$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/9NPdYDRch-VpdcD7sNCz11qUI34.roa File: 9NPdYDRch-VpdcD7sNCz11qUI34.roa (raw, json) Hash identifier: u7ctXAl9XA+oUegHuYcjSTxYGPm7JlIZVBUkmUJyBt0= Subject key identifier: F4:D3:DD:60:34:5C:87:E5:69:75:C0:FB:B0:D0:B3:D7:5A:94:23:7E Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 0E Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/9NPdYDRch-VpdcD7sNCz11qUI34.roa Signing time: Tue 27 May 2025 08:11:28 +0000 ROA not before: Tue 27 May 2025 08:11:28 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56048 IP address blocks: 240a:4090:3100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:11:28 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=F4D3DD60345C87E56975C0FBB0D0B3D75A94237E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:56:b3:22:e9:06:4e:93:47:60:66:88:73:7a: 47:cc:7b:75:11:85:b0:4a:6c:e6:96:2c:15:55:1e: 35:4e:e7:3c:5b:31:cf:57:72:2f:04:23:fa:ae:f7: c0:df:7c:22:de:c9:06:ec:92:2a:06:be:2d:d1:7c: 2c:45:06:16:df:c7:69:fc:b6:49:1c:43:95:e7:a2: 24:2e:ec:65:e3:0d:81:69:1b:5f:5f:21:f5:ca:44: 3f:64:54:32:49:78:55:5b:7b:af:67:e9:5c:17:f5: a9:5b:5e:31:a8:76:15:ea:74:14:ae:81:fb:4d:fa: 79:3c:50:8c:fc:ca:ff:c1:81:e7:61:9a:09:17:d4: 91:40:54:ea:3b:59:3a:b0:c4:c6:82:ba:dd:54:7f: 95:ec:b7:b3:66:f2:44:d3:53:9f:23:2a:66:42:0e: 4a:e7:7c:de:33:8e:99:fd:b6:c4:4a:52:da:73:33: 7a:21:07:2d:a6:54:94:a6:43:f0:01:c0:45:c0:18: 23:a0:ee:41:e8:42:f5:f1:1e:74:e3:62:9a:ff:48: 27:4d:d1:bd:d8:1b:03:df:ce:ae:0b:55:70:ff:65: e1:6d:cc:2c:5f:d9:50:26:a0:d8:53:1c:e1:47:59: 77:78:4f:58:55:fb:c1:b3:33:6e:5d:e4:b3:c5:4b: 89:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D3:DD:60:34:5C:87:E5:69:75:C0:FB:B0:D0:B3:D7:5A:94:23:7E X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/9NPdYDRch-VpdcD7sNCz11qUI34.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:4090:3100::/40 Signature Algorithm: sha256WithRSAEncryption 30:2e:3a:c7:8c:15:13:f8:fb:09:ca:ce:c5:b0:73:d2:38:fd: ec:f4:23:10:37:ef:8a:f3:3d:ae:ec:0b:e3:af:ac:ff:78:a3: 8b:16:36:87:71:e2:94:46:15:8a:9c:9e:30:cd:dd:3a:b1:d5: 0b:8f:6a:64:35:3b:23:fc:76:0f:48:28:30:07:22:1a:fb:a4: d3:65:bb:a8:e5:80:ea:d0:4d:a2:a3:ea:f0:0b:72:be:c5:a0: 20:b0:e6:b1:44:7d:6b:bc:5b:a2:41:a0:c8:4f:27:0d:6e:92: 5f:9c:01:cb:73:a1:fe:9b:87:f4:76:84:f2:63:06:de:a3:f0: ea:94:da:08:92:9f:8e:eb:8c:a6:34:68:04:8a:53:07:24:df: eb:f7:12:f3:91:04:0d:1b:25:f7:ce:64:18:7b:c3:9d:b3:dc: 99:dd:44:b9:66:62:67:9b:8d:77:e9:37:33:60:48:2e:5d:f7: 34:24:df:de:2c:3b:37:03:4d:45:b8:05:c1:10:24:81:a6:b3: 32:98:8b:83:c3:6d:a8:66:3f:33:ae:f3:91:70:5d:f6:ba:a1: 8d:c6:ec:52:7b:2d:c9:50:50:1a:a2:25:b2:61:d7:b4:cb:b7: 74:9d:e3:b5:32:d4:40:ee:b1:7e:3e:d9:25:9c:2f:c1:68:5d: 21:97:1c:fd -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIBDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MTEyOFoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoRjREM0RENjAzNDVDODdF NTY5NzVDMEZCQjBEMEIzRDc1QTk0MjM3RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOBWsyLpBk6TR2BmiHN6R8x7dRGFsEps5pYsFVUeNU7nPFsxz1dy LwQj+q73wN98It7JBuySKga+LdF8LEUGFt/Hafy2SRxDleeiJC7sZeMNgWkbX18h 9cpEP2RUMkl4VVt7r2fpXBf1qVteMah2Fep0FK6B+036eTxQjPzK/8GB52GaCRfU kUBU6jtZOrDExoK63VR/ley3s2byRNNTnyMqZkIOSud83jOOmf22xEpS2nMzeiEH LaZUlKZD8AHARcAYI6DuQehC9fEedONimv9IJ03RvdgbA9/OrgtVcP9l4W3MLF/Z UCag2FMc4UdZd3hPWFX7wbMzbl3ks8VLiekCAwEAAaOCAfUwggHxMB0GA1UdDgQW BBT0091gNFyH5Wl1wPuw0LPXWpQjfjAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi85TlBkWURSY2gtVnBk Y0Q3c05DejExcVVJMzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI AwYAJApAkDEwDQYJKoZIhvcNAQELBQADggEBADAuOseMFRP4+wnKzsWwc9I4/ez0 IxA374rzPa7sC+OvrP94o4sWNodx4pRGFYqcnjDN3Tqx1QuPamQ1OyP8dg9IKDAH Ihr7pNNlu6jlgOrQTaKj6vALcr7FoCCw5rFEfWu8W6JBoMhPJw1ukl+cActzof6b h/R2hPJjBt6j8OqU2giSn47rjKY0aASKUwck3+v3EvORBA0bJffOZBh7w52z3Jnd RLlmYmebjXfpNzNgSC5d9zQk394sOzcDTUW4BcEQJIGmszKYi4PDbahmPzOu85Fw Xfa6oY3G7FJ7LclQUBqiJbJh17TLt3Sd47Uy1EDusX4+2SWcL8FoXSGXHP0= -----END CERTIFICATE-----Generated at Wed Jun 4 01:18:18 2025 by rpki-client