$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/R_-Ooqvr-qd01nsPBhqkKezrkgM.roa File: R_-Ooqvr-qd01nsPBhqkKezrkgM.roa (raw, json) Hash identifier: VlyUEbo/RxVOdQW0pB8JntDwx6WLOs+cXC6PbJqWlNM= Subject key identifier: 47:FF:8E:A2:AB:EB:FA:A7:74:D6:7B:0F:06:1A:A4:29:EC:EB:92:03 Certificate issuer: /CN=E5C6CEFC8782F89731A2C72966EDC181DAB5AE22 Certificate serial: 0AFA Authority key identifier: E5:C6:CE:FC:87:82:F8:97:31:A2:C7:29:66:ED:C1:81:DA:B5:AE:22 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/R_-Ooqvr-qd01nsPBhqkKezrkgM.roa Signing time: Sun 17 Aug 2025 01:39:49 +0000 ROA not before: Sun 17 Aug 2025 01:39:49 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37969 IP address blocks: 2400:8fc0:571::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5C6CEFC8782F89731A2C72966EDC181DAB5AE22 Validity Not Before: Aug 17 01:39:49 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=47FF8EA2ABEBFAA774D67B0F061AA429ECEB9203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:95:8f:03:40:cf:b7:d9:c7:f6:d7:3d:c9:b7: 96:fa:5f:6a:2a:38:ec:50:c3:ae:29:96:3f:35:79: 32:a5:f7:c0:d3:a9:8c:53:85:dd:5c:9c:22:a5:74: 89:0a:3f:b0:5a:e6:48:61:c7:93:6c:1e:7b:f9:35: 0c:81:e7:84:b3:31:44:58:cc:7b:c2:1b:5f:4e:be: 67:9a:12:5b:9c:6b:ec:64:70:96:49:18:2f:f2:33: d9:fa:1b:47:5b:51:cf:51:df:69:31:c7:5c:b7:90: 89:cb:ec:ad:1c:4d:bb:da:e2:fd:c5:f7:b7:4f:99: 60:04:02:74:d7:f7:26:2a:54:b1:29:2e:3a:af:32: 76:c8:09:46:47:d2:a5:35:d0:3f:8d:ca:71:19:fd: 1e:5d:84:ab:b3:7c:52:14:94:8b:77:d8:ad:e9:fc: 40:52:54:96:97:48:c0:d6:d6:dc:d9:7d:19:64:0c: c4:fa:55:ac:a6:59:13:c7:75:26:1f:81:9a:6d:c1: d7:64:1a:ed:0c:46:66:42:f6:59:22:d7:21:25:ab: f5:ee:6d:4b:13:f4:3a:51:00:e6:d8:9c:49:8b:e6: cb:29:06:4c:aa:8b:f3:48:14:9f:07:9b:38:5e:ef: 51:bb:10:ec:66:73:fb:a7:6d:a5:22:24:25:c2:65: 64:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FF:8E:A2:AB:EB:FA:A7:74:D6:7B:0F:06:1A:A4:29:EC:EB:92:03 X509v3 Authority Key Identifier: keyid:E5:C6:CE:FC:87:82:F8:97:31:A2:C7:29:66:ED:C1:81:DA:B5:AE:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/R_-Ooqvr-qd01nsPBhqkKezrkgM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:8fc0:571::/48 Signature Algorithm: sha256WithRSAEncryption 76:8f:5c:26:95:78:fe:11:8e:66:cc:f5:53:72:d8:1f:13:26: 37:ba:55:5e:0e:23:a1:e5:6f:dd:a5:a1:cc:ed:db:99:e0:f7: 21:ca:c1:0d:3f:83:84:56:00:24:8f:1b:04:cd:f0:e1:be:f3: ca:87:cc:93:8b:6f:b1:01:13:a6:59:f4:f6:b7:3c:57:b1:e8: 5f:b8:4c:b8:28:4b:b0:2a:a8:0e:9a:d1:ae:ed:8f:b9:00:b1: ce:68:fb:c7:6c:75:d1:cd:e8:7b:c8:41:e6:16:4a:0b:b9:20: bd:8d:24:93:f7:46:d5:89:94:d6:3d:0d:27:62:62:df:cb:49: e1:24:6e:fb:59:e5:12:d9:5a:f6:f7:67:54:74:2f:a3:68:06: c4:d8:fa:d0:23:44:30:da:de:26:ac:47:64:b6:af:89:56:c3: d3:ec:6e:50:c2:1e:a2:32:1e:45:66:60:b6:dd:64:66:ef:d8: bb:44:d1:02:25:6d:ff:e9:58:8b:bd:17:98:71:24:32:88:58: aa:3f:c1:91:c3:9f:a4:bc:3e:b1:d7:b3:67:5b:ba:7b:5a:eb: 0e:54:be:7d:dd:1c:c5:b4:fc:c0:d1:d8:dc:25:8d:b2:8d:20: 61:be:2b:b7:eb:20:9a:ca:c8:63:f2:65:a0:80:87:b1:ba:32: 69:ae:2c:fe -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCvowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTVD NkNFRkM4NzgyRjg5NzMxQTJDNzI5NjZFREMxODFEQUI1QUUyMjAeFw0yNTA4MTcw MTM5NDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ3RkY4RUEyQUJFQkZB QTc3NEQ2N0IwRjA2MUFBNDI5RUNFQjkyMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFlY8DQM+32cf21z3Jt5b6X2oqOOxQw64plj81eTKl98DTqYxT hd1cnCKldIkKP7Ba5khhx5NsHnv5NQyB54SzMURYzHvCG19OvmeaEluca+xkcJZJ GC/yM9n6G0dbUc9R32kxx1y3kInL7K0cTbva4v3F97dPmWAEAnTX9yYqVLEpLjqv MnbICUZH0qU10D+NynEZ/R5dhKuzfFIUlIt32K3p/EBSVJaXSMDW1tzZfRlkDMT6 VaymWRPHdSYfgZptwddkGu0MRmZC9lki1yElq/XubUsT9DpRAObYnEmL5sspBkyq i/NIFJ8Hmzhe71G7EOxmc/unbaUiJCXCZWQVAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUR/+Ooqvr+qd01nsPBhqkKezrkgMwHwYDVR0jBBgwFoAU5cbO/IeC+Jcxoscp Zu3Bgdq1riIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi81Y2JPX0llQy1KY3hvc2NwWnUzQmdkcTFyaUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVjYk9fSWVDLUpjeG9zY3BadTNCZ2RxMXJpSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvUl8tT29xdnItcWQw MW5zUEJocWtLZXpya2dNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACQAj8AFcTANBgkqhkiG9w0BAQsFAAOCAQEAdo9cJpV4/hGOZsz1U3LYHxMm N7pVXg4joeVv3aWhzO3bmeD3IcrBDT+DhFYAJI8bBM3w4b7zyofMk4tvsQETpln0 9rc8V7HoX7hMuChLsCqoDprRru2PuQCxzmj7x2x10c3oe8hB5hZKC7kgvY0kk/dG 1YmU1j0NJ2Ji38tJ4SRu+1nlEtla9vdnVHQvo2gGxNj60CNEMNreJqxHZLaviVbD 0+xuUMIeojIeRWZgtt1kZu/Yu0TRAiVt/+lYi70XmHEkMohYqj/BkcOfpLw+sdez Z1u6e1rrDlS+fd0cxbT8wNHY3CWNso0gYb4rt+sgmsrIY/JloICHsboyaa4s/g== -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:22 2025 by rpki-client