$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/8PB2Mbd63MHKOP7rr072Frqp21M.roa File: 8PB2Mbd63MHKOP7rr072Frqp21M.roa (raw, json) Hash identifier: kQK3wO9x8z815rjNIgbaSRoYIA5xItxFY9Jqs1cHB+E= Subject key identifier: F0:F0:76:31:B7:7A:DC:C1:CA:38:FE:EB:AF:4E:F6:16:BA:A9:DB:53 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: E5 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/8PB2Mbd63MHKOP7rr072Frqp21M.roa Signing time: Fri 06 Jun 2025 02:36:25 +0000 ROA not before: Fri 06 Jun 2025 02:36:25 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:40c3:a010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:36:25 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=F0F07631B77ADCC1CA38FEEBAF4EF616BAA9DB53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:80:68:f6:4e:88:da:de:6e:4a:da:f5:7d: 5e:ff:50:fb:66:bb:b6:b6:15:43:ab:c0:76:ea:02: 19:c7:0d:5b:d0:ea:c1:6a:de:37:1e:03:d1:dd:e3: 93:93:7e:46:c4:a2:7a:3f:45:f0:96:eb:d0:98:52: 1f:81:72:18:8a:97:6d:f3:aa:f9:85:a8:f5:fe:6f: 2e:69:c8:89:4a:22:86:57:3e:d9:e7:66:5f:ed:63: d8:3f:7d:21:f1:78:14:a0:27:f9:70:48:48:8e:45: ac:a8:e0:47:ca:4c:5e:f0:f9:2c:44:20:a1:41:09: 7f:0e:af:62:15:66:1f:ec:b6:de:24:3d:4b:fb:00: b7:a8:09:31:34:dd:3a:2b:11:1a:e1:7c:62:ca:86: ec:68:67:7a:0a:8c:c5:3b:68:2a:6c:75:29:96:8b: e5:fa:8c:90:e8:05:40:38:e5:b5:fb:1c:f6:bd:d7: f2:00:4d:75:3c:be:3c:0f:4a:1f:11:39:02:c7:00: b5:73:b8:a7:ee:65:f7:b9:21:01:cd:7a:2e:4f:ca: f4:47:86:c6:15:09:61:21:42:83:35:62:f7:1d:28: ee:03:1d:18:d7:52:d9:f7:e4:66:f0:8f:dc:0c:86: 42:cb:d1:c8:fc:11:c5:2d:3d:5a:06:ab:14:e9:53: 61:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F0:76:31:B7:7A:DC:C1:CA:38:FE:EB:AF:4E:F6:16:BA:A9:DB:53 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/8PB2Mbd63MHKOP7rr072Frqp21M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c3:a010::/44 Signature Algorithm: sha256WithRSAEncryption 84:68:d3:fb:73:4a:c8:35:d4:37:05:96:bb:c2:29:25:9a:7a: 15:21:8d:2d:11:70:7f:c5:49:98:0a:d3:36:3f:ab:27:a2:3d: 67:e8:bc:54:3b:ec:85:f9:24:c2:2d:6d:36:76:43:a5:4f:c5: cd:f0:02:5b:44:b5:27:c3:da:bb:c4:29:68:56:b2:5f:92:93: f9:d7:cb:0e:94:2b:55:c7:d7:69:6f:6c:90:dd:e1:b3:d7:41: 40:b2:f9:bc:3f:71:5e:43:e8:f3:6b:55:e0:d4:2d:74:72:cf: c5:c9:e9:b6:a7:2f:ff:3c:51:3c:ba:bc:d2:33:fb:42:da:5a: ab:06:c9:c3:0c:6b:af:b0:ed:f5:b9:2e:6f:84:ba:89:eb:8d: 8d:c4:fc:f2:6e:be:f5:dd:fd:90:9c:07:70:ed:42:b7:b6:b6: c3:3a:ce:fb:23:0b:d8:a5:49:47:70:8c:36:f3:ce:04:d9:78: e7:16:80:cc:1e:57:7c:e9:de:08:9c:df:f6:1b:85:eb:20:8c: 55:1d:51:5c:8a:3e:29:6e:3f:0e:25:45:64:56:01:58:09:09: ad:44:db:b6:c0:d9:0d:18:54:5f:3a:5e:3b:67:e1:7e:65:68: 95:fb:57:50:06:a6:df:9c:a7:f0:f0:65:66:99:f4:f5:44:2d: 74:9e:99:31 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjM2MjVaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKEYwRjA3NjMxQjc3QURD QzFDQTM4RkVFQkFGNEVGNjE2QkFBOURCNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwo4Bo9k6I2t5uStr1fV7/UPtmu7a2FUOrwHbqAhnHDVvQ6sFq 3jceA9Hd45OTfkbEono/RfCW69CYUh+BchiKl23zqvmFqPX+by5pyIlKIoZXPtnn Zl/tY9g/fSHxeBSgJ/lwSEiORayo4EfKTF7w+SxEIKFBCX8Or2IVZh/stt4kPUv7 ALeoCTE03TorERrhfGLKhuxoZ3oKjMU7aCpsdSmWi+X6jJDoBUA45bX7HPa91/IA TXU8vjwPSh8ROQLHALVzuKfuZfe5IQHNei5PyvRHhsYVCWEhQoM1YvcdKO4DHRjX Utn35Gbwj9wMhkLL0cj8EcUtPVoGqxTpU2FbAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU8PB2Mbd63MHKOP7rr072Frqp21MwHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvOFBCMk1iZDYzTUhL T1A3cnIwNzJGcnFwMjFNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMOgEDANBgkqhkiG9w0BAQsFAAOCAQEAhGjT+3NKyDXUNwWWu8IpJZp6 FSGNLRFwf8VJmArTNj+rJ6I9Z+i8VDvshfkkwi1tNnZDpU/FzfACW0S1J8Pau8Qp aFayX5KT+dfLDpQrVcfXaW9skN3hs9dBQLL5vD9xXkPo82tV4NQtdHLPxcnptqcv /zxRPLq80jP7QtpaqwbJwwxrr7Dt9bkub4S6ieuNjcT88m6+9d39kJwHcO1Ct7a2 wzrO+yML2KVJR3CMNvPOBNl45xaAzB5XfOneCJzf9huF6yCMVR1RXIo+KW4/DiVF ZFYBWAkJrUTbtsDZDRhUXzpeO2fhfmVolftXUAam35yn8PBlZpn09UQtdJ6ZMQ== -----END CERTIFICATE-----Generated at Fri Jun 20 05:08:03 2025 by rpki-client