$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/Vb5wRMXC-usvaHB537zV7EY76Oo.roa File: Vb5wRMXC-usvaHB537zV7EY76Oo.roa (raw, json) Hash identifier: j5KcCTMlbZnCPHeSlQVy7QhihDXieGy9S9EccvA0LVU= Subject key identifier: 55:BE:70:44:C5:C2:FA:EB:2F:68:70:79:DF:BC:D5:EC:46:3B:E8:EA Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 24EF Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/Vb5wRMXC-usvaHB537zV7EY76Oo.roa Signing time: Sat 13 Sep 2025 03:08:50 +0000 ROA not before: Sat 13 Sep 2025 03:08:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 212237 IP address blocks: 2403:6380:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 23:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9455 (0x24ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 13 03:08:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=55BE7044C5C2FAEB2F687079DFBCD5EC463BE8EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:69:4d:3d:9a:cc:d6:7f:7f:f6:44:99:19: 67:6c:17:50:b9:21:43:96:f6:6b:e6:34:0a:52:3b: 99:0c:89:10:e9:d2:c0:3f:d6:02:e6:ee:f4:50:ce: 41:3d:31:4f:97:ca:08:cf:d2:e0:bd:1e:3b:7a:0e: d4:d6:3b:ba:e7:3e:b3:8a:2c:38:50:2f:f2:ce:bc: 99:14:ba:fb:19:a5:cf:1b:50:53:98:93:84:4b:5c: e0:95:41:77:d0:dc:12:f6:3c:d8:19:9a:84:2c:9e: 78:07:55:92:d2:b5:34:ef:77:e1:2b:49:64:64:5f: dc:36:85:87:e5:78:61:bb:59:ee:30:fc:5f:2e:ea: 07:05:38:86:e5:35:72:86:0b:a0:c9:bb:58:90:9d: e1:ff:72:69:b7:37:06:85:98:00:4f:7f:e4:73:13: 92:9c:b5:d2:1c:6f:af:08:c5:6a:6a:c9:61:7d:70: 7f:90:89:3b:fd:9a:f7:7a:25:8e:44:99:ba:db:dc: d3:a7:f3:37:7f:36:e7:31:93:24:d9:0e:e8:9d:03: a0:c3:6b:6b:0a:27:5d:8f:80:9c:35:44:2b:e7:da: 6f:9f:66:a7:d2:2b:47:9f:1b:8d:9a:39:d2:36:48: 20:92:22:fe:1d:70:27:82:eb:42:19:8d:52:0f:82: 84:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BE:70:44:C5:C2:FA:EB:2F:68:70:79:DF:BC:D5:EC:46:3B:E8:EA X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/Vb5wRMXC-usvaHB537zV7EY76Oo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:6380:50::/44 Signature Algorithm: sha256WithRSAEncryption cd:7f:f7:59:d0:36:9a:d0:d2:b4:1f:45:16:ac:69:0d:bb:ce: d1:de:a9:3a:6f:00:87:74:c7:21:a0:88:7f:01:18:d2:2b:93: 87:a0:49:c3:3f:63:47:77:c4:b6:4f:df:88:9a:c6:45:97:80: 2d:1a:44:5f:99:42:6b:d4:fa:34:e4:b9:de:14:22:26:a7:72: 66:ea:3f:5d:3b:53:93:62:61:cd:1c:06:d4:8b:d9:56:41:c5: cb:5f:55:94:3f:64:c7:5d:fb:7a:4d:b3:ff:bd:02:ff:46:60: ae:be:d9:13:f1:fa:0c:54:94:99:c4:33:58:42:7f:e6:de:9f: 1d:60:4e:9f:3a:11:be:b0:b4:b4:e8:a8:93:05:6f:2a:a2:e4: 02:4a:82:57:30:76:f2:3b:c5:89:28:02:d1:cf:0f:fb:5a:8b: 45:1a:f3:35:3c:9f:57:cf:2f:05:af:7c:d1:e3:aa:c2:5e:7f: 46:5d:2c:d9:28:30:fe:31:7f:2c:5f:53:d5:81:73:af:d2:e9: fa:e3:0e:90:fb:8c:6b:78:1c:bf:9b:50:3d:85:76:a1:c3:81: 84:3c:87:ed:9c:3e:5b:a2:72:50:cc:3e:18:79:9d:92:20:59: 38:e9:6a:24:e9:a4:1a:b4:10:cd:20:73:54:05:bc:1f:07:53: f1:5a:35:00 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICJO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNTA5MTMw MzA4NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDU1QkU3MDQ0QzVDMkZB RUIyRjY4NzA3OURGQkNENUVDNDYzQkU4RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0h2lNPZrM1n9/9kSZGWdsF1C5IUOW9mvmNApSO5kMiRDp0sA/ 1gLm7vRQzkE9MU+XygjP0uC9Hjt6DtTWO7rnPrOKLDhQL/LOvJkUuvsZpc8bUFOY k4RLXOCVQXfQ3BL2PNgZmoQsnngHVZLStTTvd+ErSWRkX9w2hYfleGG7We4w/F8u 6gcFOIblNXKGC6DJu1iQneH/cmm3NwaFmABPf+RzE5KctdIcb68IxWpqyWF9cH+Q iTv9mvd6JY5Embrb3NOn8zd/NucxkyTZDuidA6DDa2sKJ12PgJw1RCvn2m+fZqfS K0efG42aOdI2SCCSIv4dcCeC60IZjVIPgoQzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUVb5wRMXC+usvaHB537zV7EY76OowHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvVmI1d1JNWEMtdXN2 YUhCNTM3elY3RVk3Nk9vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQDY4AAUDANBgkqhkiG9w0BAQsFAAOCAQEAzX/3WdA2mtDStB9FFqxpDbvO 0d6pOm8Ah3THIaCIfwEY0iuTh6BJwz9jR3fEtk/fiJrGRZeALRpEX5lCa9T6NOS5 3hQiJqdyZuo/XTtTk2JhzRwG1IvZVkHFy19VlD9kx137ek2z/70C/0Zgrr7ZE/H6 DFSUmcQzWEJ/5t6fHWBOnzoRvrC0tOiokwVvKqLkAkqCVzB28jvFiSgC0c8P+1qL RRrzNTyfV88vBa980eOqwl5/Rl0s2Sgw/jF/LF9T1YFzr9Lp+uMOkPuMa3gcv5tQ PYV2ocOBhDyH7Zw+W6JyUMw+GHmdkiBZOOlqJOmkGrQQzSBzVAW8HwdT8Vo1AA== -----END CERTIFICATE-----Generated at Sun Oct 19 20:06:04 2025 by rpki-client