$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/tPevbveI7mtP3rVtUWu8gZpozg8.roa File: tPevbveI7mtP3rVtUWu8gZpozg8.roa (raw, json) Hash identifier: rzV3+y+h6rfgZbBP7/0UnRWjhpKgVCVZBGxXUkQtogE= Subject key identifier: B4:F7:AF:6E:F7:88:EE:6B:4F:DE:B5:6D:51:6B:BC:81:9A:68:CE:0F Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 3E Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/tPevbveI7mtP3rVtUWu8gZpozg8.roa Signing time: Tue 27 May 2025 08:25:29 +0000 ROA not before: Tue 27 May 2025 08:25:29 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:42ee::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:25:29 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=B4F7AF6EF788EE6B4FDEB56D516BBC819A68CE0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4a:41:f2:85:2e:d1:44:66:a5:02:44:83:d4: 79:ae:eb:cb:a8:89:50:7e:d7:bd:e4:34:5d:41:29: 60:e3:44:75:9c:43:5e:8b:7c:6d:b3:c0:57:17:cb: 79:25:27:22:25:21:94:79:a6:40:b1:f7:61:f8:58: 58:4b:ef:08:2c:c8:b7:e5:65:16:df:ab:43:67:d8: c2:e8:ee:10:a7:3e:a8:ed:52:0e:5c:e0:6b:50:d8: f7:bc:f6:19:fb:97:ec:22:8b:c7:43:18:f4:e3:6d: cc:e4:9a:af:bc:f6:e2:57:85:d8:a6:8e:a0:5f:09: b2:9b:52:bf:ba:0e:91:6e:07:9c:3f:87:f8:b5:cb: c5:08:b0:e9:30:c7:8d:7a:31:5c:21:e7:11:67:01: d0:08:28:bd:7e:2a:fe:11:4e:65:ff:de:98:c6:a5: b7:b7:a7:7a:71:00:b6:f3:07:96:4d:bb:36:6b:1a: e5:97:34:7d:24:01:fa:7f:6d:1d:0e:6d:f5:14:6d: 41:5a:fd:d2:5a:e2:5f:82:99:3c:a7:77:4e:89:60: b4:88:dc:0a:00:eb:9a:81:7b:d9:42:af:67:64:ae: 58:1d:5e:b4:02:b6:f9:0a:dd:79:77:16:0f:b9:d2: fd:e3:4a:cb:3f:04:35:22:7a:5e:0f:8b:ef:03:f8: 17:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F7:AF:6E:F7:88:EE:6B:4F:DE:B5:6D:51:6B:BC:81:9A:68:CE:0F X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/tPevbveI7mtP3rVtUWu8gZpozg8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42ee::/31 Signature Algorithm: sha256WithRSAEncryption 7e:e8:e5:30:ea:f8:53:da:04:69:24:01:c7:c3:7e:93:52:4b: d7:ef:a9:c0:47:a6:59:9d:87:d5:1f:49:4e:bc:58:ca:ba:ea: 7b:6d:28:a4:cd:45:10:e8:ba:fd:26:87:4f:26:46:23:cd:39: 60:05:31:a2:22:98:77:6e:6e:99:27:a9:23:9c:30:00:32:e4: b1:04:e3:9e:15:51:e6:28:f4:79:91:af:7b:24:7c:58:b5:ed: 56:db:78:60:91:3c:1c:fd:e7:dc:2d:32:8a:c2:3a:6f:1c:ba: 51:86:5d:ce:f3:52:56:ae:ed:22:cb:bc:6f:12:63:89:76:2c: 1f:a5:37:5c:c1:c1:ee:69:cd:b8:9c:5d:1b:19:fa:a2:b7:59: 29:9e:d7:9d:8e:30:1e:fb:33:07:84:d0:96:e3:c3:49:ee:f8: 86:48:82:9b:1b:c9:5c:fe:77:79:d0:cb:72:42:2f:2a:f5:00: a8:14:b8:55:47:6f:1f:5c:ad:06:db:a4:5e:14:2b:22:da:44: a6:35:c7:dc:02:34:83:f5:99:b7:25:23:1e:b4:2f:7e:bd:c9: 71:78:4d:14:67:ed:2a:a9:1a:d3:e6:ef:c5:01:dc:40:10:67: 56:f0:b9:94:4a:04:bb:ba:8c:eb:5c:b8:36:82:eb:4e:31:b9: 1a:4c:7b:54 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MjUyOVoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoQjRGN0FGNkVGNzg4RUU2 QjRGREVCNTZENTE2QkJDODE5QTY4Q0UwRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMNKQfKFLtFEZqUCRIPUea7ry6iJUH7XveQ0XUEpYONEdZxDXot8 bbPAVxfLeSUnIiUhlHmmQLH3YfhYWEvvCCzIt+VlFt+rQ2fYwujuEKc+qO1SDlzg a1DY97z2GfuX7CKLx0MY9ONtzOSar7z24leF2KaOoF8JsptSv7oOkW4HnD+H+LXL xQiw6TDHjXoxXCHnEWcB0AgovX4q/hFOZf/emMalt7enenEAtvMHlk27Nmsa5Zc0 fSQB+n9tHQ5t9RRtQVr90lriX4KZPKd3TolgtIjcCgDrmoF72UKvZ2SuWB1etAK2 +QrdeXcWD7nS/eNKyz8ENSJ6Xg+L7wP4Fy8CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBS0969u94jua0/etW1Ra7yBmmjODzAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi90UGV2YnZlSTdtdFAz clZ0VVd1OGdacG96Zzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApC7jANBgkqhkiG9w0BAQsFAAOCAQEAfujlMOr4U9oEaSQBx8N+k1JL1++p wEemWZ2H1R9JTrxYyrrqe20opM1FEOi6/SaHTyZGI805YAUxoiKYd25umSepI5ww ADLksQTjnhVR5ij0eZGveyR8WLXtVtt4YJE8HP3n3C0yisI6bxy6UYZdzvNSVq7t Isu8bxJjiXYsH6U3XMHB7mnNuJxdGxn6ordZKZ7XnY4wHvszB4TQluPDSe74hkiC mxvJXP53edDLckIvKvUAqBS4VUdvH1ytBtukXhQrItpEpjXH3AI0g/WZtyUjHrQv fr3JcXhNFGftKqka0+bvxQHcQBBnVvC5lEoEu7qM61y4NoLrTjG5Gkx7VA== -----END CERTIFICATE-----Generated at Wed Jun 4 02:03:37 2025 by rpki-client