$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/SVyWpKNRpl4tyYdIhSVCFnBCoh4.roa File: SVyWpKNRpl4tyYdIhSVCFnBCoh4.roa (raw, json) Hash identifier: 53ZhmWEc2ZHK8EUUT7Ac1FiyMOhnJ2H3BygJVtNZ1Is= Subject key identifier: 49:5C:96:A4:A3:51:A6:5E:2D:C9:87:48:85:25:42:16:70:42:A2:1E Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 2356 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SVyWpKNRpl4tyYdIhSVCFnBCoh4.roa Signing time: Thu 26 Jun 2025 08:35:08 +0000 ROA not before: Thu 26 Jun 2025 08:35:08 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 209178 IP address blocks: 223.29.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 09:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9046 (0x2356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Jun 26 08:35:08 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=495C96A4A351A65E2DC98748852542167042A21E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:da:ef:1b:1d:df:d4:fb:88:13:0a:0a:91:6b: 17:d2:49:0c:f0:09:02:96:33:0a:bb:e6:93:ff:64: 09:75:5d:5d:00:29:51:21:f4:f5:29:0a:91:65:a2: 8e:b0:ed:bf:07:10:d2:a7:2b:8a:05:bf:45:ab:6a: 2f:a2:fb:16:2d:9d:4a:64:09:92:e9:27:15:27:0a: 07:cd:4f:a7:43:ab:c7:42:58:fc:62:8e:27:25:6c: 58:ba:de:ed:9f:a8:bb:0b:47:e7:cc:a0:ad:3d:c8: 12:d9:bc:c1:6d:38:df:5a:b8:66:a0:3b:95:b7:9b: 65:0e:db:80:68:be:e9:70:f9:ed:25:db:d6:8b:59: 16:a0:71:1b:4d:23:5c:f1:01:70:32:89:d7:fa:50: 8a:af:d8:ed:4d:bf:de:f6:1c:ae:1d:d2:a0:22:3d: 81:60:01:3b:f9:66:f1:cb:06:15:15:af:0c:31:f4: ab:ef:34:2f:1c:9e:93:b3:04:b6:e8:c5:3c:1d:ad: 3f:43:d2:af:16:fb:ae:d7:30:95:83:89:fe:ea:dc: 0e:09:f8:0b:56:13:60:da:de:61:49:16:95:96:60: 12:51:79:60:f7:04:a2:25:c7:53:82:54:14:3d:07: d7:d3:5d:0f:79:83:cc:b6:40:a8:b8:36:2a:42:8c: 45:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5C:96:A4:A3:51:A6:5E:2D:C9:87:48:85:25:42:16:70:42:A2:1E X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SVyWpKNRpl4tyYdIhSVCFnBCoh4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.29.252.0/24 Signature Algorithm: sha256WithRSAEncryption 43:33:62:21:e0:f0:11:21:68:97:b9:42:18:6e:ee:f4:e2:44: 4c:9f:b9:4e:38:9e:05:b7:d8:78:ef:89:c5:69:2e:8a:e1:8e: 82:8b:4c:22:17:71:cf:78:39:92:b8:83:23:18:d8:8c:46:88: 24:46:eb:a7:b9:22:55:3d:38:fa:bc:13:d6:7c:72:55:da:b8: e9:f9:04:ad:ab:bd:98:64:70:32:38:fc:5f:e3:df:09:97:cc: 10:6e:31:0e:14:83:ca:d5:ff:5b:a4:91:aa:88:10:dc:fc:59: 74:ca:dc:bd:09:d9:93:c8:a8:07:68:56:55:9a:60:36:17:6e: 2f:14:89:0f:df:31:18:23:d4:72:49:58:d4:30:74:33:a0:e9: 9a:20:a5:2d:65:7e:ed:cd:7a:0b:46:de:23:5f:df:8d:59:27: 3a:9f:52:c9:7e:ee:fb:a0:35:13:57:0e:8e:1f:90:ac:8c:5d: dd:47:60:84:14:07:98:11:4b:73:69:b2:79:d0:e4:4c:7d:f3: 2e:31:30:d5:cd:8a:b9:62:45:9c:32:8b:9d:e2:0f:09:71:f9: f2:e1:bb:7b:ee:fa:55:c2:e2:ce:db:aa:37:a2:3a:1a:cf:bb: da:af:3c:71:10:05:66:6c:e2:c6:a2:d9:bd:a2:71:8d:19:15: cb:6d:a1:d9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICI1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNTA2MjYw ODM1MDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ5NUM5NkE0QTM1MUE2 NUUyREM5ODc0ODg1MjU0MjE2NzA0MkEyMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC12u8bHd/U+4gTCgqRaxfSSQzwCQKWMwq75pP/ZAl1XV0AKVEh 9PUpCpFloo6w7b8HENKnK4oFv0Wrai+i+xYtnUpkCZLpJxUnCgfNT6dDq8dCWPxi jiclbFi63u2fqLsLR+fMoK09yBLZvMFtON9auGagO5W3m2UO24Bovulw+e0l29aL WRagcRtNI1zxAXAyidf6UIqv2O1Nv972HK4d0qAiPYFgATv5ZvHLBhUVrwwx9Kvv NC8cnpOzBLboxTwdrT9D0q8W+67XMJWDif7q3A4J+AtWE2Da3mFJFpWWYBJReWD3 BKIlx1OCVBQ9B9fTXQ95g8y2QKi4NipCjEUnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUSVyWpKNRpl4tyYdIhSVCFnBCoh4wHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvU1Z5V3BLTlJwbDR0 eVlkSWhTVkNGbkJDb2g0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAN8d/DANBgkqhkiG9w0BAQsFAAOCAQEAQzNiIeDwESFol7lCGG7u9OJETJ+5 TjieBbfYeO+JxWkuiuGOgotMIhdxz3g5kriDIxjYjEaIJEbrp7kiVT04+rwT1nxy Vdq46fkErau9mGRwMjj8X+PfCZfMEG4xDhSDytX/W6SRqogQ3PxZdMrcvQnZk8io B2hWVZpgNhduLxSJD98xGCPUcklY1DB0M6DpmiClLWV+7c16C0beI1/fjVknOp9S yX7u+6A1E1cOjh+QrIxd3UdghBQHmBFLc2myedDkTH3zLjEw1c2KuWJFnDKLneIP CXH58uG7e+76VcLiztuqN6I6Gs+72q88cRAFZmzixqLZvaJxjRkVy22h2Q== -----END CERTIFICATE-----Generated at Fri Jul 4 08:27:20 2025 by rpki-client