$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/654/TpvO5vdeHWVXhGkTKjH84ly_vIU.roa File: TpvO5vdeHWVXhGkTKjH84ly_vIU.roa (raw, json) Hash identifier: +f0nHjtb5Rj8798V2ToE4hnOduYhYnSw9Um3wGP6CoI= Subject key identifier: 4E:9B:CE:E6:F7:5E:1D:65:57:84:69:13:2A:31:FC:E2:5C:BF:BC:85 Certificate issuer: /CN=DA993FE5C04FF9F22C5262630BEC37F5B3A78285 Certificate serial: 1743 Authority key identifier: DA:99:3F:E5:C0:4F:F9:F2:2C:52:62:63:0B:EC:37:F5:B3:A7:82:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/TpvO5vdeHWVXhGkTKjH84ly_vIU.roa Signing time: Sat 13 Sep 2025 03:06:19 +0000 ROA not before: Sat 13 Sep 2025 03:06:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 63199 IP address blocks: 2400:5280:2000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5955 (0x1743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA993FE5C04FF9F22C5262630BEC37F5B3A78285 Validity Not Before: Sep 13 03:06:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4E9BCEE6F75E1D65578469132A31FCE25CBFBC85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c3:05:6f:ca:78:8a:7e:40:61:b9:07:92:42: d4:93:ee:8b:be:2f:de:75:c9:e9:d3:fa:e8:a8:fb: fa:da:32:cb:c3:15:cf:47:02:c3:b8:67:8c:fe:0f: 86:39:4d:71:f8:16:e2:e0:a6:2a:b9:f8:02:ce:bf: 8e:ca:a8:6d:d2:61:2c:2b:b9:32:d0:93:f8:8a:de: d3:b2:7a:a0:2c:75:63:d8:e1:f4:1b:ad:d5:0b:d3: 52:38:9d:ce:c6:d9:69:ec:d3:3d:64:a9:09:1e:88: 63:a4:c2:f9:c5:0d:7b:5c:ad:c1:c8:21:82:7a:9c: 2e:8d:0f:1c:c9:f4:89:51:47:ca:d3:ad:d4:e5:b1: a5:5e:d2:61:f5:a4:88:55:4e:e4:a3:a0:e7:09:66: ee:5a:9e:1c:1a:ba:63:d4:dc:dd:2b:17:56:e0:23: a8:3b:42:1e:f5:c8:67:10:16:19:7f:d6:7f:56:f5: c4:1b:81:17:87:b7:54:0c:d3:5f:42:1b:e5:e1:4e: 07:4d:ff:cc:35:da:73:70:bb:b3:29:cb:38:04:6c: 99:d9:3b:96:dd:db:e2:59:22:f2:fd:36:7c:0f:e5: 68:ef:b9:53:ca:ab:74:d7:3c:3a:1c:0a:c3:08:f0: 6c:09:52:2e:ba:60:26:69:4c:18:2a:71:6a:99:9b: 91:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9B:CE:E6:F7:5E:1D:65:57:84:69:13:2A:31:FC:E2:5C:BF:BC:85 X509v3 Authority Key Identifier: keyid:DA:99:3F:E5:C0:4F:F9:F2:2C:52:62:63:0B:EC:37:F5:B3:A7:82:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/TpvO5vdeHWVXhGkTKjH84ly_vIU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5280:2000::/38 Signature Algorithm: sha256WithRSAEncryption c8:92:2b:84:51:a9:51:2d:b8:94:e6:03:26:60:7f:0a:95:c4: b6:f8:83:d8:d2:91:0c:d9:3d:fb:84:02:08:f0:91:ae:29:10: 7a:90:fd:46:ff:8d:92:ce:65:98:99:45:39:ba:d4:5f:dc:86: 90:68:a7:c6:69:12:76:bd:07:fa:e3:fb:ca:17:2f:46:73:72: 39:b2:c9:0b:26:38:98:ff:23:c0:25:f2:45:73:e5:af:7c:77: 8d:36:35:68:3f:a8:61:e7:6e:1f:c8:ff:45:82:d2:ea:69:5c: 91:5d:c3:37:ea:40:db:7f:16:a7:4f:d3:5d:05:60:be:8f:3c: 41:b0:1c:6f:f4:3f:a7:7a:bd:0e:4f:8e:92:44:c6:ee:91:7c: a6:de:3d:85:ba:70:92:3f:3e:e3:ea:f0:d9:83:39:f7:73:50: 83:c8:2e:b5:c2:ad:e7:00:fc:a1:8d:a6:3a:69:dc:0c:27:95: 09:6b:bc:93:6b:02:ad:64:8b:10:d1:ec:53:92:42:60:32:df: b9:01:11:8c:71:dd:6c:30:52:5c:7f:31:d7:f9:be:08:09:14: cd:21:b9:5e:c1:0e:bb:1c:99:a5:96:3f:a2:16:f5:15:6c:23: c0:e9:d3:34:5f:1c:a7:f1:48:dc:97:78:6d:08:e5:2a:d5:7b: 36:12:08:fd -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICF0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREE5 OTNGRTVDMDRGRjlGMjJDNTI2MjYzMEJFQzM3RjVCM0E3ODI4NTAeFw0yNTA5MTMw MzA2MTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDRFOUJDRUU2Rjc1RTFE NjU1Nzg0NjkxMzJBMzFGQ0UyNUNCRkJDODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvwwVvyniKfkBhuQeSQtST7ou+L951yenT+uio+/raMsvDFc9H AsO4Z4z+D4Y5TXH4FuLgpiq5+ALOv47KqG3SYSwruTLQk/iK3tOyeqAsdWPY4fQb rdUL01I4nc7G2Wns0z1kqQkeiGOkwvnFDXtcrcHIIYJ6nC6NDxzJ9IlRR8rTrdTl saVe0mH1pIhVTuSjoOcJZu5anhwaumPU3N0rF1bgI6g7Qh71yGcQFhl/1n9W9cQb gReHt1QM019CG+XhTgdN/8w12nNwu7MpyzgEbJnZO5bd2+JZIvL9NnwP5WjvuVPK q3TXPDocCsMI8GwJUi66YCZpTBgqcWqZm5ERAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUTpvO5vdeHWVXhGkTKjH84ly/vIUwHwYDVR0jBBgwFoAU2pk/5cBP+fIsUmJj C+w39bOngoUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0 LzJwa181Y0JQLWZJc1VtSmpDLXczOWJPbmdvVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMnBrXzVjQlAtZklzVW1KakMtdzM5Yk9uZ29VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0L1Rwdk81dmRlSFdWWGhH a1RLakg4NGx5X3ZJVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgD BgIkAFKAIDANBgkqhkiG9w0BAQsFAAOCAQEAyJIrhFGpUS24lOYDJmB/CpXEtviD 2NKRDNk9+4QCCPCRrikQepD9Rv+Nks5lmJlFObrUX9yGkGinxmkSdr0H+uP7yhcv RnNyObLJCyY4mP8jwCXyRXPlr3x3jTY1aD+oYeduH8j/RYLS6mlckV3DN+pA238W p0/TXQVgvo88QbAcb/Q/p3q9Dk+OkkTG7pF8pt49hbpwkj8+4+rw2YM593NQg8gu tcKt5wD8oY2mOmncDCeVCWu8k2sCrWSLENHsU5JCYDLfuQERjHHdbDBSXH8x1/m+ CAkUzSG5XsEOuxyZpZY/ohb1FWwjwOnTNF8cp/FI3Jd4bQjlKtV7NhII/Q== -----END CERTIFICATE-----Generated at Mon Oct 20 00:04:42 2025 by rpki-client