$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3255/_BP2LqZJMcOyQvNBpa3Q47BT6oA.roa File: _BP2LqZJMcOyQvNBpa3Q47BT6oA.roa (raw, json) Hash identifier: yDSr2meIUpsVWLqpJTPM9gyFnwq268HREVuKgOGwG1Y= Subject key identifier: FC:13:F6:2E:A6:49:31:C3:B2:42:F3:41:A5:AD:D0:E3:B0:53:EA:80 Certificate issuer: /CN=7F918CF26503D1F9BCFA77DC0AA592A57DDF8245 Certificate serial: 0B5B Authority key identifier: 7F:91:8C:F2:65:03:D1:F9:BC:FA:77:DC:0A:A5:92:A5:7D:DF:82:45 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/_BP2LqZJMcOyQvNBpa3Q47BT6oA.roa Signing time: Fri 22 Aug 2025 05:34:31 +0000 ROA not before: Fri 22 Aug 2025 05:34:31 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 151295 IP address blocks: 2401:7660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 03:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F918CF26503D1F9BCFA77DC0AA592A57DDF8245 Validity Not Before: Aug 22 05:34:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FC13F62EA64931C3B242F341A5ADD0E3B053EA80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f4:19:06:e8:50:81:3e:d7:27:78:d1:95:21: 88:ad:bc:64:42:b6:97:8b:31:2b:b8:e5:75:b8:eb: d5:fe:47:aa:89:a8:86:81:2b:16:3f:2d:fe:c5:ec: 16:d8:5c:8b:25:eb:f0:01:7c:c3:40:d1:6f:28:a6: c2:96:82:41:5e:1d:bf:bd:b4:01:76:5e:88:c6:4f: 85:59:1a:a2:b6:0e:ac:62:63:8e:ab:5f:06:ad:b8: d4:34:7e:c6:9f:83:3a:86:59:a4:bf:ef:b9:1f:a2: a7:eb:f8:4a:9a:8e:f8:9c:ed:70:76:2d:eb:8d:0c: 0a:e0:4e:d8:54:2a:3c:76:ad:af:bb:e0:87:40:94: c8:88:b9:a8:3a:79:b8:fd:81:d2:0e:f4:0c:43:94: b3:a8:75:9a:34:43:5f:4f:87:83:99:a1:44:35:cf: 4e:02:1f:ae:77:2c:16:b8:a9:6d:26:59:60:8f:89: 58:8f:17:ac:29:0c:ea:d2:48:96:9f:4f:05:e7:6c: b8:7c:5c:b7:c9:26:c8:e3:17:32:60:32:10:e1:4d: cf:b6:94:1d:44:8b:c4:72:20:d1:b7:6e:9a:ca:e4: 88:ce:ed:25:fb:55:61:ab:90:c3:c7:78:5e:da:06: 5a:2a:12:7f:06:ad:c7:51:68:a9:7e:52:7f:0a:ce: d3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:13:F6:2E:A6:49:31:C3:B2:42:F3:41:A5:AD:D0:E3:B0:53:EA:80 X509v3 Authority Key Identifier: keyid:7F:91:8C:F2:65:03:D1:F9:BC:FA:77:DC:0A:A5:92:A5:7D:DF:82:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/f5GM8mUD0fm8-nfcCqWSpX3fgkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/f5GM8mUD0fm8-nfcCqWSpX3fgkU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/_BP2LqZJMcOyQvNBpa3Q47BT6oA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:7660::/32 Signature Algorithm: sha256WithRSAEncryption 38:f9:1a:2b:b9:7c:a6:c7:5e:5b:a7:94:92:83:35:3c:cc:48: b4:2e:54:2e:96:9b:01:0d:70:7c:26:0e:ae:30:e9:12:ae:bd: d0:3a:ea:b3:f9:ee:bf:72:a3:f6:60:7b:e5:2e:8f:2d:ae:d0: 06:6d:e2:9e:8d:04:a2:d6:b8:e1:d9:83:ba:a8:e9:bf:1e:76: cd:2b:5c:5d:7b:7e:bc:32:05:c3:a4:c6:74:84:14:cd:bb:ae: a2:88:dd:a8:91:5b:4e:43:70:98:58:7d:d5:f6:bc:75:8b:d4: cb:f9:32:1d:8e:dd:61:17:22:79:92:aa:6c:a2:2e:f9:10:90: 70:6b:05:e9:11:83:eb:db:0a:a2:eb:ea:dd:25:cd:a8:04:bf: 9e:fd:ab:fd:7e:a2:89:8d:d9:42:bf:51:dc:16:8d:44:17:8b: 8d:69:68:8b:72:f7:96:57:b0:c8:73:42:42:f9:e2:a8:d6:31: ec:a1:b5:ab:07:f1:9a:f1:46:9d:9b:06:45:a5:fd:3a:b8:60: a8:85:b3:d5:5c:28:e0:1e:fa:8a:22:aa:3e:1c:de:9b:c0:4e: e4:fb:be:ce:4e:26:ef:0b:c9:27:70:27:06:b4:97:f4:89:b9: d2:b2:3c:26:70:3f:9f:6d:9c:f2:f8:7e:0c:27:62:42:2a:4a: c0:3d:b2:52 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICC1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Y5 MThDRjI2NTAzRDFGOUJDRkE3N0RDMEFBNTkyQTU3RERGODI0NTAeFw0yNTA4MjIw NTM0MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZDMTNGNjJFQTY0OTMx QzNCMjQyRjM0MUE1QUREMEUzQjA1M0VBODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDk9BkG6FCBPtcneNGVIYitvGRCtpeLMSu45XW469X+R6qJqIaB KxY/Lf7F7BbYXIsl6/ABfMNA0W8opsKWgkFeHb+9tAF2XojGT4VZGqK2DqxiY46r XwatuNQ0fsafgzqGWaS/77kfoqfr+Eqajvic7XB2LeuNDArgTthUKjx2ra+74IdA lMiIuag6ebj9gdIO9AxDlLOodZo0Q19Ph4OZoUQ1z04CH653LBa4qW0mWWCPiViP F6wpDOrSSJafTwXnbLh8XLfJJsjjFzJgMhDhTc+2lB1Ei8RyING3bprK5IjO7SX7 VWGrkMPHeF7aBloqEn8GrcdRaKl+Un8KztNRAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU/BP2LqZJMcOyQvNBpa3Q47BT6oAwHwYDVR0jBBgwFoAUf5GM8mUD0fm8+nfc CqWSpX3fgkUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI1 NS9mNUdNOG1VRDBmbTgtbmZjQ3FXU3BYM2Zna1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2Y1R004bVVEMGZtOC1uZmNDcVdTcFgzZmdrVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNTUvX0JQMkxxWkpNY095 UXZOQnBhM1E0N0JUNm9BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQBdmAwDQYJKoZIhvcNAQELBQADggEBADj5Giu5fKbHXlunlJKDNTzMSLQu VC6WmwENcHwmDq4w6RKuvdA66rP57r9yo/Zge+Uujy2u0AZt4p6NBKLWuOHZg7qo 6b8eds0rXF17frwyBcOkxnSEFM27rqKI3aiRW05DcJhYfdX2vHWL1Mv5Mh2O3WEX InmSqmyiLvkQkHBrBekRg+vbCqLr6t0lzagEv579q/1+oomN2UK/UdwWjUQXi41p aIty95ZXsMhzQkL54qjWMeyhtasH8ZrxRp2bBkWl/Tq4YKiFs9VcKOAe+ooiqj4c 3pvATuT7vs5OJu8LySdwJwa0l/SJudKyPCZwP59tnPL4fgwnYkIqSsA9slI= -----END CERTIFICATE-----Generated at Sun Aug 24 02:39:54 2025 by rpki-client