This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/AVEZnwqClUnZdIT4CZUP2RBpDMI.roa File: AVEZnwqClUnZdIT4CZUP2RBpDMI.roa (raw, json) Hash identifier: H5W9/Qx5qxqoGBHX90A4i0NNc5tAxihkwvnRzsM7850= Subject key identifier: 01:51:19:9F:0A:82:95:49:D9:74:84:F8:09:95:0F:D9:10:69:0C:C2 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 6212 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/AVEZnwqClUnZdIT4CZUP2RBpDMI.roa Signing time: Mon 19 May 2025 14:40:52 +0000 ROA not before: Mon 19 May 2025 14:40:52 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 43.239.48.0/22 maxlen: 22 43.246.0.0/22 maxlen: 22 43.246.4.0/22 maxlen: 22 43.246.12.0/22 maxlen: 22 43.246.16.0/22 maxlen: 22 43.246.20.0/22 maxlen: 22 43.246.24.0/22 maxlen: 22 43.246.28.0/22 maxlen: 22 43.246.32.0/22 maxlen: 22 43.246.36.0/22 maxlen: 22 43.246.40.0/22 maxlen: 22 43.246.44.0/22 maxlen: 22 43.246.52.0/22 maxlen: 22 43.246.56.0/22 maxlen: 22 43.246.60.0/22 maxlen: 22 43.246.64.0/22 maxlen: 22 43.246.68.0/22 maxlen: 22 43.246.72.0/22 maxlen: 22 43.246.76.0/22 maxlen: 22 43.246.80.0/22 maxlen: 22 43.246.84.0/22 maxlen: 22 43.246.88.0/22 maxlen: 22 43.246.92.0/22 maxlen: 22 43.246.96.0/22 maxlen: 22 103.35.48.0/22 maxlen: 22 103.236.0.0/22 maxlen: 22 103.236.4.0/22 maxlen: 22 103.236.8.0/22 maxlen: 22 103.236.12.0/22 maxlen: 22 103.236.16.0/22 maxlen: 22 103.236.20.0/22 maxlen: 22 103.236.28.0/22 maxlen: 22 103.236.32.0/22 maxlen: 22 103.236.36.0/22 maxlen: 22 103.236.40.0/22 maxlen: 22 103.236.44.0/22 maxlen: 22 103.236.48.0/22 maxlen: 22 103.236.52.0/22 maxlen: 22 103.236.56.0/22 maxlen: 22 103.236.60.0/22 maxlen: 22 103.236.64.0/22 maxlen: 22 103.236.68.0/22 maxlen: 22 103.236.72.0/22 maxlen: 22 103.236.76.0/22 maxlen: 22 103.236.80.0/22 maxlen: 22 103.236.84.0/22 maxlen: 22 103.236.88.0/22 maxlen: 22 103.236.92.0/22 maxlen: 22 103.236.96.0/22 maxlen: 22 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 25106 (0x6212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: May 19 14:40:52 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0151199F0A829549D97484F809950FD910690CC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:cb:99:94:69:48:3b:e4:8a:f7:18:a5:cc: b7:39:c6:46:2d:f4:54:63:66:5d:71:ad:9f:58:f4: 81:c1:3a:ac:e2:ae:7e:67:99:5d:ef:08:96:46:46: 60:90:a4:d1:a8:f7:a3:4b:f2:42:a2:10:e7:70:b5: 32:8d:66:3d:ab:c7:fb:24:dc:3a:6a:7f:22:09:78: 1d:9a:63:da:af:22:b9:1e:34:0f:3b:04:18:28:73: c7:40:1e:11:a7:06:43:a6:44:a2:80:b5:b5:fb:b6: 64:d3:83:d6:6a:ce:49:8b:37:c3:0d:2e:82:8e:5b: 83:60:9f:eb:af:33:c3:c2:2d:40:c8:c4:c5:12:af: 1a:31:8d:3b:21:fc:bc:24:9b:5f:2e:40:7b:ca:b8: d3:c6:1b:03:e0:51:b1:d5:6d:ae:78:e7:2b:8a:bf: 07:2e:b3:f7:01:99:ee:ba:79:d0:cc:c2:76:69:be: 6c:93:e1:4e:e1:4a:c2:87:31:3c:16:d2:d3:19:a2: 17:3d:61:d6:67:e9:8d:fa:b6:16:41:0d:2c:0e:54: 9b:95:1e:c6:e6:d2:6c:c3:33:e3:d5:7c:18:67:91: e3:df:78:1f:0d:71:ee:28:c9:af:2c:73:9b:14:d1: a5:1d:8f:53:d1:08:8d:1e:a5:1d:81:70:96:24:d0: 0e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:51:19:9F:0A:82:95:49:D9:74:84:F8:09:95:0F:D9:10:69:0C:C2 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/AVEZnwqClUnZdIT4CZUP2RBpDMI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.239.48.0/22 43.246.0.0/21 43.246.12.0-43.246.47.255 43.246.52.0-43.246.99.255 103.35.48.0/22 103.236.0.0-103.236.23.255 103.236.28.0-103.236.99.255 Signature Algorithm: sha256WithRSAEncryption 54:cb:d5:f3:30:fd:b7:64:7c:80:0f:e5:6e:3a:67:ff:12:13: a3:9b:69:b5:f8:bf:26:c5:74:c7:af:89:e6:b1:e7:0b:db:85: 03:81:9d:98:82:07:7a:73:c9:4c:0d:1b:f3:67:f9:a2:b2:1e: 78:22:47:18:21:53:91:15:b9:8a:e8:fc:0a:b7:49:a4:0d:a7: 70:7a:e5:0d:be:84:75:9e:52:d7:37:6c:22:f0:0b:74:90:30: f5:39:44:48:5c:e9:f2:2f:d9:4e:2f:f3:c3:0c:03:3d:bc:6e: d7:bb:1e:8d:2e:fe:76:40:75:7b:52:17:b3:5d:33:cd:3a:40: a9:34:e4:3a:b4:4f:a5:9e:9f:39:cc:9e:41:f9:ad:c0:23:30: 58:05:7f:23:32:fc:7c:25:fa:56:55:da:62:20:41:8c:af:49: 1d:1c:22:12:ab:7d:02:e5:28:ac:fd:9a:61:d1:e0:80:17:36: 6b:f4:a1:99:1f:1f:4f:e6:0e:bd:c6:9c:61:f0:15:2e:62:2b: 30:04:91:a2:b7:00:8e:69:95:07:ec:5b:61:9b:b6:66:ca:c4: 72:ec:ac:fe:b1:54:f8:f9:7a:80:45:71:ef:a7:30:a9:63:dc: c7:c9:50:b5:bd:1b:2b:ff:c7:88:a7:04:da:43:08:ff:7b:ee: 08:fa:f4:92 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgICYhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA1MTkx NDQwNTJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDAxNTExOTlGMEE4Mjk1 NDlEOTc0ODRGODA5OTUwRkQ5MTA2OTBDQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFeMuZlGlIO+SK9xilzLc5xkYt9FRjZl1xrZ9Y9IHBOqzirn5n mV3vCJZGRmCQpNGo96NL8kKiEOdwtTKNZj2rx/sk3DpqfyIJeB2aY9qvIrkeNA87 BBgoc8dAHhGnBkOmRKKAtbX7tmTTg9ZqzkmLN8MNLoKOW4Ngn+uvM8PCLUDIxMUS rxoxjTsh/Lwkm18uQHvKuNPGGwPgUbHVba545yuKvwcus/cBme66edDMwnZpvmyT 4U7hSsKHMTwW0tMZohc9YdZn6Y36thZBDSwOVJuVHsbm0mzDM+PVfBhnkePfeB8N ce4oya8sc5sU0aUdj1PRCI0epR2BcJYk0A5bAgMBAAGjggI0MIICMDAdBgNVHQ4E FgQUAVEZnwqClUnZdIT4CZUP2RBpDMIwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L0FWRVpud3FDbFVuWmRJ VDRDWlVQMlJCcERNSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwYgYIKwYBBQUHAQcBAf8EUzBRME8EAgABMEkD BAIr7zADBAMr9gAwDAMEAiv2DAMEBCv2IDAMAwQCK/Y0AwQCK/ZgAwQCZyMwMAsD AwJn7AMEA2fsEDAMAwQCZ+wcAwQCZ+xgMA0GCSqGSIb3DQEBCwUAA4IBAQBUy9Xz MP23ZHyAD+VuOmf/EhOjm2m1+L8mxXTHr4nmsecL24UDgZ2Yggd6c8lMDRvzZ/mi sh54IkcYIVORFbmK6PwKt0mkDadweuUNvoR1nlLXN2wi8At0kDD1OURIXOnyL9lO L/PDDAM9vG7Xux6NLv52QHV7UhezXTPNOkCpNOQ6tE+lnp85zJ5B+a3AIzBYBX8j Mvx8JfpWVdpiIEGMr0kdHCISq30C5Sis/Zph0eCAFzZr9KGZHx9P5g69xpxh8BUu YiswBJGitwCOaZUH7Fthm7ZmysRy7Kz+sVT4+XqARXHvpzCpY9zHyVC1vRsr/8eI pwTaQwj/e+4I+vSS -----END CERTIFICATE-----Generated at Tue Dec 23 20:39:21 2025 by rpki-client