This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/maW4vf7fXMZl0xiUSxszfKze1CA.cer File: maW4vf7fXMZl0xiUSxszfKze1CA.cer (raw, json) Hash identifier: Ym9TLB3bQ6ySg5MxZNYKqYkt6EW6nSyCFx/aZqDbtgM= Subject key identifier: 99:A5:B8:BD:FE:DF:5C:C6:65:D3:18:94:4B:1B:33:7C:AC:DE:D4:20 Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E73E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2100/maW4vf7fXMZl0xiUSxszfKze1CA.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2100/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Fri 09 Jan 2026 08:30:36 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 63646 AS: 63648 AS: 139162 -- 139165 IP: 103.73.48.0/22 IP: 103.86.204.0 -- 103.87.7.255 IP: 116.85.0.0/16 IP: 117.51.0.0/16 IP: 2400:c840::/32 IP: 2400:c8c0::/32 IP: 2400:c940::/32 IP: 2400:c9c0::/32 IP: 2400:ca40::/32 IP: 2400:cac0::/32 IP: 2400:cb40::/32 IP: 2400:cbc0::/32 IP: 2400:cc40::/32 IP: 2400:ccc0::/32 IP: 2400:cd40::/32 IP: 2400:cdc0::/32 IP: 2400:ce40::/32 IP: 2400:cf40::/32 IP: 2400:cfc0::/32 IP: 2402:840::/32 Validation: Failed, CRL has expired Certificate: Data: Version: 3 (0x2) Serial Number: 59198 (0xe73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 9 08:30:36 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=99A5B8BDFEDF5CC665D318944B1B337CACDED420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:eb:d7:85:bc:fc:2a:d0:86:2a:88:9d:2c:03: 7e:9f:b8:98:41:80:20:cd:df:d6:8c:7c:70:68:68: 6e:c5:82:9c:ff:e5:34:6a:c4:11:97:11:f2:ee:d8: ca:0a:88:29:c5:9e:0a:04:76:c8:88:90:db:a7:63: dc:3a:11:ae:33:9e:ec:99:58:55:19:b2:a3:05:46: 3a:03:0b:89:e6:0b:2d:e8:59:be:fd:ad:45:55:1e: fc:4c:4e:06:5c:94:5c:b6:c4:8a:27:bb:cb:17:2f: fb:2f:8b:0c:11:2e:b2:1b:d9:20:93:c3:c0:f3:5d: 0d:64:8c:fc:ca:57:19:48:61:39:9d:24:eb:e5:cf: 08:71:76:3d:5d:55:fc:da:76:8e:5d:a7:8a:ba:ee: 39:5f:de:47:99:38:fd:d1:e1:b7:88:af:d5:f1:08: c8:51:6c:ca:ae:47:6b:6d:2e:ae:20:43:4f:3a:4f: 67:93:a7:ba:1f:a5:76:15:11:40:41:5c:3d:e7:b9: ef:31:0a:15:62:2b:83:5d:37:bf:42:aa:77:2d:ac: 33:e6:6f:2c:3c:28:b2:54:d5:fa:b2:0f:3d:25:7b: 33:75:78:4a:11:8e:f2:c2:b1:8f:27:e6:26:26:8e: 31:a9:f6:8e:c6:33:a9:3d:09:b5:7c:48:ff:ec:32: 7c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A5:B8:BD:FE:DF:5C:C6:65:D3:18:94:4B:1B:33:7C:AC:DE:D4:20 X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2100/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2100/maW4vf7fXMZl0xiUSxszfKze1CA.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 63646 63648 139162-139165 sbgp-ipAddrBlock: critical IPv4: 103.73.48.0/22 103.86.204.0-103.87.7.255 116.85.0.0/16 117.51.0.0/16 IPv6: 2400:c840::/32 2400:c8c0::/32 2400:c940::/32 2400:c9c0::/32 2400:ca40::/32 2400:cac0::/32 2400:cb40::/32 2400:cbc0::/32 2400:cc40::/32 2400:ccc0::/32 2400:cd40::/32 2400:cdc0::/32 2400:ce40::/32 2400:cf40::/32 2400:cfc0::/32 2402:840::/32 Signature Algorithm: sha256WithRSAEncryption 45:68:86:03:81:7c:6e:88:07:fe:f2:e6:1e:46:f4:27:d3:63: 77:f8:c7:2b:e8:62:ef:dc:84:97:3f:08:2f:af:f1:d1:da:fc: c7:74:80:73:62:d1:3b:29:de:40:6e:0f:78:00:a2:f2:1c:d2: 59:57:7f:0b:21:c4:4c:58:70:fd:3b:a5:d4:69:0f:17:c9:4b: 7c:f8:dd:40:c5:ce:9e:a2:bf:0e:d1:d8:36:b8:d1:01:98:29: 75:35:8f:9b:4e:06:31:2b:2a:b4:15:31:22:9c:c0:f8:11:00: dd:01:4e:24:57:16:ff:2d:5a:4c:a7:13:7d:55:7d:3c:ef:04: 69:1a:b5:52:99:93:5f:3c:66:12:6f:ef:f5:a0:e9:87:02:6d: 31:71:65:cb:08:dd:20:da:aa:21:eb:39:21:86:4f:09:ec:38: 58:0a:60:f1:58:fc:de:e2:99:5d:e3:c8:31:ee:11:d2:2d:28: dc:24:e2:24:c5:1f:05:ca:69:91:c8:9b:37:52:ec:0b:5c:b3: 63:f8:2c:b8:29:e5:1c:d9:01:c1:4a:45:8f:d2:47:3d:21:28: 82:7b:14:a8:66:dd:3b:29:2b:d5:51:7d:d7:e3:e2:68:9f:74: 51:62:e7:72:5b:0d:15:07:89:54:b1:1a:6f:21:8a:78:19:4c: a6:82:f9:d6 -----BEGIN CERTIFICATE----- MIIGETCCBPmgAwIBAgIDAOc+MA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMDkwODMwMzZaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDk5QTVCOEJERkVERjVDQzY2NUQzMTg5NDRCMUIzMzdDQUNERUQ0 MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs69eFvPwq0IYqiJ0s A36fuJhBgCDN39aMfHBoaG7Fgpz/5TRqxBGXEfLu2MoKiCnFngoEdsiIkNunY9w6 Ea4znuyZWFUZsqMFRjoDC4nmCy3oWb79rUVVHvxMTgZclFy2xIonu8sXL/sviwwR LrIb2SCTw8DzXQ1kjPzKVxlIYTmdJOvlzwhxdj1dVfzado5dp4q67jlf3keZOP3R 4beIr9XxCMhRbMquR2ttLq4gQ086T2eTp7ofpXYVEUBBXD3nue8xChViK4NdN79C qnctrDPmbyw8KLJU1fqyDz0lezN1eEoRjvLCsY8n5iYmjjGp9o7GM6k9CbV8SP/s MnzxAgMBAAGjggMVMIIDETAdBgNVHQ4EFgQUmaW4vf7fXMZl0xiUSxszfKze1CAw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIx MDAvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMjEwMC9tYVc0dmY3ZlhNWmwweGlVU3hzemZLemUxQ0EubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MCsGCCsGAQUFBwEIAQH/BBwwGqAYMBYCAwD4ngIDAPigMAoCAwIfmgIDAh+dMIGx BggrBgEFBQcBBwEB/wSBoTCBnjAkBAIAATAeAwQCZ0kwMAwDBAJnVswDBANnVwAD AwB0VQMDAHUzMHYEAgACMHADBQAkAMhAAwUAJADIwAMFACQAyUADBQAkAMnAAwUA JADKQAMFACQAysADBQAkAMtAAwUAJADLwAMFACQAzEADBQAkAMzAAwUAJADNQAMF ACQAzcADBQAkAM5AAwUAJADPQAMFACQAz8ADBQAkAghAMA0GCSqGSIb3DQEBCwUA A4IBAQBFaIYDgXxuiAf+8uYeRvQn02N3+Mcr6GLv3ISXPwgvr/HR2vzHdIBzYtE7 Kd5Abg94AKLyHNJZV38LIcRMWHD9O6XUaQ8XyUt8+N1Axc6eor8O0dg2uNEBmCl1 NY+bTgYxKyq0FTEinMD4EQDdAU4kVxb/LVpMpxN9VX087wRpGrVSmZNfPGYSb+/1 oOmHAm0xcWXLCN0g2qoh6zkhhk8J7DhYCmDxWPze4pld48gx7hHSLSjcJOIkxR8F ymmRyJs3UuwLXLNj+Cy4KeUc2QHBSkWP0kc9ISiCexSoZt07KSvVUX3X4+Jon3RR YudyWw0VB4lUsRpvIYp4GUymgvnW -----END CERTIFICATE-----Generated at Mon Jan 19 12:20:15 2026 by rpki-client