$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/8ggzuu8Idwjpyhr_QFN93ijzODg.roa File: 8ggzuu8Idwjpyhr_QFN93ijzODg.roa (raw, json) Hash identifier: hdxDxCIe6LHgeeoCUI+sqcNhRcaeyp3QVpxcHR5puYY= Subject key identifier: F2:08:33:BA:EF:08:77:08:E9:CA:1A:FF:40:53:7D:DE:28:F3:38:38 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: C9 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/8ggzuu8Idwjpyhr_QFN93ijzODg.roa Signing time: Fri 06 Jun 2025 02:31:09 +0000 ROA not before: Fri 06 Jun 2025 02:31:09 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 24444 IP address blocks: 240a:40c2:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:31:09 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=F20833BAEF087708E9CA1AFF40537DDE28F33838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a2:06:48:55:76:07:58:67:1f:9a:45:a1:86: c1:81:34:d6:44:c9:32:67:71:77:7e:d0:a9:68:17: b9:c4:69:6f:dc:17:3a:68:7e:ba:0c:68:9a:c4:6b: 31:f3:fa:26:63:a0:b9:55:62:b0:ab:ca:74:50:ca: 4b:a2:c1:9a:11:7b:79:1d:14:19:91:8f:e4:2a:26: 64:c0:87:1a:c3:28:7a:80:59:db:d0:aa:f7:22:b5: 46:37:aa:a2:26:ad:50:4d:89:52:1c:2b:ac:72:08: 80:7c:f5:ec:8d:99:67:ab:fe:3d:1b:e6:96:0d:99: 14:34:d8:c1:27:20:db:77:ff:cb:5d:51:f7:da:12: eb:b1:12:ad:3a:4e:a6:6a:47:a5:bb:e2:c5:7c:5d: cb:f0:e3:40:96:8a:7d:9b:f0:bd:48:1b:90:66:f4: c1:45:a4:49:90:f0:14:ed:4e:43:24:84:6a:90:8b: 82:e0:43:45:70:70:f1:fb:cd:55:4f:a4:83:14:35: e3:91:16:c9:6b:f6:fc:4d:b3:3b:96:bf:ba:d5:d9: 94:ab:fd:34:b1:49:c7:33:41:24:03:dd:8a:1f:3e: 15:a8:80:dc:57:7a:8d:b8:2a:0d:9e:ad:5e:d0:8c: 80:52:af:5a:1c:c9:76:18:09:67:18:7b:67:38:ca: 9a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:08:33:BA:EF:08:77:08:E9:CA:1A:FF:40:53:7D:DE:28:F3:38:38 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/8ggzuu8Idwjpyhr_QFN93ijzODg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c2:4000::/44 Signature Algorithm: sha256WithRSAEncryption 6d:d3:09:44:e5:1b:b5:66:ab:10:3a:c5:93:1c:f7:89:7e:01: c3:ae:5e:bf:dc:c6:7b:24:8f:21:46:c0:72:39:b2:04:d4:76: 66:df:a9:be:ad:7f:a9:78:17:d1:ef:47:34:f5:cd:87:55:f1: 96:66:91:c6:08:12:0a:28:14:1c:cf:db:4c:a9:ff:13:c7:52: 26:e1:6d:00:9f:df:23:b8:b9:d3:2c:61:50:70:8e:8f:c7:d1: 18:79:b2:c7:d4:c1:b7:83:8f:62:96:63:cc:be:db:c9:67:6d: 93:d2:bb:e2:ec:c3:fa:35:5c:db:1f:ca:ae:78:a7:2c:03:f8: 6c:24:c3:9e:0d:ca:a5:f5:3b:85:20:b8:26:00:4d:69:40:3d: 63:0d:12:94:e1:9e:02:9c:be:9d:f0:47:96:c0:e5:1c:e2:6c: fe:d4:15:b1:5e:90:95:a5:cb:86:1d:a1:2c:0c:a8:76:1a:dd: 64:45:78:f3:07:69:01:76:e3:86:a7:75:e0:51:55:83:00:9d: f6:93:10:ab:2a:a3:4b:aa:46:f3:53:48:31:f3:51:13:5f:73: 77:b3:a0:a8:0f:a5:c8:83:ba:62:49:dc:d1:98:7f:96:bb:30: e1:f0:da:71:cf:de:f7:68:a0:64:41:a4:0f:99:d6:5b:e4:5d: c2:0b:2e:87 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjMxMDlaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKEYyMDgzM0JBRUYwODc3 MDhFOUNBMUFGRjQwNTM3RERFMjhGMzM4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJogZIVXYHWGcfmkWhhsGBNNZEyTJncXd+0KloF7nEaW/cFzpo froMaJrEazHz+iZjoLlVYrCrynRQykuiwZoRe3kdFBmRj+QqJmTAhxrDKHqAWdvQ qvcitUY3qqImrVBNiVIcK6xyCIB89eyNmWer/j0b5pYNmRQ02MEnINt3/8tdUffa EuuxEq06TqZqR6W74sV8Xcvw40CWin2b8L1IG5Bm9MFFpEmQ8BTtTkMkhGqQi4Lg Q0VwcPH7zVVPpIMUNeORFslr9vxNszuWv7rV2ZSr/TSxScczQSQD3YofPhWogNxX eo24Kg2erV7QjIBSr1ocyXYYCWcYe2c4yprTAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU8ggzuu8Idwjpyhr/QFN93ijzODgwHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvOGdnenV1OElkd2pw eWhyX1FGTjkzaWp6T0RnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMJAADANBgkqhkiG9w0BAQsFAAOCAQEAbdMJROUbtWarEDrFkxz3iX4B w65ev9zGeySPIUbAcjmyBNR2Zt+pvq1/qXgX0e9HNPXNh1XxlmaRxggSCigUHM/b TKn/E8dSJuFtAJ/fI7i50yxhUHCOj8fRGHmyx9TBt4OPYpZjzL7byWdtk9K74uzD +jVc2x/KrninLAP4bCTDng3KpfU7hSC4JgBNaUA9Yw0SlOGeApy+nfBHlsDlHOJs /tQVsV6QlaXLhh2hLAyodhrdZEV48wdpAXbjhqd14FFVgwCd9pMQqyqjS6pG81NI MfNRE19zd7OgqA+lyIO6Yknc0Zh/lrsw4fDacc/e92igZEGkD5nWW+Rdwgsuhw== -----END CERTIFICATE-----Generated at Sun Jun 22 05:26:18 2025 by rpki-client