$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/flis5MlJOJYvelH285vudQJzEB4.roa File: flis5MlJOJYvelH285vudQJzEB4.roa (raw, json) Hash identifier: m2r9XczTyWpjB4f64fnn5poKXd11oZUW7vNWOM0/MCI= Subject key identifier: 7E:58:AC:E4:C9:49:38:96:2F:7A:51:F6:F3:9B:EE:75:02:73:10:1E Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 30 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/flis5MlJOJYvelH285vudQJzEB4.roa Signing time: Tue 27 May 2025 08:19:39 +0000 ROA not before: Tue 27 May 2025 08:19:39 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56040 IP address blocks: 240a:4090:5200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:19:39 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=7E58ACE4C94938962F7A51F6F39BEE750273101E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:23:b1:b1:dd:7a:dd:fb:1a:71:04:0d:4e:45: b6:05:76:e1:0b:d5:0d:ba:ef:05:2b:49:42:2c:ee: 22:69:b0:6f:85:6b:b6:88:de:b3:1e:54:41:f8:69: 53:19:7c:50:55:94:da:b0:3d:2d:3e:03:d9:d3:4e: 6d:78:7c:5d:f7:f6:ba:e8:33:bb:1f:21:e3:1a:71: 9f:22:35:4f:8d:6e:e2:ec:3b:57:40:a8:36:fa:fb: 8c:a7:48:7b:a0:ba:a2:f0:69:cb:3e:fe:7a:f9:f2: 22:70:54:73:7d:af:12:31:4a:d3:2b:e6:07:e2:a9: 86:89:06:a7:ce:dc:35:ef:ea:7a:eb:69:ff:fd:04: b8:0f:24:43:5a:69:9f:b8:d7:70:5d:05:29:7a:a6: 82:dd:7b:7c:59:a8:4c:81:6a:b0:5d:60:62:b6:56: d6:91:bb:53:77:66:bc:5b:72:3e:ba:6d:6a:13:d1: 78:df:4c:f8:86:35:0b:dc:5d:7e:e4:bb:45:ac:1d: a7:80:b4:35:4f:c6:81:6b:48:12:9d:ad:88:bb:88: 9d:33:e5:f0:59:2b:bc:a7:a8:88:e1:e1:18:2a:3d: c1:91:8b:3c:85:da:18:07:73:f9:1b:dc:ec:7c:48: dc:35:25:91:08:16:82:a3:06:7c:b1:76:a9:14:38: a6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:58:AC:E4:C9:49:38:96:2F:7A:51:F6:F3:9B:EE:75:02:73:10:1E X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/flis5MlJOJYvelH285vudQJzEB4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:4090:5200::/40 Signature Algorithm: sha256WithRSAEncryption d3:fc:c1:6f:73:3d:bb:04:a6:45:bb:9d:54:6c:26:7b:ad:e4: ef:cd:72:01:bc:2f:b3:05:26:e8:a0:55:af:14:fd:5a:8c:85: 09:a4:0c:ca:d3:0c:06:6a:21:79:d8:ea:11:93:23:25:03:7e: d2:aa:ae:19:61:b9:ab:34:b5:53:2f:90:ee:91:7e:8c:c3:d9: 7c:9a:a6:9e:ff:65:13:2d:3d:f9:46:27:0f:b9:5b:26:24:36: fa:57:4e:70:05:17:79:5f:ad:fd:24:e2:6d:91:fa:e6:c8:8e: 41:6f:07:de:db:33:a4:a2:3e:74:c5:07:78:5f:99:8b:20:05: 06:6b:50:19:12:58:5f:e4:a4:0d:a6:06:c3:35:71:63:bd:27: c2:8a:f6:b3:2d:c3:e5:70:c4:da:ed:71:e6:0a:22:d5:22:77: f6:99:af:5e:f3:8a:b2:6f:02:9e:31:36:b8:c9:86:30:bf:aa: bf:ab:7a:ae:0e:83:98:d0:2e:2f:2d:7c:2e:f7:36:b4:e2:35: e9:40:08:0c:8b:b6:2d:0f:8b:e1:21:e2:76:6e:b7:d0:fe:75: f8:7b:47:68:fc:a1:b4:6d:86:74:ff:a1:cd:2e:d4:55:8f:c5: de:54:ee:bc:76:68:ec:3e:2a:ce:6d:8f:15:80:76:f8:4a:72: a3:23:4b:4b -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MTkzOVoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoN0U1OEFDRTRDOTQ5Mzg5 NjJGN0E1MUY2RjM5QkVFNzUwMjczMTAxRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALMjsbHdet37GnEEDU5FtgV24QvVDbrvBStJQizuImmwb4Vrtoje sx5UQfhpUxl8UFWU2rA9LT4D2dNObXh8Xff2uugzux8h4xpxnyI1T41u4uw7V0Co Nvr7jKdIe6C6ovBpyz7+evnyInBUc32vEjFK0yvmB+KphokGp87cNe/qeutp//0E uA8kQ1ppn7jXcF0FKXqmgt17fFmoTIFqsF1gYrZW1pG7U3dmvFtyPrptahPReN9M +IY1C9xdfuS7Rawdp4C0NU/GgWtIEp2tiLuInTPl8FkrvKeoiOHhGCo9wZGLPIXa GAdz+Rvc7HxI3DUlkQgWgqMGfLF2qRQ4pjUCAwEAAaOCAfUwggHxMB0GA1UdDgQW BBR+WKzkyUk4li96Ufbzm+51AnMQHjAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi9mbGlzNU1sSk9KWXZl bEgyODV2dWRRSnpFQjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI AwYAJApAkFIwDQYJKoZIhvcNAQELBQADggEBANP8wW9zPbsEpkW7nVRsJnut5O/N cgG8L7MFJuigVa8U/VqMhQmkDMrTDAZqIXnY6hGTIyUDftKqrhlhuas0tVMvkO6R fozD2Xyapp7/ZRMtPflGJw+5WyYkNvpXTnAFF3lfrf0k4m2R+ubIjkFvB97bM6Si PnTFB3hfmYsgBQZrUBkSWF/kpA2mBsM1cWO9J8KK9rMtw+VwxNrtceYKItUid/aZ r17zirJvAp4xNrjJhjC/qr+req4Og5jQLi8tfC73NrTiNelACAyLti0Pi+Eh4nZu t9D+dfh7R2j8obRthnT/oc0u1FWPxd5U7rx2aOw+Ks5tjxWAdvhKcqMjS0s= -----END CERTIFICATE-----Generated at Wed Jun 4 01:20:54 2025 by rpki-client