$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/654/wZLHpcvHrGz3tUiBMnBI6rIckCQ.roa File: wZLHpcvHrGz3tUiBMnBI6rIckCQ.roa (raw, json) Hash identifier: 89jr9Ewq1iuL05K8GgrpOrKlq+vnC4Iu0FosUDNQP4g= Subject key identifier: C1:92:C7:A5:CB:C7:AC:6C:F7:B5:48:81:32:70:48:EA:B2:1C:90:24 Certificate issuer: /CN=DA993FE5C04FF9F22C5262630BEC37F5B3A78285 Certificate serial: 1746 Authority key identifier: DA:99:3F:E5:C0:4F:F9:F2:2C:52:62:63:0B:EC:37:F5:B3:A7:82:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/wZLHpcvHrGz3tUiBMnBI6rIckCQ.roa Signing time: Sat 13 Sep 2025 03:06:20 +0000 ROA not before: Sat 13 Sep 2025 03:06:20 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 63199 IP address blocks: 2400:5280:4000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5958 (0x1746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA993FE5C04FF9F22C5262630BEC37F5B3A78285 Validity Not Before: Sep 13 03:06:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C192C7A5CBC7AC6CF7B54881327048EAB21C9024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:27:68:99:eb:92:90:90:53:9a:c6:cb:e8:4f: ef:17:6e:a2:1c:29:cb:c1:19:00:6a:f0:f7:50:cf: 9a:96:8e:45:30:85:65:c1:6e:11:70:2e:4b:8e:55: 0e:85:19:7f:f5:18:09:13:d2:6e:72:32:b2:ca:da: 5b:68:fb:a5:c0:1f:1e:9f:63:bf:83:f0:1b:32:25: 84:aa:b8:54:1a:29:c8:ce:12:04:ea:93:d7:c9:d6: a1:6a:ab:0c:dd:4f:d8:b2:83:77:9f:85:c6:d3:d2: 79:1a:43:a5:46:1d:be:39:ad:6e:1d:38:47:fb:19: 74:cf:ac:55:82:41:52:aa:b6:99:cc:47:ab:23:19: 1b:9e:b7:a0:27:fa:e2:1a:35:f3:25:8e:f5:b6:29: ff:8f:f4:d4:aa:9a:20:b2:ff:16:a2:21:fa:01:71: e5:c1:23:5e:ac:6d:b0:b0:1f:03:fa:eb:05:2a:8a: 58:56:10:8e:66:fd:e2:e1:e3:40:fa:83:a4:c4:82: 0a:e4:8b:8f:3b:11:32:00:ea:5f:c4:44:77:0e:37: 23:cb:c0:c5:60:11:32:2a:22:b9:7b:b7:0c:fe:83: 33:4f:b0:17:68:43:56:db:60:ce:00:0d:97:0e:f1: 6f:ba:de:16:7c:9b:0d:2c:a6:b5:61:07:8f:59:b6: 8b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:92:C7:A5:CB:C7:AC:6C:F7:B5:48:81:32:70:48:EA:B2:1C:90:24 X509v3 Authority Key Identifier: keyid:DA:99:3F:E5:C0:4F:F9:F2:2C:52:62:63:0B:EC:37:F5:B3:A7:82:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/2pk_5cBP-fIsUmJjC-w39bOngoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2pk_5cBP-fIsUmJjC-w39bOngoU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/654/wZLHpcvHrGz3tUiBMnBI6rIckCQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5280:4000::/38 Signature Algorithm: sha256WithRSAEncryption 04:77:cf:0f:03:07:de:e2:8e:45:ae:21:2f:7e:47:b9:dd:16: 2a:94:88:31:c3:76:f7:b4:58:89:f9:af:e5:1c:f4:bd:ae:3e: 65:95:64:61:e0:f2:8e:6a:85:ca:e8:2c:d7:98:1b:97:dc:af: 84:14:19:17:c7:22:ac:6b:80:a2:52:5b:6d:8e:64:bc:8a:b3: cf:bc:6e:15:ab:27:4a:51:75:dc:1c:80:d8:71:7c:5e:c3:b8: 7a:50:82:8a:ca:e7:33:9b:80:04:1e:18:37:b3:9b:55:e8:57: 4e:e3:6d:cc:ee:6d:c3:6e:a4:ec:81:fb:0a:95:3f:09:97:6a: 04:4a:d3:66:37:d6:ca:fd:25:55:9f:52:1d:6e:e8:1a:64:e3: a4:93:2a:63:a5:ea:7e:b7:b1:69:dd:32:47:af:e0:cb:40:e4: 67:6c:20:29:91:c5:1e:7f:c1:15:eb:4d:01:59:c2:dd:1f:b7: 4f:b8:3b:c5:09:65:60:8e:fe:97:de:e7:f7:cb:1d:e8:cb:d0: ce:14:4b:6c:ad:79:ea:a7:96:d9:aa:1c:5f:c2:e3:1f:4a:a3: dc:08:53:67:92:0c:54:4b:91:52:24:45:14:ee:e2:a7:03:8b: 7d:fa:b4:14:6a:12:b8:bd:e9:0b:6b:d1:e4:22:01:40:19:97: 11:86:6f:eb -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICF0YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREE5 OTNGRTVDMDRGRjlGMjJDNTI2MjYzMEJFQzM3RjVCM0E3ODI4NTAeFw0yNTA5MTMw MzA2MjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEMxOTJDN0E1Q0JDN0FD NkNGN0I1NDg4MTMyNzA0OEVBQjIxQzkwMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9J2iZ65KQkFOaxsvoT+8XbqIcKcvBGQBq8PdQz5qWjkUwhWXB bhFwLkuOVQ6FGX/1GAkT0m5yMrLK2lto+6XAHx6fY7+D8BsyJYSquFQaKcjOEgTq k9fJ1qFqqwzdT9iyg3efhcbT0nkaQ6VGHb45rW4dOEf7GXTPrFWCQVKqtpnMR6sj GRuet6An+uIaNfMljvW2Kf+P9NSqmiCy/xaiIfoBceXBI16sbbCwHwP66wUqilhW EI5m/eLh40D6g6TEggrki487ETIA6l/ERHcONyPLwMVgETIqIrl7twz+gzNPsBdo Q1bbYM4ADZcO8W+63hZ8mw0sprVhB49Ztos3AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUwZLHpcvHrGz3tUiBMnBI6rIckCQwHwYDVR0jBBgwFoAU2pk/5cBP+fIsUmJj C+w39bOngoUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0 LzJwa181Y0JQLWZJc1VtSmpDLXczOWJPbmdvVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMnBrXzVjQlAtZklzVW1KakMtdzM5Yk9uZ29VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjU0L3daTEhwY3ZIckd6M3RV aUJNbkJJNnJJY2tDUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgD BgIkAFKAQDANBgkqhkiG9w0BAQsFAAOCAQEABHfPDwMH3uKORa4hL35Hud0WKpSI McN297RYifmv5Rz0va4+ZZVkYeDyjmqFyugs15gbl9yvhBQZF8cirGuAolJbbY5k vIqzz7xuFasnSlF13ByA2HF8XsO4elCCisrnM5uABB4YN7ObVehXTuNtzO5tw26k 7IH7CpU/CZdqBErTZjfWyv0lVZ9SHW7oGmTjpJMqY6Xqfrexad0yR6/gy0DkZ2wg KZHFHn/BFetNAVnC3R+3T7g7xQllYI7+l97n98sd6MvQzhRLbK156qeW2aocX8Lj H0qj3AhTZ5IMVEuRUiRFFO7ipwOLffq0FGoSuL3pC2vR5CIBQBmXEYZv6w== -----END CERTIFICATE-----Generated at Mon Oct 20 00:04:26 2025 by rpki-client