$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/bgutjGAyJGJRePju94GFjM0Usg4.roa File: bgutjGAyJGJRePju94GFjM0Usg4.roa (raw, json) Hash identifier: hepbNeV+GkI0UGcTbTCzuchd2lmlX9j9lBveUHGi5Zg= Subject key identifier: 6E:0B:AD:8C:60:32:24:62:51:78:F8:EE:F7:81:85:8C:CD:14:B2:0E Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 1DAC Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/bgutjGAyJGJRePju94GFjM0Usg4.roa Signing time: Wed 09 Apr 2025 06:48:20 +0000 ROA not before: Wed 09 Apr 2025 06:48:20 +0000 ROA not after: Thu 09 Apr 2026 06:41:08 +0000 asID: 59033 IP address blocks: 2402:1440::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7596 (0x1dac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Apr 9 06:48:20 2025 GMT Not After : Apr 9 06:41:08 2026 GMT Subject: CN=6E0BAD8C603224625178F8EEF781858CCD14B20E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c7:99:36:3e:3c:c1:1f:aa:0c:77:1b:0f:e1: d4:90:9e:d3:91:3b:2a:ee:57:75:81:12:91:09:f5: ab:f3:a8:15:aa:29:04:de:8e:7c:dc:2e:35:e9:82: 80:a2:2c:2f:16:65:17:0b:13:0e:cb:ac:46:60:42: 0e:5e:82:16:5d:e8:2a:39:72:22:05:1f:7e:e6:6b: c7:9d:34:9d:56:b1:41:02:e9:21:b9:61:14:9c:04: cc:a8:5c:eb:87:c6:99:2a:8a:d7:b6:88:3e:31:9a: 03:42:e9:2e:b1:b7:13:db:f5:fb:f7:e3:13:5a:09: ce:d8:4e:2d:ff:85:e3:fb:e5:96:ee:5e:cb:90:e0: 92:9a:5c:8d:51:33:8e:a4:df:8e:ba:77:73:44:04: e2:3a:31:8d:7a:c1:e8:d3:34:48:7d:2b:fe:8d:8d: 9f:0b:21:cd:a8:ab:25:b6:88:04:11:b7:71:f3:54: 7a:37:b9:66:79:76:fa:d3:47:5e:88:cc:b8:38:97: 39:c1:fa:ed:c6:69:6d:a5:96:9f:3c:ef:fc:b9:df: 3c:b1:07:df:aa:e9:09:76:0c:51:ec:56:ea:a6:c5: 05:2e:37:2c:3c:ab:b6:2b:fc:a6:0c:5a:30:68:5e: 93:87:31:35:d8:40:bc:f7:09:98:0d:8c:c9:4b:b4: 8c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0B:AD:8C:60:32:24:62:51:78:F8:EE:F7:81:85:8C:CD:14:B2:0E X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/bgutjGAyJGJRePju94GFjM0Usg4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:1440::/32 Signature Algorithm: sha256WithRSAEncryption 36:a8:80:77:9b:22:5f:c7:3f:63:ca:71:74:7d:b3:4c:f8:16: 30:68:bc:68:e1:52:45:22:52:d9:35:0e:12:a9:ca:19:18:f4: a5:4d:25:6c:03:3e:17:7c:33:6e:25:55:32:c3:7a:83:c8:5e: 60:c3:08:3d:63:9c:47:03:10:a7:70:c3:3f:4c:96:ef:6a:7d: 70:ca:4e:1f:3e:96:eb:39:36:72:22:fa:bc:46:0b:ea:6c:fb: 11:e4:35:33:03:94:9e:eb:7a:fe:d3:b6:a9:04:8a:87:d6:3a: c9:af:1a:b9:34:e1:01:32:ce:a5:e1:ab:42:b2:e4:30:0f:5b: 9f:79:ca:30:dd:0e:a3:bc:08:f8:b2:0c:e8:c2:e6:ab:33:69: a3:60:4d:2a:3a:cb:35:52:de:80:c2:d0:a6:a4:6f:f6:ae:3c: 55:ac:d1:2a:bc:f2:92:14:ff:9c:d9:0f:ca:c1:5c:a0:11:59: 74:2c:72:ad:7a:4a:4b:1a:db:22:d3:94:3e:d3:54:bc:b0:5d: 97:66:ec:06:dd:e1:71:41:f1:71:d2:03:52:5b:69:48:22:2e: 25:d1:6c:22:7e:52:e6:24:1b:f0:89:3e:74:22:ba:8c:63:99: 9f:51:13:f6:49:0f:85:ba:90:bb:55:cd:77:dd:fa:44:d2:4d: 1e:49:01:ea -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICHawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTA0MDkw NjQ4MjBaFw0yNjA0MDkwNjQxMDhaMDMxMTAvBgNVBAMTKDZFMEJBRDhDNjAzMjI0 NjI1MTc4RjhFRUY3ODE4NThDQ0QxNEIyMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCax5k2PjzBH6oMdxsP4dSQntOROyruV3WBEpEJ9avzqBWqKQTe jnzcLjXpgoCiLC8WZRcLEw7LrEZgQg5eghZd6Co5ciIFH37ma8edNJ1WsUEC6SG5 YRScBMyoXOuHxpkqite2iD4xmgNC6S6xtxPb9fv34xNaCc7YTi3/heP75ZbuXsuQ 4JKaXI1RM46k3466d3NEBOI6MY16wejTNEh9K/6NjZ8LIc2oqyW2iAQRt3HzVHo3 uWZ5dvrTR16IzLg4lznB+u3GaW2llp887/y53zyxB9+q6Ql2DFHsVuqmxQUuNyw8 q7Yr/KYMWjBoXpOHMTXYQLz3CZgNjMlLtIwZAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUbgutjGAyJGJRePju94GFjM0Usg4wHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvYmd1dGpHQXlKR0pS ZVBqdTk0R0ZqTTBVc2c0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQCFEAwDQYJKoZIhvcNAQELBQADggEBADaogHebIl/HP2PKcXR9s0z4FjBo vGjhUkUiUtk1DhKpyhkY9KVNJWwDPhd8M24lVTLDeoPIXmDDCD1jnEcDEKdwwz9M lu9qfXDKTh8+lus5NnIi+rxGC+ps+xHkNTMDlJ7rev7TtqkEiofWOsmvGrk04QEy zqXhq0Ky5DAPW595yjDdDqO8CPiyDOjC5qszaaNgTSo6yzVS3oDC0Kakb/auPFWs 0Sq88pIU/5zZD8rBXKARWXQscq16Sksa2yLTlD7TVLywXZdm7Abd4XFB8XHSA1Jb aUgiLiXRbCJ+UuYkG/CJPnQiuoxjmZ9RE/ZJD4W6kLtVzXfd+kTSTR5JAeo= -----END CERTIFICATE-----Generated at Sat Apr 26 15:28:53 2025 by rpki-client