$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/vvJwb1gYnGrBw5xA1UrXbiG1jGk.roa File: vvJwb1gYnGrBw5xA1UrXbiG1jGk.roa (raw, json) Hash identifier: Xd/UqKRCspic2JRT51UsT5/47rtxoF0+T2yGguQfGw0= Subject key identifier: BE:F2:70:6F:58:18:9C:6A:C1:C3:9C:40:D5:4A:D7:6E:21:B5:8C:69 Certificate issuer: /CN=39E47899249325DB499BFC6910919D2F36003E9A Certificate serial: 1F82 Authority key identifier: 39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/vvJwb1gYnGrBw5xA1UrXbiG1jGk.roa Signing time: Sat 13 Sep 2025 03:05:47 +0000 ROA not before: Sat 13 Sep 2025 03:05:47 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4847 IP address blocks: 2403:8080:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:35:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8066 (0x1f82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39E47899249325DB499BFC6910919D2F36003E9A Validity Not Before: Sep 13 03:05:47 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BEF2706F58189C6AC1C39C40D54AD76E21B58C69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e6:41:d2:09:d3:ea:4b:75:9c:2d:c3:28:8e: 31:8c:2e:24:f0:32:4f:09:52:e1:d5:26:ea:90:5d: 32:77:c1:a2:6f:75:58:b1:aa:84:d4:8b:9a:cd:85: 89:92:a9:c2:c5:61:52:8b:0e:b8:20:91:63:82:8a: 13:63:e5:63:bf:45:da:18:df:de:14:1d:f4:4e:72: 3a:ad:a9:d7:73:93:48:ce:72:11:a6:5d:86:1b:f1: 7b:10:c6:04:20:14:38:c9:2c:0a:00:d7:77:65:36: 1e:27:21:54:b3:a5:46:b2:6c:29:f8:a1:f3:86:60: 21:9b:fa:73:f4:37:9b:f4:6a:df:40:bd:c0:01:ef: 9a:70:7c:ce:b3:c5:5c:c3:b7:c4:28:ec:3c:a8:59: 4d:94:a3:0a:b8:56:94:84:25:38:9a:15:7d:e9:ab: 2f:62:98:16:cd:b7:1c:3c:fa:54:97:cd:ff:aa:2e: 67:36:63:d1:4b:81:e0:63:ab:7a:68:d3:b9:ef:45: 3f:38:6c:49:2a:ff:bd:a5:0b:ab:05:d7:06:59:12: 6c:eb:bc:45:57:17:c7:4d:3a:3a:c5:1a:5f:50:b0: 06:21:d2:cd:53:5e:b0:ec:9f:a5:41:10:68:e9:32: 2b:5d:ec:3c:6a:55:8b:fc:62:ee:48:66:ec:33:c6: cd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F2:70:6F:58:18:9C:6A:C1:C3:9C:40:D5:4A:D7:6E:21:B5:8C:69 X509v3 Authority Key Identifier: keyid:39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/vvJwb1gYnGrBw5xA1UrXbiG1jGk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8080:101::/48 Signature Algorithm: sha256WithRSAEncryption 06:fc:01:d3:5c:dd:8b:d3:0e:60:54:75:2c:e2:f4:56:f4:9b: d3:0f:11:b1:f6:d1:6e:27:b0:54:df:1b:92:3d:30:6f:36:2b: da:d8:1d:3d:48:8d:44:aa:cb:1f:2e:36:c4:3c:e8:7e:5b:f0: 1e:06:4e:e9:8c:f9:6c:f0:0f:b4:ce:a8:f0:73:e0:aa:31:57: 16:b6:50:99:29:47:2f:35:11:ba:28:21:6e:40:fb:cb:51:66: d9:61:83:31:42:ae:b2:b5:a2:9d:ee:ce:e9:85:73:fa:47:c4: c2:3c:1b:64:5d:96:7c:e1:4a:24:c3:94:a5:39:61:d1:4d:ae: 0c:0b:73:de:b7:21:24:8c:cf:ab:8a:21:c1:77:87:de:54:15: 51:26:f1:f9:c3:6a:90:74:bc:17:4b:61:34:03:79:08:86:32: 8d:df:79:32:28:78:8e:6d:42:c4:85:20:b7:7d:36:7b:f6:99: b7:da:9a:03:e9:39:f6:9d:e4:3d:47:c0:bc:13:e4:aa:36:b0: 14:c6:79:00:02:62:f2:f8:54:b5:80:e4:da:78:fd:ce:7e:03: 73:36:ac:b4:25:fc:23:ea:be:4c:83:f9:d9:80:74:a7:cf:b9: 61:49:12:50:94:ae:9a:ff:7d:50:75:1c:31:48:cf:fb:25:09: d0:d1:87:c9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICH4IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF NDc4OTkyNDkzMjVEQjQ5OUJGQzY5MTA5MTlEMkYzNjAwM0U5QTAeFw0yNTA5MTMw MzA1NDdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJFRjI3MDZGNTgxODlD NkFDMUMzOUM0MEQ1NEFENzZFMjFCNThDNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE5kHSCdPqS3WcLcMojjGMLiTwMk8JUuHVJuqQXTJ3waJvdVix qoTUi5rNhYmSqcLFYVKLDrggkWOCihNj5WO/RdoY394UHfROcjqtqddzk0jOchGm XYYb8XsQxgQgFDjJLAoA13dlNh4nIVSzpUaybCn4ofOGYCGb+nP0N5v0at9AvcAB 75pwfM6zxVzDt8Qo7DyoWU2Uowq4VpSEJTiaFX3pqy9imBbNtxw8+lSXzf+qLmc2 Y9FLgeBjq3po07nvRT84bEkq/72lC6sF1wZZEmzrvEVXF8dNOjrFGl9QsAYh0s1T XrDsn6VBEGjpMitd7DxqVYv8Yu5IZuwzxs2DAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUvvJwb1gYnGrBw5xA1UrXbiG1jGkwHwYDVR0jBBgwFoAUOeR4mSSTJdtJm/xp EJGdLzYAPpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv T2VSNG1TU1RKZHRKbV94cEVKR2RMellBUHBvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9PZVI0bVNTVEpkdEptX3hwRUpHZEx6WUFQcG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy92dkp3YjFnWW5HckJ3NXhB MVVyWGJpRzFqR2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA JAOAgAEBMA0GCSqGSIb3DQEBCwUAA4IBAQAG/AHTXN2L0w5gVHUs4vRW9JvTDxGx 9tFuJ7BU3xuSPTBvNiva2B09SI1EqssfLjbEPOh+W/AeBk7pjPls8A+0zqjwc+Cq MVcWtlCZKUcvNRG6KCFuQPvLUWbZYYMxQq6ytaKd7s7phXP6R8TCPBtkXZZ84Uok w5SlOWHRTa4MC3PetyEkjM+riiHBd4feVBVRJvH5w2qQdLwXS2E0A3kIhjKN33ky KHiObULEhSC3fTZ79pm32poD6Tn2neQ9R8C8E+SqNrAUxnkAAmLy+FS1gOTaeP3O fgNzNqy0Jfwj6r5Mg/nZgHSnz7lhSRJQlK6a/31QdRwxSM/7JQnQ0YfJ -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:56 2025 by rpki-client