$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/65/V6m9lwlyX7Q2haLW22sz66hOSlo.roa File: V6m9lwlyX7Q2haLW22sz66hOSlo.roa (raw, json) Hash identifier: rX4HQh6432XOBYXPI+2Z9jBqq/NwOHnD6Az4TAM1d+c= Subject key identifier: 57:A9:BD:97:09:72:5F:B4:36:85:A2:D6:DB:6B:33:EB:A8:4E:4A:5A Certificate issuer: /CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Certificate serial: 147B Authority key identifier: 98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/V6m9lwlyX7Q2haLW22sz66hOSlo.roa Signing time: Fri 29 Aug 2025 01:10:53 +0000 ROA not before: Fri 29 Aug 2025 01:10:53 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4812 IP address blocks: 2404:7600:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 12:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5243 (0x147b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Validity Not Before: Aug 29 01:10:53 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=57A9BD9709725FB43685A2D6DB6B33EBA84E4A5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:14:ae:4e:05:94:05:1d:75:25:e5:f4:24: 45:78:7e:d9:75:c4:27:db:47:be:10:1b:8b:dd:d8: ac:9b:49:0c:6a:6e:6f:cd:c1:53:4a:d8:99:1b:23: 2a:fd:cc:00:c8:aa:7c:e8:e3:b5:b7:01:11:da:95: ce:1a:ba:b7:43:45:ca:e8:3d:8f:e8:b5:a5:6a:f9: 1c:ef:e6:61:b3:83:99:b7:6d:8c:c4:c0:4e:41:b4: f9:d1:4f:38:6c:e0:b8:6a:da:c5:75:bc:64:b9:bc: 15:1c:cf:78:46:65:e9:a2:7c:1a:a1:07:ab:49:b1: 35:8c:57:e1:85:2f:6e:eb:7e:03:44:0a:b7:44:71: e2:02:e9:07:42:b5:a4:d5:f8:91:9b:e2:cc:b7:84: d9:86:02:b5:f7:fe:e7:37:76:6d:cd:40:3c:b9:dc: e4:b5:0d:aa:eb:a4:46:09:d5:36:d3:26:83:0c:7d: 61:09:f4:11:e1:c6:4b:32:ad:34:6e:2b:27:96:4c: e8:f4:76:44:36:9c:b8:0c:d8:13:e7:3b:1e:28:3d: 46:c4:78:ed:2a:69:60:95:8d:fa:99:cf:76:ed:5c: 04:18:ba:4b:ee:1d:d5:c5:29:6c:dd:a2:02:16:2d: 20:d4:d9:ef:b1:c6:b5:ed:f9:a9:46:6a:e7:55:d3: 99:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A9:BD:97:09:72:5F:B4:36:85:A2:D6:DB:6B:33:EB:A8:4E:4A:5A X509v3 Authority Key Identifier: keyid:98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/V6m9lwlyX7Q2haLW22sz66hOSlo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:7600:101::/48 Signature Algorithm: sha256WithRSAEncryption d0:6f:15:6b:79:e2:25:a4:af:01:56:64:db:ac:bb:c1:55:11: eb:af:8f:00:d6:f2:f5:2f:84:4e:67:24:db:f6:d3:0a:cc:b8: ca:29:07:a6:b1:03:bc:f6:c5:0a:ec:04:7e:b5:e4:91:d5:fc: af:bf:e4:09:1e:9b:74:10:85:a2:0f:52:2f:9b:25:aa:20:7c: 40:85:dd:56:11:87:d0:f5:3d:20:ce:70:0d:d4:57:e5:5e:f9: d3:bf:6b:0e:45:30:c3:a2:32:9f:95:c7:44:a6:d3:05:96:00: df:82:0e:e0:57:7c:1b:cc:5b:64:2e:b5:b4:b1:04:1f:ee:09: 99:e1:a3:b0:28:38:33:2b:bf:60:84:90:f8:1c:ee:2c:2b:65: 0f:ce:f7:16:4a:c2:66:ea:91:09:f5:f9:ab:8f:19:c8:fb:ae: 56:0a:ef:90:44:e1:86:ab:59:99:79:f0:8d:af:c0:57:2f:c5: fc:e0:c2:e7:dd:94:df:03:fc:b0:b7:1c:c8:c8:e1:14:ca:3e: 9a:09:2b:c6:5a:91:21:85:34:18:3b:c1:bf:3f:3c:31:7e:70: d7:7e:d6:73:13:ce:de:77:81:e5:aa:18:f8:87:61:44:69:cd: a7:e3:a3:53:93:46:75:37:64:4b:5b:22:5c:51:f8:53:84:c0: 45:5f:4a:01 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTgy NEM1NTUyMjhCMjhCNjk4RERFNzdCQzFBREQwRTI4MDdCODZCOTAeFw0yNTA4Mjkw MTEwNTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDU3QTlCRDk3MDk3MjVG QjQzNjg1QTJENkRCNkIzM0VCQTg0RTRBNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1rhSuTgWUBR11JeX0JEV4ftl1xCfbR74QG4vd2KybSQxqbm/N wVNK2JkbIyr9zADIqnzo47W3ARHalc4aurdDRcroPY/otaVq+Rzv5mGzg5m3bYzE wE5BtPnRTzhs4Lhq2sV1vGS5vBUcz3hGZemifBqhB6tJsTWMV+GFL27rfgNECrdE ceIC6QdCtaTV+JGb4sy3hNmGArX3/uc3dm3NQDy53OS1DarrpEYJ1TbTJoMMfWEJ 9BHhxksyrTRuKyeWTOj0dkQ2nLgM2BPnOx4oPUbEeO0qaWCVjfqZz3btXAQYukvu HdXFKWzdogIWLSDU2e+xxrXt+alGaudV05m9AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUV6m9lwlyX7Q2haLW22sz66hOSlowHwYDVR0jBBgwFoAUmCTFVSKLKLaY3ed7 wa3Q4oB7hrkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjUv bUNURlZTS0xLTGFZM2VkN3dhM1E0b0I3aHJrLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9tQ1RGVlNLTEtMYVkzZWQ3d2EzUTRvQjdocmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NS9WNm05bHdseVg3UTJoYUxX MjJzejY2aE9TbG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA JAR2AAEBMA0GCSqGSIb3DQEBCwUAA4IBAQDQbxVreeIlpK8BVmTbrLvBVRHrr48A 1vL1L4ROZyTb9tMKzLjKKQemsQO89sUK7AR+teSR1fyvv+QJHpt0EIWiD1IvmyWq IHxAhd1WEYfQ9T0gznAN1FflXvnTv2sORTDDojKflcdEptMFlgDfgg7gV3wbzFtk LrW0sQQf7gmZ4aOwKDgzK79ghJD4HO4sK2UPzvcWSsJm6pEJ9fmrjxnI+65WCu+Q ROGGq1mZefCNr8BXL8X84MLn3ZTfA/ywtxzIyOEUyj6aCSvGWpEhhTQYO8G/Pzwx fnDXftZzE87ed4Hlqhj4h2FEac2n46NTk0Z1N2RLWyJcUfhThMBFX0oB -----END CERTIFICATE-----Generated at Mon Sep 8 09:14:54 2025 by rpki-client