This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/OUIPPHooV1ALckClul2pfWBmLqg.roa File: OUIPPHooV1ALckClul2pfWBmLqg.roa (raw, json) Hash identifier: 6XOT8YZ8kF/EVX9D1InSsZ690VnQpd/DkePqc/YqrW4= Subject key identifier: 39:42:0F:3C:7A:28:57:50:0B:72:40:A5:BA:5D:A9:7D:60:66:2E:A8 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BCCE Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/OUIPPHooV1ALckClul2pfWBmLqg.roa Signing time: Sun 07 Dec 2025 05:47:46 +0000 ROA not before: Sun 07 Dec 2025 05:47:46 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 134762 IP address blocks: 43.227.68.0/24 maxlen: 24 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 48334 (0xbcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 7 05:47:46 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=39420F3C7A2857500B7240A5BA5DA97D60662EA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:2b:b4:58:b3:4a:cd:eb:36:fd:d0:9e:7a: 82:04:b9:ee:39:b9:bc:a7:ed:10:44:60:96:39:63: 11:de:90:1e:9e:57:5d:ee:b7:0b:67:b8:49:af:96: f5:1c:75:88:b6:09:30:f8:a1:09:d8:d3:f3:bc:34: f1:62:46:8b:9f:19:18:79:59:b9:4f:1b:2b:e1:2d: 0a:40:ae:df:1d:91:15:27:85:81:08:0d:8c:cd:e1: 73:de:ad:d7:d5:e6:5d:e6:25:45:ac:fb:cf:70:a6: 38:55:d5:4f:ce:bb:e2:cf:ee:97:13:4e:44:25:e8: 03:d8:cd:94:dd:0d:53:8c:c6:0d:76:50:d0:ab:f0: ee:07:c1:00:38:b3:1a:3a:ed:00:01:a5:4a:1d:e0: e1:ed:0b:f2:31:26:91:9e:b0:5f:e5:fa:23:b3:6d: 15:12:37:27:2b:c3:4c:15:15:05:fc:1b:ef:81:15: 86:39:05:e1:11:27:8f:c8:91:a2:dc:ee:89:09:c7: 8d:01:ce:0c:4a:7c:cf:37:6f:ce:93:02:b4:2b:18: 00:db:56:ae:fb:60:98:1a:7b:83:6e:c7:31:78:31: fa:62:fc:37:af:12:c8:7a:6d:df:bd:5b:f4:9d:48: 52:de:2c:23:9e:81:ea:3a:1c:84:21:85:28:b2:3e: ff:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:42:0F:3C:7A:28:57:50:0B:72:40:A5:BA:5D:A9:7D:60:66:2E:A8 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/OUIPPHooV1ALckClul2pfWBmLqg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.68.0/24 Signature Algorithm: sha256WithRSAEncryption 53:e8:e9:51:cf:41:03:6f:09:23:30:87:65:a2:08:9d:9b:f1: 42:e3:31:48:52:59:27:91:38:71:b8:9c:48:93:93:65:e3:5b: a4:2c:87:03:c7:9a:46:90:63:61:69:2f:e4:77:88:ff:4f:54: 4a:22:09:c6:d7:76:0e:34:1b:e4:f1:ed:72:83:40:8a:d7:49: ad:e6:0f:e4:b9:9a:3a:8c:46:c7:ef:18:26:24:06:89:15:ce: ef:9f:8b:43:ca:a1:32:2c:77:0f:9a:c0:ac:66:ce:d7:fc:a6: 1e:6e:31:c3:7e:e8:0e:a7:56:dc:c6:33:b6:e9:d5:0e:7a:03: 4f:21:82:11:08:65:41:7e:f9:c7:9b:51:a5:5d:37:9c:f4:98: 2f:ed:fe:23:0e:d6:10:99:9c:a5:aa:8a:ae:8e:99:03:65:c3: c0:e9:1d:08:e5:70:b8:2b:63:55:eb:7c:1b:8f:9c:66:ea:f9: 61:9b:8c:61:09:70:38:b7:40:84:8d:00:ca:a3:16:a6:a9:ac: 8d:b3:34:41:52:48:81:fe:d1:95:72:62:f5:cf:88:80:7e:cf: 5e:d5:c3:9a:ac:ed:d5:7e:c7:cb:2f:a2:dd:50:ee:65:c8:ce: ff:2b:01:c6:f3:70:2b:d9:47:68:48:96:f3:63:a9:b4:99:2c: e5:cd:16:17 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDALzOMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA3 MDU0NzQ2WhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEygzOTQyMEYzQzdBMjg1 NzUwMEI3MjQwQTVCQTVEQTk3RDYwNjYyRUE4MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAtk8rtFizSs3rNv3QnnqCBLnuObm8p+0QRGCWOWMR3pAenldd 7rcLZ7hJr5b1HHWItgkw+KEJ2NPzvDTxYkaLnxkYeVm5Txsr4S0KQK7fHZEVJ4WB CA2MzeFz3q3X1eZd5iVFrPvPcKY4VdVPzrviz+6XE05EJegD2M2U3Q1TjMYNdlDQ q/DuB8EAOLMaOu0AAaVKHeDh7QvyMSaRnrBf5fojs20VEjcnK8NMFRUF/BvvgRWG OQXhESePyJGi3O6JCceNAc4MSnzPN2/OkwK0KxgA21au+2CYGnuDbscxeDH6Yvw3 rxLIem3fvVv0nUhS3iwjnoHqOhyEIYUosj7/mwIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFDlCDzx6KFdQC3JApbpdqX1gZi6oMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL09VSVBQSG9vVjFB TGNrQ2x1bDJwZldCbUxxZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr40QwDQYJKoZIhvcNAQELBQADggEBAFPo6VHPQQNvCSMwh2WiCJ2b8ULj MUhSWSeROHG4nEiTk2XjW6QshwPHmkaQY2FpL+R3iP9PVEoiCcbXdg40G+Tx7XKD QIrXSa3mD+S5mjqMRsfvGCYkBokVzu+fi0PKoTIsdw+awKxmztf8ph5uMcN+6A6n VtzGM7bp1Q56A08hghEIZUF++cebUaVdN5z0mC/t/iMO1hCZnKWqiq6OmQNlw8Dp HQjlcLgrY1XrfBuPnGbq+WGbjGEJcDi3QISNAMqjFqaprI2zNEFSSIH+0ZVyYvXP iIB+z17Vw5qs7dV+x8svot1Q7mXIzv8rAcbzcCvZR2hIlvNjqbSZLOXNFhc= -----END CERTIFICATE-----Generated at Sun Dec 7 13:14:24 2025 by rpki-client