$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/B679Oh4-vdKsws-ydVTtHssgfzg.roa File: B679Oh4-vdKsws-ydVTtHssgfzg.roa (raw, json) Hash identifier: TFY4T4RqczNfz6PykeC1FmVSt0OH0ge/vOR3eWezFIg= Subject key identifier: 07:AE:FD:3A:1E:3E:BD:D2:AC:C2:CF:B2:75:54:ED:1E:CB:20:7F:38 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 7F7D Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/B679Oh4-vdKsws-ydVTtHssgfzg.roa Signing time: Wed 06 Aug 2025 07:33:10 +0000 ROA not before: Wed 06 Aug 2025 07:33:10 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 43.246.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 14:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32637 (0x7f7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Aug 6 07:33:10 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=07AEFD3A1E3EBDD2ACC2CFB27554ED1ECB207F38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:64:a2:a4:c9:ba:43:07:28:3f:69:2c:d6:07: b7:69:3b:e0:ec:17:9e:ff:fe:0f:51:31:e4:90:c0: e9:8b:99:d3:86:a0:cc:3e:4d:78:02:57:79:4d:cb: 03:ed:e2:67:64:c8:29:30:3f:72:5d:7d:5a:72:4f: 1c:83:ef:d9:8e:60:26:fe:4a:93:3e:f6:4e:e5:d1: 8c:2f:4c:4a:79:3b:d1:7e:e8:63:c3:4e:c5:3f:40: e5:2f:fc:90:47:69:4b:3e:ce:96:c5:10:5a:35:f7: 06:d6:6e:a2:8d:8e:a0:57:6f:ae:44:d6:d6:12:ce: 13:c8:e5:fd:ce:72:e3:e7:d0:94:25:6a:57:5b:15: ee:24:96:97:07:e4:56:da:95:8d:8c:2c:e0:a6:0a: 09:15:a9:7a:05:b2:00:d2:e3:9c:3d:df:d0:b7:89: b9:2d:5d:89:ad:de:44:65:0d:0f:30:12:e9:8d:dc: a4:21:6f:64:14:8b:68:28:de:9f:4e:61:94:02:63: 71:b4:ba:ce:b0:f4:91:e8:d0:b6:af:30:8d:d8:49: 95:75:65:46:10:d2:b4:38:11:fb:0c:61:b4:36:63: 25:d9:5f:1a:e3:6f:b3:07:7b:4c:b3:6a:2b:c5:30: f2:d4:29:90:b5:05:df:ab:6b:2e:c6:26:2e:ff:29: c4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AE:FD:3A:1E:3E:BD:D2:AC:C2:CF:B2:75:54:ED:1E:CB:20:7F:38 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/B679Oh4-vdKsws-ydVTtHssgfzg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.246.84.0/22 Signature Algorithm: sha256WithRSAEncryption 69:5d:22:aa:60:3a:be:ba:22:6e:53:f4:a7:ad:de:56:ea:a8: e7:17:aa:9b:d9:73:c1:4d:52:aa:c3:25:8c:e5:4e:88:ea:21: c6:10:11:bd:81:92:43:1e:55:76:a3:5a:45:74:2c:66:1f:2b: 41:a3:c6:da:d7:14:d3:a2:77:ad:67:57:d3:45:da:a1:6e:18: e5:28:8b:e1:01:72:2f:b9:5c:31:64:51:f9:08:55:ff:24:21: 70:04:4d:24:aa:e6:5c:7a:43:4b:f6:c9:02:7a:a6:09:cd:08: 8c:31:df:ff:b9:86:65:b6:07:ce:a9:4f:93:eb:f6:07:21:18: 11:16:85:63:44:5b:89:4c:e0:eb:35:07:94:66:71:45:1e:1e: 44:d5:a9:4c:42:22:52:ad:aa:4e:b6:d0:32:3f:e9:a1:25:d1: 98:de:6c:b1:6f:71:0d:cb:78:db:ca:01:01:4e:3e:0c:0e:19: 50:f2:a3:26:29:c7:fa:fa:09:ff:de:d4:08:24:e0:8d:1e:fb: 12:a0:72:9a:89:93:96:48:d8:d6:2f:90:35:bc:f2:b3:dc:50: de:a5:f3:d3:09:60:74:5f:05:b3:df:28:5f:3d:e4:2c:b1:d3: 29:e2:e6:68:df:4d:46:55:fc:44:ec:6e:8c:38:e7:e3:3a:bb: de:04:7c:9b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICf30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA4MDYw NzMzMTBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDA3QUVGRDNBMUUzRUJE RDJBQ0MyQ0ZCMjc1NTRFRDFFQ0IyMDdGMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXZKKkybpDByg/aSzWB7dpO+DsF57//g9RMeSQwOmLmdOGoMw+ TXgCV3lNywPt4mdkyCkwP3JdfVpyTxyD79mOYCb+SpM+9k7l0YwvTEp5O9F+6GPD TsU/QOUv/JBHaUs+zpbFEFo19wbWbqKNjqBXb65E1tYSzhPI5f3OcuPn0JQlaldb Fe4klpcH5FbalY2MLOCmCgkVqXoFsgDS45w939C3ibktXYmt3kRlDQ8wEumN3KQh b2QUi2go3p9OYZQCY3G0us6w9JHo0LavMI3YSZV1ZUYQ0rQ4EfsMYbQ2YyXZXxrj b7MHe0yzaivFMPLUKZC1Bd+ray7GJi7/KcSPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUB679Oh4+vdKsws+ydVTtHssgfzgwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L0I2NzlPaDQtdmRLc3dz LXlkVlR0SHNzZ2Z6Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr9lQwDQYJKoZIhvcNAQELBQADggEBAGldIqpgOr66Im5T9Ket3lbqqOcXqpvZ c8FNUqrDJYzlTojqIcYQEb2BkkMeVXajWkV0LGYfK0GjxtrXFNOid61nV9NF2qFu GOUoi+EBci+5XDFkUfkIVf8kIXAETSSq5lx6Q0v2yQJ6pgnNCIwx3/+5hmW2B86p T5Pr9gchGBEWhWNEW4lM4Os1B5RmcUUeHkTVqUxCIlKtqk620DI/6aEl0ZjebLFv cQ3LeNvKAQFOPgwOGVDyoyYpx/r6Cf/e1Agk4I0e+xKgcpqJk5ZI2NYvkDW88rPc UN6l89MJYHRfBbPfKF895Cyx0yni5mjfTUZV/ETsbow45+M6u94EfJs= -----END CERTIFICATE-----Generated at Thu Aug 14 11:07:26 2025 by rpki-client