$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa File: Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa (raw, json) Hash identifier: C1aXVx3626w3lC0qVGmhnn9Jj9Gy3ZQ5/AtReox93tU= Subject key identifier: 62:AF:B0:10:97:69:37:2A:EC:27:93:35:95:77:10:33:1F:79:44:8D Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 3212 Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa Signing time: Wed 25 Jun 2025 00:12:48 +0000 ROA not before: Wed 25 Jun 2025 00:12:48 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 63612 IP address blocks: 103.45.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 22:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12818 (0x3212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Jun 25 00:12:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=62AFB0109769372AEC279335957710331F79448D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:aa:ed:bf:df:f5:5d:3c:4e:58:7e:29:37:d8: 98:a5:fa:75:7f:f4:7a:de:b9:40:4d:04:3a:6e:ff: 03:4c:4e:78:be:26:99:7f:88:8a:1e:d7:df:37:6b: 35:df:82:ad:a4:e8:82:c6:e4:32:aa:6a:1a:05:71: 1c:1a:62:9d:2f:87:f2:b8:ff:7c:91:b4:62:da:b6: 8e:76:c9:95:5f:d0:35:3f:ec:d2:a7:f7:fc:a8:b5: c0:5d:ae:60:ac:58:c0:d9:96:89:d9:83:e9:4e:23: 52:ed:e1:dd:45:e2:c2:14:4f:87:44:26:6a:fd:15: 9b:20:f8:f8:ee:07:e0:a5:87:24:13:69:a4:f5:a8: 0c:d2:fd:d9:d0:c4:0e:d0:89:92:9e:8f:31:c4:6c: 9a:1e:36:df:c7:06:60:de:03:10:1f:24:1d:51:df: 7e:14:21:d2:80:76:89:5f:18:be:51:9f:c2:59:b1: a8:fe:da:b1:3c:d0:7c:91:ab:ca:ad:06:52:bb:07: 57:52:1a:00:15:ae:42:9c:2c:ca:b4:6f:c9:8f:a6: fa:db:72:4f:87:0c:f8:7d:b3:82:66:90:9e:1e:a6: 15:b7:6d:8a:a7:f1:f6:91:58:83:ac:cb:41:13:49: 07:bd:27:60:e6:f8:0d:96:7f:d6:a9:47:de:69:25: 00:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:AF:B0:10:97:69:37:2A:EC:27:93:35:95:77:10:33:1F:79:44:8D X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/Yq-wEJdpNyrsJ5M1lXcQMx95RI0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.45.96.0/19 Signature Algorithm: sha256WithRSAEncryption ad:f0:24:61:f1:6e:90:85:fb:e5:7c:79:22:c7:33:24:81:53: f7:b1:48:52:b6:ea:0d:fd:65:5b:79:1d:f2:b1:7e:29:c0:73: 23:d5:07:9e:0d:ce:16:7e:a0:1c:32:ea:b2:e7:02:db:57:8c: f1:1d:f4:33:d3:b0:8d:1a:26:09:3a:f7:a9:8a:80:fd:5f:11: ec:24:61:51:0e:55:f7:6a:d0:94:9a:fd:32:7c:43:0f:39:a2: 61:96:ae:cf:34:f0:22:f7:dc:7d:dc:b1:bb:8e:ce:87:e7:83: 23:7c:be:b4:c8:04:d0:49:b6:3a:58:74:f9:04:1f:83:09:9a: 53:cc:6e:b2:dd:3d:25:22:bb:eb:dd:75:e4:1e:d4:95:14:aa: 40:fd:2c:0d:1c:55:33:e4:30:5d:75:66:87:c7:a0:1f:10:5a: 31:b6:0e:ac:26:85:91:59:b2:82:c3:bf:a4:25:68:75:6e:5e: 4c:dd:80:01:62:d6:74:39:49:b8:aa:14:8f:8c:91:d7:e4:5c: 5f:e6:cc:bd:d8:f9:d7:95:fe:f6:fe:26:81:69:6f:d7:e2:70: f3:9b:c7:d2:08:b4:86:ee:8a:96:18:58:22:23:c4:ea:6e:f7: 15:ac:05:39:6c:20:68:80:34:59:59:e7:bf:f1:22:cb:9a:6c: 4c:7d:38:39 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICMhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNTA2MjUw MDEyNDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDYyQUZCMDEwOTc2OTM3 MkFFQzI3OTMzNTk1NzcxMDMzMUY3OTQ0OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3qu2/3/VdPE5Yfik32Jil+nV/9HreuUBNBDpu/wNMTni+Jpl/ iIoe1983azXfgq2k6ILG5DKqahoFcRwaYp0vh/K4/3yRtGLato52yZVf0DU/7NKn 9/yotcBdrmCsWMDZlonZg+lOI1Lt4d1F4sIUT4dEJmr9FZsg+PjuB+ClhyQTaaT1 qAzS/dnQxA7QiZKejzHEbJoeNt/HBmDeAxAfJB1R334UIdKAdolfGL5Rn8JZsaj+ 2rE80HyRq8qtBlK7B1dSGgAVrkKcLMq0b8mPpvrbck+HDPh9s4JmkJ4ephW3bYqn 8faRWIOsy0ETSQe9J2Dm+A2Wf9apR95pJQCTAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUYq+wEJdpNyrsJ5M1lXcQMx95RI0wHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvWXEtd0VKZHBOeXJz SjVNMWxYY1FNeDk1UkkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBWctYDANBgkqhkiG9w0BAQsFAAOCAQEArfAkYfFukIX75Xx5IsczJIFT97FI UrbqDf1lW3kd8rF+KcBzI9UHng3OFn6gHDLqsucC21eM8R30M9OwjRomCTr3qYqA /V8R7CRhUQ5V92rQlJr9MnxDDzmiYZauzzTwIvfcfdyxu47Oh+eDI3y+tMgE0Em2 Olh0+QQfgwmaU8xust09JSK769115B7UlRSqQP0sDRxVM+QwXXVmh8egHxBaMbYO rCaFkVmygsO/pCVodW5eTN2AAWLWdDlJuKoUj4yR1+RcX+bMvdj515X+9v4mgWlv 1+Jw85vH0gi0hu6KlhhYIiPE6m73FawFOWwgaIA0WVnnv/Eiy5psTH04OQ== -----END CERTIFICATE-----Generated at Fri Jul 4 19:36:46 2025 by rpki-client