This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/TSF5lwehEQEEiBRULGutCBWul50.roa File: TSF5lwehEQEEiBRULGutCBWul50.roa (raw, json) Hash identifier: 9xJF5pTsnPOtUYApIZ0w+mgtrU5gidBp4lya4Aw58aQ= Subject key identifier: 4D:21:79:97:07:A1:11:01:04:88:14:54:2C:6B:AD:08:15:AE:97:9D Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BD8C Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/TSF5lwehEQEEiBRULGutCBWul50.roa Signing time: Sun 07 Dec 2025 21:47:31 +0000 ROA not before: Sun 07 Dec 2025 21:47:31 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 63612 IP address blocks: 43.227.80.0/20 maxlen: 20 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 48524 (0xbd8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 7 21:47:31 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=4D21799707A11101048814542C6BAD0815AE979D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:69:b5:c3:4b:9f:ab:fe:71:56:bc:0b:d5:d0: ac:fe:d9:ff:10:9b:8e:d7:ce:75:07:68:9a:04:3c: 27:1e:9f:8f:55:1f:82:0b:03:27:62:23:86:9c:e4: 20:2b:bf:9f:70:a7:21:c6:55:67:16:a9:ad:96:8d: aa:29:4e:c8:b6:87:5f:6f:96:4d:40:a0:e6:e3:e0: 6c:18:37:2e:9d:ce:26:e8:c5:c6:fa:40:ac:e0:1c: 7e:3f:0f:3b:56:91:d1:0e:49:11:8a:fd:70:4e:30: 22:68:20:db:78:0a:44:7a:dc:01:27:ac:eb:87:c8: d2:5f:97:88:6a:00:b7:40:ae:04:77:57:84:57:00: d0:55:d4:df:db:19:51:e8:8f:70:ae:67:76:cd:d6: ec:5c:a8:1c:2a:88:98:ef:a5:5f:51:14:e1:ef:55: 68:86:8f:d7:80:3f:26:cd:5b:11:12:ff:6d:b5:30: 4b:c6:4b:af:ab:73:63:60:93:cb:12:b8:c7:24:8d: da:1b:7c:cf:9c:78:b3:56:cf:77:34:3e:41:bb:18: 2d:ab:ea:a9:d3:d2:4b:92:8b:d4:1d:e1:34:c8:74: fa:cb:6a:fa:bd:80:cf:17:c8:4a:bf:0a:e4:d0:d1: e9:f3:d8:10:70:a7:5c:3c:0e:5b:a7:52:01:2f:b2: c0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:21:79:97:07:A1:11:01:04:88:14:54:2C:6B:AD:08:15:AE:97:9D X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/TSF5lwehEQEEiBRULGutCBWul50.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.80.0/20 Signature Algorithm: sha256WithRSAEncryption 75:2c:ff:4a:6f:f7:da:ef:e7:0f:b9:f9:cc:66:fb:fa:ce:23: 00:aa:02:78:93:1a:34:a6:e6:bd:67:e0:08:cf:ec:27:b0:46: e6:81:cf:6c:2e:dd:bb:f2:21:41:8d:77:8b:b8:fc:dc:d1:8d: 5d:8f:f5:50:e9:55:02:72:02:4f:07:3a:06:9d:a2:82:0e:97: f8:46:e1:00:32:4b:2a:e2:bd:bf:6e:38:c7:b0:1a:b9:24:9b: 65:e9:d1:a6:aa:d4:85:ea:95:34:34:e5:aa:bf:42:80:e9:75: 96:c3:25:d5:cf:19:3c:9d:02:77:58:91:3f:1a:36:bc:a1:61: 5b:cd:80:f3:4b:22:65:67:4e:58:01:db:35:78:56:a5:df:66: e1:8c:6d:f0:0b:59:e7:e1:af:3f:34:79:70:8c:69:21:94:d0: d6:6c:91:3c:dd:d2:4f:36:34:19:4a:07:23:4d:19:d1:59:0b: f0:ad:be:15:12:07:8a:e2:4c:64:da:4f:2b:6d:f4:cc:35:dd: 3d:b5:3d:3a:f1:ed:ba:1f:47:60:ef:9a:07:54:92:f8:3c:85: a1:10:51:1c:ca:28:6b:0f:f7:f1:3f:f0:ec:31:6f:97:40:11: f6:8b:64:78:bc:a9:5a:33:5b:be:97:a3:a1:cf:04:6c:f2:10: 2c:c8:4f:8c -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDAL2MMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA3 MjE0NzMxWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg0RDIxNzk5NzA3QTEx MTAxMDQ4ODE0NTQyQzZCQUQwODE1QUU5NzlEMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAv2m1w0ufq/5xVrwL1dCs/tn/EJuO1851B2iaBDwnHp+PVR+C CwMnYiOGnOQgK7+fcKchxlVnFqmtlo2qKU7Itodfb5ZNQKDm4+BsGDcunc4m6MXG +kCs4Bx+Pw87VpHRDkkRiv1wTjAiaCDbeApEetwBJ6zrh8jSX5eIagC3QK4Ed1eE VwDQVdTf2xlR6I9wrmd2zdbsXKgcKoiY76VfURTh71Voho/XgD8mzVsREv9ttTBL xkuvq3NjYJPLErjHJI3aG3zPnHizVs93ND5Buxgtq+qp09JLkovUHeE0yHT6y2r6 vYDPF8hKvwrk0NHp89gQcKdcPA5bp1IBL7LAIwIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFE0heZcHoREBBIgUVCxrrQgVrpedMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL1RTRjVsd2VoRVFF RWlCUlVMR3V0Q0JXdWw1MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQr41AwDQYJKoZIhvcNAQELBQADggEBAHUs/0pv99rv5w+5+cxm+/rOIwCq AniTGjSm5r1n4AjP7CewRuaBz2wu3bvyIUGNd4u4/NzRjV2P9VDpVQJyAk8HOgad ooIOl/hG4QAySyrivb9uOMewGrkkm2Xp0aaq1IXqlTQ05aq/QoDpdZbDJdXPGTyd AndYkT8aNryhYVvNgPNLImVnTlgB2zV4VqXfZuGMbfALWefhrz80eXCMaSGU0NZs kTzd0k82NBlKByNNGdFZC/CtvhUSB4riTGTaTytt9Mw13T21PTrx7bofR2DvmgdU kvg8haEQURzKKGsP9/E/8Owxb5dAEfaLZHi8qVozW76Xo6HPBGzyECzIT4w= -----END CERTIFICATE-----Generated at Mon Dec 8 10:24:07 2025 by rpki-client