$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/767/HChoSu0r2glhN3usienTE4a57Oc.roa File: HChoSu0r2glhN3usienTE4a57Oc.roa (raw, json) Hash identifier: MEPYIYDFrkCqIApvognQY4udms7fR8VAN+aNKwE9iMw= Subject key identifier: 1C:28:68:4A:ED:2B:DA:09:61:37:7B:AC:89:E9:D3:13:86:B9:EC:E7 Certificate issuer: /CN=FEE0C827CE296202006EB4ED2B6595DCE0E97C7B Certificate serial: 1798 Authority key identifier: FE:E0:C8:27:CE:29:62:02:00:6E:B4:ED:2B:65:95:DC:E0:E9:7C:7B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/HChoSu0r2glhN3usienTE4a57Oc.roa Signing time: Wed 09 Apr 2025 06:48:08 +0000 ROA not before: Wed 09 Apr 2025 06:48:08 +0000 ROA not after: Thu 09 Apr 2026 06:40:47 +0000 asID: 18464 IP address blocks: 2403:3d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6040 (0x1798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FEE0C827CE296202006EB4ED2B6595DCE0E97C7B Validity Not Before: Apr 9 06:48:08 2025 GMT Not After : Apr 9 06:40:47 2026 GMT Subject: CN=1C28684AED2BDA0961377BAC89E9D31386B9ECE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:62:bd:91:3e:02:9a:b2:bd:58:a5:ec:b8:69: 85:1b:e3:df:b3:7c:d8:46:2f:35:98:31:ee:6e:ae: df:a9:a1:51:60:c8:be:a4:f9:1e:9c:b1:56:aa:1a: 43:70:e3:73:7a:30:eb:a0:e5:d4:14:a1:6d:4f:65: b5:81:07:08:4a:7c:33:98:ee:39:87:75:a2:7e:c6: 1f:77:bd:be:ac:09:74:54:1b:c0:02:4c:84:6a:cb: d7:37:4a:5a:db:44:28:b0:6a:03:4c:98:d4:0c:02: a8:20:d8:af:0f:85:1f:22:ba:06:72:7b:21:ef:e8: a5:a1:78:9d:cb:10:02:1d:07:0f:77:4e:df:5e:8d: 4b:07:ca:64:57:e1:27:83:09:4b:15:60:a6:e4:86: e1:76:28:da:7e:e2:74:e0:6f:1a:59:b9:05:fe:18: d3:59:31:40:10:44:89:ee:29:48:f0:5f:c5:4d:16: 53:71:aa:c8:d2:62:ec:fd:f6:89:03:a3:bd:6f:fd: 71:79:c1:f1:cc:2f:b9:a9:4e:84:ed:e3:17:b6:2f: c4:95:31:4c:7e:4b:d2:2a:c7:af:7e:97:68:f2:c1: ca:1f:54:d7:ed:10:a6:13:30:37:dd:ea:00:07:15: da:a6:94:f9:1b:a9:d2:56:a9:3c:dd:30:17:3f:41: be:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:28:68:4A:ED:2B:DA:09:61:37:7B:AC:89:E9:D3:13:86:B9:EC:E7 X509v3 Authority Key Identifier: keyid:FE:E0:C8:27:CE:29:62:02:00:6E:B4:ED:2B:65:95:DC:E0:E9:7C:7B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/HChoSu0r2glhN3usienTE4a57Oc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:3d80::/32 Signature Algorithm: sha256WithRSAEncryption 0d:3c:60:c9:fe:e4:87:a3:68:35:9a:51:5b:14:07:61:d6:a4: 7f:1f:28:fc:33:5e:88:9d:fd:8c:1a:1c:e6:80:4d:ce:cb:b7: 82:c0:4a:62:86:40:c5:72:5b:e5:99:41:8a:62:82:1d:3b:2e: 73:f7:67:36:10:ec:3e:14:dc:44:1d:3c:8c:0a:ba:b6:2b:30: ee:10:0c:a4:b7:5e:31:3f:c7:9f:c4:8d:f8:8b:c6:f4:d2:93: 0f:71:07:88:34:65:e5:ab:47:b3:cf:aa:f3:09:6f:31:27:45: e3:75:3d:bf:53:b8:dd:6e:69:7e:2f:d6:5b:bc:e0:ed:9c:82: 0d:90:b1:ac:28:c5:94:b4:1a:d3:9b:46:93:13:3b:85:4c:f4: 7d:a3:11:05:ef:80:09:d1:e2:db:67:ac:84:7b:26:99:b8:f9: d3:13:11:7b:d1:be:e9:4f:c8:d2:40:7d:32:f4:af:9a:71:ad: 59:0b:7d:3c:8c:96:19:77:29:f9:e9:ae:84:13:bd:47:06:40: 4c:8b:77:2a:d7:4f:38:85:f3:46:98:d6:1e:8e:c8:f5:47:10: e5:69:06:82:1b:23:ec:7e:3e:9d:56:a2:ef:e9:22:50:c2:6c: df:ca:ce:45:8a:3c:32:8e:90:b0:7a:5f:4a:de:ec:f5:c0:2a: 94:f7:eb:b2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICF5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkVF MEM4MjdDRTI5NjIwMjAwNkVCNEVEMkI2NTk1RENFMEU5N0M3QjAeFw0yNTA0MDkw NjQ4MDhaFw0yNjA0MDkwNjQwNDdaMDMxMTAvBgNVBAMTKDFDMjg2ODRBRUQyQkRB MDk2MTM3N0JBQzg5RTlEMzEzODZCOUVDRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgYr2RPgKasr1Ypey4aYUb49+zfNhGLzWYMe5urt+poVFgyL6k +R6csVaqGkNw43N6MOug5dQUoW1PZbWBBwhKfDOY7jmHdaJ+xh93vb6sCXRUG8AC TIRqy9c3SlrbRCiwagNMmNQMAqgg2K8PhR8iugZyeyHv6KWheJ3LEAIdBw93Tt9e jUsHymRX4SeDCUsVYKbkhuF2KNp+4nTgbxpZuQX+GNNZMUAQRInuKUjwX8VNFlNx qsjSYuz99okDo71v/XF5wfHML7mpToTt4xe2L8SVMUx+S9Iqx69+l2jywcofVNft EKYTMDfd6gAHFdqmlPkbqdJWqTzdMBc/Qb7vAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUHChoSu0r2glhN3usienTE4a57OcwHwYDVR0jBBgwFoAU/uDIJ84pYgIAbrTt K2WV3ODpfHswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzY3 L191RElKODRwWWdJQWJyVHRLMldWM09EcGZIcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvX3VESUo4NHBZZ0lBYnJUdEsyV1YzT0RwZkhzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzY3L0hDaG9TdTByMmdsaE4z dXNpZW5URTRhNTdPYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAz2AMA0GCSqGSIb3DQEBCwUAA4IBAQANPGDJ/uSHo2g1mlFbFAdh1qR/Hyj8 M16Inf2MGhzmgE3Oy7eCwEpihkDFclvlmUGKYoIdOy5z92c2EOw+FNxEHTyMCrq2 KzDuEAykt14xP8efxI34i8b00pMPcQeINGXlq0ezz6rzCW8xJ0XjdT2/U7jdbml+ L9ZbvODtnIINkLGsKMWUtBrTm0aTEzuFTPR9oxEF74AJ0eLbZ6yEeyaZuPnTExF7 0b7pT8jSQH0y9K+aca1ZC308jJYZdyn56a6EE71HBkBMi3cq1084hfNGmNYejsj1 RxDlaQaCGyPsfj6dVqLv6SJQwmzfys5FijwyjpCwel9K3uz1wCqU9+uy -----END CERTIFICATE-----Generated at Sat Apr 26 14:34:32 2025 by rpki-client