$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/9pXzhfaoSvW06dCQ1HJLupfUE4c.roa File: 9pXzhfaoSvW06dCQ1HJLupfUE4c.roa (raw, json) Hash identifier: hBLj15oURr7Rs19aueos3MIpNaIYnGNf55CpkK/W6J8= Subject key identifier: F6:95:F3:85:F6:A8:4A:F5:B4:E9:D0:90:D4:72:4B:BA:97:D4:13:87 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 26 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/9pXzhfaoSvW06dCQ1HJLupfUE4c.roa Signing time: Tue 27 May 2025 08:19:36 +0000 ROA not before: Tue 27 May 2025 08:19:36 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56048 IP address blocks: 240a:4282::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:19:36 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=F695F385F6A84AF5B4E9D090D4724BBA97D41387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:99:2e:a6:c6:34:c9:ca:b7:f0:33:7e:fc:65: 7e:ec:ca:2a:ad:32:0d:a0:f0:a6:cb:c9:b0:31:4b: 42:eb:8b:8b:70:f3:64:10:a6:5f:d0:17:86:2e:f2: d3:df:42:b5:61:4d:09:7f:bb:33:b2:0a:d0:3e:ee: 2a:01:bd:4a:c5:b5:b6:47:97:54:9e:6d:6e:fc:47: 06:e5:aa:d4:8d:04:62:e4:2f:0e:70:6e:74:dd:5d: 3c:8a:70:12:9b:08:89:2e:4e:76:59:67:a9:f7:66: c6:40:2c:19:b6:3e:13:cf:9c:46:fe:53:d4:a4:fa: f1:d5:2c:42:93:a2:19:71:bd:1f:88:a5:28:97:72: 33:eb:f4:45:fd:70:a1:3a:a5:af:42:44:52:ed:e0: 73:77:6f:81:67:0a:86:f5:92:64:7c:7d:1b:07:07: 94:f4:03:77:39:0c:7e:98:1b:d6:a3:aa:ce:d9:66: 4e:31:59:46:fd:85:51:f1:ca:e6:9e:d1:90:41:95: c1:51:fc:64:6e:0a:36:6d:7b:9a:2a:be:6a:34:ca: 59:cd:d2:20:e0:70:f9:e5:b0:05:02:d4:68:e5:09: a8:c7:46:3e:a9:85:f7:05:69:47:9f:7f:29:22:22: 12:53:e4:6c:5c:70:2a:5b:f0:95:33:33:d9:c1:67: 3e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:95:F3:85:F6:A8:4A:F5:B4:E9:D0:90:D4:72:4B:BA:97:D4:13:87 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/9pXzhfaoSvW06dCQ1HJLupfUE4c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:4282::/31 Signature Algorithm: sha256WithRSAEncryption 3d:a8:da:ab:9f:8a:a2:c2:4a:b9:01:a3:d8:f4:35:cf:3b:a8: 3c:a5:20:63:01:27:e5:78:ec:ac:d0:73:bc:95:4c:17:5d:6f: d8:60:79:b0:f0:c0:1b:c4:4e:0e:ed:fe:d2:c8:ae:e5:d1:40: fd:20:ba:2a:e4:fb:4e:b9:cc:07:96:33:05:65:85:91:04:30: c2:f5:af:3a:d5:6c:3f:a8:16:0c:2c:d5:35:6a:3b:5e:6d:1e: 3d:2f:59:b6:40:d1:06:72:92:b8:1e:de:26:07:b3:db:35:d3: 73:e3:97:19:be:ce:41:bd:ab:be:62:54:3f:dc:b3:7e:5a:17: 35:a3:93:14:dc:8c:e7:f5:85:ba:57:7c:9d:b8:f0:16:c3:79: 66:fc:60:e5:1b:f6:4a:6a:ab:4a:38:cb:49:13:06:59:9b:0f: 13:98:2e:59:c6:24:b6:c8:2c:2b:6e:56:f5:0f:b4:a1:7c:27: ea:00:d8:a3:7f:db:e8:75:6a:64:6f:1a:9a:6a:3c:e9:2f:e2: 4e:f4:c6:43:27:84:c1:a7:6f:8e:a4:23:11:b4:66:e8:31:5d: d1:b7:01:f7:f1:72:64:63:17:1b:c2:c6:82:03:84:89:04:33: 7a:5d:14:fe:a7:fd:76:0d:5e:49:8b:47:14:f5:38:88:08:f0: d3:3e:87:35 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MTkzNloXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoRjY5NUYzODVGNkE4NEFG NUI0RTlEMDkwRDQ3MjRCQkE5N0Q0MTM4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKGZLqbGNMnKt/AzfvxlfuzKKq0yDaDwpsvJsDFLQuuLi3DzZBCm X9AXhi7y099CtWFNCX+7M7IK0D7uKgG9SsW1tkeXVJ5tbvxHBuWq1I0EYuQvDnBu dN1dPIpwEpsIiS5OdllnqfdmxkAsGbY+E8+cRv5T1KT68dUsQpOiGXG9H4ilKJdy M+v0Rf1woTqlr0JEUu3gc3dvgWcKhvWSZHx9GwcHlPQDdzkMfpgb1qOqztlmTjFZ Rv2FUfHK5p7RkEGVwVH8ZG4KNm17miq+ajTKWc3SIOBw+eWwBQLUaOUJqMdGPqmF 9wVpR59/KSIiElPkbFxwKlvwlTMz2cFnPuUCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBT2lfOF9qhK9bTp0JDUcku6l9QThzAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi85cFh6aGZhb1N2VzA2 ZENRMUhKTHVwZlVFNGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApCgjANBgkqhkiG9w0BAQsFAAOCAQEAPajaq5+KosJKuQGj2PQ1zzuoPKUg YwEn5XjsrNBzvJVMF11v2GB5sPDAG8RODu3+0siu5dFA/SC6KuT7TrnMB5YzBWWF kQQwwvWvOtVsP6gWDCzVNWo7Xm0ePS9ZtkDRBnKSuB7eJgez2zXTc+OXGb7OQb2r vmJUP9yzfloXNaOTFNyM5/WFuld8nbjwFsN5Zvxg5Rv2SmqrSjjLSRMGWZsPE5gu WcYktsgsK25W9Q+0oXwn6gDYo3/b6HVqZG8ammo86S/iTvTGQyeEwadvjqQjEbRm 6DFd0bcB9/FyZGMXG8LGggOEiQQzel0U/qf9dg1eSYtHFPU4iAjw0z6HNQ== -----END CERTIFICATE-----Generated at Wed Jun 4 01:18:09 2025 by rpki-client