$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/tPTTwHT9OVUIVlWaVb64aKe3c2g.roa File: tPTTwHT9OVUIVlWaVb64aKe3c2g.roa (raw, json) Hash identifier: PVHWHcN22jYn6r4VRGv1qJ8JfMmgMQjy9i0yxblgbOQ= Subject key identifier: B4:F4:D3:C0:74:FD:39:55:08:56:55:9A:55:BE:B8:68:A7:B7:73:68 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: CF Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/tPTTwHT9OVUIVlWaVb64aKe3c2g.roa Signing time: Fri 06 Jun 2025 02:32:42 +0000 ROA not before: Fri 06 Jun 2025 02:32:42 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 244400 IP address blocks: 240a:40c1:8010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 09:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:32:42 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=B4F4D3C074FD39550856559A55BEB868A7B77368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:54:f9:c8:22:12:45:01:37:2c:f1:b0:ff:6f: 4c:46:9e:e3:66:63:db:06:34:cb:24:ef:51:8b:f2: 5e:97:fa:a7:32:05:c9:4d:bd:5b:f0:1d:9b:5e:45: 01:6e:ea:6c:18:6a:6c:fa:0f:e2:d4:c8:b1:45:e6: 72:31:02:26:10:8e:4e:b8:eb:c4:ed:91:ac:53:a3: 63:c7:ba:17:2f:a0:57:c7:af:76:f5:c0:51:d2:2c: 48:02:45:ce:cd:b2:b3:f8:a6:f0:6f:9f:cd:e4:9c: 23:56:22:29:6f:d1:11:cc:94:35:a6:cb:42:c7:40: c1:41:56:b7:44:6a:9a:f0:3d:50:b4:0e:41:e4:de: 2f:1e:eb:7a:5f:2b:23:4c:d2:de:83:7d:e5:15:3a: 5b:40:a5:f7:50:35:e0:88:0f:a8:b1:e1:c6:b0:72: 47:45:1f:c7:2b:0e:05:83:d5:b1:fa:9b:ca:31:cb: 5b:aa:90:ec:db:b8:5c:90:83:43:00:88:8c:36:47: 68:43:78:c0:cb:e1:78:a4:4f:2b:51:b8:c3:77:7a: 24:a7:82:5c:04:bb:a3:3d:5a:88:78:04:2a:4b:f7: 44:34:0e:7e:c7:0c:00:f3:07:a4:03:00:93:32:76: 4a:7a:b5:b1:38:e5:27:54:ee:9b:66:5c:cb:c7:28: 43:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F4:D3:C0:74:FD:39:55:08:56:55:9A:55:BE:B8:68:A7:B7:73:68 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/tPTTwHT9OVUIVlWaVb64aKe3c2g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c1:8010::/44 Signature Algorithm: sha256WithRSAEncryption 95:26:04:93:2a:e1:68:2b:4c:8d:fd:0c:6d:e8:e3:0d:be:46: 47:13:5b:56:c4:2d:8f:bf:66:48:bd:51:2e:49:5b:c8:86:8d: 32:0c:ff:cc:1e:72:33:ea:a6:5f:d2:0c:f3:6b:49:6e:2d:0f: 10:46:91:b8:98:68:54:b3:b2:27:63:f9:56:30:ca:ee:49:4a: 70:27:ee:14:6b:dd:a9:bf:2e:d5:cc:b4:65:c8:d9:87:59:0a: c2:4d:5e:97:9c:52:ff:e0:c8:c1:89:20:c6:24:da:c8:9f:60: 36:15:0c:51:81:6e:cf:f9:7c:ec:8b:48:c6:69:c5:6b:59:c6: 84:59:f0:0d:72:e0:b3:ce:c1:e1:fd:c1:73:97:bf:a1:6c:fb: a8:7f:38:22:45:a9:27:e4:63:8f:ee:dd:7d:eb:46:b9:cd:d3: 40:9f:97:2d:c9:73:5d:5a:b2:42:49:ec:e2:75:00:21:75:3f: da:b5:68:77:fb:bf:9c:83:d0:cd:10:28:e2:78:a4:c5:82:4e: 96:48:4f:c3:40:ad:76:16:ed:d1:6a:2b:8f:30:74:11:71:1b: e9:bd:5c:91:c6:20:d9:0f:65:b3:28:58:25:4f:c7:38:59:f6: 6a:32:e6:e1:ed:1f:4b:01:69:e5:52:85:c1:ca:db:c1:3c:d9: f8:7b:96:54 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjMyNDJaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKEI0RjREM0MwNzRGRDM5 NTUwODU2NTU5QTU1QkVCODY4QTdCNzczNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0VPnIIhJFATcs8bD/b0xGnuNmY9sGNMsk71GL8l6X+qcyBclN vVvwHZteRQFu6mwYamz6D+LUyLFF5nIxAiYQjk6468TtkaxTo2PHuhcvoFfHr3b1 wFHSLEgCRc7NsrP4pvBvn83knCNWIilv0RHMlDWmy0LHQMFBVrdEaprwPVC0DkHk 3i8e63pfKyNM0t6DfeUVOltApfdQNeCID6ix4cawckdFH8crDgWD1bH6m8oxy1uq kOzbuFyQg0MAiIw2R2hDeMDL4XikTytRuMN3eiSnglwEu6M9Woh4BCpL90Q0Dn7H DADzB6QDAJMydkp6tbE45SdU7ptmXMvHKEOHAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUtPTTwHT9OVUIVlWaVb64aKe3c2gwHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvdFBUVHdIVDlPVlVJ VmxXYVZiNjRhS2UzYzJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMGAEDANBgkqhkiG9w0BAQsFAAOCAQEAlSYEkyrhaCtMjf0MbejjDb5G RxNbVsQtj79mSL1RLklbyIaNMgz/zB5yM+qmX9IM82tJbi0PEEaRuJhoVLOyJ2P5 VjDK7klKcCfuFGvdqb8u1cy0ZcjZh1kKwk1el5xS/+DIwYkgxiTayJ9gNhUMUYFu z/l87ItIxmnFa1nGhFnwDXLgs87B4f3Bc5e/oWz7qH84IkWpJ+Rjj+7dfetGuc3T QJ+XLclzXVqyQkns4nUAIXU/2rVod/u/nIPQzRAo4nikxYJOlkhPw0Ctdhbt0Wor jzB0EXEb6b1ckcYg2Q9lsyhYJU/HOFn2ajLm4e0fSwFp5VKFwcrbwTzZ+HuWVA== -----END CERTIFICATE-----Generated at Thu Jun 19 08:35:09 2025 by rpki-client