This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/aPU53t1YB2tMGV7mVStxdIy-Ijg.roa File: aPU53t1YB2tMGV7mVStxdIy-Ijg.roa (raw, json) Hash identifier: whnVTSsuEkFa04CDC8bby8Oa9G7uoIsI00JOhEFHhRM= Subject key identifier: 68:F5:39:DE:DD:58:07:6B:4C:19:5E:E6:55:2B:71:74:8C:BE:22:38 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: BA4A Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/aPU53t1YB2tMGV7mVStxdIy-Ijg.roa Signing time: Fri 05 Dec 2025 00:17:33 +0000 ROA not before: Fri 05 Dec 2025 00:17:33 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 63612 IP address blocks: 43.227.80.0/20 maxlen: 20 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 47690 (0xba4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Dec 5 00:17:33 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=68F539DEDD58076B4C195EE6552B71748CBE2238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:32:4b:77:31:d6:b1:ad:6f:4b:59:2d:6a:16: 96:20:96:35:b8:ad:75:19:18:97:ef:c6:b4:45:e5: 5a:28:98:2b:03:bf:00:53:18:36:b1:36:46:4c:5a: 5e:4c:16:d3:c4:00:65:5c:96:12:c6:c6:e4:81:38: 3d:1d:e5:18:a8:57:5d:8c:c4:54:ac:bd:43:cc:ab: 9f:c4:45:1f:b4:c9:0e:86:ef:81:9d:81:c6:89:f2: 15:f3:81:14:16:c1:8f:04:5b:29:c1:31:14:ec:9d: 54:d0:51:27:c5:a0:ec:73:0f:62:6f:28:82:36:3c: 21:b7:7e:ac:f6:af:54:1f:fe:c8:fc:ee:fb:c4:f1: f6:03:5c:07:f8:c9:da:55:7b:11:0f:72:73:45:a5: a3:58:39:89:f4:e9:b7:07:7b:e3:88:f6:ab:2b:b8: 0f:1b:30:0d:93:8e:34:5f:9c:30:8f:fb:51:ea:e0: 9f:66:47:4b:cf:e3:42:da:76:5a:18:c4:de:70:2a: c4:f7:36:a2:4b:ea:60:df:de:85:15:47:d3:5e:fa: 40:f1:28:b5:89:36:2e:25:12:b9:4d:7f:02:73:19: 68:27:87:49:58:1e:8a:48:6f:df:be:17:7f:db:61: 6c:45:9e:4f:68:27:70:61:50:09:f6:32:87:71:82: 98:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F5:39:DE:DD:58:07:6B:4C:19:5E:E6:55:2B:71:74:8C:BE:22:38 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/aPU53t1YB2tMGV7mVStxdIy-Ijg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.80.0/20 Signature Algorithm: sha256WithRSAEncryption b6:f6:41:3c:0e:a3:24:5b:4e:e9:0b:c9:ed:e5:4e:19:87:02: b6:bd:f0:0b:54:8c:ea:c1:91:c7:9a:52:e2:fc:c1:cf:67:92: 1f:c1:d1:b9:f0:66:d5:12:6e:46:05:f7:51:e7:d8:32:6c:f8: 12:4b:df:52:0c:c4:c2:68:73:8a:1c:29:22:43:a0:fa:97:f8: ed:b0:88:b0:5b:0a:62:57:f5:bc:9c:7b:15:22:9a:1b:9a:8a: 5d:e9:1d:d9:8c:3c:61:a6:6e:92:01:80:30:07:c7:77:55:74: 3b:1f:e5:da:2c:e4:6c:66:67:15:92:5e:bc:f1:73:a1:b8:a4: 70:9b:1e:91:e7:16:d0:4d:24:6d:17:0c:f2:ba:31:c5:2f:0f: 91:2b:35:5a:bd:a7:31:3b:9d:3b:7d:f7:81:98:75:fb:92:4b: 52:bf:8e:c6:5c:fd:56:18:b2:53:58:ca:da:1f:2e:2c:2a:39: fc:6d:e7:f8:7f:e6:cc:f1:86:3c:ff:aa:d1:0c:be:2a:45:fa: eb:41:ae:cc:d5:d5:a4:2c:4b:64:d9:e8:02:88:e5:74:da:4d: b3:d5:ec:24:ff:f0:7a:52:f7:cb:eb:e2:f8:b5:33:db:5d:7a: 46:97:92:08:da:3a:6a:92:45:44:07:6f:6a:3a:7f:ad:3d:27: db:a0:03:72 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIDALpKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDhB RTRDRjc4QjQ5REYwQjJDMUQyOUQzMkU0OEE5NDNBRTRGNDFBQ0MwHhcNMjUxMjA1 MDAxNzMzWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg2OEY1MzlERURENTgw NzZCNEMxOTVFRTY1NTJCNzE3NDhDQkUyMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAxjJLdzHWsa1vS1ktahaWIJY1uK11GRiX78a0ReVaKJgrA78A Uxg2sTZGTFpeTBbTxABlXJYSxsbkgTg9HeUYqFddjMRUrL1DzKufxEUftMkOhu+B nYHGifIV84EUFsGPBFspwTEU7J1U0FEnxaDscw9ibyiCNjwht36s9q9UH/7I/O77 xPH2A1wH+MnaVXsRD3JzRaWjWDmJ9Om3B3vjiParK7gPGzANk440X5wwj/tR6uCf ZkdLz+NC2nZaGMTecCrE9zaiS+pg396FFUfTXvpA8Si1iTYuJRK5TX8CcxloJ4dJ WB6KSG/fvhd/22FsRZ5PaCdwYVAJ9jKHcYKYuQIDAQABo4IB8zCCAe8wHQYDVR0O BBYEFGj1Od7dWAdrTBle5lUrcXSMviI4MB8GA1UdIwQYMBaAFIrkz3i0nfCywdKd MuSKlDrk9BrMMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2 NjMvaXVUUGVMU2Q4TExCMHAweTVJcVVPdVQwR3N3LmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xNjYzL2FQVTUzdDFZQjJ0 TUdWN21WU3R4ZEl5LUlqZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQr41AwDQYJKoZIhvcNAQELBQADggEBALb2QTwOoyRbTukLye3lThmHAra9 8AtUjOrBkceaUuL8wc9nkh/B0bnwZtUSbkYF91Hn2DJs+BJL31IMxMJoc4ocKSJD oPqX+O2wiLBbCmJX9bycexUimhuail3pHdmMPGGmbpIBgDAHx3dVdDsf5dos5Gxm ZxWSXrzxc6G4pHCbHpHnFtBNJG0XDPK6McUvD5ErNVq9pzE7nTt994GYdfuSS1K/ jsZc/VYYslNYytofLiwqOfxt5/h/5szxhjz/qtEMvipF+utBrszV1aQsS2TZ6AKI 5XTaTbPV7CT/8HpS98vr4vi1M9tdekaXkgjaOmqSRUQHb2o6f609J9ugA3I= -----END CERTIFICATE-----Generated at Fri Dec 5 01:45:32 2025 by rpki-client