This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/bf0L-Qn4gnpfzdiQkIEiHxLS1tY.roa File: bf0L-Qn4gnpfzdiQkIEiHxLS1tY.roa (raw, json) Hash identifier: urBckFDs0ecnd3BxkQrcOXqp9//yi5PCqgtHxH6GYFc= Subject key identifier: 6D:FD:0B:F9:09:F8:82:7A:5F:CD:D8:90:90:81:22:1F:12:D2:D6:D6 Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Certificate serial: 53DA Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/bf0L-Qn4gnpfzdiQkIEiHxLS1tY.roa Signing time: Sun 25 Jan 2026 05:57:39 +0000 ROA not before: Sun 25 Jan 2026 05:57:39 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 9391 IP address blocks: 124.29.0.0/17 maxlen: 17 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 21466 (0x53da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Validity Not Before: Jan 25 05:57:39 2026 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6DFD0BF909F8827A5FCDD8909081221F12D2D6D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5e:7a:c4:35:7c:2e:01:f0:8e:e5:ff:0c:15: 1e:2b:f4:15:51:4f:4a:a4:af:5d:f3:12:0b:34:91: f2:8e:86:38:45:2d:5d:d9:19:30:fe:7b:51:16:92: 25:55:83:af:b6:fd:9c:31:d3:13:af:df:02:d7:c6: 87:3f:5f:7d:da:cf:9c:bb:20:d6:d6:c8:58:c2:c6: a8:18:10:59:d0:40:2b:40:fa:10:46:f9:1a:44:29: 23:9d:bf:c5:b9:fa:5f:e8:73:ab:a2:ca:14:0a:7c: 43:b1:c8:3e:95:57:6a:a7:04:e0:32:37:80:ba:ec: d1:70:e5:3d:fc:af:8d:9f:85:d6:70:c8:9a:e1:85: 90:ee:2b:3f:de:1c:85:3f:58:d1:f6:7d:d4:8d:75: c5:ef:49:23:d9:5d:75:b2:b3:cb:3e:76:06:ff:bb: de:c7:c4:67:8d:32:0e:30:a9:6e:c0:c8:fc:c4:37: 2e:c2:42:e5:ec:d5:00:13:bf:01:cf:d4:c1:2a:a4: 19:0e:04:45:ff:db:a9:89:2d:9f:f3:b5:a6:f4:b5: e2:8f:e9:f3:9b:49:af:16:12:2c:02:04:33:44:7b: 96:96:84:77:dc:4b:5a:bb:06:ef:ce:1a:6a:be:cc: 6e:97:ab:d9:c1:b3:d4:45:e8:e5:fa:6a:63:51:aa: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FD:0B:F9:09:F8:82:7A:5F:CD:D8:90:90:81:22:1F:12:D2:D6:D6 X509v3 Authority Key Identifier: keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/bf0L-Qn4gnpfzdiQkIEiHxLS1tY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.29.0.0/17 Signature Algorithm: sha256WithRSAEncryption 29:82:83:ad:a6:42:b4:a5:a8:bb:71:54:59:6e:de:b6:19:58: f2:6a:b6:b9:6d:49:4d:ba:27:bb:c7:a0:43:3b:09:10:4e:51: 28:97:6e:11:ad:7d:d8:4f:5a:c9:42:2a:8a:7c:a3:8e:af:d3: f4:67:74:8c:bc:31:21:1b:70:84:1b:3a:28:5b:31:c8:a3:2b: 6a:1e:03:e3:74:6c:0d:c1:6b:a3:e5:6a:c8:45:7e:60:0d:fb: 85:fc:e4:52:44:32:c8:4d:52:92:16:41:b1:9b:9f:00:3e:92: 53:e1:c5:63:bc:f7:f3:ca:47:9a:a3:69:ce:d5:66:64:fa:7c: a6:93:9d:ca:d2:c9:86:79:92:c1:da:7a:54:f6:74:74:10:b6: b6:98:56:78:68:4e:23:ec:67:a0:fe:88:b9:9f:a4:bf:77:25: b9:62:20:72:13:07:38:7e:8c:0e:d4:62:cc:9b:c3:f8:da:9a: 54:f4:5d:af:0b:cd:54:ba:ea:aa:90:32:c0:ea:85:c5:6a:b9: 1a:15:5d:47:56:74:80:cc:32:7e:91:01:af:75:0f:d5:b7:a9: f5:ac:53:f2:25:72:cf:64:c3:1a:cd:3d:79:3e:80:8f:b2:65: 3b:06:bd:2e:5b:e9:1d:5c:35:4d:b3:d7:6a:20:10:f1:42:26: e2:eb:9e:f5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICU9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkUy NjZEQzNFQUQ4MEVCMjVENDk4NThBNjREQzFFRjFDOEExQjk0MjAeFw0yNjAxMjUw NTU3MzlaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDZERkQwQkY5MDlGODgy N0E1RkNERDg5MDkwODEyMjFGMTJEMkQ2RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVXnrENXwuAfCO5f8MFR4r9BVRT0qkr13zEgs0kfKOhjhFLV3Z GTD+e1EWkiVVg6+2/Zwx0xOv3wLXxoc/X33az5y7INbWyFjCxqgYEFnQQCtA+hBG +RpEKSOdv8W5+l/oc6uiyhQKfEOxyD6VV2qnBOAyN4C67NFw5T38r42fhdZwyJrh hZDuKz/eHIU/WNH2fdSNdcXvSSPZXXWys8s+dgb/u97HxGeNMg4wqW7AyPzENy7C QuXs1QATvwHP1MEqpBkOBEX/26mJLZ/ztab0teKP6fObSa8WEiwCBDNEe5aWhHfc S1q7Bu/OGmq+zG6Xq9nBs9RF6OX6amNRqmfdAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUbf0L+Qn4gnpfzdiQkIEiHxLS1tYwHwYDVR0jBBgwFoAULiZtw+rYDrJdSYWK ZNwe8cihuUIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzYv TGladHctcllEckpkU1lXS1pOd2U4Y2lodVVJLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MaVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9iZjBMLVFuNGducGZ6ZGlR a0lFaUh4TFMxdFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH fB0AMA0GCSqGSIb3DQEBCwUAA4IBAQApgoOtpkK0pai7cVRZbt62GVjyara5bUlN uie7x6BDOwkQTlEol24RrX3YT1rJQiqKfKOOr9P0Z3SMvDEhG3CEGzooWzHIoytq HgPjdGwNwWuj5WrIRX5gDfuF/ORSRDLITVKSFkGxm58APpJT4cVjvPfzykeao2nO 1WZk+nymk53K0smGeZLB2npU9nR0ELa2mFZ4aE4j7Geg/oi5n6S/dyW5YiByEwc4 fowO1GLMm8P42ppU9F2vC81UuuqqkDLA6oXFarkaFV1HVnSAzDJ+kQGvdQ/Vt6n1 rFPyJXLPZMMazT15PoCPsmU7Br0uW+kdXDVNs9dqIBDxQibi6571 -----END CERTIFICATE-----Generated at Sun Jan 25 10:37:48 2026 by rpki-client