$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/6Zl0eBnY7mV4bHxmBlSAlZkuu90.roa File: 6Zl0eBnY7mV4bHxmBlSAlZkuu90.roa (raw, json) Hash identifier: VC2ZE485Tz9kJpsWMGvELTXlGcfO+c5nijj+WytKub8= Subject key identifier: E9:99:74:78:19:D8:EE:65:78:6C:7C:66:06:54:80:95:99:2E:BB:DD Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708 Certificate serial: 1FF0 Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/6Zl0eBnY7mV4bHxmBlSAlZkuu90.roa Signing time: Tue 10 Jun 2025 09:27:50 +0000 ROA not before: Tue 10 Jun 2025 09:27:50 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 137718 IP address blocks: 118.145.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8176 (0x1ff0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708 Validity Not Before: Jun 10 09:27:50 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E999747819D8EE65786C7C6606548095992EBBDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3f:1f:7b:a8:d8:ff:65:b5:bb:74:0c:14:b2: db:26:22:93:63:e5:cd:4b:25:20:c3:03:8a:e9:be: ea:13:c4:07:61:54:23:33:da:28:d5:36:2e:bc:af: 05:b4:df:d3:13:81:0d:cd:ed:e5:60:7f:da:6e:34: 2a:4a:70:cf:2b:60:52:a2:15:1a:1d:80:15:ac:de: 89:92:e7:48:43:ba:21:bc:ba:69:d4:0b:c3:76:d6: f4:66:25:58:65:a0:07:1c:e4:a8:2a:57:9d:25:82: 2e:9c:5b:8b:a1:9d:17:aa:be:40:26:7b:b3:c1:f3: 27:a5:f4:e1:1d:59:cc:d1:fb:3b:c1:b1:c3:48:e7: 3e:c1:ef:5c:4e:c7:99:ab:7d:4f:e6:b7:94:ec:9c: 05:5f:10:4f:00:64:a6:07:c1:34:46:8e:00:2e:4b: de:c3:e8:1a:57:25:58:d3:72:6e:6a:df:40:1c:e7: f7:c2:c8:da:63:80:71:62:25:68:fa:ce:ed:e8:37: 8c:99:a1:66:91:3b:f4:a1:a5:19:7a:02:72:b4:f8: eb:b7:4b:61:84:9f:08:3e:b9:5d:f6:e3:68:c7:46: 1b:d1:73:6f:0d:d7:eb:f5:6f:f2:b8:32:74:a7:63: bf:b2:a6:cc:96:e8:59:75:09:37:29:27:3d:49:59: 66:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:99:74:78:19:D8:EE:65:78:6C:7C:66:06:54:80:95:99:2E:BB:DD X509v3 Authority Key Identifier: keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/6Zl0eBnY7mV4bHxmBlSAlZkuu90.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.145.64.0/18 Signature Algorithm: sha256WithRSAEncryption c2:28:3b:08:59:ee:80:89:89:ed:8d:82:74:43:72:54:f5:b5: db:02:79:5c:5f:62:a7:41:f1:76:83:91:3a:4c:a6:4a:19:02: 03:2e:84:71:ae:40:c6:c6:e3:b8:da:b6:2f:bf:eb:34:d7:0e: 2e:18:40:9c:db:08:53:e0:1c:8b:09:61:fa:e1:07:79:76:08: 08:d7:ef:1a:7c:20:8b:92:c1:40:45:45:a5:b6:1d:8f:f9:5d: 99:9e:c9:b5:00:06:d7:e6:5b:61:28:24:83:b6:cf:07:06:b5: d2:51:d1:43:15:dc:77:b0:ad:7e:f0:c2:75:9c:86:36:49:02: 55:82:b9:a3:4b:8b:ff:14:78:f9:f6:e8:bd:b7:8f:5f:a7:28: c5:9a:92:40:2a:25:36:67:b5:ed:a2:ae:83:71:34:17:f9:d2: 28:c5:f6:f8:b4:c8:84:10:93:a1:af:e2:66:c5:5e:eb:ba:b0: d4:92:e9:55:58:e2:9a:72:dc:14:2c:c4:54:71:11:f9:b2:95: ff:e1:d9:56:3b:5e:bb:e3:5f:f8:36:2b:db:1f:b5:6b:69:76: 06:ff:6b:36:86:ad:7a:9a:a2:12:e1:15:91:e6:ea:a7:45:10: b5:a0:1f:5a:88:b0:c3:d0:8a:01:3c:6c:f7:82:f2:8d:e1:05: b8:73:be:36 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICH/AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4 QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yNTA2MTAw OTI3NTBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEU5OTk3NDc4MTlEOEVF NjU3ODZDN0M2NjA2NTQ4MDk1OTkyRUJCREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkPx97qNj/ZbW7dAwUstsmIpNj5c1LJSDDA4rpvuoTxAdhVCMz 2ijVNi68rwW039MTgQ3N7eVgf9puNCpKcM8rYFKiFRodgBWs3omS50hDuiG8umnU C8N21vRmJVhloAcc5KgqV50lgi6cW4uhnReqvkAme7PB8yel9OEdWczR+zvBscNI 5z7B71xOx5mrfU/mt5TsnAVfEE8AZKYHwTRGjgAuS97D6BpXJVjTcm5q30Ac5/fC yNpjgHFiJWj6zu3oN4yZoWaRO/ShpRl6AnK0+Ou3S2GEnwg+uV3242jHRhvRc28N 1+v1b/K4MnSnY7+ypsyW6Fl1CTcpJz1JWWZFAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU6Zl0eBnY7mV4bHxmBlSAlZkuu90wHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvNlpsMGVCblk3bVY0 Ykh4bUJsU0FsWmt1dTkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBnaRQDANBgkqhkiG9w0BAQsFAAOCAQEAwig7CFnugImJ7Y2CdENyVPW12wJ5 XF9ip0HxdoOROkymShkCAy6Eca5AxsbjuNq2L7/rNNcOLhhAnNsIU+Aciwlh+uEH eXYICNfvGnwgi5LBQEVFpbYdj/ldmZ7JtQAG1+ZbYSgkg7bPBwa10lHRQxXcd7Ct fvDCdZyGNkkCVYK5o0uL/xR4+fbovbePX6coxZqSQColNme17aKug3E0F/nSKMX2 +LTIhBCToa/iZsVe67qw1JLpVVjimnLcFCzEVHER+bKV/+HZVjteu+Nf+DYr2x+1 a2l2Bv9rNoatepqiEuEVkebqp0UQtaAfWoiww9CKATxs94LyjeEFuHO+Ng== -----END CERTIFICATE-----Generated at Sun Jun 22 03:43:21 2025 by rpki-client