$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/6/_6jwe_2jiZbfVEr_xVzEmpLRfT0.roa File: _6jwe_2jiZbfVEr_xVzEmpLRfT0.roa (raw, json) Hash identifier: ErpVKmUe/sw42YH+wKr8sgBZspRv7XLXPJsjsMHpDfY= Subject key identifier: FF:A8:F0:7B:FD:A3:89:96:DF:54:4A:FF:C5:5C:C4:9A:92:D1:7D:3D Certificate issuer: /CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Certificate serial: 0C76 Authority key identifier: 94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/_6jwe_2jiZbfVEr_xVzEmpLRfT0.roa Signing time: Tue 17 Jun 2025 13:53:35 +0000 ROA not before: Tue 17 Jun 2025 13:53:35 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 398704 IP address blocks: 59.107.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 09:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9481B4E409015D8EB7D03F36038830EC1098ABC0 Validity Not Before: Jun 17 13:53:35 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=FFA8F07BFDA38996DF544AFFC55CC49A92D17D3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c7:6f:17:72:9a:d7:96:67:43:fd:bf:c9:08: 31:22:af:5e:6a:65:93:b4:dd:b3:0a:59:3c:01:c8: af:e0:30:a9:05:b3:26:97:b0:69:74:30:d3:08:a1: 67:93:85:4b:70:7a:97:f2:02:b8:44:f1:14:43:22: ba:05:89:7c:c4:46:61:24:b3:b1:69:60:c7:0d:03: 8c:f8:18:59:79:34:94:88:bb:78:62:bb:cd:0f:96: 66:ae:2f:77:0a:a8:c9:ae:e3:c1:d3:57:08:74:bb: d5:0f:65:b4:d1:61:4e:32:7b:01:f2:b6:0e:d8:5d: 22:66:d6:85:a3:ff:1f:42:99:f1:10:e2:d5:3f:60: ad:3a:de:be:8c:51:e0:f3:a8:57:b1:07:59:31:1d: 2f:26:47:a3:91:36:9b:51:8c:90:2a:b4:e6:7b:2a: 7b:ea:60:4b:db:2a:cd:23:66:0d:c4:c9:f4:fd:ec: 6e:d7:fe:be:78:ab:7d:ea:4b:ed:49:78:51:70:39: b6:6a:a2:ea:d4:15:a0:09:64:c9:cc:59:08:03:d8: 33:57:80:d1:5a:6d:89:1f:a5:3d:e0:6c:20:07:a6: 29:f2:02:d6:e1:92:50:13:44:4a:db:69:be:8e:ff: e4:1e:bc:50:a4:59:55:e5:9a:3c:81:e7:37:f2:91: 26:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A8:F0:7B:FD:A3:89:96:DF:54:4A:FF:C5:5C:C4:9A:92:D1:7D:3D X509v3 Authority Key Identifier: keyid:94:81:B4:E4:09:01:5D:8E:B7:D0:3F:36:03:88:30:EC:10:98:AB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/lIG05AkBXY630D82A4gw7BCYq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lIG05AkBXY630D82A4gw7BCYq8A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/6/_6jwe_2jiZbfVEr_xVzEmpLRfT0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.107.224.0/22 Signature Algorithm: sha256WithRSAEncryption 56:26:61:f7:ff:f1:22:bc:ba:1e:7b:f4:80:90:8d:b6:9d:89: ab:23:df:2f:8b:00:35:1f:cf:cd:fd:31:4f:13:de:90:25:91: 8f:22:ce:04:94:0a:cd:0a:b1:66:f3:8e:32:e5:fa:de:2f:50: ca:d8:ef:59:f7:d4:da:a2:aa:05:10:38:8d:27:44:33:f9:72: d8:37:f5:f7:f0:7b:b4:b6:2e:b1:e8:a4:48:df:23:be:b1:de: e0:96:f2:b3:83:f9:6f:71:63:b6:2a:05:99:05:ab:97:b0:04: ee:51:0b:5e:20:83:cd:e1:14:a7:f9:7c:8d:f0:66:d1:eb:8a: c0:e3:7a:1a:d3:33:a0:79:a0:9e:ea:a0:99:2a:37:b2:8d:28: 59:29:56:ff:80:1f:94:2b:8e:0b:cc:96:af:f0:62:06:94:8b: 3f:2a:81:51:4e:3c:09:f8:dc:86:f2:65:49:89:d1:80:f4:82: 25:32:a1:d4:b9:01:cd:b6:2c:51:ad:68:fd:34:de:6e:11:e7: 3d:b5:b6:61:ce:46:e2:70:13:74:87:b5:b5:56:47:d0:f6:fe: bc:fc:8e:fe:4d:46:91:7b:29:85:44:f7:0b:33:10:89:31:8d: 39:e1:87:47:d1:4d:7f:6f:b0:93:64:f6:87:19:a6:54:39:c0: 75:d7:89:fd -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTQ4 MUI0RTQwOTAxNUQ4RUI3RDAzRjM2MDM4ODMwRUMxMDk4QUJDMDAeFw0yNTA2MTcx MzUzMzVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEZGQThGMDdCRkRBMzg5 OTZERjU0NEFGRkM1NUNDNDlBOTJEMTdEM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlx28XcprXlmdD/b/JCDEir15qZZO03bMKWTwByK/gMKkFsyaX sGl0MNMIoWeThUtwepfyArhE8RRDIroFiXzERmEks7FpYMcNA4z4GFl5NJSIu3hi u80PlmauL3cKqMmu48HTVwh0u9UPZbTRYU4yewHytg7YXSJm1oWj/x9CmfEQ4tU/ YK063r6MUeDzqFexB1kxHS8mR6ORNptRjJAqtOZ7KnvqYEvbKs0jZg3EyfT97G7X /r54q33qS+1JeFFwObZqourUFaAJZMnMWQgD2DNXgNFabYkfpT3gbCAHpinyAtbh klATRErbab6O/+QevFCkWVXlmjyB5zfykSbbAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU/6jwe/2jiZbfVEr/xVzEmpLRfT0wHwYDVR0jBBgwFoAUlIG05AkBXY630D82 A4gw7BCYq8AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNi9s SUcwNUFrQlhZNjMwRDgyQTRndzdCQ1lxOEEuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL2xJRzA1QWtCWFk2MzBEODJBNGd3N0JDWXE4QS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzYvXzZqd2VfMmppWmJmVkVyX3hW ekVtcExSZlQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmljLmNu L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAjtr 4DANBgkqhkiG9w0BAQsFAAOCAQEAViZh9//xIry6Hnv0gJCNtp2JqyPfL4sANR/P zf0xTxPekCWRjyLOBJQKzQqxZvOOMuX63i9QytjvWffU2qKqBRA4jSdEM/ly2Df1 9/B7tLYuseikSN8jvrHe4Jbys4P5b3FjtioFmQWrl7AE7lELXiCDzeEUp/l8jfBm 0euKwON6GtMzoHmgnuqgmSo3so0oWSlW/4AflCuOC8yWr/BiBpSLPyqBUU48Cfjc hvJlSYnRgPSCJTKh1LkBzbYsUa1o/TTebhHnPbW2Yc5G4nATdIe1tVZH0Pb+vPyO /k1GkXsphUT3CzMQiTGNOeGHR9FNf2+wk2T2hxmmVDnAddeJ/Q== -----END CERTIFICATE-----Generated at Sun Jun 22 08:54:35 2025 by rpki-client