$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/233/e6xzYzHJK6pAuhPcgp7rMejVS8g.roa File: e6xzYzHJK6pAuhPcgp7rMejVS8g.roa (raw, json) Hash identifier: wY2IIxEzqxqrROdtSTpDwh1iwOk/vWVK5zIrwT7s9aY= Subject key identifier: 7B:AC:73:63:31:C9:2B:AA:40:BA:13:DC:82:9E:EB:31:E8:D5:4B:C8 Certificate issuer: /CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20 Certificate serial: 26B7 Authority key identifier: AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/e6xzYzHJK6pAuhPcgp7rMejVS8g.roa Signing time: Sat 13 Sep 2025 03:09:42 +0000 ROA not before: Sat 13 Sep 2025 03:09:42 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 7468 IP address blocks: 2401:2a00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9911 (0x26b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3AF4D01F0CD056F0E3F698800B223AEE773D20 Validity Not Before: Sep 13 03:09:42 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7BAC736331C92BAA40BA13DC829EEB31E8D54BC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:83:e7:1a:c3:d3:5b:df:ea:69:d5:a2:b3:d3: dc:b4:29:e1:2c:de:af:ac:c8:ab:30:16:c5:0a:7b: d2:9d:d5:ca:13:f3:4d:09:ed:24:9d:70:34:0a:44: 19:70:dc:34:25:43:bb:0b:61:9d:4f:98:66:1c:57: 53:5b:b1:1a:76:5e:5a:15:97:81:25:1c:34:4b:66: 47:14:76:9c:fa:64:b9:f3:87:74:21:d6:35:8c:98: c3:72:fd:df:6f:a7:b5:c1:a2:ab:9d:2a:de:51:94: 71:92:4f:91:57:4a:7e:f3:79:1b:1b:e7:61:e9:f0: 3d:47:3b:1e:1c:36:bf:c2:db:74:87:60:7e:f3:c5: 7a:c3:92:c5:a8:de:47:4d:b0:4f:3f:99:5f:47:e8: ba:38:e4:57:9b:7d:75:78:ff:ee:19:62:90:25:09: ba:be:97:b9:11:fb:23:6e:e8:6e:29:e4:0d:9b:f1: 9b:b0:88:10:3a:bb:69:2a:28:5a:7b:be:60:76:e8: 42:45:5f:f9:90:31:3f:2e:fc:72:4d:22:38:ce:b4: ed:12:c5:25:56:dd:ad:b6:b0:d9:5d:7f:7d:39:de: 21:0f:b5:90:8b:6d:b2:14:8c:4b:de:b2:f7:36:38: 43:e2:7f:34:de:ba:92:08:59:e1:5e:57:0e:c4:bb: 41:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AC:73:63:31:C9:2B:AA:40:BA:13:DC:82:9E:EB:31:E8:D5:4B:C8 X509v3 Authority Key Identifier: keyid:AF:3A:F4:D0:1F:0C:D0:56:F0:E3:F6:98:80:0B:22:3A:EE:77:3D:20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/rzr00B8M0Fbw4_aYgAsiOu53PSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rzr00B8M0Fbw4_aYgAsiOu53PSA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/233/e6xzYzHJK6pAuhPcgp7rMejVS8g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:2a00::/32 Signature Algorithm: sha256WithRSAEncryption 0e:00:1e:5b:25:05:45:25:bf:f4:f0:44:dc:bf:5b:d0:9f:f3: 49:07:13:1f:63:78:9e:40:c8:05:10:82:4c:5f:52:d5:bb:96: 79:51:5a:ec:df:df:39:14:73:bc:a1:50:8c:99:de:32:9e:5c: 20:4f:fb:9b:6f:b1:d4:46:7e:6e:05:60:d5:0a:70:d8:ea:4d: 85:2f:10:03:e6:89:a1:e9:7e:d8:1b:ce:e9:7b:38:fe:40:65: ba:fd:fe:e2:ee:73:ae:74:e8:4e:76:2c:46:5d:66:67:82:f4: 77:21:52:fe:3c:a6:e4:b6:c3:4c:a7:ef:bf:a2:d5:51:5e:9f: 05:b1:f3:58:bc:4b:61:f3:3c:d3:26:d6:3f:f3:41:7c:17:e9: 58:bb:79:67:03:26:e2:d8:cc:0e:f6:b6:e7:bb:5e:21:48:e6: c0:15:03:14:be:ba:d7:6f:8e:02:a7:11:74:07:5c:73:8a:99: 41:1b:a2:a5:b6:d5:0b:1f:94:e6:9d:0c:87:ac:e1:0b:f4:dc: 24:f4:a0:c0:0a:fb:d9:d7:b4:08:9b:a9:f3:d4:08:88:fc:08: ed:0a:ee:98:cf:a9:03:60:5c:fa:76:66:b3:69:97:a7:52:34: 12:67:0f:cd:76:d1:e1:65:48:35:47:f4:75:d0:84:ee:f8:51: 95:49:e3:41 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICJrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUYz QUY0RDAxRjBDRDA1NkYwRTNGNjk4ODAwQjIyM0FFRTc3M0QyMDAeFw0yNTA5MTMw MzA5NDJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdCQUM3MzYzMzFDOTJC QUE0MEJBMTNEQzgyOUVFQjMxRThENTRCQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfg+caw9Nb3+pp1aKz09y0KeEs3q+syKswFsUKe9Kd1coT800J 7SSdcDQKRBlw3DQlQ7sLYZ1PmGYcV1NbsRp2XloVl4ElHDRLZkcUdpz6ZLnzh3Qh 1jWMmMNy/d9vp7XBoqudKt5RlHGST5FXSn7zeRsb52Hp8D1HOx4cNr/C23SHYH7z xXrDksWo3kdNsE8/mV9H6Lo45FebfXV4/+4ZYpAlCbq+l7kR+yNu6G4p5A2b8Zuw iBA6u2kqKFp7vmB26EJFX/mQMT8u/HJNIjjOtO0SxSVW3a22sNldf3053iEPtZCL bbIUjEvesvc2OEPifzTeupIIWeFeVw7Eu0HNAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUe6xzYzHJK6pAuhPcgp7rMejVS8gwHwYDVR0jBBgwFoAUrzr00B8M0Fbw4/aY gAsiOu53PSAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjMz L3J6cjAwQjhNMEZidzRfYVlnQXNpT3U1M1BTQS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvcnpyMDBCOE0wRmJ3NF9hWWdBc2lPdTUzUFNBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjMzL2U2eHpZekhKSzZwQXVo UGNncDdyTWVqVlM4Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkASoAMA0GCSqGSIb3DQEBCwUAA4IBAQAOAB5bJQVFJb/08ETcv1vQn/NJBxMf Y3ieQMgFEIJMX1LVu5Z5UVrs3985FHO8oVCMmd4ynlwgT/ubb7HURn5uBWDVCnDY 6k2FLxAD5omh6X7YG87pezj+QGW6/f7i7nOudOhOdixGXWZngvR3IVL+PKbktsNM p++/otVRXp8FsfNYvEth8zzTJtY/80F8F+lYu3lnAybi2MwO9rbnu14hSObAFQMU vrrXb44CpxF0B1xziplBG6KlttULH5TmnQyHrOEL9Nwk9KDACvvZ17QIm6nz1AiI /AjtCu6Yz6kDYFz6dmazaZenUjQSZw/NdtHhZUg1R/R10ITu+FGVSeNB -----END CERTIFICATE-----Generated at Mon Oct 20 19:56:02 2025 by rpki-client