$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/Jgwo5B9S2_6G2hCq0OpeY_efAFs.roa File: Jgwo5B9S2_6G2hCq0OpeY_efAFs.roa (raw, json) Hash identifier: 6p7RUJviZ/Y/UjA4vIs/ZMdwEJuWCREFw2CNrT938j4= Subject key identifier: 26:0C:28:E4:1F:52:DB:FE:86:DA:10:AA:D0:EA:5E:63:F7:9F:00:5B Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 57 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/Jgwo5B9S2_6G2hCq0OpeY_efAFs.roa Signing time: Tue 27 May 2025 08:36:33 +0000 ROA not before: Tue 27 May 2025 08:36:33 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56046 IP address blocks: 240a:42a4::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:36:33 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=260C28E41F52DBFE86DA10AAD0EA5E63F79F005B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:1a:4b:60:80:b7:2f:5b:58:2e:5d:ea:e4: a6:94:25:f3:f1:81:55:4b:34:bc:09:cf:6d:31:56: 41:2b:af:99:1c:3c:11:7e:a3:64:4a:c9:55:31:e6: 0f:5b:d0:f0:13:58:4b:d0:9d:84:c4:64:a1:21:3f: 5f:40:eb:87:0c:7e:63:39:5e:27:6c:bb:69:cc:ef: ac:34:2e:c9:7a:12:c4:62:0c:e7:4c:4a:37:8f:15: e7:e4:8b:35:22:b0:dd:23:e2:b4:fe:ae:99:93:c6: 60:63:b5:9d:0a:2d:c0:b6:11:99:48:aa:e0:a3:ed: a8:61:b2:42:77:d2:d5:3a:dd:fe:3b:df:a5:63:ce: 3b:0e:1c:03:ad:7d:26:68:98:3d:e4:d6:de:9e:d1: 2f:a3:54:1c:9e:a3:7c:c9:8d:cf:2c:b1:73:ed:32: 69:d3:90:73:fc:9c:6f:3e:70:32:66:6a:07:2a:79: 3e:66:28:2f:e0:04:67:30:27:06:39:11:4b:08:02: 77:ad:d8:a2:01:a6:e5:af:7a:ac:ab:0f:7c:3c:cf: a6:d2:9d:7a:2c:b1:81:42:d2:6f:c4:1f:b2:c8:31: 4c:4b:e8:65:37:d0:50:16:8f:8f:22:e0:2c:c6:83: 6a:c6:2c:c9:8d:07:2e:24:77:bd:be:27:cc:c6:4c: db:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0C:28:E4:1F:52:DB:FE:86:DA:10:AA:D0:EA:5E:63:F7:9F:00:5B X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/Jgwo5B9S2_6G2hCq0OpeY_efAFs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42a4::/31 Signature Algorithm: sha256WithRSAEncryption 0f:a0:0b:73:b3:97:db:ee:a5:3d:e9:8d:f4:a5:af:df:99:21: 9a:77:10:11:01:13:73:ee:aa:45:30:75:b0:14:ae:58:32:92: 56:c6:5d:a7:44:1c:ac:60:be:6f:25:95:e9:06:71:5c:e5:8e: 0e:2d:51:69:36:d6:56:f5:25:cf:d2:d0:d3:bf:40:c1:78:1c: d8:19:76:b7:89:6c:f8:8b:d5:37:23:60:db:be:4e:3e:8f:83: 86:40:3c:c1:15:c9:f4:a2:17:09:15:c9:aa:f2:7c:59:59:dd: e8:05:e4:d3:43:ca:81:8e:54:2e:d1:e4:f1:b8:86:c8:a7:91: 13:2d:c9:2b:9e:48:09:dd:0c:45:be:29:6f:d3:74:45:69:a8: 92:4d:af:f9:0f:38:86:d6:c9:52:63:10:0f:7f:cf:e7:e0:a4: 6a:05:ff:f8:fa:1f:39:c2:9d:c3:da:3b:5e:8e:15:e6:73:83: 2e:83:ac:3b:ec:77:68:5f:13:09:3e:35:9e:90:2a:17:d9:ad: 28:d5:78:26:48:1c:52:28:3d:4b:1f:84:17:1a:75:ab:e6:a0: f6:a7:74:5c:18:e1:f9:d7:70:89:47:a9:2c:0d:92:39:ad:80: 3e:05:a2:e1:62:c1:78:74:e6:94:04:a2:94:a4:9e:bb:9f:f4: 93:19:9b:1a -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MzYzM1oXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoMjYwQzI4RTQxRjUyREJG RTg2REExMEFBRDBFQTVFNjNGNzlGMDA1QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALpZGktggLcvW1guXerkppQl8/GBVUs0vAnPbTFWQSuvmRw8EX6j ZErJVTHmD1vQ8BNYS9CdhMRkoSE/X0Drhwx+YzleJ2y7aczvrDQuyXoSxGIM50xK N48V5+SLNSKw3SPitP6umZPGYGO1nQotwLYRmUiq4KPtqGGyQnfS1Trd/jvfpWPO Ow4cA619JmiYPeTW3p7RL6NUHJ6jfMmNzyyxc+0yadOQc/ycbz5wMmZqByp5PmYo L+AEZzAnBjkRSwgCd63YogGm5a96rKsPfDzPptKdeiyxgULSb8QfssgxTEvoZTfQ UBaPjyLgLMaDasYsyY0HLiR3vb4nzMZM2+MCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBQmDCjkH1Lb/obaEKrQ6l5j958AWzAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi9KZ3dvNUI5UzJfNkcy aENxME9wZVlfZWZBRnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApCpDANBgkqhkiG9w0BAQsFAAOCAQEAD6ALc7OX2+6lPemN9KWv35khmncQ EQETc+6qRTB1sBSuWDKSVsZdp0QcrGC+byWV6QZxXOWODi1RaTbWVvUlz9LQ079A wXgc2Bl2t4ls+IvVNyNg275OPo+DhkA8wRXJ9KIXCRXJqvJ8WVnd6AXk00PKgY5U LtHk8biGyKeREy3JK55ICd0MRb4pb9N0RWmokk2v+Q84htbJUmMQD3/P5+CkagX/ +PofOcKdw9o7Xo4V5nODLoOsO+x3aF8TCT41npAqF9mtKNV4JkgcUig9Sx+EFxp1 q+ag9qd0XBjh+ddwiUepLA2SOa2APgWi4WLBeHTmlASilKSeu5/0kxmbGg== -----END CERTIFICATE-----Generated at Wed Jun 4 01:23:04 2025 by rpki-client