$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/192/m3hmpmD3EkeBXoUcqiy3lyv9Fr8.roa File: m3hmpmD3EkeBXoUcqiy3lyv9Fr8.roa (raw, json) Hash identifier: Ad0q2SJax0tWpnN0NOatCYmZh/fF13qhjYF4BE4TrxE= Subject key identifier: 9B:78:66:A6:60:F7:12:47:81:5E:85:1C:AA:2C:B7:97:2B:FD:16:BF Certificate issuer: /CN=193E93B5D1DD046927E649A3FC2328E119C40863 Certificate serial: 1D5E Authority key identifier: 19:3E:93:B5:D1:DD:04:69:27:E6:49:A3:FC:23:28:E1:19:C4:08:63 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/m3hmpmD3EkeBXoUcqiy3lyv9Fr8.roa Signing time: Wed 09 Apr 2025 06:47:43 +0000 ROA not before: Wed 09 Apr 2025 06:47:43 +0000 ROA not after: Thu 09 Apr 2026 06:39:56 +0000 asID: 24362 IP address blocks: 2400:b600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7518 (0x1d5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=193E93B5D1DD046927E649A3FC2328E119C40863 Validity Not Before: Apr 9 06:47:43 2025 GMT Not After : Apr 9 06:39:56 2026 GMT Subject: CN=9B7866A660F71247815E851CAA2CB7972BFD16BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f2:6d:3c:fe:9c:48:c4:f3:de:33:1e:84:28: 71:f9:2e:ca:b2:dc:ab:52:d8:5b:51:76:ee:8b:db: 6c:a2:fa:e5:9b:da:fe:75:16:3b:e8:1f:86:63:a5: c7:ab:87:9f:3d:01:b8:88:ea:6d:80:70:82:47:cc: f7:78:55:c9:45:1f:cd:e8:58:05:15:f7:2e:14:6d: 8e:93:24:b0:86:b1:ca:bc:e0:f1:20:51:b8:73:4a: f0:93:da:db:c3:1b:37:cc:69:5f:5d:f8:ac:ab:50: 3b:0f:6b:d6:7d:ac:a6:2b:91:fb:17:34:a4:84:52: 5d:1a:b6:4f:88:55:51:69:9a:b4:0a:d6:a1:40:f7: 39:4a:19:b1:d3:de:ab:24:5f:c0:14:83:59:f8:19: 02:4b:23:21:21:a8:7c:45:ca:c6:3c:d3:f7:dd:a4: a2:f5:e8:68:d4:4a:e0:d3:ee:33:1c:f0:2b:1b:d6: e3:81:74:2d:14:41:e0:98:15:e6:59:23:4b:15:bc: b1:16:7c:f1:b1:61:21:48:27:c5:4e:88:6e:df:4e: eb:7f:dc:18:c1:f9:6a:cb:b0:bd:bd:52:36:8f:33: c6:ab:92:38:ec:5d:ae:91:8e:d6:e9:3b:83:88:35: 25:94:34:be:b6:03:96:bc:56:66:64:23:28:8a:29: 2c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:78:66:A6:60:F7:12:47:81:5E:85:1C:AA:2C:B7:97:2B:FD:16:BF X509v3 Authority Key Identifier: keyid:19:3E:93:B5:D1:DD:04:69:27:E6:49:A3:FC:23:28:E1:19:C4:08:63 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/m3hmpmD3EkeBXoUcqiy3lyv9Fr8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:b600::/32 Signature Algorithm: sha256WithRSAEncryption 3b:37:98:ae:de:0e:67:1e:83:e2:03:9c:0f:77:37:f1:b5:95: c0:d2:f3:28:76:fc:8f:3a:d0:ee:55:20:ae:4b:09:91:42:57: 63:8a:cf:cd:9e:d2:a8:d6:a5:e0:19:6e:7b:7e:36:3f:29:8a: 9d:ff:85:bc:46:be:71:a5:18:7f:af:03:00:a3:4f:68:4f:82: ae:b5:a9:18:4d:c5:61:e1:f9:c2:3d:47:71:d5:a8:ae:1c:12: 2c:0f:a3:f7:5b:f1:86:2e:2f:b8:df:2a:ba:51:41:d8:1e:00: de:98:d2:a0:c2:6a:7c:99:2c:8c:7c:d2:f2:ea:a2:20:b9:72: 07:8d:b9:09:cb:8f:4e:2a:fe:79:56:d8:93:95:82:fa:e4:dc: 1c:d9:d9:18:a5:43:2e:56:04:6a:9a:51:ae:80:a6:0a:df:44: 21:16:02:22:5f:e1:06:3e:25:17:3b:48:3a:20:be:e4:6c:83: 49:02:f4:aa:a9:ca:fb:69:76:a7:64:f1:2c:0e:7e:47:3f:6f: 8c:4e:56:bb:ea:2f:9d:0f:9d:b1:47:aa:76:20:40:f8:60:04: 8f:48:03:7e:f6:4f:fd:2f:c0:2d:5e:7d:50:74:55:ba:06:eb: 16:e4:1c:d0:a7:cf:f1:13:e5:a1:27:f4:8b:87:eb:d0:ae:4a: b7:11:67:66 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICHV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTkz RTkzQjVEMUREMDQ2OTI3RTY0OUEzRkMyMzI4RTExOUM0MDg2MzAeFw0yNTA0MDkw NjQ3NDNaFw0yNjA0MDkwNjM5NTZaMDMxMTAvBgNVBAMTKDlCNzg2NkE2NjBGNzEy NDc4MTVFODUxQ0FBMkNCNzk3MkJGRDE2QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP8m08/pxIxPPeMx6EKHH5Lsqy3KtS2FtRdu6L22yi+uWb2v51 FjvoH4Zjpcerh589AbiI6m2AcIJHzPd4VclFH83oWAUV9y4UbY6TJLCGscq84PEg UbhzSvCT2tvDGzfMaV9d+KyrUDsPa9Z9rKYrkfsXNKSEUl0atk+IVVFpmrQK1qFA 9zlKGbHT3qskX8AUg1n4GQJLIyEhqHxFysY80/fdpKL16GjUSuDT7jMc8Csb1uOB dC0UQeCYFeZZI0sVvLEWfPGxYSFIJ8VOiG7fTut/3BjB+WrLsL29UjaPM8arkjjs Xa6RjtbpO4OINSWUNL62A5a8VmZkIyiKKSz7AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUm3hmpmD3EkeBXoUcqiy3lyv9Fr8wHwYDVR0jBBgwFoAUGT6TtdHdBGkn5kmj /CMo4RnECGMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTky L0dUNlR0ZEhkQkdrbjVrbWpfQ01vNFJuRUNHTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvR1Q2VHRkSGRCR2tuNWttal9DTW80Um5FQ0dNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkyL20zaG1wbUQzRWtlQlhv VWNxaXkzbHl2OUZyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkALYAMA0GCSqGSIb3DQEBCwUAA4IBAQA7N5iu3g5nHoPiA5wPdzfxtZXA0vMo dvyPOtDuVSCuSwmRQldjis/NntKo1qXgGW57fjY/KYqd/4W8Rr5xpRh/rwMAo09o T4KutakYTcVh4fnCPUdx1aiuHBIsD6P3W/GGLi+43yq6UUHYHgDemNKgwmp8mSyM fNLy6qIguXIHjbkJy49OKv55VtiTlYL65Nwc2dkYpUMuVgRqmlGugKYK30QhFgIi X+EGPiUXO0g6IL7kbINJAvSqqcr7aXanZPEsDn5HP2+MTla76i+dD52xR6p2IED4 YASPSAN+9k/9L8AtXn1QdFW6BusW5BzQp8/xE+WhJ/SLh+vQrkq3EWdm -----END CERTIFICATE-----Generated at Sat Apr 26 14:31:36 2025 by rpki-client