$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/YR7TMEGbVotojv7SFRzgF0eRkk4.roa File: YR7TMEGbVotojv7SFRzgF0eRkk4.roa (raw, json) Hash identifier: 7jtbaxWf2uMWNcVIVnr0VNtY3e9VC27AJNKy8dKhQV0= Subject key identifier: 61:1E:D3:30:41:9B:56:8B:68:8E:FE:D2:15:1C:E0:17:47:91:92:4E Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Certificate serial: 06DA Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/YR7TMEGbVotojv7SFRzgF0eRkk4.roa Signing time: Tue 10 Jun 2025 01:40:23 +0000 ROA not before: Tue 10 Jun 2025 01:40:23 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146761 IP address blocks: 2400:5f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Validity Not Before: Jun 10 01:40:23 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=611ED330419B568B688EFED2151CE0174791924E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b9:27:1b:e5:b8:29:ad:19:74:be:e8:29:3b: 96:61:b5:3d:72:e7:1b:6b:c6:de:95:5c:c7:25:a9: 30:39:c2:69:0a:70:5a:1a:e2:06:c5:6c:9d:0d:95: 51:61:d4:2b:40:cb:e4:7f:9d:a0:39:74:a3:0a:f5: 5d:20:02:39:39:df:d4:14:95:37:2b:ef:c7:4d:54: 1d:be:3d:78:33:c7:7b:8d:cf:91:1f:fe:a8:c7:d3: 86:cb:21:f0:cb:e4:c2:53:1e:9a:5c:99:4e:19:e9: 1e:26:25:2b:e4:ae:69:48:43:43:4f:92:d5:bb:74: a2:f9:04:6e:ea:5c:e6:3e:26:59:63:fb:3d:66:fa: 9b:a0:97:bb:57:10:14:81:b0:71:9b:5f:1e:6a:bc: b7:c4:c0:c8:db:ae:54:76:0d:3f:f8:80:42:e0:2e: a2:9b:d5:63:5a:ce:e1:8a:eb:3d:5a:5b:09:1b:59: 6d:e8:b8:41:5e:97:57:65:de:d3:20:fb:97:d3:a8: 91:e9:a7:74:ab:86:30:4c:ef:b5:0b:30:97:98:f5: a2:14:ce:6f:6d:41:23:bb:c6:6a:cc:60:f6:76:02: 4f:a5:e9:dc:7a:60:d9:2d:5a:e1:6f:16:19:aa:c3: 03:e4:4c:ed:8a:92:dd:5c:1a:e9:45:a5:dc:7c:54: d5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1E:D3:30:41:9B:56:8B:68:8E:FE:D2:15:1C:E0:17:47:91:92:4E X509v3 Authority Key Identifier: keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/YR7TMEGbVotojv7SFRzgF0eRkk4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5f60::/32 Signature Algorithm: sha256WithRSAEncryption 15:3c:98:e7:46:bd:4e:ad:fa:d6:3d:c5:3a:e0:b0:5b:a7:8d: 1c:a0:7d:32:ae:68:ef:20:f3:7a:c9:13:0a:de:a3:d3:e1:7e: fd:8b:b2:a4:eb:45:e3:61:35:12:17:5d:db:e3:d7:b4:1d:0e: 6e:24:bf:f9:18:68:76:23:de:f9:43:2e:29:42:8d:6a:6a:ec: ab:5e:9f:a3:de:2b:c9:90:a3:ff:7a:31:56:7c:10:c2:12:68: 0e:2f:4c:86:6c:5b:68:d6:01:55:77:d0:26:26:65:19:fa:5b: b5:09:8b:7d:ce:51:e9:a2:9a:3c:3f:12:e8:96:0f:7b:a8:37: f7:a1:88:e3:d0:6d:c6:30:56:f5:78:ed:1b:8a:f9:e8:af:cc: 82:78:de:c0:78:f3:9b:53:3b:1b:d9:3a:83:b0:c1:a6:89:f8: f8:64:f4:cd:0c:f4:59:8f:16:b6:29:a6:df:c3:11:03:84:fe: e3:71:c5:41:b0:24:b4:1a:c7:0e:31:66:c2:b8:35:fc:3f:19: 71:80:c1:7f:33:6b:d5:3b:04:46:c8:e0:e0:78:cc:1c:bd:e2: 4c:26:c1:0a:54:bc:1f:37:d8:8a:8e:f3:7f:a6:01:cb:d9:e1: 22:cb:4b:80:48:07:ea:e9:93:8f:12:e9:61:85:37:0f:3d:01: a8:c6:fc:f0 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJD NkQ5QTlGNEEyMjZBNjFGNUZBMUE5MTYzOTQxRDRCMzVCQTM1QjAeFw0yNTA2MTAw MTQwMjNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDYxMUVEMzMwNDE5QjU2 OEI2ODhFRkVEMjE1MUNFMDE3NDc5MTkyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLuScb5bgprRl0vugpO5ZhtT1y5xtrxt6VXMclqTA5wmkKcFoa 4gbFbJ0NlVFh1CtAy+R/naA5dKMK9V0gAjk539QUlTcr78dNVB2+PXgzx3uNz5Ef /qjH04bLIfDL5MJTHppcmU4Z6R4mJSvkrmlIQ0NPktW7dKL5BG7qXOY+Jllj+z1m +pugl7tXEBSBsHGbXx5qvLfEwMjbrlR2DT/4gELgLqKb1WNazuGK6z1aWwkbWW3o uEFel1dl3tMg+5fTqJHpp3SrhjBM77ULMJeY9aIUzm9tQSO7xmrMYPZ2Ak+l6dx6 YNktWuFvFhmqwwPkTO2Kkt1cGulFpdx8VNXdAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUYR7TMEGbVotojv7SFRzgF0eRkk4wHwYDVR0jBBgwFoAUG8bZqfSiJqYfX6Gp FjlB1LNbo1swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz NC9HOGJacWZTaUpxWWZYNkdwRmpsQjFMTmJvMXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0c4YlpxZlNpSnFZZlg2R3BGamxCMUxOYm8xcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzQvWVI3VE1FR2JWb3Rv anY3U0ZSemdGMGVSa2s0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQAX2AwDQYJKoZIhvcNAQELBQADggEBABU8mOdGvU6t+tY9xTrgsFunjRyg fTKuaO8g83rJEwreo9Phfv2LsqTrReNhNRIXXdvj17QdDm4kv/kYaHYj3vlDLilC jWpq7Kten6PeK8mQo/96MVZ8EMISaA4vTIZsW2jWAVV30CYmZRn6W7UJi33OUemi mjw/EuiWD3uoN/ehiOPQbcYwVvV47RuK+eivzIJ43sB485tTOxvZOoOwwaaJ+Phk 9M0M9FmPFrYppt/DEQOE/uNxxUGwJLQaxw4xZsK4Nfw/GXGAwX8za9U7BEbI4OB4 zBy94kwmwQpUvB832IqO83+mAcvZ4SLLS4BIB+rpk48S6WGFNw89AajG/PA= -----END CERTIFICATE-----Generated at Sun Jun 22 06:25:12 2025 by rpki-client