$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/a-2Ebj5PXyShU4Y1KbzaWNWYakw.roa File: a-2Ebj5PXyShU4Y1KbzaWNWYakw.roa (raw, json) Hash identifier: j7MnJhHvRvgfhTxYN5+m6eW/EqnkQ5Va9PE5pteGUgY= Subject key identifier: 6B:ED:84:6E:3E:4F:5F:24:A1:53:86:35:29:BC:DA:58:D5:98:6A:4C Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 2A Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/a-2Ebj5PXyShU4Y1KbzaWNWYakw.roa Signing time: Tue 27 May 2025 08:19:38 +0000 ROA not before: Tue 27 May 2025 08:19:38 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:4292::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:19:38 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=6BED846E3E4F5F24A153863529BCDA58D5986A4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:af:bf:6b:7f:84:5e:17:22:07:7b:aa:90:e5: dd:cf:f1:93:1f:dd:cc:7d:8f:f1:9b:82:9d:93:c0: 4f:b6:5e:16:cf:7e:fe:7f:fb:9b:45:f8:1f:52:fa: 75:ad:4b:aa:74:7c:c9:c9:12:cd:13:8c:2c:23:4d: 2d:e7:16:d4:85:7e:fc:d3:22:ca:3f:84:da:8b:f7: 30:fb:a7:d3:44:ca:08:7b:20:f7:97:96:86:f5:cb: 62:27:7e:a8:cd:e7:24:b2:84:77:9f:1c:58:cb:ca: 94:07:ab:21:2e:9d:e7:53:17:de:d6:cb:be:8d:fc: 03:e2:49:63:88:17:ad:5b:46:5f:29:eb:90:db:99: 5f:21:fd:ac:58:ee:3a:b1:55:04:46:3e:36:44:cb: 80:0c:a8:ff:d6:a3:79:f5:6f:26:af:15:4e:af:b9: 24:36:2a:70:6e:b2:55:6d:40:6c:fa:48:8c:a1:ec: f4:65:98:e4:ef:f6:91:41:2e:8c:f0:08:64:2f:17: 2d:f2:07:e9:db:74:c5:ea:1e:f9:ca:cd:94:f9:34: 5f:6b:98:8a:ba:a6:4d:77:94:d7:fe:c7:30:83:34: 03:4c:b2:26:88:95:ca:e9:52:10:57:3e:a7:66:3f: 59:a1:e1:e2:1a:27:0a:ef:e4:20:8d:a8:fd:3a:cb: c1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:ED:84:6E:3E:4F:5F:24:A1:53:86:35:29:BC:DA:58:D5:98:6A:4C X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/a-2Ebj5PXyShU4Y1KbzaWNWYakw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:4292::/31 Signature Algorithm: sha256WithRSAEncryption 7d:33:fc:1c:d9:67:84:09:ba:37:eb:29:8f:03:ff:e8:fc:32: bc:40:4e:2c:e4:2e:a5:69:52:f9:a3:23:47:fc:f4:b7:32:f6: b9:f8:ef:e7:ed:e8:43:21:2a:85:93:18:7b:dd:d2:0b:d5:dd: 34:18:88:fe:ec:ef:96:35:a2:63:38:bd:96:a1:bf:6b:54:0a: f9:61:8c:d7:f9:bb:55:a6:2d:a6:a0:d4:36:3c:b7:ea:09:1a: 72:55:10:fa:a3:cd:4b:e7:5e:5d:82:47:e0:39:4f:a7:68:19: ba:23:80:ca:e9:2d:76:15:ec:cd:9a:85:47:38:82:8a:5d:7c: ad:44:c0:75:7e:ae:0d:e5:cc:64:af:4e:b8:c3:7b:90:8f:6b: ec:7c:d3:2a:ba:f8:4d:a8:3f:8f:af:c1:42:0c:2c:23:a8:ec: b2:f3:6a:1c:18:e8:14:f6:5e:9b:c0:7f:d0:7e:b6:5d:cb:09: 50:2e:c0:34:09:25:5f:55:30:7e:60:71:cd:af:7d:68:e8:ba: 11:d9:37:17:28:24:86:dc:53:bb:c6:10:87:a9:39:1e:9e:6a: 89:41:91:2d:d9:64:3c:c9:78:1e:11:8c:e4:5a:87:9a:aa:de: 35:15:35:cc:dd:2a:44:59:48:98:81:32:8c:f0:23:92:97:5f: 6e:aa:29:62 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MTkzOFoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoNkJFRDg0NkUzRTRGNUYy NEExNTM4NjM1MjlCQ0RBNThENTk4NkE0QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMuvv2t/hF4XIgd7qpDl3c/xkx/dzH2P8ZuCnZPAT7ZeFs9+/n/7 m0X4H1L6da1LqnR8yckSzROMLCNNLecW1IV+/NMiyj+E2ov3MPun00TKCHsg95eW hvXLYid+qM3nJLKEd58cWMvKlAerIS6d51MX3tbLvo38A+JJY4gXrVtGXynrkNuZ XyH9rFjuOrFVBEY+NkTLgAyo/9ajefVvJq8VTq+5JDYqcG6yVW1AbPpIjKHs9GWY 5O/2kUEujPAIZC8XLfIH6dt0xeoe+crNlPk0X2uYirqmTXeU1/7HMIM0A0yyJoiV yulSEFc+p2Y/WaHh4honCu/kII2o/TrLwZMCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBRr7YRuPk9fJKFThjUpvNpY1ZhqTDAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi9hLTJFYmo1UFh5U2hV NFkxS2J6YVdOV1lha3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApCkjANBgkqhkiG9w0BAQsFAAOCAQEAfTP8HNlnhAm6N+spjwP/6PwyvEBO LOQupWlS+aMjR/z0tzL2ufjv5+3oQyEqhZMYe93SC9XdNBiI/uzvljWiYzi9lqG/ a1QK+WGM1/m7VaYtpqDUNjy36gkaclUQ+qPNS+deXYJH4DlPp2gZuiOAyuktdhXs zZqFRziCil18rUTAdX6uDeXMZK9OuMN7kI9r7HzTKrr4Tag/j6/BQgwsI6jssvNq HBjoFPZem8B/0H62XcsJUC7ANAklX1UwfmBxza99aOi6Edk3FygkhtxTu8YQh6k5 Hp5qiUGRLdlkPMl4HhGM5FqHmqreNRU1zN0qRFlImIEyjPAjkpdfbqopYg== -----END CERTIFICATE-----Generated at Wed Jun 4 01:23:22 2025 by rpki-client