This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/HfvKrHGoHG06S_583QjQWg8zVlw.roa File: HfvKrHGoHG06S_583QjQWg8zVlw.roa (raw, json) Hash identifier: 05k18zfR3JJpCW5o7g9US/yzsUGdfjLMKH62Y3xpEn4= Subject key identifier: 1D:FB:CA:AC:71:A8:1C:6D:3A:4B:FE:7C:DD:08:D0:5A:0F:33:56:5C Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BA4D Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/HfvKrHGoHG06S_583QjQWg8zVlw.roa Signing time: Fri 05 Dec 2025 00:17:33 +0000 ROA not before: Fri 05 Dec 2025 00:17:33 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 63612 IP address blocks: 103.45.128.0/19 maxlen: 19 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 47693 (0xba4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 5 00:17:33 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=1DFBCAAC71A81C6D3A4BFE7CDD08D05A0F33565C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:75:20:94:28:e3:86:0b:07:3f:e6:e2:1a:14: fa:72:27:43:26:e8:f6:47:2a:06:89:7d:f0:a6:a0: c9:a5:48:0a:49:a7:71:9b:75:48:0a:2b:96:6a:b8: bd:0d:52:29:3a:ef:a1:09:d5:d5:71:1f:06:16:9f: 8c:61:bf:a4:8c:61:63:ed:52:34:28:37:08:62:5c: 59:31:99:46:99:f4:53:a9:e8:bb:d3:9c:76:d9:5a: 94:2a:2a:30:dd:f5:7b:c7:e5:95:42:01:de:72:1b: ad:c3:ae:06:5c:05:dd:2e:5e:1f:04:ac:20:cb:93: 18:ec:ed:4e:19:0c:94:05:a3:2f:e5:de:95:51:93: 17:43:b6:44:c2:79:a6:2d:bb:f7:67:0f:d5:11:2f: 33:5a:89:7a:77:50:ab:c6:1e:f9:fe:68:2a:ab:76: 90:a1:99:9a:24:1e:2d:88:b6:86:67:12:90:cd:b9: bc:4f:05:69:95:cd:48:95:f4:f1:8c:0a:e4:57:5c: 5d:65:44:1f:63:33:0a:4e:79:cf:b8:c5:d3:7a:8f: d3:7f:5e:ef:4d:93:ac:88:4a:4a:54:e3:91:ec:fc: 1e:b4:36:e0:ee:42:c4:2a:f7:47:50:93:5d:93:72: 53:d0:a7:65:59:22:88:34:fa:49:05:6c:30:24:79: 71:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FB:CA:AC:71:A8:1C:6D:3A:4B:FE:7C:DD:08:D0:5A:0F:33:56:5C X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/HfvKrHGoHG06S_583QjQWg8zVlw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.45.128.0/19 Signature Algorithm: sha256WithRSAEncryption 4e:c8:c6:d7:2a:1d:cf:ed:c9:12:dd:68:22:c4:a1:28:2e:48: 35:63:f1:0e:de:04:90:de:68:64:36:71:78:96:34:18:10:60: 67:fa:f4:18:aa:0b:30:db:c7:13:24:fc:c5:c1:cc:60:8a:f3: db:f6:93:f6:ad:8c:89:1b:16:cc:a8:f5:bc:5a:d1:73:67:97: b4:35:1f:1f:10:90:10:fb:a3:4f:ff:14:70:e2:06:17:14:7e: 55:01:93:8f:ea:d2:ea:f2:21:ff:29:99:12:07:0d:4b:3b:c7: 6b:36:ac:6f:fd:3c:c4:df:b3:63:34:cf:08:8d:a7:d4:1c:76: f4:ba:5c:f4:08:61:aa:41:1e:90:9e:08:81:b8:f5:b7:26:4c: 15:34:ea:55:f9:f7:b6:c1:20:da:a1:d7:e5:a6:58:eb:07:cb: 0b:7e:33:43:97:db:c1:e2:ac:5a:cb:8c:4f:c2:06:b1:68:e0: 4a:4d:35:05:e5:ae:b7:f7:ee:46:0e:f6:1d:a2:34:9a:58:89: 46:4d:1a:d0:48:dc:57:2c:4d:28:cc:87:f8:6d:49:85:00:48: 0c:c5:ce:ea:72:c2:11:55:cf:ae:65:37:ae:d6:3a:8d:06:33: 6e:10:b4:07:68:1c:2f:27:b6:1b:5b:db:04:38:47:17:5e:3d: c6:54:53:df -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDALpNMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA1 MDAxNzMzWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEygxREZCQ0FBQzcxQTgx QzZEM0E0QkZFN0NERDA4RDA1QTBGMzM1NjVDMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAt3UglCjjhgsHP+biGhT6cidDJuj2RyoGiX3wpqDJpUgKSadx m3VICiuWari9DVIpOu+hCdXVcR8GFp+MYb+kjGFj7VI0KDcIYlxZMZlGmfRTqei7 05x22VqUKiow3fV7x+WVQgHechutw64GXAXdLl4fBKwgy5MY7O1OGQyUBaMv5d6V UZMXQ7ZEwnmmLbv3Zw/VES8zWol6d1Crxh75/mgqq3aQoZmaJB4tiLaGZxKQzbm8 TwVplc1IlfTxjArkV1xdZUQfYzMKTnnPuMXTeo/Tf17vTZOsiEpKVOOR7PwetDbg 7kLEKvdHUJNdk3JT0KdlWSKINPpJBWwwJHlxHwIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFB37yqxxqBxtOkv+fN0I0FoPM1ZcMB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL0hmdktySEdvSEcw NlNfNTgzUWpRV2c4elZsdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVnLYAwDQYJKoZIhvcNAQELBQADggEBAE7IxtcqHc/tyRLdaCLEoSguSDVj 8Q7eBJDeaGQ2cXiWNBgQYGf69BiqCzDbxxMk/MXBzGCK89v2k/atjIkbFsyo9bxa 0XNnl7Q1Hx8QkBD7o0//FHDiBhcUflUBk4/q0uryIf8pmRIHDUs7x2s2rG/9PMTf s2M0zwiNp9QcdvS6XPQIYapBHpCeCIG49bcmTBU06lX597bBINqh1+WmWOsHywt+ M0OX28HirFrLjE/CBrFo4EpNNQXlrrf37kYO9h2iNJpYiUZNGtBI3FcsTSjMh/ht SYUASAzFzupywhFVz65lN67WOo0GM24QtAdoHC8nthtb2wQ4RxdePcZUU98= -----END CERTIFICATE-----Generated at Fri Dec 5 01:45:33 2025 by rpki-client