$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/BrysSIqQdjzn0gfaWF9Biuls1Do.roa File: BrysSIqQdjzn0gfaWF9Biuls1Do.roa (raw, json) Hash identifier: 9rEPHaOUkl1UYo5Cr1zp68WZ+p4Rx/ziGVRnheNMvhg= Subject key identifier: 06:BC:AC:48:8A:90:76:3C:E7:D2:07:DA:58:5F:41:8A:E9:6C:D4:3A Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 24EB Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/BrysSIqQdjzn0gfaWF9Biuls1Do.roa Signing time: Sat 13 Sep 2025 03:08:50 +0000 ROA not before: Sat 13 Sep 2025 03:08:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 212237 IP address blocks: 2403:6380:70::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 23:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9451 (0x24eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 13 03:08:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=06BCAC488A90763CE7D207DA585F418AE96CD43A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:4c:e2:6b:c9:e2:4d:c7:1d:6e:3d:1d:3f: 8e:58:6a:e6:bb:d7:80:54:37:c8:8a:60:33:ac:fe: 42:28:6d:17:82:74:48:4d:e6:57:ec:86:01:e3:02: e0:a8:ff:5d:0b:39:19:81:33:02:62:8d:72:58:44: 0e:7f:cb:f6:6d:9d:ff:16:0e:9c:36:7c:dd:98:c0: aa:49:98:59:b7:9f:83:63:12:b0:5a:9f:a9:e3:fe: 67:64:33:12:ac:c8:b3:d0:ba:5d:4f:93:4b:d1:6a: cf:79:74:e5:56:40:4a:5b:e5:af:b6:00:b4:9e:70: 71:03:ef:28:d0:c9:50:9c:e2:6b:4c:fe:61:87:65: 40:75:10:a5:db:68:49:9f:8d:0c:77:ed:a1:e2:3a: 06:7a:3a:3f:b3:5b:63:08:04:7e:9b:ce:bd:7f:7c: 72:e0:44:ac:5e:09:68:28:3b:d6:03:78:4c:40:4b: 7a:8a:51:f3:7f:73:59:73:4c:52:f6:59:ae:62:88: 49:bf:02:8b:cf:9a:1f:76:85:4b:d1:79:82:d2:df: aa:6f:bf:7c:5e:87:13:a1:89:c1:16:eb:07:6f:74: 5e:3d:29:90:00:bd:9b:94:47:15:83:5e:1b:d9:1f: 65:50:94:7c:23:32:83:66:d5:da:05:86:ff:0d:c6: a3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BC:AC:48:8A:90:76:3C:E7:D2:07:DA:58:5F:41:8A:E9:6C:D4:3A X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/BrysSIqQdjzn0gfaWF9Biuls1Do.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:70::/44 Signature Algorithm: sha256WithRSAEncryption 7f:42:39:69:23:f6:8e:76:74:7c:67:cb:c4:3f:57:8b:87:76: dd:d4:a0:80:8b:c2:93:46:7f:8f:95:10:26:cd:6f:ee:56:54: c2:7a:8f:88:48:1c:17:4c:5c:2b:05:c5:29:a0:59:fb:bc:e1: e5:0f:7f:c2:ef:0e:19:34:48:80:b3:11:dc:1d:2b:ca:d7:84: d5:64:fe:a7:38:e3:95:af:2f:4d:08:4e:71:7d:df:6c:9a:90: fe:ed:2b:d8:62:b8:47:90:7a:ae:95:3b:be:07:47:88:88:32: 8e:67:0e:5d:e2:93:57:89:1f:bd:ce:1e:83:3e:fc:cf:24:46: 14:00:46:e7:6f:45:08:a7:89:df:8e:b3:08:cb:3b:2c:ba:4e: b0:95:a4:15:0b:d1:90:b4:48:43:3e:f1:d1:a5:97:bd:34:b4: e7:13:4b:da:ba:81:21:11:be:92:28:ef:6e:b9:54:00:06:1e: 7f:1f:39:9a:ca:a6:76:6c:b9:ca:b0:0c:de:f1:0d:34:ed:4d: 77:8b:30:29:ad:3b:84:a3:a7:f3:13:15:92:54:f0:83:2b:31: 3c:38:f7:57:3c:54:c2:f7:c9:74:b2:26:a9:1b:13:4a:29:6e: 43:85:f7:ec:cd:8d:86:1d:1f:5f:9c:47:77:47:e2:c6:8e:64: b9:fe:f6:c0 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICJOswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNTA5MTMw MzA4NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDA2QkNBQzQ4OEE5MDc2 M0NFN0QyMDdEQTU4NUY0MThBRTk2Q0Q0M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTLkzia8niTccdbj0dP45Yaua714BUN8iKYDOs/kIobReCdEhN 5lfshgHjAuCo/10LORmBMwJijXJYRA5/y/Ztnf8WDpw2fN2YwKpJmFm3n4NjErBa n6nj/mdkMxKsyLPQul1Pk0vRas95dOVWQEpb5a+2ALSecHED7yjQyVCc4mtM/mGH ZUB1EKXbaEmfjQx37aHiOgZ6Oj+zW2MIBH6bzr1/fHLgRKxeCWgoO9YDeExAS3qK UfN/c1lzTFL2Wa5iiEm/AovPmh92hUvReYLS36pvv3xehxOhicEW6wdvdF49KZAA vZuURxWDXhvZH2VQlHwjMoNm1doFhv8NxqMPAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUBrysSIqQdjzn0gfaWF9Biuls1DowHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvQnJ5c1NJcVFkanpu MGdmYVdGOUJpdWxzMURvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQDY4AAcDANBgkqhkiG9w0BAQsFAAOCAQEAf0I5aSP2jnZ0fGfLxD9Xi4d2 3dSggIvCk0Z/j5UQJs1v7lZUwnqPiEgcF0xcKwXFKaBZ+7zh5Q9/wu8OGTRIgLMR 3B0ryteE1WT+pzjjla8vTQhOcX3fbJqQ/u0r2GK4R5B6rpU7vgdHiIgyjmcOXeKT V4kfvc4egz78zyRGFABG529FCKeJ346zCMs7LLpOsJWkFQvRkLRIQz7x0aWXvTS0 5xNL2rqBIRG+kijvbrlUAAYefx85msqmdmy5yrAM3vENNO1Nd4swKa07hKOn8xMV klTwgysxPDj3VzxUwvfJdLImqRsTSiluQ4X37M2Nhh0fX5xHd0fixo5kuf72wA== -----END CERTIFICATE-----Generated at Sun Oct 19 20:05:37 2025 by rpki-client