This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/mGVV9a_5bDoxb4pbPzTI4neeTZ4.roa File: mGVV9a_5bDoxb4pbPzTI4neeTZ4.roa (raw, json) Hash identifier: bDuO5aLNAwYydR5KSEXfndRDOpYdWm8Mt7OXvAdg+3Q= Subject key identifier: 98:65:55:F5:AF:F9:6C:3A:31:6F:8A:5B:3F:34:C8:E2:77:9E:4D:9E Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: A4FF Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/mGVV9a_5bDoxb4pbPzTI4neeTZ4.roa Signing time: Sun 25 Jan 2026 12:28:08 +0000 ROA not before: Sun 25 Jan 2026 12:28:08 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 4812 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 42239 (0xa4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jan 25 12:28:08 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=986555F5AFF96C3A316F8A5B3F34C8E2779E4D9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:13:37:3a:93:db:6e:2f:fb:7f:06:25:1a: 50:95:a5:57:63:9d:c3:ec:e4:fa:8d:09:96:e8:60: 1a:a4:35:a8:de:ab:56:39:ce:0c:b0:e4:6b:3c:c6: 4a:52:cb:83:02:fb:00:17:8b:8b:5d:70:a3:c7:d4: c1:b8:50:b6:37:e6:74:22:b9:79:e1:21:62:e5:f0: ee:52:2b:d4:3f:5c:07:48:85:d4:27:27:e2:57:10: 79:03:9b:97:e1:8d:bf:5f:5a:8a:fb:35:a0:a0:e6: 27:e4:7a:a6:bf:1a:f2:7d:be:ad:88:f8:15:ef:9a: b6:57:b9:1d:2e:37:ef:9c:3b:dd:dc:4a:76:0a:a9: 38:a7:24:af:53:91:56:29:4d:f6:c6:29:8f:58:ac: 42:a6:61:2e:e6:1b:43:a1:bf:27:0a:39:69:82:c9: 4a:35:79:c4:88:a8:49:a3:d7:f9:05:c2:9a:33:eb: 6b:22:4e:7a:8f:91:07:b4:14:50:77:b8:56:e8:49: d0:f3:a5:ac:88:ea:0e:ae:bd:97:31:1c:9a:fa:ae: 54:13:be:58:fe:ed:09:f6:64:69:aa:fb:4d:62:db: 9f:cc:6b:d8:eb:e9:5b:11:0a:6c:5e:7f:49:dd:1a: aa:5f:d2:e3:0d:e9:04:ef:da:94:bd:2a:80:ad:a6: f0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:65:55:F5:AF:F9:6C:3A:31:6F:8A:5B:3F:34:C8:E2:77:9E:4D:9E X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/mGVV9a_5bDoxb4pbPzTI4neeTZ4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption c2:66:f0:52:63:ee:2d:9b:53:d1:ad:9f:b4:b0:e8:f0:86:b0: 60:3e:a3:b6:06:7d:99:bd:df:d9:66:f0:fb:28:31:03:44:ae: 87:64:c5:24:f2:25:6e:c5:fe:29:ea:46:1c:65:00:a9:43:3d: 96:fd:3f:c3:30:a4:6e:93:68:71:6f:b8:cc:33:f9:b6:38:59: 1b:8f:d6:30:d0:6f:38:42:84:81:db:78:92:d1:e9:5f:89:d8: b8:66:4f:28:65:b1:89:cf:23:ca:00:15:2d:75:c6:14:5b:41: 2d:1b:e1:30:68:56:37:b3:1a:b0:4b:04:a2:0d:c2:f6:d8:5d: 4e:4f:b7:c6:a7:74:e9:72:65:ab:b6:7f:62:db:d1:60:db:f1: ac:35:08:98:b7:f3:ad:f2:67:dc:47:3d:be:7f:32:6a:3f:a0: b8:d5:70:ed:30:19:ed:a3:15:ec:16:f0:db:1c:7a:99:50:fb: 3c:d2:16:d6:33:2d:63:f3:b6:30:1f:e6:2b:4a:fb:53:5a:f7: 7f:58:a3:d0:34:35:23:92:ef:04:9e:d0:00:52:1e:2d:5e:bb: 2f:48:9b:42:ed:40:3e:87:80:82:49:e4:0e:db:e2:3d:7c:20: 0b:98:53:d3:29:e2:bb:19:69:18:5f:9c:28:75:19:32:17:e0: 77:2c:1a:bf -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIDAKT/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKEQy QUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUzNTMwHhcNMjYwMTI1 MTIyODA4WhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg5ODY1NTVGNUFGRjk2 QzNBMzE2RjhBNUIzRjM0QzhFMjc3OUU0RDlFMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAs/YTNzqT224v+38GJRpQlaVXY53D7OT6jQmW6GAapDWo3qtW Oc4MsORrPMZKUsuDAvsAF4uLXXCjx9TBuFC2N+Z0Irl54SFi5fDuUivUP1wHSIXU JyfiVxB5A5uX4Y2/X1qK+zWgoOYn5Hqmvxryfb6tiPgV75q2V7kdLjfvnDvd3Ep2 Cqk4pySvU5FWKU32ximPWKxCpmEu5htDob8nCjlpgslKNXnEiKhJo9f5BcKaM+tr Ik56j5EHtBRQd7hW6EnQ86WsiOoOrr2XMRya+q5UE75Y/u0J9mRpqvtNYtufzGvY 6+lbEQpsXn9J3RqqX9LjDekE79qUvSqArabwhwIDAQABo4IB9DCCAfAwHQYDVR0O BBYEFJhlVfWv+Ww6MW+KWz80yOJ3nk2eMB8GA1UdIwQYMBaAFNKrbJtuFlM0wDLQ UdX8fRVH5ONTMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMHF0c20yNFdVelRBTXRCUjFmeDlGVWZrNDFNLmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDk4L21HVlY5YV81YkRv eGI0cGJQelRJNG5lZVRaNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkB5tAMA0GCSqGSIb3DQEBCwUAA4IBAQDCZvBSY+4tm1PRrZ+0sOjwhrBg PqO2Bn2Zvd/ZZvD7KDEDRK6HZMUk8iVuxf4p6kYcZQCpQz2W/T/DMKRuk2hxb7jM M/m2OFkbj9Yw0G84QoSB23iS0elfidi4Zk8oZbGJzyPKABUtdcYUW0EtG+EwaFY3 sxqwSwSiDcL22F1OT7fGp3TpcmWrtn9i29Fg2/GsNQiYt/Ot8mfcRz2+fzJqP6C4 1XDtMBntoxXsFvDbHHqZUPs80hbWMy1j87YwH+YrSvtTWvd/WKPQNDUjku8EntAA Uh4tXrsvSJtC7UA+h4CCSeQO2+I9fCALmFPTKeK7GWkYX5wodRkyF+B3LBq/ -----END CERTIFICATE-----Generated at Sun Jan 25 19:35:52 2026 by rpki-client