$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/gHcFj9QSKyXr5Bpei87HSWmCV4s.roa File: gHcFj9QSKyXr5Bpei87HSWmCV4s.roa (raw, json) Hash identifier: VbJrx49kZR+xKrBSvAghNyHZmITSFwdrG1Lj3Exl6ig= Subject key identifier: 80:77:05:8F:D4:12:2B:25:EB:E4:1A:5E:8B:CE:C7:49:69:82:57:8B Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 48 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/gHcFj9QSKyXr5Bpei87HSWmCV4s.roa Signing time: Tue 27 May 2025 08:36:28 +0000 ROA not before: Tue 27 May 2025 08:36:28 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:42f2::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:36:28 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=8077058FD4122B25EBE41A5E8BCEC7496982578B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:63:aa:4b:a3:7c:d0:60:67:23:61:68:68:cb: 82:bc:0b:64:96:48:2e:f3:16:d4:67:54:88:85:65: 1b:9d:fb:78:73:d7:19:62:57:2d:a8:bb:e8:b6:9f: 1e:dd:54:eb:c3:14:2b:7b:8f:2f:41:59:9e:9d:ec: 03:e3:49:54:58:7b:7e:fc:45:be:f4:6f:60:a8:d2: bd:8e:8a:fc:53:db:6d:ed:47:7d:5e:3a:7b:ab:ad: 34:bb:b5:7c:b3:5a:c8:6e:d9:78:0c:f8:b6:18:bc: 28:0c:30:f5:c2:9a:26:f1:4b:42:cf:d2:b6:0e:0c: ad:8d:a3:e0:56:ae:79:a5:b1:70:37:10:97:49:54: eb:8d:19:f8:bc:bc:f4:24:7f:0c:8b:6d:83:d9:d3: de:a9:4b:42:ba:11:39:32:cf:23:31:53:b3:6a:4b: 83:87:75:5c:e8:f6:75:93:14:65:98:75:f5:30:59: a0:e9:4b:36:28:07:9e:5b:e3:48:4f:0b:e0:59:9a: c1:df:16:c6:d1:86:3f:45:e2:56:85:2e:d3:cb:c7: b4:35:d7:90:8d:47:4f:4c:89:d9:64:d5:75:9f:92: 75:c6:d8:19:a7:d8:f0:bd:b8:b8:0f:e9:59:b3:59: c6:aa:05:a1:b6:79:5b:e0:5e:e3:17:0c:fb:3e:3d: c1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:77:05:8F:D4:12:2B:25:EB:E4:1A:5E:8B:CE:C7:49:69:82:57:8B X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/gHcFj9QSKyXr5Bpei87HSWmCV4s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42f2::/31 Signature Algorithm: sha256WithRSAEncryption c7:91:4c:e0:55:08:c6:aa:e5:c8:5d:f3:01:c1:a7:6f:0b:ba: 1d:e8:cd:df:18:89:21:21:11:ee:b1:b1:11:bb:dd:9b:ff:83: 04:b5:71:91:3b:09:46:b8:a9:70:d6:2d:86:15:aa:cf:0b:76: 11:07:99:13:3c:f5:a0:6d:32:99:a4:22:35:24:d9:e4:a6:b7: 80:22:54:82:ff:3c:d4:32:52:14:2e:8f:e3:1f:cf:58:6c:cd: 14:76:58:4f:08:77:d2:19:2f:af:e4:4e:d7:b9:e4:77:86:de: 76:5f:65:8b:ab:2a:64:7c:95:ff:ad:44:a7:69:d6:7a:59:2f: 28:72:20:e3:b7:f3:f7:e4:37:12:45:88:10:58:10:cf:20:27: ff:ce:ad:ab:ea:7e:98:2b:8e:90:4d:06:8e:09:89:5c:7e:8c: ea:6c:5e:32:f4:c5:a0:0d:4d:3a:1b:e5:2a:87:9c:87:9e:7f: 9f:9e:c1:76:be:29:4f:87:b1:4b:5f:a0:25:42:ae:8f:ec:cf: 05:6e:c4:8a:6f:1c:1f:c5:17:1e:18:12:35:3e:e3:90:51:1d: c2:5b:a2:b6:eb:9c:15:f7:9e:28:b4:90:07:76:20:3f:98:77: 88:98:e3:68:b3:f1:04:ef:22:bc:fc:44:51:9f:db:19:61:26: 7a:ef:0f:ea -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MzYyOFoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoODA3NzA1OEZENDEyMkIy NUVCRTQxQTVFOEJDRUM3NDk2OTgyNTc4QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANFjqkujfNBgZyNhaGjLgrwLZJZILvMW1GdUiIVlG537eHPXGWJX Lai76LafHt1U68MUK3uPL0FZnp3sA+NJVFh7fvxFvvRvYKjSvY6K/FPbbe1HfV46 e6utNLu1fLNayG7ZeAz4thi8KAww9cKaJvFLQs/Stg4MrY2j4FaueaWxcDcQl0lU 640Z+Ly89CR/DIttg9nT3qlLQroROTLPIzFTs2pLg4d1XOj2dZMUZZh19TBZoOlL NigHnlvjSE8L4Fmawd8WxtGGP0XiVoUu08vHtDXXkI1HT0yJ2WTVdZ+SdcbYGafY 8L24uA/pWbNZxqoFobZ5W+Be4xcM+z49we0CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBSAdwWP1BIrJevkGl6LzsdJaYJXizAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi9nSGNGajlRU0t5WHI1 QnBlaTg3SFNXbUNWNHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApC8jANBgkqhkiG9w0BAQsFAAOCAQEAx5FM4FUIxqrlyF3zAcGnbwu6HejN 3xiJISER7rGxEbvdm/+DBLVxkTsJRripcNYthhWqzwt2EQeZEzz1oG0ymaQiNSTZ 5Ka3gCJUgv881DJSFC6P4x/PWGzNFHZYTwh30hkvr+RO17nkd4bedl9li6sqZHyV /61Ep2nWelkvKHIg47fz9+Q3EkWIEFgQzyAn/86tq+p+mCuOkE0GjgmJXH6M6mxe MvTFoA1NOhvlKoech55/n57Bdr4pT4exS1+gJUKuj+zPBW7Eim8cH8UXHhgSNT7j kFEdwluituucFfeeKLSQB3YgP5h3iJjjaLPxBO8ivPxEUZ/bGWEmeu8P6g== -----END CERTIFICATE-----Generated at Sat Jun 21 18:11:03 2025 by rpki-client