This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3098/boEP6wkTNSI9s0Gx-yTfzehmJDE.roa File: boEP6wkTNSI9s0Gx-yTfzehmJDE.roa (raw, json) Hash identifier: CLG6NJaU4bwZp6HzaWxQk56JNtn6Vni3+jfqUGqxHZs= Subject key identifier: 6E:81:0F:EB:09:13:35:22:3D:B3:41:B1:FB:24:DF:CD:E8:66:24:31 Certificate issuer: /CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Certificate serial: 9295 Authority key identifier: D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/boEP6wkTNSI9s0Gx-yTfzehmJDE.roa Signing time: Tue 23 Dec 2025 19:10:02 +0000 ROA not before: Tue 23 Dec 2025 19:10:02 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 146845 IP address blocks: 2407:9b40::/32 maxlen: 64 Validation: Failed, RFC 3779 resource not subset of parent's resources Certificate: Data: Version: 3 (0x2) Serial Number: 37525 (0x9295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2AB6C9B6E165334C032D051D5FC7D1547E4E353 Validity Not Before: Dec 23 19:10:02 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=6E810FEB091335223DB341B1FB24DFCDE8662431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:02:d0:50:a6:6d:b6:64:fb:0b:74:cd:73:8f: 3f:3e:29:31:5d:35:06:0a:10:f5:2a:f1:c5:67:a6: 1f:36:ef:58:f0:a7:15:36:8e:c9:ff:f2:e6:25:94: e6:fa:84:49:e8:82:7a:ad:d5:70:55:ac:ba:e5:d8: 4b:04:64:8c:1f:49:09:54:9a:36:1e:57:8d:be:1d: 7c:03:21:c9:86:d7:2e:ff:6f:94:8c:d4:34:a7:a3: 8b:96:a4:f8:6c:e8:8a:8d:ec:5c:d8:8d:43:e6:4b: 87:0d:ef:f1:2e:6c:e1:cc:60:4a:8c:15:37:74:51: 97:d0:70:4b:89:55:1a:5d:f0:1d:e7:a8:d7:48:26: 83:18:f4:84:d8:c8:2a:e6:49:3a:70:76:ff:0b:3d: 51:f8:aa:8d:ed:ab:32:49:1b:5a:fb:67:0f:35:01: c0:bd:ff:e3:64:2f:dd:bb:45:1e:f2:5e:cb:7a:57: a9:3e:fc:f9:da:63:a7:ee:fe:34:c7:3a:d8:cb:41: 55:a2:26:bc:23:84:63:16:19:4f:11:da:36:fd:a4: 00:e6:00:d1:7d:72:93:2e:ce:d5:01:3d:3c:ab:bd: 2c:3b:19:dc:de:60:d6:96:8b:52:dc:c1:d7:9f:2f: db:ab:52:9b:e6:60:21:47:f3:35:76:eb:7b:f7:01: df:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:81:0F:EB:09:13:35:22:3D:B3:41:B1:FB:24:DF:CD:E8:66:24:31 X509v3 Authority Key Identifier: keyid:D2:AB:6C:9B:6E:16:53:34:C0:32:D0:51:D5:FC:7D:15:47:E4:E3:53 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/0qtsm24WUzTAMtBR1fx9FUfk41M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/0qtsm24WUzTAMtBR1fx9FUfk41M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3098/boEP6wkTNSI9s0Gx-yTfzehmJDE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9b40::/32 Signature Algorithm: sha256WithRSAEncryption 08:32:b1:ef:ed:47:92:dc:b7:0b:11:d8:1f:9e:6f:eb:4f:a9: a6:9e:74:e3:3f:40:02:d8:63:a1:78:71:eb:8e:1c:52:d9:6f: 06:62:40:6b:48:f9:85:15:bd:22:e7:db:0b:a8:84:22:24:a8: 32:7e:5c:33:6a:e5:b1:9d:a0:29:fe:1a:f4:70:35:0b:ea:03: 23:a6:76:3a:39:ff:b7:4b:d2:01:dc:58:59:93:ef:7f:40:c2: df:d7:94:ad:d6:08:54:67:ec:2c:3c:5f:25:38:bb:db:ca:98: a0:37:a5:09:16:4d:7f:d1:af:a5:38:6b:8b:69:f5:82:da:68: b1:f0:1d:c4:5c:61:02:cf:9d:4e:13:48:3e:df:b8:00:7d:d6: c2:b8:fe:48:8e:e9:cd:84:13:11:d5:d9:12:45:b0:d9:16:75: 9b:b4:ec:44:63:6d:eb:54:70:ed:0a:fe:f8:08:85:e4:4a:a3: 68:4a:bb:5b:90:1a:12:c5:f4:d0:0b:b7:37:d2:09:70:ef:b4: 13:0e:78:44:a4:a7:eb:5e:53:ae:60:aa:2f:ae:c6:b6:24:f3: 34:d7:5e:ca:78:26:be:99:3e:a0:be:d9:dc:d7:76:d3:9a:87: ca:af:2c:34:84:6d:47:f6:47:c9:a0:93:60:b6:5f:91:44:c8: 74:47:9c:c2 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIDAJKVMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKEQy QUI2QzlCNkUxNjUzMzRDMDMyRDA1MUQ1RkM3RDE1NDdFNEUzNTMwHhcNMjUxMjIz MTkxMDAyWhcNMjYxMDIzMDMwMTAzWjAzMTEwLwYDVQQDEyg2RTgxMEZFQjA5MTMz NTIyM0RCMzQxQjFGQjI0REZDREU4NjYyNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEApALQUKZttmT7C3TNc48/PikxXTUGChD1KvHFZ6YfNu9Y8KcV No7J//LmJZTm+oRJ6IJ6rdVwVay65dhLBGSMH0kJVJo2HleNvh18AyHJhtcu/2+U jNQ0p6OLlqT4bOiKjexc2I1D5kuHDe/xLmzhzGBKjBU3dFGX0HBLiVUaXfAd56jX SCaDGPSE2Mgq5kk6cHb/Cz1R+KqN7asySRta+2cPNQHAvf/jZC/du0Ue8l7Lelep Pvz52mOn7v40xzrYy0FVoia8I4RjFhlPEdo2/aQA5gDRfXKTLs7VAT08q70sOxnc 3mDWlotS3MHXny/bq1Kb5mAhR/M1dut79wHfRwIDAQABo4IB9DCCAfAwHQYDVR0O BBYEFG6BD+sJEzUiPbNBsfsk383oZiQxMB8GA1UdIwQYMBaAFNKrbJtuFlM0wDLQ UdX8fRVH5ONTMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwXQYDVR0fBFYwVDBS oFCgToZMcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMw OTgvMHF0c20yNFdVelRBTXRCUjFmeDlGVWZrNDFNLmNybDBjBggrBgEFBQcBAQRX MFUwUwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC8wcXRzbTI0V1V6VEFNdEJSMWZ4OUZVZms0MU0uY2VyMA4GA1UdDwEB /wQEAwIHgDCBnQYIKwYBBQUHAQsEgZAwgY0wWAYIKwYBBQUHMAuGTHJzeW5jOi8v cnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDk4L2JvRVA2d2tUTlNJ OXMwR3gteVRmemVobUpERS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5j bm5pYy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkB5tAMA0GCSqGSIb3DQEBCwUAA4IBAQAIMrHv7UeS3LcLEdgfnm/rT6mm nnTjP0AC2GOheHHrjhxS2W8GYkBrSPmFFb0i59sLqIQiJKgyflwzauWxnaAp/hr0 cDUL6gMjpnY6Of+3S9IB3FhZk+9/QMLf15St1ghUZ+wsPF8lOLvbypigN6UJFk1/ 0a+lOGuLafWC2mix8B3EXGECz51OE0g+37gAfdbCuP5IjunNhBMR1dkSRbDZFnWb tOxEY23rVHDtCv74CIXkSqNoSrtbkBoSxfTQC7c30glw77QTDnhEpKfrXlOuYKov rsa2JPM0117KeCa+mT6gvtnc13bTmofKryw0hG1H9kfJoJNgtl+RRMh0R5zC -----END CERTIFICATE-----Generated at Tue Dec 23 22:37:42 2025 by rpki-client