$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/bUEBdgdfYxvTtoLotKdNXmEKsYc.roa File: bUEBdgdfYxvTtoLotKdNXmEKsYc.roa (raw, json) Hash identifier: sz9GNBaBtX44yvrNWNq/3jvxeEkxWh9H6/i5aPqSLmQ= Subject key identifier: 6D:41:01:76:07:5F:63:1B:D3:B6:82:E8:B4:A7:4D:5E:61:0A:B1:87 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 35 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/bUEBdgdfYxvTtoLotKdNXmEKsYc.roa Signing time: Tue 27 May 2025 08:25:27 +0000 ROA not before: Tue 27 May 2025 08:25:27 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:42d4::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:25:27 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=6D410176075F631BD3B682E8B4A74D5E610AB187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1e:1d:aa:1c:ec:29:6a:46:83:88:83:a5:a8: 6e:82:41:02:4f:10:19:c1:5b:b8:f7:cf:a2:7d:c4: a8:ed:10:a3:f2:8b:85:4a:76:95:cb:78:d9:11:36: 07:ab:e5:48:4d:ca:1b:51:85:fc:a2:b9:b2:f1:6a: a0:e9:65:69:4e:9e:e6:23:f7:55:39:04:4f:eb:a7: 95:cd:5c:f6:8e:5a:e5:e6:8a:ef:78:f6:f4:7e:8b: 69:3c:83:51:67:b8:f0:df:ab:aa:e7:d5:30:12:5e: 40:b9:8e:e4:05:e3:7f:56:ad:1d:92:dd:ed:74:f6: c9:0d:17:1e:d9:35:bc:a6:a0:40:f4:3f:ac:7f:47: a7:19:f1:6b:4f:34:59:48:b0:dd:bd:37:48:e0:c3: 0d:32:e5:24:a2:35:61:e3:a7:d8:01:ef:22:13:5f: 76:4a:87:cf:55:8a:66:96:f3:15:a5:6a:de:11:8a: 04:52:91:70:43:a8:7a:0b:47:9c:5c:e2:db:80:97: 21:60:81:0a:9e:0e:88:2c:61:ea:7d:21:89:5c:20: b7:e5:1d:a6:60:e7:be:b5:cf:29:5a:f0:4a:3e:e1: a8:00:de:0c:8a:5c:02:1e:e1:4f:52:e5:78:2a:49: d0:05:5c:6f:95:6a:76:56:ed:a6:98:ac:a9:01:a3: 09:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:41:01:76:07:5F:63:1B:D3:B6:82:E8:B4:A7:4D:5E:61:0A:B1:87 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/bUEBdgdfYxvTtoLotKdNXmEKsYc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42d4::/31 Signature Algorithm: sha256WithRSAEncryption c4:a5:ec:a9:20:d4:4b:f6:22:6b:ba:5d:51:03:c0:b7:5d:4f: d7:3d:8e:10:03:92:83:cc:61:d7:60:fe:67:f9:09:8e:b3:35: a4:45:69:b4:06:29:0d:41:8a:b3:d0:c8:7a:d9:40:50:30:f1: bb:bf:b3:ed:c8:a0:3b:b9:27:45:88:6e:b7:2b:bd:c8:34:03: ad:c2:6a:02:4f:36:3b:70:ac:69:a3:b8:21:e6:02:bf:e0:f5: 0f:e1:15:1b:d9:4d:0f:ea:e9:fd:5b:64:63:d3:c8:2b:bd:ed: 8b:b0:ae:57:cb:c7:bf:67:4e:64:c1:e7:1a:1a:5b:33:50:14: e7:0c:a8:fd:5d:5b:99:62:59:21:22:19:08:cf:ff:ad:b8:17: 75:8b:de:43:76:78:91:a0:f2:7f:ca:9c:bf:6f:2d:88:b3:10: ce:ae:f2:21:51:36:e2:73:71:15:16:65:97:d9:1d:8e:e9:76: 82:a7:c1:60:f3:70:29:39:8d:89:de:5b:a4:0e:01:d7:3e:be: 97:1f:a0:fc:49:8e:6d:45:0c:31:bd:40:4e:1c:6d:37:52:6f: 4e:7a:9d:8d:33:cd:1d:ef:64:a3:47:d9:02:76:21:f1:42:12: d5:55:79:be:be:de:60:40:20:a2:e4:6b:64:cb:c9:83:d5:44: 63:a6:5c:d9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBNTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MjUyN1oXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoNkQ0MTAxNzYwNzVGNjMx QkQzQjY4MkU4QjRBNzRENUU2MTBBQjE4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMgeHaoc7ClqRoOIg6WoboJBAk8QGcFbuPfPon3EqO0Qo/KLhUp2 lct42RE2B6vlSE3KG1GF/KK5svFqoOllaU6e5iP3VTkET+unlc1c9o5a5eaK73j2 9H6LaTyDUWe48N+rqufVMBJeQLmO5AXjf1atHZLd7XT2yQ0XHtk1vKagQPQ/rH9H pxnxa080WUiw3b03SODDDTLlJKI1YeOn2AHvIhNfdkqHz1WKZpbzFaVq3hGKBFKR cEOoegtHnFzi24CXIWCBCp4OiCxh6n0hiVwgt+UdpmDnvrXPKVrwSj7hqADeDIpc Ah7hT1LleCpJ0AVcb5VqdlbtppisqQGjCW0CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBRtQQF2B19jG9O2gui0p01eYQqxhzAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi9iVUVCZGdkZll4dlR0 b0xvdEtkTlhtRUtzWWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApC1DANBgkqhkiG9w0BAQsFAAOCAQEAxKXsqSDUS/Yia7pdUQPAt11P1z2O EAOSg8xh12D+Z/kJjrM1pEVptAYpDUGKs9DIetlAUDDxu7+z7cigO7knRYhutyu9 yDQDrcJqAk82O3CsaaO4IeYCv+D1D+EVG9lND+rp/VtkY9PIK73ti7CuV8vHv2dO ZMHnGhpbM1AU5wyo/V1bmWJZISIZCM//rbgXdYveQ3Z4kaDyf8qcv28tiLMQzq7y IVE24nNxFRZll9kdjul2gqfBYPNwKTmNid5bpA4B1z6+lx+g/EmObUUMMb1AThxt N1JvTnqdjTPNHe9ko0fZAnYh8UIS1VV5vr7eYEAgouRrZMvJg9VEY6Zc2Q== -----END CERTIFICATE-----Generated at Wed Jun 4 01:31:08 2025 by rpki-client