$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/tTeR_1MerWZpt9jbfrUtNHhoUNY.roa File: tTeR_1MerWZpt9jbfrUtNHhoUNY.roa (raw, json) Hash identifier: o7iWZ001bzvDUF7KZ5nNFWugbyHtKvgP2nKqhPcMVTY= Subject key identifier: B5:37:91:FF:53:1E:AD:66:69:B7:D8:DB:7E:B5:2D:34:78:68:50:D6 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 52 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/tTeR_1MerWZpt9jbfrUtNHhoUNY.roa Signing time: Tue 27 May 2025 08:36:32 +0000 ROA not before: Tue 27 May 2025 08:36:32 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 9808 IP address blocks: 240a:42dc::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 19:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:36:32 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=B53791FF531EAD6669B7D8DB7EB52D34786850D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bc:48:6e:60:59:79:6c:25:7b:8f:87:a6:98: bd:9f:14:5e:de:f4:50:2d:0c:0a:c6:bc:28:57:bf: 64:68:bb:bf:b2:2a:a0:dc:0f:cb:9d:ef:01:48:ba: 91:ab:aa:24:ac:67:1d:b2:93:c3:39:b3:d4:9d:d0: 7c:f1:2e:d3:63:fd:3d:10:59:29:94:4c:63:01:86: 27:cb:92:be:12:a3:39:69:dc:83:7a:5c:16:2f:05: bc:64:09:2d:30:24:4d:91:08:a2:12:4e:5b:44:37: 7d:5e:98:e0:df:85:7c:12:c0:10:4b:38:04:b1:1d: fb:6b:73:09:a4:25:c5:6a:f9:fe:c9:72:a5:79:79: 97:83:1d:4d:3a:7a:00:b7:7c:f7:58:62:64:3c:26: 9f:2b:f6:94:78:fd:27:6d:58:bb:35:26:bf:23:cd: bc:d7:03:69:88:7e:bb:b3:60:cf:8d:2a:c2:7b:c4: c6:cb:18:b1:ff:72:5f:16:7c:fe:a8:ba:96:a2:15: fa:fa:57:6e:58:82:2f:e0:5e:25:4b:25:50:a9:d7: ef:d4:86:39:3c:56:5a:f4:93:ea:6a:93:e3:80:bb: 9c:6b:4e:f9:e2:2b:da:bc:5b:ba:1b:b4:23:63:fd: 75:cb:62:f9:16:d3:a6:2b:5d:9e:3c:d8:15:aa:af: 53:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:37:91:FF:53:1E:AD:66:69:B7:D8:DB:7E:B5:2D:34:78:68:50:D6 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/tTeR_1MerWZpt9jbfrUtNHhoUNY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42dc::/31 Signature Algorithm: sha256WithRSAEncryption a8:89:1a:02:c8:f7:12:e1:53:a7:8f:9b:27:1a:6f:42:8b:ef: 18:d3:f3:a0:4e:33:ac:e3:c5:ce:79:4d:a8:af:57:e8:93:2c: 6c:50:00:09:c5:6e:34:76:5d:15:56:d0:e3:cb:45:b3:b5:9a: 40:df:85:88:df:b8:e2:97:8b:3a:b6:e9:ca:b4:c8:c8:b3:a0: de:3b:f3:3a:bf:43:92:bc:b3:c7:32:49:3d:85:ae:6d:6a:f4: f1:01:55:22:07:9f:9e:08:a8:ae:47:d4:fc:20:c6:18:d8:80: 43:34:37:ff:60:52:6f:dd:77:a6:5e:7f:76:ac:35:f7:f4:82: e9:7b:c6:cf:3f:8c:77:ee:2d:29:38:81:04:c7:b2:a2:e3:5b: b7:2b:d8:e7:fd:d0:d8:12:b1:cf:6d:25:9c:99:5b:6b:9c:97: 03:95:9c:b3:e7:15:6a:d5:bf:62:d9:66:75:ad:99:5b:f5:98: 13:61:9f:54:09:77:5a:03:d8:b6:7e:7d:0b:e0:3e:8f:a3:c1: 5a:b9:80:1e:58:34:d4:9c:c4:26:1c:7c:b4:32:e9:02:ab:02: ee:96:b5:ee:34:ee:8d:96:3c:23:bb:49:55:1e:1f:a7:62:79: 40:82:3b:99:c0:0f:71:76:6a:b7:d3:d1:b5:37:ab:bb:d9:35: d4:4d:b1:f2 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MzYzMloXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoQjUzNzkxRkY1MzFFQUQ2 NjY5QjdEOERCN0VCNTJEMzQ3ODY4NTBENjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALi8SG5gWXlsJXuPh6aYvZ8UXt70UC0MCsa8KFe/ZGi7v7IqoNwP y53vAUi6kauqJKxnHbKTwzmz1J3QfPEu02P9PRBZKZRMYwGGJ8uSvhKjOWncg3pc Fi8FvGQJLTAkTZEIohJOW0Q3fV6Y4N+FfBLAEEs4BLEd+2tzCaQlxWr5/slypXl5 l4MdTTp6ALd891hiZDwmnyv2lHj9J21YuzUmvyPNvNcDaYh+u7Ngz40qwnvExssY sf9yXxZ8/qi6lqIV+vpXbliCL+BeJUslUKnX79SGOTxWWvST6mqT44C7nGtO+eIr 2rxbuhu0I2P9dcti+RbTpitdnjzYFaqvUxsCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBS1N5H/Ux6tZmm32Nt+tS00eGhQ1jAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi90VGVSXzFNZXJXWnB0 OWpiZnJVdE5IaG9VTlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApC3DANBgkqhkiG9w0BAQsFAAOCAQEAqIkaAsj3EuFTp4+bJxpvQovvGNPz oE4zrOPFznlNqK9X6JMsbFAACcVuNHZdFVbQ48tFs7WaQN+FiN+44peLOrbpyrTI yLOg3jvzOr9DkryzxzJJPYWubWr08QFVIgefngiorkfU/CDGGNiAQzQ3/2BSb913 pl5/dqw19/SC6XvGzz+Md+4tKTiBBMeyouNbtyvY5/3Q2BKxz20lnJlba5yXA5Wc s+cVatW/Ytlmda2ZW/WYE2GfVAl3WgPYtn59C+A+j6PBWrmAHlg01JzEJhx8tDLp AqsC7pa17jTujZY8I7tJVR4fp2J5QII7mcAPcXZqt9PRtTeru9k11E2x8g== -----END CERTIFICATE-----Generated at Thu Jun 5 19:18:39 2025 by rpki-client