$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/TtTRKDa8GeCggHLQeSgfuWlYytE.roa File: TtTRKDa8GeCggHLQeSgfuWlYytE.roa (raw, json) Hash identifier: GZ3phOAWtdc/Hb532suLlm/rGPpHgWSEEsFQzOLUz/Q= Subject key identifier: 4E:D4:D1:28:36:BC:19:E0:A0:80:72:D0:79:28:1F:B9:69:58:CA:D1 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: E6 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/TtTRKDa8GeCggHLQeSgfuWlYytE.roa Signing time: Fri 06 Jun 2025 02:36:25 +0000 ROA not before: Fri 06 Jun 2025 02:36:25 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:40c3:c010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:36:25 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=4ED4D12836BC19E0A08072D079281FB96958CAD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:12:99:b8:43:fc:d3:e1:fa:a0:92:43:f4: 4d:b6:ca:82:99:7b:08:85:e0:a4:7e:72:14:f0:81: a0:ef:cc:43:61:6f:53:26:39:a7:a0:f8:e9:c4:df: e7:1f:a1:36:3b:5c:de:05:fc:df:cc:a5:de:d9:c5: 95:47:7d:c1:50:63:a2:a5:75:f7:14:3e:dd:7d:83: 8e:42:a2:be:62:fe:bf:14:82:07:f7:ed:13:e5:82: ad:c0:29:f5:5e:7e:94:dc:cb:3d:40:89:c3:d6:f9: 3f:82:86:8b:16:65:bf:ab:d6:02:47:00:69:fe:b5: 3c:cc:12:cf:58:91:57:d3:9c:f0:1f:29:1a:4b:b2: df:36:db:0a:91:28:59:cb:20:3f:89:ff:40:27:69: f6:eb:cc:0d:83:a0:da:a1:bf:14:ea:19:0e:04:46: 8d:26:95:18:54:4b:5a:59:7d:81:29:61:6e:3c:de: c3:a8:d8:c6:11:05:43:c6:1f:f3:92:7f:62:31:d7: 20:cf:cd:8c:d1:5e:b0:40:5f:bd:57:7f:8e:f5:a2: 7e:95:9b:e8:61:4e:2e:78:e7:ef:43:ff:0a:4f:fb: 5e:3e:07:e1:b5:5b:96:90:95:a7:d5:8c:84:55:65: bf:7f:97:f9:4c:a6:76:75:49:92:5b:20:83:03:2e: 7f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D4:D1:28:36:BC:19:E0:A0:80:72:D0:79:28:1F:B9:69:58:CA:D1 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/TtTRKDa8GeCggHLQeSgfuWlYytE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c3:c010::/44 Signature Algorithm: sha256WithRSAEncryption 6c:70:ab:bf:a8:31:7b:69:e9:87:9e:32:8a:c0:e3:1f:46:bd: 61:54:21:ec:46:7f:65:2b:a4:dd:1e:0c:84:db:24:77:ad:6a: fa:ee:9f:3a:27:a9:94:11:c8:45:8d:0b:da:54:f9:a9:8d:6d: 06:47:a2:6c:d4:e4:c2:53:eb:30:bb:cd:fb:ad:da:93:2a:32: eb:32:dc:e1:2b:f9:3f:38:00:98:09:14:0c:7a:74:c2:ba:c4: fa:1e:b9:30:ee:55:11:bf:d0:ec:88:96:67:4f:df:21:1c:c8: ed:f3:1c:7e:f3:d1:2d:6f:a3:25:e3:7f:b6:d6:61:d9:0c:92: 44:64:91:bc:65:8d:63:b4:7e:09:05:53:c4:ab:80:5c:5b:3a: 69:f6:28:01:e9:00:6f:22:6e:6b:e4:ef:f1:6b:d1:48:72:61: cf:7d:8e:f2:56:4f:18:11:07:ce:41:60:d0:7f:36:c4:22:f1: 65:cf:eb:37:c1:72:6a:16:24:ad:5f:f6:6b:d4:89:da:45:89: ff:ad:27:f1:cd:ec:da:c3:ac:ce:ea:60:6d:dd:aa:0c:54:88: da:07:aa:9c:f3:f7:23:9f:52:c8:48:c7:cd:db:46:e9:0b:fa: 2c:af:65:71:f0:84:cf:67:01:e8:21:19:2e:4a:3e:79:36:78: 28:bd:22:c1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjM2MjVaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKDRFRDREMTI4MzZCQzE5 RTBBMDgwNzJEMDc5MjgxRkI5Njk1OENBRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJkBKZuEP80+H6oJJD9E22yoKZewiF4KR+chTwgaDvzENhb1Mm Oaeg+OnE3+cfoTY7XN4F/N/Mpd7ZxZVHfcFQY6KldfcUPt19g45Cor5i/r8Uggf3 7RPlgq3AKfVefpTcyz1AicPW+T+ChosWZb+r1gJHAGn+tTzMEs9YkVfTnPAfKRpL st822wqRKFnLID+J/0AnafbrzA2DoNqhvxTqGQ4ERo0mlRhUS1pZfYEpYW483sOo 2MYRBUPGH/OSf2Ix1yDPzYzRXrBAX71Xf471on6Vm+hhTi545+9D/wpP+14+B+G1 W5aQlafVjIRVZb9/l/lMpnZ1SZJbIIMDLn/LAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUTtTRKDa8GeCggHLQeSgfuWlYytEwHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvVHRUUktEYThHZUNn Z0hMUWVTZ2Z1V2xZeXRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMPAEDANBgkqhkiG9w0BAQsFAAOCAQEAbHCrv6gxe2nph54yisDjH0a9 YVQh7EZ/ZSuk3R4MhNskd61q+u6fOieplBHIRY0L2lT5qY1tBkeibNTkwlPrMLvN +63akyoy6zLc4Sv5PzgAmAkUDHp0wrrE+h65MO5VEb/Q7IiWZ0/fIRzI7fMcfvPR LW+jJeN/ttZh2QySRGSRvGWNY7R+CQVTxKuAXFs6afYoAekAbyJua+Tv8WvRSHJh z32O8lZPGBEHzkFg0H82xCLxZc/rN8FyahYkrV/2a9SJ2kWJ/60n8c3s2sOszupg bd2qDFSI2geqnPP3I59SyEjHzdtG6Qv6LK9lcfCEz2cB6CEZLko+eTZ4KL0iwQ== -----END CERTIFICATE-----Generated at Sat Jun 21 16:50:41 2025 by rpki-client