$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/N74aemH1yN9WIcF8qhsgwoovDf4.roa File: N74aemH1yN9WIcF8qhsgwoovDf4.roa (raw, json) Hash identifier: /VvAw4wkG98cyxRCjddAtP+doC0Y57qj8p8EvTNLb0c= Subject key identifier: 37:BE:1A:7A:61:F5:C8:DF:56:21:C1:7C:AA:1B:20:C2:8A:2F:0D:FE Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: F2 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/N74aemH1yN9WIcF8qhsgwoovDf4.roa Signing time: Fri 06 Jun 2025 02:52:22 +0000 ROA not before: Fri 06 Jun 2025 02:52:22 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:40c1:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:52:22 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=37BE1A7A61F5C8DF5621C17CAA1B20C28A2F0DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f2:0b:a9:8f:ee:de:c5:19:f4:7e:cf:49:51: d5:1c:fa:14:07:59:1b:16:98:26:82:d5:12:e5:35: 9e:c7:2e:47:8e:b8:2c:22:0b:f8:45:42:95:09:60: f6:02:90:d7:d1:65:79:70:68:33:55:98:28:47:f8: 1b:d8:a8:79:07:3c:04:df:dc:43:98:82:fd:46:06: e8:41:92:fe:37:c4:43:56:e9:4f:e9:1a:8d:b9:34: 99:0b:ce:38:b8:c1:0a:ba:f2:d4:5d:70:63:e4:72: 03:31:b4:9b:f0:c1:3d:34:8c:e8:cd:e2:fe:81:1c: 1f:d9:34:da:76:44:a9:d3:74:e3:9d:2c:cf:2a:78: 2b:e3:7c:06:18:84:43:1d:a4:ec:da:ec:1e:3e:84: c5:db:39:c7:15:c4:1a:bb:4e:41:4f:ea:34:7d:ba: 31:f4:1c:46:cc:ac:a7:3e:f5:1e:4a:27:e6:13:4f: c5:31:e9:4d:b0:a2:3b:9d:f3:93:97:00:7a:e5:ae: b9:65:de:f3:e1:9a:f8:9d:e0:79:da:48:80:34:99: f2:36:e5:c7:ed:0b:68:69:06:7f:f5:55:68:82:26: 22:d8:bd:6d:8d:93:e2:bb:25:cd:40:ae:b6:30:90: 2c:39:98:d6:ef:17:d3:15:5e:9e:71:f2:73:14:cb: 32:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BE:1A:7A:61:F5:C8:DF:56:21:C1:7C:AA:1B:20:C2:8A:2F:0D:FE X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/N74aemH1yN9WIcF8qhsgwoovDf4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c1:10::/44 Signature Algorithm: sha256WithRSAEncryption 48:de:4d:c6:f0:d6:9c:c9:52:88:0d:f7:b0:e2:0a:60:ee:8a: 67:5a:4e:b6:26:1e:39:57:4b:8a:cc:76:ff:76:30:ef:fa:b7: 39:11:0f:19:90:05:2c:0d:81:c6:6e:63:39:e9:39:bd:6d:32: 53:44:10:cf:ea:7f:db:a8:5c:d5:55:b7:68:41:21:4e:ae:3a: f5:74:35:9f:00:f3:ca:d6:55:20:a6:06:e6:d7:9e:b6:c5:0f: c5:8a:0d:c9:a0:fc:06:0e:5e:32:0c:b1:50:34:4c:f4:a2:31: 59:cd:42:73:e2:c9:11:cb:da:b8:58:b4:e7:a1:cc:fc:2d:9c: b3:91:6a:5f:ef:43:0a:e4:e0:62:23:b6:6b:09:47:86:d2:57: e8:eb:9a:43:8e:56:a9:ed:1f:b7:57:7e:ff:0c:8d:78:f4:9e: 14:89:51:25:ca:ea:39:dd:9d:98:e9:64:b8:f0:2f:ec:91:b6: 6c:19:3a:24:6b:e8:bb:95:fa:aa:d1:46:ef:5a:38:2d:8c:86: 42:f6:34:15:bc:42:e9:ac:3b:75:34:f6:a0:97:8c:00:af:cc: e1:5d:e8:99:1c:87:9f:e5:50:d2:aa:cf:96:fd:53:48:f3:0d: 8c:b9:37:af:84:cb:12:db:32:89:a0:6b:fc:4b:af:49:ba:df: d1:69:12:de -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjUyMjJaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKDM3QkUxQTdBNjFGNUM4 REY1NjIxQzE3Q0FBMUIyMEMyOEEyRjBERkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCg8gupj+7exRn0fs9JUdUc+hQHWRsWmCaC1RLlNZ7HLkeOuCwi C/hFQpUJYPYCkNfRZXlwaDNVmChH+BvYqHkHPATf3EOYgv1GBuhBkv43xENW6U/p Go25NJkLzji4wQq68tRdcGPkcgMxtJvwwT00jOjN4v6BHB/ZNNp2RKnTdOOdLM8q eCvjfAYYhEMdpOza7B4+hMXbOccVxBq7TkFP6jR9ujH0HEbMrKc+9R5KJ+YTT8Ux 6U2wojud85OXAHrlrrll3vPhmvid4HnaSIA0mfI25cftC2hpBn/1VWiCJiLYvW2N k+K7Jc1ArrYwkCw5mNbvF9MVXp5x8nMUyzLnAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUN74aemH1yN9WIcF8qhsgwoovDf4wHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvTjc0YWVtSDF5TjlX SWNGOHFoc2d3b292RGY0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMEAEDANBgkqhkiG9w0BAQsFAAOCAQEASN5NxvDWnMlSiA33sOIKYO6K Z1pOtiYeOVdLisx2/3Yw7/q3OREPGZAFLA2Bxm5jOek5vW0yU0QQz+p/26hc1VW3 aEEhTq469XQ1nwDzytZVIKYG5teetsUPxYoNyaD8Bg5eMgyxUDRM9KIxWc1Cc+LJ EcvauFi056HM/C2cs5FqX+9DCuTgYiO2awlHhtJX6OuaQ45Wqe0ft1d+/wyNePSe FIlRJcrqOd2dmOlkuPAv7JG2bBk6JGvou5X6qtFG71o4LYyGQvY0FbxC6aw7dTT2 oJeMAK/M4V3omRyHn+VQ0qrPlv1TSPMNjLk3r4TLEtsyiaBr/EuvSbrf0WkS3g== -----END CERTIFICATE-----Generated at Sun Jun 22 03:30:20 2025 by rpki-client