$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/508/U8G90-YYRgh6k3HDnDRzn22nZOU.roa File: U8G90-YYRgh6k3HDnDRzn22nZOU.roa (raw, json) Hash identifier: 1ypHTYDNhHGShZNbyXb5EDdy2PfInXRHSiQUuVslDdQ= Subject key identifier: 53:C1:BD:D3:E6:18:46:08:7A:93:71:C3:9C:34:73:9F:6D:A7:64:E5 Certificate issuer: /CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76 Certificate serial: 1B0E Authority key identifier: 9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/U8G90-YYRgh6k3HDnDRzn22nZOU.roa Signing time: Sat 13 Sep 2025 03:09:15 +0000 ROA not before: Sat 13 Sep 2025 03:09:15 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55996 IP address blocks: 2405:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6926 (0x1b0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B4A3C36B42347ACEF36E84A66E69EE59BED8B76 Validity Not Before: Sep 13 03:09:15 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=53C1BDD3E61846087A9371C39C34739F6DA764E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:dd:93:fc:ec:e0:6c:c2:fd:18:4e:88:5e:3c: 73:cd:a8:04:98:c6:2d:6f:6f:93:ee:67:00:36:72: 4f:0e:0b:32:e1:c4:47:d2:b3:0f:ca:eb:6e:50:a7: ec:c0:d2:b3:db:d2:8a:b4:92:88:51:07:1c:1d:31: b4:ba:4f:45:9b:6e:aa:4f:92:d5:17:c2:26:e1:5b: 1b:5d:f3:6f:55:d0:b6:18:87:52:a2:5f:07:9e:78: ff:ee:d0:e6:3e:1d:90:6e:f7:61:96:42:1a:71:ed: ea:2a:16:d7:da:59:52:e1:09:e3:27:f2:66:4d:4e: 8b:4d:ab:6a:02:5c:0b:69:89:83:b9:27:1b:55:72: 51:80:1b:9e:17:c5:7a:15:39:32:62:87:e8:24:4f: 0a:e5:82:fd:a3:d6:be:05:0f:68:dd:c9:d4:b7:79: 19:e8:da:7e:cc:f7:a8:c7:bb:ec:7f:11:8f:63:53: 60:ad:6d:0c:57:01:94:40:f9:3a:ea:6d:72:a3:eb: 3f:6e:27:ae:d8:b0:5d:f9:81:a7:41:c9:e6:1d:18: 5d:7f:3b:8e:86:65:2a:49:3c:46:06:82:52:ba:11: b0:83:9b:8a:65:dc:01:9f:01:ab:22:4e:de:ca:15: aa:ff:a8:0e:79:f7:31:a3:54:86:dc:b4:ed:de:55: ba:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C1:BD:D3:E6:18:46:08:7A:93:71:C3:9C:34:73:9F:6D:A7:64:E5 X509v3 Authority Key Identifier: keyid:9B:4A:3C:36:B4:23:47:AC:EF:36:E8:4A:66:E6:9E:E5:9B:ED:8B:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/m0o8NrQjR6zvNuhKZuae5Zvti3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/m0o8NrQjR6zvNuhKZuae5Zvti3Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/508/U8G90-YYRgh6k3HDnDRzn22nZOU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:b300::/32 Signature Algorithm: sha256WithRSAEncryption 67:95:2e:a4:bc:dc:59:1d:1f:65:2b:5a:1b:8c:04:50:4b:88: 09:a3:75:a0:fb:4f:e8:52:ac:b0:3b:13:6b:6b:6a:97:27:89: 54:2d:a6:82:9a:d8:84:d7:f2:09:47:95:1b:ab:41:96:22:0d: 53:94:9e:5a:01:f0:d7:84:03:14:88:50:6b:f5:24:62:aa:88: e2:97:d8:c6:55:34:bf:9f:ec:70:39:98:63:e1:1c:1a:44:52: 11:86:4f:d0:c4:bc:50:71:32:4d:7b:39:b2:f0:96:8f:a2:39: 94:3f:41:af:68:22:86:74:bf:5f:8e:25:db:45:8e:a3:83:9e: 5e:5e:1d:9e:06:65:a7:d0:72:d5:fc:fc:73:58:ca:81:5b:4b: 32:f4:a8:18:c9:2a:47:3d:a8:bf:49:46:a4:75:cb:9a:8f:98: 51:33:34:40:b8:12:b8:39:89:54:32:23:48:4b:f9:3a:00:e5: ba:22:35:68:1a:90:50:d9:cd:f2:b3:0a:70:f4:16:7c:92:9a: 36:40:48:35:ec:3e:3a:4a:91:10:ea:7e:08:b5:57:3c:4a:7a: fc:f3:9d:6b:fa:99:c6:74:2d:c0:00:f0:2c:b3:a6:6a:39:9c: 69:5e:f1:b1:63:88:f0:f2:66:60:74:51:30:99:79:e5:25:df: 02:14:4c:6e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICGw4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI0 QTNDMzZCNDIzNDdBQ0VGMzZFODRBNjZFNjlFRTU5QkVEOEI3NjAeFw0yNTA5MTMw MzA5MTVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDUzQzFCREQzRTYxODQ2 MDg3QTkzNzFDMzlDMzQ3MzlGNkRBNzY0RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI3ZP87OBswv0YTohePHPNqASYxi1vb5PuZwA2ck8OCzLhxEfS sw/K625Qp+zA0rPb0oq0kohRBxwdMbS6T0WbbqpPktUXwibhWxtd829V0LYYh1Ki XweeeP/u0OY+HZBu92GWQhpx7eoqFtfaWVLhCeMn8mZNTotNq2oCXAtpiYO5JxtV clGAG54XxXoVOTJih+gkTwrlgv2j1r4FD2jdydS3eRno2n7M96jHu+x/EY9jU2Ct bQxXAZRA+TrqbXKj6z9uJ67YsF35gadByeYdGF1/O46GZSpJPEYGglK6EbCDm4pl 3AGfAasiTt7KFar/qA559zGjVIbctO3eVbpRAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUU8G90+YYRgh6k3HDnDRzn22nZOUwHwYDVR0jBBgwFoAUm0o8NrQjR6zvNuhK Zuae5Zvti3YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTA4 L20wbzhOclFqUjZ6dk51aEtadWFlNVp2dGkzWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvbTBvOE5yUWpSNnp2TnVoS1p1YWU1WnZ0aTNZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTA4L1U4RzkwLVlZUmdoNmsz SERuRFJ6bjIyblpPVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBbMAMA0GCSqGSIb3DQEBCwUAA4IBAQBnlS6kvNxZHR9lK1objARQS4gJo3Wg +0/oUqywOxNra2qXJ4lULaaCmtiE1/IJR5Ubq0GWIg1TlJ5aAfDXhAMUiFBr9SRi qojil9jGVTS/n+xwOZhj4RwaRFIRhk/QxLxQcTJNezmy8JaPojmUP0GvaCKGdL9f jiXbRY6jg55eXh2eBmWn0HLV/PxzWMqBW0sy9KgYySpHPai/SUakdcuaj5hRMzRA uBK4OYlUMiNIS/k6AOW6IjVoGpBQ2c3yswpw9BZ8kpo2QEg17D46SpEQ6n4ItVc8 Snr8851r+pnGdC3AAPAss6ZqOZxpXvGxY4jw8mZgdFEwmXnlJd8CFExu -----END CERTIFICATE-----Generated at Tue Oct 21 01:27:36 2025 by rpki-client