$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/EGYiNum0UMEykHBZO2TtoM9i9xo.roa File: EGYiNum0UMEykHBZO2TtoM9i9xo.roa (raw, json) Hash identifier: rnxxv8X9EXyRxEwstg+AE76ilvg0OR7QD0uJQwyAmEI= Subject key identifier: 10:66:22:36:E9:B4:50:C1:32:90:70:59:3B:64:ED:A0:CF:62:F7:1A Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 06 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/EGYiNum0UMEykHBZO2TtoM9i9xo.roa Signing time: Tue 27 May 2025 07:54:11 +0000 ROA not before: Tue 27 May 2025 07:54:11 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 146788 IP address blocks: 240a:40aa:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 09:43:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 07:54:11 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=10662236E9B450C1329070593B64EDA0CF62F71A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0a:cd:13:95:ce:b5:d3:eb:9b:22:e4:ad:2d: 9a:6c:8a:92:69:20:de:42:cf:03:97:83:ab:d8:47: 1f:8e:1a:2c:7a:41:4a:aa:43:b5:72:70:46:3d:ed: 7c:20:11:db:fb:42:8a:54:6c:59:bf:28:40:82:bb: 14:be:37:84:9e:2d:03:44:4e:d3:53:a4:7d:ac:2e: 83:f7:e2:53:f5:a1:62:06:5f:0c:95:4c:f4:96:cf: ae:a4:bc:5e:99:d4:6c:3c:b1:50:9b:6a:9e:fa:33: 4a:2c:8d:63:32:ac:53:7e:00:3c:9c:5d:50:5b:e6: 6d:fb:2c:ce:77:34:9b:38:30:68:4c:c0:e2:a7:5c: fb:ab:a6:96:18:56:24:59:41:a2:0c:0b:bb:15:fc: 03:dd:ab:5a:aa:b0:a1:bf:53:af:86:d6:06:4b:a6: bb:3d:33:bc:04:a3:73:c5:0a:4e:d8:ee:bc:3f:14: c2:46:ed:d5:87:a5:05:9f:c3:24:63:36:2e:d7:ac: 0d:ce:63:c2:8d:f9:8f:62:00:ae:62:dd:c0:76:df: e1:fa:05:48:c4:ac:62:6b:54:45:a0:c8:3c:c7:37: cf:9d:1d:58:78:f3:b1:94:28:98:37:d4:d4:00:34: a2:96:94:c3:6a:0c:f9:97:43:7b:f6:f6:74:c2:18: 78:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:66:22:36:E9:B4:50:C1:32:90:70:59:3B:64:ED:A0:CF:62:F7:1A X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/EGYiNum0UMEykHBZO2TtoM9i9xo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40aa:c000::/48 Signature Algorithm: sha256WithRSAEncryption b8:c4:67:88:07:77:dd:69:9c:12:8b:75:54:a8:75:87:a5:dc: 75:a2:7b:1f:3c:71:2f:43:30:97:61:3a:09:86:2c:eb:9f:51: b9:43:f7:4c:cf:78:92:cd:a5:f4:06:54:5b:49:21:2e:3c:7a: 23:19:9f:eb:08:b3:52:f0:bf:f4:34:af:c2:6b:4e:d0:a7:07: 56:5b:69:7e:b6:7e:5d:0b:a5:5c:a2:3c:ef:6f:89:32:46:81: 5b:d7:78:81:db:72:ee:2b:1f:1e:14:a0:bb:82:7b:35:b5:ad: 8e:fc:49:9b:b7:af:af:ea:79:83:a0:80:26:d9:56:63:ac:dc: 1c:56:c8:f4:78:97:52:60:db:ac:b1:75:ea:dc:5c:8f:98:fd: 0b:e4:0b:93:55:f1:ad:5d:74:a3:ba:c8:39:04:01:2e:1b:65: 83:e0:1d:48:15:03:b5:5b:a0:b4:00:6c:e5:07:7c:36:d4:64: 13:da:5f:9e:5f:51:79:b4:37:17:42:7c:af:d0:3c:d3:6d:4f: 13:52:51:66:46:78:6c:ac:69:64:a0:3f:83:06:f6:7b:f4:b8: 53:da:62:fb:51:2f:5c:8d:2c:f4:f3:a3:e8:5e:56:a8:4f:bb: fd:9c:ae:3b:59:0d:e3:e5:b1:81:4d:fb:7f:40:79:4b:6c:4d: a0:03:fd:0c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA3 NTQxMVoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoMTA2NjIyMzZFOUI0NTBD MTMyOTA3MDU5M0I2NEVEQTBDRjYyRjcxQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO0KzROVzrXT65si5K0tmmyKkmkg3kLPA5eDq9hHH44aLHpBSqpD tXJwRj3tfCAR2/tCilRsWb8oQIK7FL43hJ4tA0RO01Okfawug/fiU/WhYgZfDJVM 9JbPrqS8XpnUbDyxUJtqnvozSiyNYzKsU34APJxdUFvmbfssznc0mzgwaEzA4qdc +6umlhhWJFlBogwLuxX8A92rWqqwob9Tr4bWBkumuz0zvASjc8UKTtjuvD8Uwkbt 1YelBZ/DJGM2LtesDc5jwo35j2IArmLdwHbf4foFSMSsYmtURaDIPMc3z50dWHjz sZQomDfU1AA0opaUw2oM+ZdDe/b2dMIYePECAwEAAaOCAfYwggHyMB0GA1UdDgQW BBQQZiI26bRQwTKQcFk7ZO2gz2L3GjAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi9FR1lpTnVtMFVNRXlr SEJaTzJUdG9NOWk5eG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ AwcAJApAqsAAMA0GCSqGSIb3DQEBCwUAA4IBAQC4xGeIB3fdaZwSi3VUqHWHpdx1 onsfPHEvQzCXYToJhizrn1G5Q/dMz3iSzaX0BlRbSSEuPHojGZ/rCLNS8L/0NK/C a07QpwdWW2l+tn5dC6Vcojzvb4kyRoFb13iB23LuKx8eFKC7gns1ta2O/Embt6+v 6nmDoIAm2VZjrNwcVsj0eJdSYNussXXq3FyPmP0L5AuTVfGtXXSjusg5BAEuG2WD 4B1IFQO1W6C0AGzlB3w21GQT2l+eX1F5tDcXQnyv0DzTbU8TUlFmRnhsrGlkoD+D BvZ79LhT2mL7US9cjSz086PoXlaoT7v9nK47WQ3j5bGBTft/QHlLbE2gA/0M -----END CERTIFICATE-----Generated at Sat Jun 21 08:51:31 2025 by rpki-client