$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/wu6XN1ncgew6TbQYp6E2oPpm48Y.roa File: wu6XN1ncgew6TbQYp6E2oPpm48Y.roa (raw, json) Hash identifier: /jFF0v8cY7NGLZeGCA87kTIJsnqYdovEmM/nFBcVZb8= Subject key identifier: C2:EE:97:37:59:DC:81:EC:3A:4D:B4:18:A7:A1:36:A0:FA:66:E3:C6 Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 125B Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/wu6XN1ncgew6TbQYp6E2oPpm48Y.roa Signing time: Fri 16 May 2025 10:59:21 +0000 ROA not before: Fri 16 May 2025 10:59:21 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4699 (0x125b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: May 16 10:59:21 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=C2EE973759DC81EC3A4DB418A7A136A0FA66E3C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ed:0f:b2:ee:be:62:0b:f9:3a:32:71:ff:38: e0:c2:50:f4:e3:dd:85:d5:99:ed:48:42:04:59:01: 07:93:ff:13:1e:1f:af:37:d3:1f:ec:29:87:76:d2: f5:c1:a4:b2:a6:ad:ff:6f:20:f8:9d:3b:b2:2a:31: 02:49:8d:43:25:1e:83:2e:ab:b0:db:78:22:c7:62: 7b:85:f6:f3:b4:b9:8e:e3:56:f3:99:11:c9:ae:79: f6:5a:4d:59:76:32:be:91:60:58:80:76:91:f0:67: bd:d3:c2:30:93:66:1c:7d:fa:21:fb:e3:c6:68:ef: 33:6b:b5:03:9d:44:7e:6f:68:de:f6:54:4b:e9:38: fc:1e:a8:aa:ef:95:55:27:42:94:5e:29:43:0f:d2: 96:c3:7d:60:f0:7a:97:aa:e4:0f:8e:2c:3b:f2:4a: 01:8a:b2:66:c8:ef:a9:6c:cd:8a:0b:1f:68:a8:5f: ad:ce:f5:10:03:21:3e:58:a1:71:46:8f:3b:e4:cd: 0b:61:c0:ed:10:75:b0:4a:84:e4:3f:17:42:43:a0: f9:35:46:55:dd:91:0b:1e:01:88:bf:e2:de:43:19: 6b:39:44:99:73:77:11:b0:50:ff:aa:a2:d2:c3:ea: ac:aa:b9:b5:4d:6b:9a:c7:3e:c9:97:f8:2b:62:43: c3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EE:97:37:59:DC:81:EC:3A:4D:B4:18:A7:A1:36:A0:FA:66:E3:C6 X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/wu6XN1ncgew6TbQYp6E2oPpm48Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.64.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:a4:a1:b7:74:cb:4c:45:76:ab:d8:be:f7:98:85:aa:6c:44: 40:c7:a5:c4:b7:73:1c:2b:96:75:29:40:98:bf:9b:d0:18:3c: a2:88:97:01:31:53:76:d4:cd:e5:4f:7f:75:50:91:86:cf:69: e2:dd:bd:65:90:27:16:ee:40:e0:37:a3:0b:df:09:9e:d4:83: 3d:df:e7:97:2e:d4:3f:dc:1b:14:7b:e4:7a:3e:48:c0:08:f2: 19:0f:39:87:fb:c0:59:88:cb:1e:ba:ca:27:c3:c3:e9:3e:a1: 5d:8b:3d:2d:3a:3d:f1:a5:1e:e1:fc:94:65:14:30:1a:e8:4d: a7:a9:84:6c:4c:f9:13:7a:ba:3b:44:4a:2b:1c:d5:3a:ee:3e: 5f:3c:1d:83:4e:b4:5a:25:a7:0d:0f:56:23:50:2e:71:5e:7d: 9d:99:9b:2b:15:85:af:66:84:0f:b5:35:d8:fe:8b:62:bb:03: f1:33:82:fd:39:68:92:9f:b5:a7:f7:bc:22:33:fa:ae:61:7b: 5f:6c:03:45:b7:d9:ac:e9:f7:ea:79:c6:7d:02:a5:c5:ff:76: 40:7d:f5:6d:39:6a:8c:88:f8:e3:68:58:30:5c:25:78:bd:8e: 03:74:e7:3f:c4:d7:2e:ac:0d:f1:7b:9a:3c:09:4c:a6:e6:10: 13:20:d1:5c -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICElswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA1MTYx MDU5MjFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEMyRUU5NzM3NTlEQzgx RUMzQTREQjQxOEE3QTEzNkEwRkE2NkUzQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM7Q+y7r5iC/k6MnH/OODCUPTj3YXVme1IQgRZAQeT/xMeH683 0x/sKYd20vXBpLKmrf9vIPidO7IqMQJJjUMlHoMuq7DbeCLHYnuF9vO0uY7jVvOZ EcmuefZaTVl2Mr6RYFiAdpHwZ73TwjCTZhx9+iH748Zo7zNrtQOdRH5vaN72VEvp OPweqKrvlVUnQpReKUMP0pbDfWDwepeq5A+OLDvySgGKsmbI76lszYoLH2ioX63O 9RADIT5YoXFGjzvkzQthwO0QdbBKhOQ/F0JDoPk1RlXdkQseAYi/4t5DGWs5RJlz dxGwUP+qotLD6qyqubVNa5rHPsmX+CtiQ8P1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUwu6XN1ncgew6TbQYp6E2oPpm48YwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL3d1NlhOMW5jZ2V3NlRi UVlwNkUyb1BwbTQ4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6EAwDQYJKoZIhvcNAQELBQADggEBAAukobd0y0xFdqvYvveYhapsREDHpcS3 cxwrlnUpQJi/m9AYPKKIlwExU3bUzeVPf3VQkYbPaeLdvWWQJxbuQOA3owvfCZ7U gz3f55cu1D/cGxR75Ho+SMAI8hkPOYf7wFmIyx66yifDw+k+oV2LPS06PfGlHuH8 lGUUMBroTaephGxM+RN6ujtESisc1TruPl88HYNOtFolpw0PViNQLnFefZ2ZmysV ha9mhA+1Ndj+i2K7A/Ezgv05aJKftaf3vCIz+q5he19sA0W32azp9+p5xn0CpcX/ dkB99W05aoyI+ONoWDBcJXi9jgN05z/E1y6sDfF7mjwJTKbmEBMg0Vw= -----END CERTIFICATE-----Generated at Sun May 18 03:06:32 2025 by rpki-client