$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/uHZvgZOuVZVvV-_jtoU9OEQHkHA.roa File: uHZvgZOuVZVvV-_jtoU9OEQHkHA.roa (raw, json) Hash identifier: gZI/Tffb3do1yNy8mXEZPZrWDeYj0SMdX6kDrC2Tnq4= Subject key identifier: B8:76:6F:81:93:AE:55:95:6F:57:EF:E3:B6:85:3D:38:44:07:90:70 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: 5B Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/uHZvgZOuVZVvV-_jtoU9OEQHkHA.roa Signing time: Tue 27 May 2025 08:36:34 +0000 ROA not before: Tue 27 May 2025 08:36:34 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 24444 IP address blocks: 240a:42ba::/31 maxlen: 31 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: May 27 08:36:34 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=B8766F8193AE55956F57EFE3B6853D3844079070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9b:81:b8:47:1e:88:00:c3:e4:39:81:39:9d: 83:4d:91:09:52:88:8c:2d:c8:32:26:e1:df:ac:47: 60:60:0c:c4:d3:49:62:67:3e:73:b5:b7:4d:c2:62: 4e:bb:ea:aa:a0:77:c0:ab:ae:67:28:b1:a0:ae:e9: 0c:eb:56:e9:fe:f1:2e:cf:a4:47:aa:21:a8:a5:e7: ec:07:c3:7e:ee:41:b1:4f:4e:bd:9a:46:0d:d3:4f: 27:f9:34:a3:25:bc:e4:05:ce:83:e9:58:dc:6f:13: 8a:25:96:5f:52:31:59:92:d7:97:79:6e:76:a3:37: 48:a8:b8:65:68:e0:f2:76:13:2a:ee:9a:aa:cf:d0: 70:c3:79:70:71:7d:98:dd:6b:26:bf:80:a1:de:50: 75:7a:9b:89:f1:5e:65:f0:5d:d1:90:82:90:bb:e8: de:a2:dc:19:a2:80:4a:45:7d:e0:35:93:54:8d:73: aa:29:c8:7b:f5:0c:30:e2:da:36:ab:88:63:36:cd: 5f:44:b7:61:12:c1:6d:8f:b2:5e:b4:d4:c9:55:fa: c6:76:3a:c2:fd:a6:e0:ef:f0:28:ac:1a:ea:b1:1c: 8e:d0:50:37:03:5b:19:c5:31:9a:74:f5:ce:df:37: a2:b1:af:72:a4:65:43:76:fd:6d:db:3d:a1:9e:f5: 75:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:76:6F:81:93:AE:55:95:6F:57:EF:E3:B6:85:3D:38:44:07:90:70 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/uHZvgZOuVZVvV-_jtoU9OEQHkHA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:42ba::/31 Signature Algorithm: sha256WithRSAEncryption cd:10:f6:48:e9:2d:e3:73:8e:ff:b2:89:a0:24:2c:a9:2f:5b: fe:88:9b:17:0a:3d:a2:41:d8:ef:3d:26:91:83:a5:00:f1:58: 2f:ff:cf:43:91:ac:1e:75:67:86:76:d2:2b:03:a3:09:c0:cc: 88:88:73:a3:eb:6c:bc:d8:d1:f9:b2:64:b7:f4:6a:63:ce:c6: a9:2b:fc:55:11:c0:ca:62:a7:89:0c:ee:6e:31:d7:15:8a:4c: 4b:10:84:b5:59:e7:96:a8:63:9a:cd:b2:5c:d2:a4:e0:ad:02: e9:42:a0:26:b8:b2:a4:f1:9b:5f:f2:6e:98:9b:be:19:19:96: 53:98:c2:ba:95:b7:cb:0f:6f:de:32:ac:3b:b2:85:06:fb:4d: bd:71:6a:21:59:88:77:aa:d7:c7:d5:d7:90:5d:64:e1:e3:2f: f5:9f:21:27:f4:89:83:09:61:7b:85:fc:3b:58:be:e4:d4:5f: f9:c2:22:46:e1:da:79:fd:56:7a:01:2e:9b:32:b5:91:79:03: 8b:f5:d4:b5:26:30:9e:f5:13:f4:9e:0e:8d:9e:73:32:39:11: 5e:24:a2:a3:7c:ba:dd:31:81:1c:57:9c:28:06:4a:2c:01:a3: e3:47:31:86:82:95:45:03:5f:78:eb:e4:17:4a:04:4b:c5:84: f5:82:13:2f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEVG RjczOTJFMUVEQzEyMjVGQzRDRkI4RkFCNkVCNjE3QTlEMjREMB4XDTI1MDUyNzA4 MzYzNFoXDTI2MDUyNzA3Mzg0MVowMzExMC8GA1UEAxMoQjg3NjZGODE5M0FFNTU5 NTZGNTdFRkUzQjY4NTNEMzg0NDA3OTA3MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO+bgbhHHogAw+Q5gTmdg02RCVKIjC3IMibh36xHYGAMxNNJYmc+ c7W3TcJiTrvqqqB3wKuuZyixoK7pDOtW6f7xLs+kR6ohqKXn7AfDfu5BsU9OvZpG DdNPJ/k0oyW85AXOg+lY3G8TiiWWX1IxWZLXl3ludqM3SKi4ZWjg8nYTKu6aqs/Q cMN5cHF9mN1rJr+Aod5QdXqbifFeZfBd0ZCCkLvo3qLcGaKASkV94DWTVI1zqinI e/UMMOLaNquIYzbNX0S3YRLBbY+yXrTUyVX6xnY6wv2m4O/wKKwa6rEcjtBQNwNb GcUxmnT1zt83orGvcqRlQ3b9bds9oZ71dbsCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBS4dm+Bk65VlW9X7+O2hT04RAeQcDAfBgNVHSMEGDAWgBSU7/c5Lh7cEiX8TPuP q262F6nSTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNjcy L2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbE9fM09TNGUzQklsX0V6N2o2dHV0aGVwMGswLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3Mi91SFp2Z1pPdVZaVnZW LV9qdG9VOU9FUUhrSEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUBJApCujANBgkqhkiG9w0BAQsFAAOCAQEAzRD2SOkt43OO/7KJoCQsqS9b/oib Fwo9okHY7z0mkYOlAPFYL//PQ5GsHnVnhnbSKwOjCcDMiIhzo+tsvNjR+bJkt/Rq Y87GqSv8VRHAymKniQzubjHXFYpMSxCEtVnnlqhjms2yXNKk4K0C6UKgJriypPGb X/JumJu+GRmWU5jCupW3yw9v3jKsO7KFBvtNvXFqIVmId6rXx9XXkF1k4eMv9Z8h J/SJgwlhe4X8O1i+5NRf+cIiRuHaef1WegEumzK1kXkDi/XUtSYwnvUT9J4OjZ5z MjkRXiSio3y63TGBHFecKAZKLAGj40cxhoKVRQNfeOvkF0oES8WE9YITLw== -----END CERTIFICATE-----Generated at Thu Jun 5 20:30:15 2025 by rpki-client