3e:2f:6b:fa:60:e9:7a:07:7e:c5: 17:c1:fa:59:c6:d3:8f:f7:e7:ec:28:2f:e9:32:69: 06:a3:f3:27:5c:d1:3a:c5:b3:4d:a6:01:b3:5d:84: 32:3e:9b:6f:e7:b4:8c:43:6a:a0:bd:36:9c:5b:1b: aa:6b:d7:eb:a4:6c:3d:da:ac:33:75:47:e1:b7:c2: 4e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:32:07:5C:AE:D6:4C:44:37:A7:03:25:53:BE:72:8A:5E:FB:09:E0 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/NzIHXK7WTEQ3pwMlU75yil77CeA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.226.72.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:09:b2:b3:31:b7:1b:73:2e:66:33:bc:ee:17:0c:25:0b:bb: 4f:9b:56:fb:62:a7:22:ae:5a:66:85:50:72:39:1f:4d:42:1c: 56:b5:4c:b6:f8:18:6a:d8:ce:f2:c2:80:fb:fe:05:3c:05:ff: 24:8f:98:a2:6c:46:7e:80:e0:bf:33:6e:8c:ab:03:08:35:b4: a2:4b:50:01:bf:ec:42:07:4a:1b:63:5d:44:d7:a6:f6:0f:d3: 63:4e:6d:7d:ab:2d:18:dc:50:11:09:ee:49:7d:1a:c7:7f:9c: f2:67:32:6a:8f:58:e5:89:f1:c4:57:59:22:dc:04:ad:61:30: 59:43:5a:42:7a:5a:4a:47:fa:58:21:14:c7:98:5f:17:2c:e2: fd:d4:d5:5d:5e:ff:50:37:4b:3a:9c:37:e5:db:c5:2c:96:8b: d6:1c:76:a4:aa:c7:b3:67:b8:0f:b3:f9:fa:19:37:ca:c8:44: 35:50:83:d6:2c:52:d3:b8:48:89:3e:c0:ef:29:e8:1a:54:93: af:c1:29:f1:2c:79:75:53:5a:2d:54:e3:d5:19:62:cb:17:e2: 57:57:23:ee:8b:bc:f0:d9:4c:3b:9e:2e:29:46:88:42:87:74: c6:4e:f5:c0:df:89:54:19:ac:90:8e:d5:cb:18:96:4c:8f:06: 12:e8:a2:40 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDAPQsMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjYwMTI1 MTA1OTIwWhcNMjcwMTA5MDgyMzE4WjAzMTEwLwYDVQQDEygzNzMyMDc1Q0FFRDY0 QzQ0MzdBNzAzMjU1M0JFNzI4QTVFRkIwOUUwMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAzthgRK9J3r/3pImBXUUn7ba72CaADZxufluNfXip2G9LcesI CJcwqXlWA0iSd4v7pAHHQDnjoayuDUHtcbccB4qw4IkU6FJ4kmTxjj6G9kOWoxWy 5dqHL38ZKIzcyV3AeIQ5w+OUQORAFpVbp3XSlsOaDeP7wVv6yWpD1HNx+LofCeP1 odBpIl5T63lt28yUPlhrDlUahC2uvY4A2FbNq3uhCXVVgXe0UCfkpcZJjq2nH1vu 6jUihj4va/pg6XoHfsUXwfpZxtOP9+fsKC/pMmkGo/MnXNE6xbNNpgGzXYQyPptv 57SMQ2qgvTacWxuqa9frpGw92qwzdUfht8JOBQIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFDcyB1yu1kxEN6cDJVO+cope+wngMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL056SUhYSzdXVEVR M3B3TWxVNzV5aWw3N0NlQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr4kgwDQYJKoZIhvcNAQELBQADggEBAEwJsrMxtxtzLmYzvO4XDCULu0+b VvtipyKuWmaFUHI5H01CHFa1TLb4GGrYzvLCgPv+BTwF/ySPmKJsRn6A4L8zboyr Awg1tKJLUAG/7EIHShtjXUTXpvYP02NObX2rLRjcUBEJ7kl9Gsd/nPJnMmqPWOWJ 8cRXWSLcBK1hMFlDWkJ6WkpH+lghFMeYXxcs4v3U1V1e/1A3SzqcN+XbxSyWi9Yc dqSqx7NnuA+z+foZN8rIRDVQg9YsUtO4SIk+wO8p6BpUk6/BKfEseXVTWi1U49UZ YssX4ldXI+6LvPDZTDueLilGiEKHdMZO9cDfiVQZrJCO1csYlkyPBhLookA= -----END CERTIFICATE-----Generated at Sun Jan 25 15:47:38 2026 by rpki-client