$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/846/UXY-RYaZHgTYhXJhGXXf96toWwE.roa File: UXY-RYaZHgTYhXJhGXXf96toWwE.roa (raw, json) Hash identifier: m8GqULFjpNYHqvAai/zNQGo0eznqvOaJ5lpdYuPHNIE= Subject key identifier: 51:76:3E:45:86:99:1E:04:D8:85:72:61:19:75:DF:F7:AB:68:5B:01 Certificate issuer: /CN=88A408EEB5D3A6FE2CB928C50C9FB6802F90267F Certificate serial: 05 Authority key identifier: 88:A4:08:EE:B5:D3:A6:FE:2C:B9:28:C5:0C:9F:B6:80:2F:90:26:7F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iKQI7rXTpv4suSjFDJ-2gC-QJn8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/UXY-RYaZHgTYhXJhGXXf96toWwE.roa Signing time: Tue 21 Oct 2025 02:22:42 +0000 ROA not before: Tue 21 Oct 2025 02:22:42 +0000 ROA not after: Wed 21 Oct 2026 02:14:57 +0000 asID: 59073 IP address blocks: 2402:93c0:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/iKQI7rXTpv4suSjFDJ-2gC-QJn8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/iKQI7rXTpv4suSjFDJ-2gC-QJn8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iKQI7rXTpv4suSjFDJ-2gC-QJn8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88A408EEB5D3A6FE2CB928C50C9FB6802F90267F Validity Not Before: Oct 21 02:22:42 2025 GMT Not After : Oct 21 02:14:57 2026 GMT Subject: CN=51763E4586991E04D88572611975DFF7AB685B01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:43:39:ed:71:04:ed:74:6d:5d:61:74:1e:e7: 59:53:c3:bc:d2:91:d6:a4:cd:9f:03:62:8c:c4:26: a0:83:ee:f9:79:3f:2d:d4:81:1d:9d:6a:3d:90:f1: c6:d3:40:c9:5c:51:1b:06:49:d6:96:85:28:50:d0: 61:48:ee:9d:c8:63:91:1f:9b:3f:cf:52:7e:ca:8e: 2e:c2:3f:89:2b:ac:94:57:03:b3:5d:fc:89:13:46: 23:c7:2f:1f:fe:16:51:34:1d:b6:02:fe:70:af:04: 41:70:c8:fc:31:bd:a2:71:7c:ec:09:b6:b6:e0:ea: de:63:64:e4:34:c1:9e:07:55:6e:1e:a2:24:b9:4e: f4:d6:61:f5:86:23:5f:14:2a:bb:1d:e2:39:63:ea: 7e:4d:a3:f8:bf:5f:a7:4d:00:ae:60:cc:25:38:f1: 0f:a2:a3:04:a4:98:83:1d:7e:68:f8:e9:bd:81:16: 10:de:17:74:0c:ee:c1:41:d2:80:0d:c4:a5:9a:8c: ef:45:2e:0f:33:6b:e0:83:a5:da:92:01:25:68:5a: c6:ee:7d:b1:86:32:45:25:aa:c2:31:2f:e8:4d:4a: 34:ef:03:c2:8d:97:00:e4:a3:de:0a:19:66:3c:58: 60:9b:f2:1d:73:d4:c3:c9:0e:95:03:7c:7c:49:31: fa:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:76:3E:45:86:99:1E:04:D8:85:72:61:19:75:DF:F7:AB:68:5B:01 X509v3 Authority Key Identifier: keyid:88:A4:08:EE:B5:D3:A6:FE:2C:B9:28:C5:0C:9F:B6:80:2F:90:26:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/iKQI7rXTpv4suSjFDJ-2gC-QJn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iKQI7rXTpv4suSjFDJ-2gC-QJn8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/UXY-RYaZHgTYhXJhGXXf96toWwE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:93c0:100::/48 Signature Algorithm: sha256WithRSAEncryption 8a:07:52:47:e5:99:24:6d:1c:45:b4:fa:89:b3:2e:f8:44:39: f3:0d:d8:a6:e2:1b:46:d5:8a:2e:1e:76:df:b6:ad:99:9d:9d: 9d:98:1e:39:d3:6c:9a:d0:90:20:83:37:7d:c0:bb:75:c3:21: 4a:87:4d:4b:a8:f8:54:04:87:97:9e:d9:af:85:dd:bf:f3:21: 99:de:fa:12:fd:d2:7b:0b:d3:f0:83:1c:0c:72:c2:e0:03:5c: 69:4c:b5:c4:d4:48:ae:2c:dc:41:d5:0c:be:37:22:31:42:c1: 50:99:fa:5a:9f:a5:cc:26:ca:87:40:77:37:58:8f:1b:64:3b: ce:0c:42:57:30:13:c9:f6:35:b2:51:53:5e:91:e0:3f:7b:09: fc:d5:31:98:5e:b4:00:3a:f0:da:7e:af:e1:ef:d9:82:3d:b1: 72:c6:29:7a:77:2e:31:a7:fe:a7:4d:63:04:f4:f2:ab:5d:77: ee:1a:f5:0b:43:e9:8f:e1:fb:bb:00:a5:66:fa:2d:4f:3c:ba: ab:be:0f:50:28:36:62:c4:14:14:c7:e3:e2:84:c8:ba:a7:5a: 00:79:b1:b4:84:b0:08:59:7d:e2:c7:1b:c5:0b:9a:01:b8:7f: 63:58:7a:d3:c2:88:2f:11:72:f5:32:12:d8:5b:0e:07:32:71: 6c:58:60:29 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OEE0 MDhFRUI1RDNBNkZFMkNCOTI4QzUwQzlGQjY4MDJGOTAyNjdGMB4XDTI1MTAyMTAy MjI0MloXDTI2MTAyMTAyMTQ1N1owMzExMC8GA1UEAxMoNTE3NjNFNDU4Njk5MUUw NEQ4ODU3MjYxMTk3NURGRjdBQjY4NUIwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL1DOe1xBO10bV1hdB7nWVPDvNKR1qTNnwNijMQmoIPu+Xk/LdSB HZ1qPZDxxtNAyVxRGwZJ1paFKFDQYUjunchjkR+bP89SfsqOLsI/iSuslFcDs138 iRNGI8cvH/4WUTQdtgL+cK8EQXDI/DG9onF87Am2tuDq3mNk5DTBngdVbh6iJLlO 9NZh9YYjXxQqux3iOWPqfk2j+L9fp00ArmDMJTjxD6KjBKSYgx1+aPjpvYEWEN4X dAzuwUHSgA3EpZqM70UuDzNr4IOl2pIBJWhaxu59sYYyRSWqwjEv6E1KNO8Dwo2X AOSj3goZZjxYYJvyHXPUw8kOlQN8fEkx+qUCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBRRdj5FhpkeBNiFcmEZdd/3q2hbATAfBgNVHSMEGDAWgBSIpAjutdOm/iy5KMUM n7aAL5AmfzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC84NDYv aUtRSTdyWFRwdjRzdVNqRkRKLTJnQy1RSm44LmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9pS1FJN3JYVHB2NHN1U2pGREotMmdDLVFKbjguY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC84NDYvVVhZLVJZYVpIZ1RZaFhK aEdYWGY5NnRvV3dFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACQCk8ABADANBgkqhkiG9w0BAQsFAAOCAQEAigdSR+WZJG0cRbT6ibMu+EQ58w3Y puIbRtWKLh5237atmZ2dnZgeOdNsmtCQIIM3fcC7dcMhSodNS6j4VASHl57Zr4Xd v/Mhmd76Ev3SewvT8IMcDHLC4ANcaUy1xNRIrizcQdUMvjciMULBUJn6Wp+lzCbK h0B3N1iPG2Q7zgxCVzATyfY1slFTXpHgP3sJ/NUxmF60ADrw2n6v4e/Zgj2xcsYp encuMaf+p01jBPTyq1137hr1C0Ppj+H7uwClZvotTzy6q74PUCg2YsQUFMfj4oTI uqdaAHmxtISwCFl94scbxQuaAbh/Y1h608KILxFy9TIS2FsOBzJxbFhgKQ== -----END CERTIFICATE-----Generated at Fri Nov 7 12:39:26 2025 by rpki-client