$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/YdIpXHSU1qs-JoaC2kMAlHTt904.roa File: YdIpXHSU1qs-JoaC2kMAlHTt904.roa (raw, json) Hash identifier: 3/L905jY/aZ69C40X1lov/EJTPzjK3mxeKVvFDjYlVA= Subject key identifier: 61:D2:29:5C:74:94:D6:AB:3E:26:86:82:DA:43:00:94:74:ED:F7:4E Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 98 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/YdIpXHSU1qs-JoaC2kMAlHTt904.roa Signing time: Fri 06 Jun 2025 01:44:56 +0000 ROA not before: Fri 06 Jun 2025 01:44:56 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56040 IP address blocks: 240a:42cc::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 18:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 01:44:56 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=61D2295C7494D6AB3E268682DA43009474EDF74E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d6:fa:c4:34:9a:89:e3:14:f5:24:f2:58:64: c9:17:57:f9:fe:ed:3d:c8:67:7c:ed:38:e3:ce:a5: 92:ce:97:fc:35:01:89:6b:01:f7:11:32:d6:1c:0c: 12:4b:f2:b3:31:d2:78:ba:e7:24:50:0c:2a:af:ea: f0:fc:83:92:93:3a:a4:8e:07:3d:fd:14:1c:b3:d3: 30:57:28:78:0d:d5:76:9f:65:5c:fa:62:cf:2a:c5: 0f:ce:5f:ed:f6:62:54:5e:bd:3f:f8:4f:ab:37:e6: 91:20:6a:43:96:9c:f3:e8:bf:8f:6a:42:9b:d9:3f: 86:81:d8:0f:00:5c:09:05:c1:bd:9c:48:22:d0:6c: 17:b7:b6:c8:21:66:c3:1b:2f:f9:03:7c:19:4b:3c: b8:d7:bb:23:74:f3:f3:7f:c5:26:f8:ba:ab:8f:3b: 75:01:3e:2f:f3:13:63:c8:5c:be:28:90:e2:8b:5f: 40:60:7d:d9:f2:96:1e:23:10:3d:81:25:f0:53:e7: 93:78:35:78:38:54:0b:42:e8:bb:7b:1a:99:38:dc: 85:21:db:11:d6:12:bf:83:36:0c:63:f5:0d:0c:20: 06:ed:b5:5a:88:53:27:7d:7a:b2:e1:b7:79:40:36: ba:80:38:2f:25:fc:ef:72:f5:b4:02:c1:1a:ff:92: a2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D2:29:5C:74:94:D6:AB:3E:26:86:82:DA:43:00:94:74:ED:F7:4E X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/YdIpXHSU1qs-JoaC2kMAlHTt904.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42cc::/31 Signature Algorithm: sha256WithRSAEncryption 8d:e5:c2:11:c4:f2:04:c3:de:12:e0:63:ab:15:e9:e2:66:73: 9f:e6:a6:67:dd:a6:ac:3b:50:4c:6e:b9:9f:75:ad:c5:e2:40: f7:9f:ed:4d:ac:48:b1:9a:88:66:c6:67:c4:dc:96:ff:4c:f9: 2c:a3:5c:39:ee:ae:ba:c2:8c:0c:1f:43:14:15:29:93:94:2d: f2:32:3f:1c:3c:46:11:ee:b4:48:d6:a0:fa:4c:b5:ff:40:f9: d4:a9:31:60:25:08:b3:d1:d3:53:d0:e4:66:65:9c:aa:77:ed: 2e:e3:a3:ac:9e:37:72:bd:bf:17:6a:c1:a3:4b:b8:f2:1e:53: 54:2c:e1:87:7d:b2:fe:d9:5c:1f:18:38:ab:ad:49:87:12:31: 4f:7c:da:b3:96:ec:2c:f3:65:ab:b4:c1:22:8d:46:5d:ef:3b: 96:3d:aa:fc:af:0d:dd:c0:40:9b:52:f2:ef:4a:02:3e:ba:26: 9e:b8:84:7e:bd:25:78:8e:2a:09:96:d9:35:05:fd:91:8a:4e: 48:39:73:6e:87:e6:ee:79:36:27:73:17:64:b0:0b:5e:59:5d: fd:2a:2f:05:3a:91:16:35:3e:4e:f5:55:80:16:e8:7c:04:63: c9:76:52:ef:24:b0:75:74:6d:7e:02:b5:1f:70:ee:40:0f:42: 05:06:39:77 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MTQ0NTZaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKDYxRDIyOTVDNzQ5NEQ2 QUIzRTI2ODY4MkRBNDMwMDk0NzRFREY3NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC91vrENJqJ4xT1JPJYZMkXV/n+7T3IZ3ztOOPOpZLOl/w1AYlr AfcRMtYcDBJL8rMx0ni65yRQDCqv6vD8g5KTOqSOBz39FByz0zBXKHgN1XafZVz6 Ys8qxQ/OX+32YlRevT/4T6s35pEgakOWnPPov49qQpvZP4aB2A8AXAkFwb2cSCLQ bBe3tsghZsMbL/kDfBlLPLjXuyN08/N/xSb4uquPO3UBPi/zE2PIXL4okOKLX0Bg fdnylh4jED2BJfBT55N4NXg4VAtC6Lt7Gpk43IUh2xHWEr+DNgxj9Q0MIAbttVqI Uyd9erLht3lANrqAOC8l/O9y9bQCwRr/kqLhAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUYdIpXHSU1qs+JoaC2kMAlHTt904wHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvWWRJcFhIU1UxcXMt Sm9hQzJrTUFsSFR0OTA0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFASQKQswwDQYJKoZIhvcNAQELBQADggEBAI3lwhHE8gTD3hLgY6sV6eJmc5/m pmfdpqw7UExuuZ91rcXiQPef7U2sSLGaiGbGZ8Tclv9M+SyjXDnurrrCjAwfQxQV KZOULfIyPxw8RhHutEjWoPpMtf9A+dSpMWAlCLPR01PQ5GZlnKp37S7jo6yeN3K9 vxdqwaNLuPIeU1Qs4Yd9sv7ZXB8YOKutSYcSMU982rOW7CzzZau0wSKNRl3vO5Y9 qvyvDd3AQJtS8u9KAj66Jp64hH69JXiOKgmW2TUF/ZGKTkg5c26H5u55NidzF2Sw C15ZXf0qLwU6kRY1Pk71VYAW6HwEY8l2Uu8ksHV0bX4CtR9w7kAPQgUGOXc= -----END CERTIFICATE-----Generated at Wed Nov 5 15:26:07 2025 by rpki-client