$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/_zdhVRyu0oeww70V_fe7Vrnmyf0.roa File: _zdhVRyu0oeww70V_fe7Vrnmyf0.roa (raw, json) Hash identifier: d9h3QANmZBroGBtChZ0cmtvzCjWRhVCJDNF8wR0UPec= Subject key identifier: FF:37:61:55:1C:AE:D2:87:B0:C3:BD:15:FD:F7:BB:56:B9:E6:C9:FD Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: B1 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/_zdhVRyu0oeww70V_fe7Vrnmyf0.roa Signing time: Fri 06 Jun 2025 02:22:21 +0000 ROA not before: Fri 06 Jun 2025 02:22:21 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:40c2::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:22:21 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=FF3761551CAED287B0C3BD15FDF7BB56B9E6C9FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ff:ee:28:94:74:ec:73:28:3f:2a:58:93:09: 09:4a:a8:10:08:b7:0d:b6:a2:07:77:1d:18:e3:f6: 45:fd:76:c6:9d:f3:81:12:57:a0:51:77:05:32:a0: 5a:84:2a:e7:7c:92:b1:52:b0:d8:0b:34:8f:80:bc: 23:52:0e:6d:bb:00:9f:c2:1b:b1:40:af:2f:03:26: 65:09:03:a9:10:70:70:4f:d5:f4:bf:fb:1c:ac:f5: d8:ef:8e:b5:4c:8e:0d:e8:70:9d:ec:70:a7:e9:bc: ca:ca:76:e5:cd:9b:3b:b6:50:79:52:b2:34:8e:10: ce:61:52:b9:30:ba:ad:c1:8f:24:e6:4f:2d:81:77: 3b:fe:53:9c:0e:e7:ac:6b:6e:40:3b:3a:11:31:b0: 1e:26:05:2a:fc:9c:3f:b2:87:3b:ea:b2:6d:69:c4: 09:c1:b2:c4:46:07:85:f1:1f:70:18:4d:11:e2:a0: db:db:47:a0:29:a1:09:94:03:d2:02:49:cb:41:bb: 9a:3c:e3:16:70:b5:81:b7:18:9f:a8:95:71:36:30: aa:34:cd:64:c1:33:58:75:92:e6:73:b4:06:92:dd: dc:d4:af:3f:17:ae:34:cb:88:86:26:e0:d0:c0:0d: da:6b:cc:f2:3d:f4:bc:1c:8c:f6:29:08:24:50:b9: 67:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:37:61:55:1C:AE:D2:87:B0:C3:BD:15:FD:F7:BB:56:B9:E6:C9:FD X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/_zdhVRyu0oeww70V_fe7Vrnmyf0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c2::/44 Signature Algorithm: sha256WithRSAEncryption 64:46:91:1c:a4:8c:97:02:a9:e2:1f:7a:ab:32:be:7e:73:6c: 71:ce:e0:c0:74:4c:85:e5:3a:74:05:9d:70:c8:83:88:39:5c: 78:9f:b5:00:7e:38:30:cf:3e:2f:c2:87:af:1c:fa:a8:46:d6: 58:a0:ac:48:46:a9:10:49:af:2d:d9:f7:6a:93:fc:7a:05:7d: 58:d0:e4:af:f6:21:52:f0:36:9c:09:38:ea:e7:d0:53:2e:9e: b4:53:b6:7a:4d:ef:5a:4c:e0:24:80:8c:38:f4:d5:65:e3:24: f5:70:fb:1c:fb:36:e2:eb:b8:bd:01:6f:d4:00:03:4a:c4:7d: cb:2c:68:04:ff:12:82:ea:9e:ad:c5:51:ef:e5:9e:9c:32:5c: cb:78:6c:31:34:97:cc:3c:92:70:09:b4:57:96:17:f6:71:c6: cb:e4:e7:00:3e:70:53:69:bc:d3:ef:3b:c3:31:5f:07:e6:1c: a9:e9:0a:d2:e4:e2:84:55:00:62:d7:41:24:45:ab:8b:1c:4e: a9:4f:a2:10:36:18:53:47:0e:7c:99:d1:fb:b2:68:d4:c9:98: cb:08:da:f9:69:c2:d1:f5:6e:d5:63:2b:e6:03:28:0f:ad:ca: 71:d9:44:c6:54:71:51:f8:f1:8b:5f:ca:8a:87:9f:af:8c:6b: 71:26:44:b3 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICALEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjIyMjFaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKEZGMzc2MTU1MUNBRUQy ODdCMEMzQkQxNUZERjdCQjU2QjlFNkM5RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx/+4olHTscyg/KliTCQlKqBAItw22ogd3HRjj9kX9dsad84ES V6BRdwUyoFqEKud8krFSsNgLNI+AvCNSDm27AJ/CG7FAry8DJmUJA6kQcHBP1fS/ +xys9djvjrVMjg3ocJ3scKfpvMrKduXNmzu2UHlSsjSOEM5hUrkwuq3BjyTmTy2B dzv+U5wO56xrbkA7OhExsB4mBSr8nD+yhzvqsm1pxAnBssRGB4XxH3AYTRHioNvb R6ApoQmUA9ICSctBu5o84xZwtYG3GJ+olXE2MKo0zWTBM1h1kuZztAaS3dzUrz8X rjTLiIYm4NDADdprzPI99LwcjPYpCCRQuWe9AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU/zdhVRyu0oeww70V/fe7Vrnmyf0wHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvX3pkaFZSeXUwb2V3 dzcwVl9mZTdWcm5teWYwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMIAADANBgkqhkiG9w0BAQsFAAOCAQEAZEaRHKSMlwKp4h96qzK+fnNs cc7gwHRMheU6dAWdcMiDiDlceJ+1AH44MM8+L8KHrxz6qEbWWKCsSEapEEmvLdn3 apP8egV9WNDkr/YhUvA2nAk46ufQUy6etFO2ek3vWkzgJICMOPTVZeMk9XD7HPs2 4uu4vQFv1AADSsR9yyxoBP8SguqercVR7+WenDJcy3hsMTSXzDyScAm0V5YX9nHG y+TnAD5wU2m80+87wzFfB+YcqekK0uTihFUAYtdBJEWrixxOqU+iEDYYU0cOfJnR +7Jo1MmYywja+WnC0fVu1WMr5gMoD63KcdlExlRxUfjxi1/Kioefr4xrcSZEsw== -----END CERTIFICATE-----Generated at Sat Jun 21 18:44:59 2025 by rpki-client