$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/VfRm9ZBizB9bG7rlDNBVWXgHp-A.roa File: VfRm9ZBizB9bG7rlDNBVWXgHp-A.roa (raw, json) Hash identifier: dcSfwRiVohigb7IL55PpLX1PLUMbejiVIhW3Cig7gfM= Subject key identifier: 55:F4:66:F5:90:62:CC:1F:5B:1B:BA:E5:0C:D0:55:59:78:07:A7:E0 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 91 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/VfRm9ZBizB9bG7rlDNBVWXgHp-A.roa Signing time: Fri 06 Jun 2025 01:44:53 +0000 ROA not before: Fri 06 Jun 2025 01:44:53 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56047 IP address blocks: 240a:42c2::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 17:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 01:44:53 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=55F466F59062CC1F5B1BBAE50CD055597807A7E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:50:52:57:d4:7e:a3:1e:29:4e:5c:7f:e1:5a: 48:79:18:f4:46:b3:0c:1b:81:35:72:ed:8d:1a:ce: fd:90:8a:f9:e1:42:42:64:81:19:c4:d6:fa:6b:b9: 2e:53:55:bc:f2:a3:4e:cf:37:40:63:34:5a:64:d1: d1:cf:dc:d4:9c:06:6c:79:6b:84:83:8e:15:39:65: 3d:b9:84:54:6f:74:1b:5b:87:6b:51:5e:3f:df:27: df:94:0f:53:ab:67:a1:6c:dc:4d:f4:f3:e7:37:9c: 55:fc:d1:60:7a:73:9d:cd:07:25:05:24:b6:48:e7: 6f:0a:23:8a:84:05:05:4b:21:ed:4b:55:d3:6a:44: d2:65:0a:cf:78:45:26:f8:e0:fa:30:b7:a4:74:5a: da:6a:a3:a0:45:89:4a:91:e1:a3:da:26:10:bb:ae: 0b:97:b9:3a:0c:a8:4e:68:a3:bd:96:0e:8f:63:ae: 8c:ca:d3:50:4e:d5:df:07:8b:f6:a9:4b:f5:2e:a5: 66:56:36:98:f3:0c:1d:23:d0:9c:90:39:1c:73:bb: 62:1a:a1:56:94:34:f0:2a:ec:f8:e3:0d:07:75:88: 59:58:46:fe:ab:75:64:54:7f:ec:e8:64:32:79:08: 48:31:1e:3c:be:d2:76:36:34:56:c5:18:79:cf:9e: a8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F4:66:F5:90:62:CC:1F:5B:1B:BA:E5:0C:D0:55:59:78:07:A7:E0 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/VfRm9ZBizB9bG7rlDNBVWXgHp-A.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42c2::/31 Signature Algorithm: sha256WithRSAEncryption d9:32:4c:d9:23:9c:60:d4:24:5e:91:d2:e7:23:d0:ac:36:74: 7a:72:2a:30:a3:d5:0b:e2:8b:52:89:6b:d0:03:c4:c5:50:d4: b0:a8:d8:65:fb:2f:6e:e2:cb:2b:ea:e6:69:d7:83:3b:ec:de: d6:cb:dc:1d:b8:e2:88:03:52:3d:ba:b9:69:08:c2:d5:55:15: 85:ea:86:86:bf:9c:40:e6:ad:77:c0:4d:20:c0:2e:32:4f:3d: 4c:eb:f7:5a:f2:86:fb:e4:aa:56:67:cc:14:53:c9:51:ef:12: e4:2a:2d:90:d5:17:8d:05:44:54:cc:57:e9:ff:97:68:69:ef: 92:84:a7:7e:6d:a1:52:89:28:40:d9:ba:18:bd:df:de:50:74: 61:b0:11:3e:f7:fa:e5:3e:a9:74:62:60:89:f4:49:38:b5:a0: aa:25:61:d5:71:20:a7:e9:01:d7:c1:4e:d1:c3:10:87:15:f9: c1:71:9c:8c:56:a6:8a:f0:db:0a:36:d9:40:b1:19:80:bb:46: 44:6c:42:fc:85:08:33:cb:f1:49:d0:5a:55:54:2a:3b:b3:d9: 94:50:6a:23:40:e2:7f:78:c9:a0:91:63:de:03:11:57:ef:81: ec:3b:c4:db:6a:d5:e0:17:13:32:30:37:ff:b5:d4:5f:cc:45: 0f:09:95:a0 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MTQ0NTNaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKDU1RjQ2NkY1OTA2MkND MUY1QjFCQkFFNTBDRDA1NTU5NzgwN0E3RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwUFJX1H6jHilOXH/hWkh5GPRGswwbgTVy7Y0azv2QivnhQkJk gRnE1vpruS5TVbzyo07PN0BjNFpk0dHP3NScBmx5a4SDjhU5ZT25hFRvdBtbh2tR Xj/fJ9+UD1OrZ6Fs3E308+c3nFX80WB6c53NByUFJLZI528KI4qEBQVLIe1LVdNq RNJlCs94RSb44Powt6R0Wtpqo6BFiUqR4aPaJhC7rguXuToMqE5oo72WDo9jrozK 01BO1d8Hi/apS/UupWZWNpjzDB0j0JyQORxzu2IaoVaUNPAq7PjjDQd1iFlYRv6r dWRUf+zoZDJ5CEgxHjy+0nY2NFbFGHnPnqghAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUVfRm9ZBizB9bG7rlDNBVWXgHp+AwHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvVmZSbTlaQml6Qjli RzdybEROQlZXWGdIcC1BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFASQKQsIwDQYJKoZIhvcNAQELBQADggEBANkyTNkjnGDUJF6R0ucj0Kw2dHpy KjCj1Qvii1KJa9ADxMVQ1LCo2GX7L27iyyvq5mnXgzvs3tbL3B244ogDUj26uWkI wtVVFYXqhoa/nEDmrXfATSDALjJPPUzr91ryhvvkqlZnzBRTyVHvEuQqLZDVF40F RFTMV+n/l2hp75KEp35toVKJKEDZuhi9395QdGGwET73+uU+qXRiYIn0STi1oKol YdVxIKfpAdfBTtHDEIcV+cFxnIxWporw2wo22UCxGYC7RkRsQvyFCDPL8UnQWlVU Kjuz2ZRQaiNA4n94yaCRY94DEVfvgew7xNtq1eAXEzIwN/+11F/MRQ8JlaA= -----END CERTIFICATE-----Generated at Fri Jun 13 16:11:52 2025 by rpki-client