$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/zftSMT7JWRCqB5cPNzPV_IEf64I.roa File: zftSMT7JWRCqB5cPNzPV_IEf64I.roa (raw, json) Hash identifier: +y3aXuubl3108Nw0i6GJnaO/OGi0xw0MH+bcu026u9A= Subject key identifier: CD:FB:52:31:3E:C9:59:10:AA:07:97:0F:37:33:D5:FC:81:1F:EB:82 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2096 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/zftSMT7JWRCqB5cPNzPV_IEf64I.roa Signing time: Sat 13 Sep 2025 03:09:55 +0000 ROA not before: Sat 13 Sep 2025 03:09:55 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23724 IP address blocks: 2406:4d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8342 (0x2096) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Sep 13 03:09:55 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=CDFB52313EC95910AA07970F3733D5FC811FEB82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7d:92:11:a5:60:a4:c6:ae:2c:3f:fa:62:72: b6:52:39:7f:0c:cc:1b:95:06:0f:ef:9e:71:bb:7b: d0:6a:fc:49:c7:94:36:30:87:5f:b4:b0:13:14:f0: aa:ef:6d:f9:2c:42:a6:a5:76:3a:0b:d9:0f:3c:f9: f0:67:eb:f1:51:38:5b:8f:df:18:1e:d0:bc:c8:bd: 7b:89:b9:a4:b8:ab:bb:4f:38:02:f0:61:d1:9c:0e: 0e:62:fb:ca:ab:69:e0:25:9e:68:37:27:e8:02:a9: cf:bc:7f:81:9a:3e:26:53:79:17:9f:e9:6e:be:50: ed:d9:6c:21:44:be:58:95:1b:41:de:be:de:09:8b: 41:98:90:a8:b4:df:f6:13:8c:b9:a1:55:73:54:1a: 5d:34:b4:90:28:5c:39:cb:77:96:23:6c:ba:e3:f5: 25:3d:3d:4e:66:7f:c7:06:11:46:c8:27:f4:34:05: 5c:c9:4f:da:10:96:93:e8:c7:47:e6:61:21:58:36: c1:90:28:58:35:09:ce:04:6e:26:55:7c:1a:c1:a4: 48:ff:c7:8c:63:f0:c1:19:9d:4a:4e:0b:1f:62:93: b0:29:a2:8a:81:5a:e3:e8:19:f4:af:97:98:d6:58: 22:02:25:74:e1:65:53:bd:84:85:0a:50:24:50:5d: 86:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FB:52:31:3E:C9:59:10:AA:07:97:0F:37:33:D5:FC:81:1F:EB:82 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/zftSMT7JWRCqB5cPNzPV_IEf64I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:4d00::/48 Signature Algorithm: sha256WithRSAEncryption 60:a7:e6:0e:cd:af:54:72:b2:5a:8e:69:55:07:bb:9d:04:a7: 25:f9:52:23:bc:b3:d9:32:9c:b4:30:f0:0c:43:bf:9a:dc:fb: 79:02:04:0a:d8:86:08:0f:09:fc:e2:db:c9:f5:f2:ee:3f:36: 38:37:b1:f9:96:4e:d3:65:c7:69:46:be:e5:2d:93:b5:5e:15: d6:ca:1d:36:4a:96:01:c0:e5:d8:3a:fc:36:49:70:8f:c8:87: 35:23:af:8e:fe:15:fb:1d:e3:ec:f7:19:cc:8a:1e:96:99:07: 02:54:63:14:30:85:b4:1f:66:f9:ba:7e:7f:fc:69:c5:25:7a: 8f:0b:a6:49:32:f0:8d:1a:42:b8:d8:7c:10:43:43:29:c3:d2: 6a:fe:c2:a4:e3:33:0e:7a:f0:52:ec:4f:81:93:67:8a:af:22: 65:0e:63:d9:5b:cb:df:2d:58:b7:4e:28:7a:5a:24:e8:53:e9: 72:e7:f8:43:05:da:24:1c:8e:ca:5c:87:19:a5:cb:fc:cf:af: 31:97:3e:fa:90:91:fc:06:60:23:33:38:37:b1:ae:39:b5:a7: 33:78:c4:79:bf:3b:83:0f:16:8d:68:eb:43:a4:4c:77:4a:4b: a7:0f:da:0d:f6:6c:9f:5a:3b:5a:b8:e6:e1:53:6e:de:5f:e6: 34:5f:1d:b6 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA5MTMw MzA5NTVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKENERkI1MjMxM0VDOTU5 MTBBQTA3OTcwRjM3MzNENUZDODExRkVCODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQfZIRpWCkxq4sP/picrZSOX8MzBuVBg/vnnG7e9Bq/EnHlDYw h1+0sBMU8KrvbfksQqaldjoL2Q88+fBn6/FROFuP3xge0LzIvXuJuaS4q7tPOALw YdGcDg5i+8qraeAlnmg3J+gCqc+8f4GaPiZTeRef6W6+UO3ZbCFEvliVG0Hevt4J i0GYkKi03/YTjLmhVXNUGl00tJAoXDnLd5YjbLrj9SU9PU5mf8cGEUbIJ/Q0BVzJ T9oQlpPox0fmYSFYNsGQKFg1Cc4EbiZVfBrBpEj/x4xj8MEZnUpOCx9ik7ApooqB WuPoGfSvl5jWWCICJXThZVO9hIUKUCRQXYZBAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUzftSMT7JWRCqB5cPNzPV/IEf64IwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL3pmdFNNVDdKV1JDcUI1 Y1BOelBWX0lFZjY0SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAkBk0AAAAwDQYJKoZIhvcNAQELBQADggEBAGCn5g7Nr1RyslqOaVUHu50EpyX5 UiO8s9kynLQw8AxDv5rc+3kCBArYhggPCfzi28n18u4/Njg3sfmWTtNlx2lGvuUt k7VeFdbKHTZKlgHA5dg6/DZJcI/IhzUjr47+Ffsd4+z3GcyKHpaZBwJUYxQwhbQf Zvm6fn/8acUleo8Lpkky8I0aQrjYfBBDQynD0mr+wqTjMw568FLsT4GTZ4qvImUO Y9lby98tWLdOKHpaJOhT6XLn+EMF2iQcjspchxmly/zPrzGXPvqQkfwGYCMzODex rjm1pzN4xHm/O4MPFo1o60OkTHdKS6cP2g32bJ9aO1q45uFTbt5f5jRfHbY= -----END CERTIFICATE-----Generated at Mon Oct 20 03:39:47 2025 by rpki-client