This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer File: MJwqlDso3AhYw5uSCKFgnAlz5Jo.cer (raw, json) Hash identifier: 5lCY11mtdVDrupd4oTHUSAxMKwKIQgO1O/kWb4DBR94= Subject key identifier: 30:9C:2A:94:3B:28:DC:08:58:C3:9B:92:08:A1:60:9C:09:73:E4:9A Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E6DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:29:01 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 9813 AS: 24413 AS: 38340 AS: 45059 IP: 103.26.228.0/22 IP: 114.28.0.0 -- 114.28.67.255 IP: 114.28.80.0 -- 114.28.127.255 IP: 114.28.192.0/18 IP: 202.46.32.0/19 IP: 2400:3e00::/32 IP: 2402:33c0::/32 Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 59100 (0xe6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:29:01 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=309C2A943B28DC0858C39B9208A1609C0973E49A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:90:ea:2c:81:3c:c0:88:eb:d8:bc:96:49:9a: 74:15:24:c9:67:82:a0:1d:0b:d2:79:16:8f:93:1e: e5:7b:09:41:c0:5e:e9:44:ed:f8:b3:53:83:25:df: 4f:ff:89:13:f1:b3:19:0b:85:b1:0e:a1:26:87:3b: 39:ae:90:ba:82:f4:81:78:00:65:cc:5d:2c:44:e8: c4:6f:cf:61:15:63:03:2a:a9:74:fa:94:e4:37:50: bb:bf:26:71:01:64:a8:87:17:c0:4a:d8:0f:09:46: ee:dc:3a:4b:38:57:e4:01:17:9e:66:fa:1f:22:f3: df:20:3e:a4:0d:20:b4:ea:bb:65:2b:97:dc:df:57: d5:9c:b5:36:d6:e8:f7:ce:dd:a8:17:90:6a:91:2d: 7a:56:74:d9:59:01:76:2d:71:af:b7:71:3a:ec:51: 8b:d1:d5:8e:6e:0f:02:a4:8d:b8:01:35:e1:e9:48: e3:f0:b8:d0:04:35:31:38:29:17:c0:39:3a:ca:8b: 33:35:f1:bd:86:08:0d:22:af:0f:5a:60:c9:9b:1e: fe:d9:c2:95:6e:79:ec:30:12:59:df:4f:5e:fd:23: 3e:7d:5b:8a:87:9a:ca:5f:f9:49:07:a3:67:05:a0: 65:16:c0:29:3c:50:54:ea:06:e9:66:a1:1e:1b:ff: 84:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9C:2A:94:3B:28:DC:08:58:C3:9B:92:08:A1:60:9C:09:73:E4:9A X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/620/MJwqlDso3AhYw5uSCKFgnAlz5Jo.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 9813 24413 38340 45059 sbgp-ipAddrBlock: critical IPv4: 103.26.228.0/22 114.28.0.0-114.28.67.255 114.28.80.0-114.28.127.255 114.28.192.0/18 202.46.32.0/19 IPv6: 2400:3e00::/32 2402:33c0::/32 Signature Algorithm: sha256WithRSAEncryption 38:e9:b2:d0:30:e3:b8:e1:2d:f9:eb:bb:f7:13:a6:5d:ab:4c: b6:d0:67:42:bb:15:15:9d:c2:cf:1d:58:65:29:c4:17:63:61: 5e:85:d9:c2:9b:32:cc:bf:28:0e:f3:a9:c9:de:8e:92:9a:98: 75:3e:17:d5:ca:e3:8e:5e:e7:46:13:54:dc:d7:eb:4d:62:49: e3:1c:9a:21:d3:03:e6:40:d9:d7:d9:55:c4:8a:56:c7:dc:e9: ce:e1:e8:38:5e:46:cb:a8:32:bb:c0:57:d7:bf:16:06:eb:9f: f0:5f:8d:a5:80:f8:9f:26:e5:27:b3:43:74:15:fb:1c:18:b4: 2d:78:aa:e7:38:ac:06:6d:2f:35:31:de:66:d3:09:fe:1b:91: 45:21:ad:4f:6f:0c:9a:22:aa:62:f1:ae:97:01:76:fb:e6:7d: a0:01:51:49:91:48:5e:2d:82:ce:c5:dd:90:a5:2f:60:01:68: 34:4d:1d:de:b4:9e:fd:b4:a6:ad:65:59:da:87:de:8c:83:fa: 48:76:3f:2a:ce:11:75:b1:0f:06:86:cf:a4:85:9f:20:dd:89: 5b:b4:fa:64:8b:3f:9d:a9:f8:32:72:92:46:be:56:6d:12:a5: 4b:80:6f:4f:c3:36:95:7c:7c:9e:ed:91:29:b9:e7:da:75:77: 40:01:09:b0 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgIDAObcMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODI5MDFaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDMwOUMyQTk0M0IyOERDMDg1OEMzOUI5MjA4QTE2MDlDMDk3M0U0 OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYkOosgTzAiOvYvJZJ mnQVJMlngqAdC9J5Fo+THuV7CUHAXulE7fizU4Ml30//iRPxsxkLhbEOoSaHOzmu kLqC9IF4AGXMXSxE6MRvz2EVYwMqqXT6lOQ3ULu/JnEBZKiHF8BK2A8JRu7cOks4 V+QBF55m+h8i898gPqQNILTqu2Url9zfV9WctTbW6PfO3agXkGqRLXpWdNlZAXYt ca+3cTrsUYvR1Y5uDwKkjbgBNeHpSOPwuNAENTE4KRfAOTrKizM18b2GCA0irw9a YMmbHv7ZwpVueewwElnfT179Iz59W4qHmspf+UkHo2cFoGUWwCk8UFTqBulmoR4b /4RvAgMBAAGjggK5MIICtTAdBgNVHQ4EFgQUMJwqlDso3AhYw5uSCKFgnAlz5Jow HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHWBggrBgEFBQcBCwSByTCBxjA4BggrBgEF BQcwBYYscnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYy MC8wVwYIKwYBBQUHMAqGS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYy RTNEMDAwMC82MjAvTUp3cWxEc28zQWhZdzV1U0NLRmduQWx6NUpvLm1mdDAxBggr BgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNuL3JyZHAvbm90aWZ5LnhtbDAn BggrBgEFBQcBCAEB/wQYMBagFDASAgImVQICX10CAwCVxAIDALADMFwGCCsGAQUF BwEHAQH/BE0wSzAzBAIAATAtAwQCZxrkMAsDAwJyHAMEAnIcQDAMAwQEchxQAwQH chwAAwQGchzAAwQFyi4gMBQEAgACMA4DBQAkAD4AAwUAJAIzwDANBgkqhkiG9w0B AQsFAAOCAQEAOOmy0DDjuOEt+eu79xOmXatMttBnQrsVFZ3Czx1YZSnEF2NhXoXZ wpsyzL8oDvOpyd6OkpqYdT4X1crjjl7nRhNU3NfrTWJJ4xyaIdMD5kDZ19lVxIpW x9zpzuHoOF5Gy6gyu8BX178WBuuf8F+NpYD4nyblJ7NDdBX7HBi0LXiq5zisBm0v NTHeZtMJ/huRRSGtT28MmiKqYvGulwF2++Z9oAFRSZFIXi2CzsXdkKUvYAFoNE0d 3rSe/bSmrWVZ2ofejIP6SHY/Ks4RdbEPBobPpIWfIN2JW7T6ZIs/nan4MnKSRr5W bRKlS4BvT8M2lXx8nu2RKbnn2nV3QAEJsA== -----END CERTIFICATE-----Generated at Mon Jan 19 12:18:27 2026 by rpki-client