$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/P6v82Fruxw-1SeCErOe5-P9Jp7Q.roa File: P6v82Fruxw-1SeCErOe5-P9Jp7Q.roa (raw, json) Hash identifier: jColINLDU073VLMONpbTtK+frDdA9jiFVgjQwo0m394= Subject key identifier: 3F:AB:FC:D8:5A:EE:C7:0F:B5:49:E0:84:AC:E7:B9:F8:FF:49:A7:B4 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 7F9E Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/P6v82Fruxw-1SeCErOe5-P9Jp7Q.roa Signing time: Wed 06 Aug 2025 07:33:18 +0000 ROA not before: Wed 06 Aug 2025 07:33:18 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 43.246.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 14:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32670 (0x7f9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Aug 6 07:33:18 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=3FABFCD85AEEC70FB549E084ACE7B9F8FF49A7B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ac:8e:64:c6:82:1f:fd:2e:b3:ef:b7:c4:f1: 3a:f7:f6:e4:38:ca:64:6d:79:97:89:b9:92:4c:f1: 84:b8:4c:50:1c:52:03:9b:65:25:10:dd:2d:1a:c2: 97:da:0a:7a:cb:36:09:03:59:fb:80:dd:e1:f8:f3: 31:25:df:0c:3d:12:ba:23:68:7a:9e:5b:69:b3:05: 19:ef:a0:aa:c8:a7:f6:2c:5a:32:2c:1c:bf:bc:d5: 55:f8:4a:7b:06:b1:88:83:8f:ef:a1:a0:c0:7b:74: 6a:05:79:a0:f1:c2:39:7f:05:d9:d7:76:60:8f:e5: ac:ea:be:da:91:e8:d6:47:85:83:73:a3:98:2a:9f: e3:0a:23:c1:60:68:da:df:06:80:32:72:59:8e:3c: 2a:23:d0:01:d3:85:ec:e8:01:73:49:42:3b:fa:37: 2d:ab:ee:cc:6e:83:21:a2:f6:c2:08:d5:ed:53:f7: b8:e8:b8:00:d4:03:cb:86:fa:61:c0:d1:8d:d3:f0: a4:b5:73:66:3a:e4:56:54:5e:bd:c9:a9:94:eb:4c: 53:fc:f2:b0:f3:3a:c1:d8:16:c9:e5:72:fb:27:83: 94:6e:54:ad:3a:8c:83:a6:b3:52:90:03:f6:8b:49: ba:0a:fc:af:48:eb:40:45:ec:75:3f:97:7a:25:53: 55:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AB:FC:D8:5A:EE:C7:0F:B5:49:E0:84:AC:E7:B9:F8:FF:49:A7:B4 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/P6v82Fruxw-1SeCErOe5-P9Jp7Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.246.52.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:e6:a7:bc:88:d4:d6:28:98:d9:80:d9:03:0d:c3:90:64:ab: 1b:7c:e6:94:bb:26:46:5a:82:50:12:93:68:27:5d:d3:19:72: ef:e4:2b:aa:6f:8d:4e:0c:f3:cd:30:bd:11:cc:2a:2f:c8:c2: 62:f9:63:82:d8:15:04:17:dc:fd:87:ab:d2:48:e9:3c:d5:a6: 13:45:95:cc:07:77:45:2c:11:98:48:ec:93:3f:2b:ce:fc:f2: bb:93:01:66:43:b7:e6:b1:51:19:6d:a3:38:b1:bb:20:45:6f: 2a:ea:b9:af:58:12:6a:b3:2a:d9:5f:07:36:fe:f3:9d:31:73: 6a:bb:b8:02:57:74:34:ac:ec:b6:8a:0f:d8:28:f6:e9:0a:1f: 98:d2:a1:75:58:5e:8c:04:e1:39:29:c6:1d:b1:2b:a2:11:3c: 3c:22:ea:44:fc:e7:2d:5a:72:fa:7b:9d:32:59:36:ab:98:8d: a8:8b:55:7c:ff:b6:5c:fb:d1:fb:fa:88:89:56:20:28:be:9a: 07:2c:c8:b0:9d:85:de:9e:e2:db:e0:60:c2:ef:3c:6c:e0:88: 05:0e:19:13:ee:5d:ed:16:e5:26:08:fb:8b:e9:a3:2b:3a:d8: 81:80:e9:e9:7a:5d:2c:ce:5c:bd:fe:6f:92:76:ea:ec:bb:c4: b3:83:d9:aa -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICf54wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA4MDYw NzMzMThaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDNGQUJGQ0Q4NUFFRUM3 MEZCNTQ5RTA4NEFDRTdCOUY4RkY0OUE3QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDrI5kxoIf/S6z77fE8Tr39uQ4ymRteZeJuZJM8YS4TFAcUgOb ZSUQ3S0awpfaCnrLNgkDWfuA3eH48zEl3ww9ErojaHqeW2mzBRnvoKrIp/YsWjIs HL+81VX4SnsGsYiDj++hoMB7dGoFeaDxwjl/BdnXdmCP5azqvtqR6NZHhYNzo5gq n+MKI8FgaNrfBoAyclmOPCoj0AHThezoAXNJQjv6Ny2r7sxugyGi9sII1e1T97jo uADUA8uG+mHA0Y3T8KS1c2Y65FZUXr3JqZTrTFP88rDzOsHYFsnlcvsng5RuVK06 jIOms1KQA/aLSboK/K9I60BF7HU/l3olU1WvAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUP6v82Fruxw+1SeCErOe5+P9Jp7QwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L1A2djgyRnJ1eHctMVNl Q0VyT2U1LVA5SnA3US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIr9jQwDQYJKoZIhvcNAQELBQADggEBAI7mp7yI1NYomNmA2QMNw5Bkqxt85pS7 JkZaglASk2gnXdMZcu/kK6pvjU4M880wvRHMKi/IwmL5Y4LYFQQX3P2Hq9JI6TzV phNFlcwHd0UsEZhI7JM/K8788ruTAWZDt+axURltozixuyBFbyrqua9YEmqzKtlf Bzb+850xc2q7uAJXdDSs7LaKD9go9ukKH5jSoXVYXowE4Tkpxh2xK6IRPDwi6kT8 5y1acvp7nTJZNquYjaiLVXz/tlz70fv6iIlWICi+mgcsyLCdhd6e4tvgYMLvPGzg iAUOGRPuXe0W5SYI+4vpoys62IGA6el6XSzOXL3+b5J26uy7xLOD2ao= -----END CERTIFICATE-----Generated at Thu Aug 14 11:09:19 2025 by rpki-client