This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer File: GvkCrWYhGIHqBAxf9yA9m8yH_8U.cer (raw, json) Hash identifier: sOVvQCzOCjJXFEqXwmjvLOOZvMmTyBl2BoGjXxvpAXg= Subject key identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:26:12 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 151301 IP: 103.93.180.0/22 Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 58964 (0xe654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:26:12 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=1AF902AD66211881EA040C5FF7203D9BCC87FFC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:58:3b:8d:5e:35:dc:be:9e:a4:60:0f:2b: 94:89:d8:cb:89:7b:a8:a4:24:65:16:c9:e8:a9:04: 3e:05:61:80:e1:5d:76:66:72:6c:bd:3d:6e:a9:37: a9:f1:88:69:0e:47:94:c4:7d:d7:b5:74:7e:a1:13: 98:60:99:ad:b6:c2:a2:64:1c:5f:44:38:83:49:dc: 38:ed:03:ed:4a:16:1f:30:ca:0c:40:bf:1a:77:93: 22:48:c7:aa:20:f3:78:0e:2c:4e:f8:73:f3:a9:ae: 29:9f:a0:13:d5:cc:f0:b0:a4:fc:25:31:64:ee:94: f4:ca:e9:0a:f8:bc:eb:1f:6a:2b:57:8f:c5:dc:c5: dc:b4:82:c1:6d:d1:42:f3:12:3b:eb:86:d0:03:30: bc:26:d9:c8:f8:2e:da:dc:7f:af:63:7c:a6:d3:3a: 57:0e:e1:44:9e:11:62:2f:cd:46:1f:63:87:9f:22: af:85:9a:72:a9:42:ef:ce:44:84:9d:9b:12:38:46: ee:e3:65:3e:6e:c4:fe:a6:a9:f9:9d:3e:02:c0:9c: 97:26:a5:2f:2a:0a:08:b8:61:e0:1c:13:1b:42:f9: fd:1f:4e:a7:cf:3d:ab:99:a5:e1:d9:5d:a1:92:28: 4f:f9:1a:d1:9f:60:0f:b4:76:22:e6:7a:b2:2f:83: da:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:F9:02:AD:66:21:18:81:EA:04:0C:5F:F7:20:3D:9B:CC:87:FF:C5 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2453/GvkCrWYhGIHqBAxf9yA9m8yH_8U.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151301 sbgp-ipAddrBlock: critical IPv4: 103.93.180.0/22 Signature Algorithm: sha256WithRSAEncryption 71:68:c9:ae:45:ca:05:1f:2e:74:ac:d5:b4:5f:42:20:ef:09: 4c:6d:ad:3d:ff:f0:e8:89:8f:57:55:b8:d4:4f:b3:65:60:70: 20:01:99:cc:96:b5:d6:10:47:2e:09:c6:85:72:69:c9:60:6f: 28:25:fe:94:61:21:74:f1:73:43:4f:be:79:8e:bc:6e:09:ea: 97:d2:46:1c:4d:0c:8f:be:cf:a0:5a:de:00:60:32:74:c0:2e: 91:e3:0e:72:00:08:1a:35:81:40:90:83:6e:02:b2:34:f4:5f: 47:1e:c9:48:88:0d:26:df:32:0b:c6:8b:9e:06:fb:2d:0f:83: 32:7a:ef:0f:ad:e5:dd:b1:36:c6:e8:6a:8e:bc:a3:9f:91:89: 15:d3:93:5b:5c:d8:82:73:ca:8e:14:17:d9:e3:d6:c6:9e:bf: 40:03:51:a4:bf:e4:9e:fd:d0:d3:87:b7:82:8e:8d:1a:f3:b0: e3:cf:44:ab:8c:29:fa:75:eb:df:20:4c:80:57:0f:fa:b4:67: ec:56:df:3a:7e:a1:ac:35:e7:f2:9c:94:c7:53:85:70:1d:87: d1:52:05:f9:5e:73:78:7e:bb:b7:10:b8:4e:b4:dc:a3:bf:7a: 80:8c:04:34:a1:97:a5:5d:65:2d:d0:41:b4:ae:d3:52:81:58: 1c:23:7f:6d -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIDAOZUMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODI2MTJaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDFBRjkwMkFENjYyMTE4ODFFQTA0MEM1RkY3MjAzRDlCQ0M4N0ZG QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8TVg7jV413L6epGAP K5SJ2MuJe6ikJGUWyeipBD4FYYDhXXZmcmy9PW6pN6nxiGkOR5TEfde1dH6hE5hg ma22wqJkHF9EOINJ3DjtA+1KFh8wygxAvxp3kyJIx6og83gOLE74c/OprimfoBPV zPCwpPwlMWTulPTK6Qr4vOsfaitXj8Xcxdy0gsFt0ULzEjvrhtADMLwm2cj4Ltrc f69jfKbTOlcO4USeEWIvzUYfY4efIq+FmnKpQu/ORISdmxI4Ru7jZT5uxP6mqfmd PgLAnJcmpS8qCgi4YeAcExtC+f0fTqfPPauZpeHZXaGSKE/5GtGfYA+0diLmerIv g9qFAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUGvkCrWYhGIHqBAxf9yA9m8yH/8Uw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI0 NTMvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjQ1My9HdmtDcldZaEdJSHFCQXhmOXlBOW04eUhfOFUubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJPBTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmddtDANBgkqhkiG9w0BAQsFAAOCAQEAcWjJrkXKBR8udKzVtF9C IO8JTG2tPf/w6ImPV1W41E+zZWBwIAGZzJa11hBHLgnGhXJpyWBvKCX+lGEhdPFz Q0++eY68bgnql9JGHE0Mj77PoFreAGAydMAukeMOcgAIGjWBQJCDbgKyNPRfRx7J SIgNJt8yC8aLngb7LQ+DMnrvD63l3bE2xuhqjryjn5GJFdOTW1zYgnPKjhQX2ePW xp6/QANRpL/knv3Q04e3go6NGvOw489Eq4wp+nXr3yBMgFcP+rRn7FbfOn6hrDXn 8pyUx1OFcB2H0VIF+V5zeH67txC4TrTco796gIwENKGXpV1lLdBBtK7TUoFYHCN/ bQ== -----END CERTIFICATE-----Generated at Mon Jan 19 12:21:57 2026 by rpki-client