This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/vzOi7S4__kXXgka5-kLNt2Syij8.roa File: vzOi7S4__kXXgka5-kLNt2Syij8.roa (raw, json) Hash identifier: LPChyv9VQ/sEiLXrXgt4Do6b+goQXpxOegVWnBGpVMU= Subject key identifier: BF:33:A2:ED:2E:3F:FE:45:D7:82:46:B9:FA:42:CD:B7:64:B2:8A:3F Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: A4EC Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/vzOi7S4__kXXgka5-kLNt2Syij8.roa Signing time: Sun 25 Jan 2026 09:28:10 +0000 ROA not before: Sun 25 Jan 2026 09:28:10 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 42220 (0xa4ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Jan 25 09:28:10 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=BF33A2ED2E3FFE45D78246B9FA42CDB764B28A3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e0:1b:64:04:90:e1:06:e9:51:55:e4:cc:f8: 9d:f5:b6:a8:fc:22:3d:cc:3d:c9:d8:7d:08:6b:a8: c6:78:33:28:ec:fb:20:9c:37:87:91:3a:2d:de:b2: ce:3c:e7:a1:40:3b:54:98:ed:d5:70:18:32:16:6d: 18:e3:f5:1a:20:52:18:ab:16:cd:18:94:b8:7b:a6: d6:49:f0:d1:5a:36:50:88:86:dc:16:07:7f:17:0c: b9:6f:e9:56:2c:40:1f:7d:4f:78:9b:5c:82:06:6d: a4:dc:e6:97:cc:20:39:1a:18:e4:f0:aa:bd:64:99: 6b:0e:2e:6b:dd:e9:5b:a7:79:7d:0a:c1:69:cf:fd: 51:46:e8:f3:8c:e5:24:6f:95:16:41:f6:2e:d3:3d: 2f:19:ab:49:a5:4b:5e:83:ee:76:30:44:7c:d2:5a: 17:01:9e:dd:8b:37:8b:9d:7d:ff:ea:bc:1d:b9:d0: ff:fe:43:1f:80:4b:ee:3a:35:3d:39:44:41:ef:a8: 10:5b:03:81:0a:f1:ab:8d:f1:dd:d7:2e:8f:a6:cd: f3:ee:02:0a:d0:37:d5:a7:e9:32:2f:e8:46:74:d7: f3:c2:a8:22:2a:3f:e2:15:fa:c3:3b:1c:35:46:f7: 1b:81:77:e7:f0:ac:a7:60:88:bb:16:1b:00:5d:a8: 3a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:33:A2:ED:2E:3F:FE:45:D7:82:46:B9:FA:42:CD:B7:64:B2:8A:3F X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/vzOi7S4__kXXgka5-kLNt2Syij8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption b7:01:21:3c:0b:a5:7d:68:e3:f2:63:33:0b:20:8d:36:a6:80: 57:b2:f3:54:25:2c:fd:9d:4d:86:fe:52:3d:7c:1f:23:06:19: 97:ca:4c:9f:cc:85:66:c0:14:a5:44:47:dc:97:9e:38:23:97: 59:9c:4c:03:10:bb:6c:98:bc:79:ba:02:e5:90:b8:a5:98:61: ac:d7:34:2e:f2:52:03:c5:9b:fb:2d:b4:ee:eb:01:28:25:57: bf:5d:e7:1d:da:08:b8:58:24:60:62:75:eb:02:02:0f:0e:d9: 37:ca:92:c7:e7:0b:66:85:7a:e5:5e:39:a4:29:7a:8a:0b:a9: 1b:f8:ac:85:c5:01:0b:91:81:66:ad:67:19:c2:5c:a4:4a:52: 66:be:aa:e1:28:4c:98:90:ac:a8:2f:29:44:2d:c4:d0:c9:f7: 28:ed:62:e3:95:2e:01:ab:0d:b1:1b:8a:91:ed:75:e7:84:96: f5:76:69:f1:93:1e:53:56:00:7c:51:cf:4c:b2:9b:29:bc:5c: 4b:b4:f4:c1:ee:ed:26:1d:18:a9:39:75:69:b6:af:7a:8e:17: 9b:38:75:56:55:92:93:d8:af:9e:2b:3e:5f:98:5f:73:6d:9c: 4a:d3:d7:ad:f5:47:01:61:1e:fa:55:d2:f5:4a:95:8f:d2:97: c4:f6:fd:f7 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIDAKTsMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKEQy QUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUzNTMwHhcNMjYwMTI1 MDkyODEwWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyhCRjMzQTJFRDJFM0ZG RTQ1RDc4MjQ2QjlGQTQyQ0RCNzY0QjI4QTNGMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA7eAbZASQ4QbpUVXkzPid9bao/CI9zD3J2H0Ia6jGeDMo7Psg nDeHkTot3rLOPOehQDtUmO3VcBgyFm0Y4/UaIFIYqxbNGJS4e6bWSfDRWjZQiIbc Fgd/Fwy5b+lWLEAffU94m1yCBm2k3OaXzCA5Ghjk8Kq9ZJlrDi5r3elbp3l9CsFp z/1RRujzjOUkb5UWQfYu0z0vGatJpUteg+52MER80loXAZ7dizeLnX3/6rwdudD/ /kMfgEvuOjU9OURB76gQWwOBCvGrjfHd1y6Pps3z7gIK0DfVp+kyL+hGdNfzwqgi Kj/iFfrDOxw1RvcbgXfn8KynYIi7FhsAXag65QIDAQABo4IB9DCCAfAwHQYDVR0O BBYEFL8zou0uP/5F14JGufpCzbdksoo/MB8GA1UdIwQYMBaAFNKrbJtuFlM0wDLQ UdX8fRVH5ONTMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMHF0c20yNFdVelRBTXRCUjFmeDlGVWZrNDFNLmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDk4L3Z6T2k3UzRfX2tY WGdrYTUta0xOdDJTeWlqOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkB5tAMA0GCSqGSIb3DQEBCwUAA4IBAQC3ASE8C6V9aOPyYzMLII02poBX svNUJSz9nU2G/lI9fB8jBhmXykyfzIVmwBSlREfcl544I5dZnEwDELtsmLx5ugLl kLilmGGs1zQu8lIDxZv7LbTu6wEoJVe/Xecd2gi4WCRgYnXrAgIPDtk3ypLH5wtm hXrlXjmkKXqKC6kb+KyFxQELkYFmrWcZwlykSlJmvqrhKEyYkKyoLylELcTQyfco 7WLjlS4Bqw2xG4qR7XXnhJb1dmnxkx5TVgB8Uc9MspspvFxLtPTB7u0mHRipOXVp tq96jhebOHVWVZKT2K+eKz5fmF9zbZxK09et9UcBYR76VdL1SpWP0pfE9v33 -----END CERTIFICATE-----Generated at Sun Jan 25 15:12:31 2026 by rpki-client