$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2672/yZwW9Sp_0wLMA-8i5QPXKDw6ntY.roa File: yZwW9Sp_0wLMA-8i5QPXKDw6ntY.roa (raw, json) Hash identifier: mgbluNhoiALlH+iI9yIUREjqdFky4cNDuzbY3KOFVWA= Subject key identifier: C9:9C:16:F5:2A:7F:D3:02:CC:03:EF:22:E5:03:D7:28:3C:3A:9E:D6 Certificate issuer: /CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Certificate serial: C5 Authority key identifier: 94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/yZwW9Sp_0wLMA-8i5QPXKDw6ntY.roa Signing time: Fri 06 Jun 2025 02:29:18 +0000 ROA not before: Fri 06 Jun 2025 02:29:18 +0000 ROA not after: Wed 27 May 2026 07:38:41 +0000 asID: 56041 IP address blocks: 240a:40c1:c010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 03:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94EFF7392E1EDC1225FC4CFB8FAB6EB617A9D24D Validity Not Before: Jun 6 02:29:18 2025 GMT Not After : May 27 07:38:41 2026 GMT Subject: CN=C99C16F52A7FD302CC03EF22E503D7283C3A9ED6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:70:26:e8:53:a9:46:2b:ea:8c:be:10:18:91: 1a:44:f2:86:71:bf:25:71:56:c7:a4:3e:a0:d5:7d: fc:d1:8e:0a:2e:76:9a:bd:49:5f:5b:dc:45:67:0a: 7a:d1:41:c9:c9:09:ec:b9:55:5f:13:0d:10:84:15: 97:35:22:07:c3:e3:33:0d:84:ab:62:1f:b3:a1:63: 10:11:6e:38:d5:59:ba:33:7d:bf:94:65:58:b7:af: 9c:d8:d1:76:a2:d0:16:f3:e4:d9:a7:15:52:80:ad: ed:2f:27:8b:89:23:9e:9f:48:3d:91:59:34:18:83: a9:96:90:1b:e0:eb:59:84:b0:0a:aa:cf:f0:92:46: 33:62:1b:06:f7:6d:18:37:ec:f1:05:31:f4:7e:45: fe:3c:a9:57:32:d7:ac:f1:ac:78:93:8e:d0:f6:1b: 8c:04:ec:7b:e9:c4:2f:4b:50:c9:8d:36:09:f8:6a: da:f7:05:a5:e4:28:c4:e0:c6:70:fb:de:e0:03:27: fe:9b:10:d3:b0:1d:1e:ac:09:d6:9f:5e:5c:3c:f6: d6:a0:64:cd:bb:fb:2d:a6:ad:6a:ec:fa:e9:81:a7: 9d:d5:ee:54:9a:ad:ed:d3:84:a3:2b:92:40:9b:34: 70:8e:9b:87:ba:49:51:03:87:1a:9a:63:60:62:b1: 60:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9C:16:F5:2A:7F:D3:02:CC:03:EF:22:E5:03:D7:28:3C:3A:9E:D6 X509v3 Authority Key Identifier: keyid:94:EF:F7:39:2E:1E:DC:12:25:FC:4C:FB:8F:AB:6E:B6:17:A9:D2:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/lO_3OS4e3BIl_Ez7j6tuthep0k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/lO_3OS4e3BIl_Ez7j6tuthep0k0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2672/yZwW9Sp_0wLMA-8i5QPXKDw6ntY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 240a:40c1:c010::/44 Signature Algorithm: sha256WithRSAEncryption 8e:62:55:1b:0b:a7:81:af:b9:c9:45:f3:ad:0e:75:a4:98:32: 4e:04:b7:75:46:79:7f:08:80:40:ef:3e:08:23:ef:19:b1:5b: 28:2b:49:33:c8:fc:39:f8:f0:91:ca:bd:b8:00:0a:f0:29:72: be:02:0b:52:b9:65:f4:6d:10:2b:c8:94:1b:fc:97:0f:c2:5f: 2e:24:05:33:db:d2:d2:1b:e5:a6:40:82:bc:d7:e1:9c:7b:f1: 0a:d0:15:2f:77:cf:b6:d4:62:84:56:57:f5:b6:f3:7f:1b:31: 7e:a3:bb:be:02:fb:d7:8d:c7:ad:fa:2e:4e:46:9b:11:d7:a4: 3a:dd:fe:55:b9:d4:0f:82:cd:a8:02:ee:ff:fb:18:b7:2b:77: 67:52:f2:8e:30:4f:fd:0c:fe:f0:6b:24:70:58:bf:db:22:75: f3:0f:59:26:23:98:67:ed:f5:9e:ab:21:5a:db:ea:5c:82:a3: 73:a1:b5:59:1b:fc:4a:57:ba:f4:80:83:35:57:d9:b9:5e:a7: fd:63:97:b2:ec:7f:20:4d:c4:be:b2:dc:2f:f6:9c:63:3d:dc: de:15:5a:ab:dd:3d:20:e3:39:5f:a8:16:c8:45:6d:0b:40:65: ff:56:fb:52:65:62:7a:8e:c7:e2:12:d6:95:ce:70:58:05:10: 50:dc:c6:6d -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRF RkY3MzkyRTFFREMxMjI1RkM0Q0ZCOEZBQjZFQjYxN0E5RDI0RDAeFw0yNTA2MDYw MjI5MThaFw0yNjA1MjcwNzM4NDFaMDMxMTAvBgNVBAMTKEM5OUMxNkY1MkE3RkQz MDJDQzAzRUYyMkU1MDNENzI4M0MzQTlFRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrcCboU6lGK+qMvhAYkRpE8oZxvyVxVsekPqDVffzRjgoudpq9 SV9b3EVnCnrRQcnJCey5VV8TDRCEFZc1IgfD4zMNhKtiH7OhYxARbjjVWbozfb+U ZVi3r5zY0Xai0Bbz5NmnFVKAre0vJ4uJI56fSD2RWTQYg6mWkBvg61mEsAqqz/CS RjNiGwb3bRg37PEFMfR+Rf48qVcy16zxrHiTjtD2G4wE7HvpxC9LUMmNNgn4atr3 BaXkKMTgxnD73uADJ/6bENOwHR6sCdafXlw89tagZM27+y2mrWrs+umBp53V7lSa re3ThKMrkkCbNHCOm4e6SVEDhxqaY2BisWDnAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUyZwW9Sp/0wLMA+8i5QPXKDw6ntYwHwYDVR0jBBgwFoAUlO/3OS4e3BIl/Ez7 j6tuthep0k0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjY3 Mi9sT18zT1M0ZTNCSWxfRXo3ajZ0dXRoZXAwazAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2xPXzNPUzRlM0JJbF9FejdqNnR1dGhlcDBrMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI2NzIveVp3VzlTcF8wd0xN QS04aTVRUFhLRHc2bnRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBCQKQMHAEDANBgkqhkiG9w0BAQsFAAOCAQEAjmJVGwunga+5yUXzrQ51pJgy TgS3dUZ5fwiAQO8+CCPvGbFbKCtJM8j8Ofjwkcq9uAAK8ClyvgILUrll9G0QK8iU G/yXD8JfLiQFM9vS0hvlpkCCvNfhnHvxCtAVL3fPttRihFZX9bbzfxsxfqO7vgL7 143HrfouTkabEdekOt3+VbnUD4LNqALu//sYtyt3Z1LyjjBP/Qz+8GskcFi/2yJ1 8w9ZJiOYZ+31nqshWtvqXIKjc6G1WRv8Sle69ICDNVfZuV6n/WOXsux/IE3EvrLc L/acYz3c3hVaq909IOM5X6gWyEVtC0Bl/1b7UmVieo7H4hLWlc5wWAUQUNzGbQ== -----END CERTIFICATE-----Generated at Sat Jul 5 00:26:05 2025 by rpki-client