$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/ZykuJL0A7nJ3G-g3rZA-LBIvss8.roa File: ZykuJL0A7nJ3G-g3rZA-LBIvss8.roa (raw, json) Hash identifier: o/6G5BH5xsBiFBr4vUSNbqav7BwVrqEz4jCnpuB0Iuo= Subject key identifier: 67:29:2E:24:BD:00:EE:72:77:1B:E8:37:AD:90:3E:2C:12:2F:B2:CF Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 9E Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/ZykuJL0A7nJ3G-g3rZA-LBIvss8.roa Signing time: Fri 06 Jun 2025 01:46:34 +0000 ROA not before: Fri 06 Jun 2025 01:46:34 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 24400 IP address blocks: 240a:42a2::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 08:09:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 01:46:34 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=67292E24BD00EE72771BE837AD903E2C122FB2CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5a:4d:9d:28:11:48:db:35:7b:49:7b:4c:c5: 17:48:3e:f7:00:ca:f1:49:76:c9:c4:47:5c:13:99: f1:12:e4:91:54:b1:18:db:b5:c6:13:46:5a:73:0d: 79:72:8b:2e:8a:70:cd:e0:ec:d1:13:98:ab:e9:b5: 1c:48:03:26:20:e2:24:48:0a:08:ae:9c:92:54:a3: 16:79:d0:5a:e8:16:8d:c0:c7:35:3e:cf:6c:b5:ac: ab:e3:04:37:8b:0d:05:2f:1d:5f:3a:35:ae:dd:d1: c8:1d:bb:f7:04:a2:7e:cc:fe:d1:d9:e9:c9:70:3a: 8c:d6:c7:c7:ac:06:46:04:d6:e9:4f:4f:d0:66:a1: aa:b4:b2:bf:4c:0d:84:ba:fb:d1:1f:41:11:87:01: 15:87:c0:0e:79:e2:c8:61:80:d6:ad:37:97:00:e1: 41:7b:07:13:6e:9c:da:02:a8:1e:38:33:54:50:c7: 9a:fa:7d:29:3c:6d:55:d8:81:e0:5d:aa:49:d0:c5: 5e:b8:f6:c4:f9:50:41:0a:68:be:79:cf:db:a7:d7: bb:89:21:cc:15:2c:fa:9e:31:e5:a2:9f:8c:26:2a: 38:90:22:4c:34:ce:84:56:ce:02:aa:6d:81:d3:e6: 1e:8e:04:27:87:ec:14:d1:f5:7b:35:1d:2e:e6:c7: 46:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:29:2E:24:BD:00:EE:72:77:1B:E8:37:AD:90:3E:2C:12:2F:B2:CF X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/ZykuJL0A7nJ3G-g3rZA-LBIvss8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42a2::/31 Signature Algorithm: sha256WithRSAEncryption 1d:39:a1:fd:b4:50:30:26:ab:49:2a:3b:c3:05:06:a6:0c:e5: f9:c7:f3:b6:21:bb:b9:9e:5b:40:1a:3f:4a:64:9f:82:c1:a6: 61:f8:c1:4b:97:05:d2:df:97:3c:d8:4b:73:6b:f3:0e:a1:ea: 3b:2e:c2:bf:cb:ac:3c:90:6d:f3:ae:ff:32:15:05:96:f2:5a: 27:fb:2c:e3:d8:20:f5:0a:c6:4e:79:13:93:3f:6f:47:12:88: 29:3f:4e:8f:d3:ea:a7:b8:18:44:c8:ee:cd:85:4d:b9:77:19: 7f:bd:56:a4:f6:65:28:91:e4:7c:2f:75:68:09:90:dc:23:d9: 4d:2d:31:ad:a0:8f:be:20:14:4f:de:13:8c:d1:9e:47:cf:58: 14:d6:9f:ac:f3:38:49:b5:5e:32:38:4c:a8:ff:ed:7b:80:a2: a9:9d:ff:21:88:1a:fa:42:b3:38:4d:87:8b:33:47:68:f5:50: 1f:c5:9c:83:da:7f:93:1f:f1:30:8a:19:f6:2f:10:cf:4d:93: ac:ff:ed:82:59:ea:7d:a6:58:85:48:02:c9:03:6d:f2:a4:64: 84:8b:61:9c:3d:2e:a8:4c:b3:fb:ac:b2:bb:7c:bd:92:d8:bc: d8:cd:c3:35:1f:c8:63:cb:0e:52:75:37:22:e6:a6:68:d0:87: 04:75:c1:98 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MTQ2MzRaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKDY3MjkyRTI0QkQwMEVF NzI3NzFCRTgzN0FEOTAzRTJDMTIyRkIyQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmWk2dKBFI2zV7SXtMxRdIPvcAyvFJdsnER1wTmfES5JFUsRjb tcYTRlpzDXlyiy6KcM3g7NETmKvptRxIAyYg4iRICgiunJJUoxZ50FroFo3AxzU+ z2y1rKvjBDeLDQUvHV86Na7d0cgdu/cEon7M/tHZ6clwOozWx8esBkYE1ulPT9Bm oaq0sr9MDYS6+9EfQRGHARWHwA554shhgNatN5cA4UF7BxNunNoCqB44M1RQx5r6 fSk8bVXYgeBdqknQxV649sT5UEEKaL55z9un17uJIcwVLPqeMeWin4wmKjiQIkw0 zoRWzgKqbYHT5h6OBCeH7BTR9Xs1HS7mx0ahAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUZykuJL0A7nJ3G+g3rZA+LBIvss8wHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIvWnlrdUpMMEE3bkoz Ry1nM3JaQS1MQkl2c3M4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFASQKQqIwDQYJKoZIhvcNAQELBQADggEBAB05of20UDAmq0kqO8MFBqYM5fnH 87Yhu7meW0AaP0pkn4LBpmH4wUuXBdLflzzYS3Nr8w6h6jsuwr/LrDyQbfOu/zIV BZbyWif7LOPYIPUKxk55E5M/b0cSiCk/To/T6qe4GETI7s2FTbl3GX+9VqT2ZSiR 5HwvdWgJkNwj2U0tMa2gj74gFE/eE4zRnkfPWBTWn6zzOEm1XjI4TKj/7XuAoqmd /yGIGvpCszhNh4szR2j1UB/FnIPaf5Mf8TCKGfYvEM9Nk6z/7YJZ6n2mWIVIAskD bfKkZISLYZw9LqhMs/ussrt8vZLYvNjNwzUfyGPLDlJ1NyLmpmjQhwR1wZg= -----END CERTIFICATE-----Generated at Thu Jun 12 07:54:07 2025 by rpki-client