$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2618/DV9YoxqGdTNaNkV_dYo-cE56LG8.roa File: DV9YoxqGdTNaNkV_dYo-cE56LG8.roa (raw, json) Hash identifier: F7xF65w7NyXs1wwERCI4GYlXmPQAH0vs9sPxouOySIM= Subject key identifier: 0D:5F:58:A3:1A:86:75:33:5A:36:45:7F:75:8A:3E:70:4E:7A:2C:6F Certificate issuer: /CN=0136041A2F53F26B420D6BD4FD0E9C2D77320971 Certificate serial: 4F90 Authority key identifier: 01:36:04:1A:2F:53:F2:6B:42:0D:6B:D4:FD:0E:9C:2D:77:32:09:71 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/DV9YoxqGdTNaNkV_dYo-cE56LG8.roa Signing time: Sat 13 Sep 2025 03:02:35 +0000 ROA not before: Sat 13 Sep 2025 03:02:35 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 63603 IP address blocks: 2400:de80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20368 (0x4f90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0136041A2F53F26B420D6BD4FD0E9C2D77320971 Validity Not Before: Sep 13 03:02:35 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=0D5F58A31A8675335A36457F758A3E704E7A2C6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:00:a0:02:a7:02:ea:f9:fb:99:d0:39:af:5b: c6:43:03:80:e7:c9:d0:9f:38:8c:b7:1d:15:a8:06: 1f:61:51:4f:2a:2f:58:c2:9b:8f:7a:16:fa:59:87: c6:78:88:f0:21:d7:78:ae:79:51:30:2a:71:d0:8c: 26:cf:fa:5f:2e:f6:c8:ab:b4:82:ac:da:85:e1:29: d8:8a:c2:ec:e2:e5:3c:62:c1:9c:da:e8:21:cd:19: e5:fc:8e:27:e5:e6:da:0f:37:63:1c:86:f7:6a:c0: 2b:8e:fd:df:0c:04:4f:11:00:b0:93:92:af:01:05: 18:49:29:14:6e:84:f3:4d:f0:c3:29:e2:fe:6a:ee: 91:cc:fb:5d:b1:5a:5c:db:4c:68:a5:f2:24:79:7f: f2:a1:a3:cf:bd:14:4b:64:99:23:3f:05:de:a7:f1: 1d:97:d9:6d:26:fa:74:23:e4:1b:1a:54:52:98:a9: 0c:60:31:bd:89:53:a1:9e:d4:2c:78:68:c1:78:60: bf:fd:94:43:f9:06:18:6e:97:a3:f0:6e:44:a1:a6: 72:c9:22:b9:05:da:16:8e:f9:80:38:b0:6a:ab:89: f4:05:a1:9e:6e:c9:89:fb:a1:54:b8:42:a2:e4:ae: e5:ea:6d:16:83:ff:c6:0a:37:b4:1f:6e:f6:bb:0d: 7b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5F:58:A3:1A:86:75:33:5A:36:45:7F:75:8A:3E:70:4E:7A:2C:6F X509v3 Authority Key Identifier: keyid:01:36:04:1A:2F:53:F2:6B:42:0D:6B:D4:FD:0E:9C:2D:77:32:09:71 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ATYEGi9T8mtCDWvU_Q6cLXcyCXE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2618/DV9YoxqGdTNaNkV_dYo-cE56LG8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:de80::/32 Signature Algorithm: sha256WithRSAEncryption 78:cc:56:be:ac:ab:04:0f:73:c1:46:91:e0:4f:c2:87:88:80: 00:15:ae:6b:e2:f5:21:21:c2:14:87:52:73:b3:42:94:b8:87: ac:79:88:19:db:41:c2:62:3a:58:15:e4:6a:95:4a:ed:e3:26: 04:81:39:eb:78:63:2f:a2:65:38:99:14:cd:b1:40:73:f1:73: d2:e7:f4:81:19:6b:20:d1:27:9b:4f:b4:56:58:18:b2:63:d0: fb:cc:eb:e4:29:3d:7d:ad:10:78:41:b4:52:d9:9e:9d:f4:ae: 84:2a:46:ff:ea:46:e3:e0:67:23:75:40:de:92:25:3e:68:b9: 98:1a:98:0f:78:b3:f6:df:2c:d1:f8:17:b5:1d:17:7a:c8:ed: c7:78:f9:d5:bb:2f:78:46:1f:4c:8e:67:63:c7:0f:3a:af:f6: 96:73:a8:83:db:d7:e3:3a:67:f4:f2:9f:ae:37:f5:0b:2a:4b: c4:1b:52:46:f3:5c:f9:22:72:a3:9f:83:39:70:b3:0a:1a:79: 2d:aa:18:60:dc:23:75:40:39:28:02:43:3f:16:22:92:f9:27: 2a:ba:73:92:5a:94:37:b9:ca:19:13:26:c9:b3:e6:aa:d0:fd: 39:7f:06:dc:90:69:fd:c9:c7:9f:c9:ab:ec:55:85:e1:a2:6d: 81:d0:8e:86 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICT5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDEz NjA0MUEyRjUzRjI2QjQyMEQ2QkQ0RkQwRTlDMkQ3NzMyMDk3MTAeFw0yNTA5MTMw MzAyMzVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDBENUY1OEEzMUE4Njc1 MzM1QTM2NDU3Rjc1OEEzRTcwNEU3QTJDNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQAKACpwLq+fuZ0DmvW8ZDA4DnydCfOIy3HRWoBh9hUU8qL1jC m496FvpZh8Z4iPAh13iueVEwKnHQjCbP+l8u9sirtIKs2oXhKdiKwuzi5TxiwZza 6CHNGeX8jifl5toPN2MchvdqwCuO/d8MBE8RALCTkq8BBRhJKRRuhPNN8MMp4v5q 7pHM+12xWlzbTGil8iR5f/Kho8+9FEtkmSM/Bd6n8R2X2W0m+nQj5BsaVFKYqQxg Mb2JU6Ge1Cx4aMF4YL/9lEP5Bhhul6PwbkShpnLJIrkF2haO+YA4sGqrifQFoZ5u yYn7oVS4QqLkruXqbRaD/8YKN7Qfbva7DXvVAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUDV9YoxqGdTNaNkV/dYo+cE56LG8wHwYDVR0jBBgwFoAUATYEGi9T8mtCDWvU /Q6cLXcyCXEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjYx OC9BVFlFR2k5VDhtdENEV3ZVX1E2Y0xYY3lDWEUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FUWUVHaTlUOG10Q0RXdlVfUTZjTFhjeUNYRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2MTgvRFY5WW94cUdkVE5h TmtWX2RZby1jRTU2TEc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQA3oAwDQYJKoZIhvcNAQELBQADggEBAHjMVr6sqwQPc8FGkeBPwoeIgAAV rmvi9SEhwhSHUnOzQpS4h6x5iBnbQcJiOlgV5GqVSu3jJgSBOet4Yy+iZTiZFM2x QHPxc9Ln9IEZayDRJ5tPtFZYGLJj0PvM6+QpPX2tEHhBtFLZnp30roQqRv/qRuPg ZyN1QN6SJT5ouZgamA94s/bfLNH4F7UdF3rI7cd4+dW7L3hGH0yOZ2PHDzqv9pZz qIPb1+M6Z/Tyn6439QsqS8QbUkbzXPkicqOfgzlwswoaeS2qGGDcI3VAOSgCQz8W IpL5Jyq6c5JalDe5yhkTJsmz5qrQ/Tl/BtyQaf3Jx5/Jq+xVheGibYHQjoY= -----END CERTIFICATE-----Generated at Tue Oct 21 13:27:59 2025 by rpki-client