$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/Mx-Dp0FNFKYVyccarpgyo1tu9Ys.roa File: Mx-Dp0FNFKYVyccarpgyo1tu9Ys.roa (raw, json) Hash identifier: 3P5b9pxnjhYuwnS9I04UokYyreNrRX6302f/BuuThPY= Subject key identifier: 33:1F:83:A7:41:4D:14:A6:15:C9:C7:1A:AE:98:32:A3:5B:6E:F5:8B Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 01F7 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Mx-Dp0FNFKYVyccarpgyo1tu9Ys.roa Signing time: Wed 02 Jul 2025 12:48:50 +0000 ROA not before: Wed 02 Jul 2025 12:48:50 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 137510 IP address blocks: 103.132.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 18:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Jul 2 12:48:50 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=331F83A7414D14A615C9C71AAE9832A35B6EF58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4a:d4:c8:34:05:ff:64:7c:b6:5b:86:45:c5: 49:51:f0:96:40:dc:50:1c:70:2d:ba:30:e7:5b:93: 09:35:5e:3d:c8:ff:95:f6:1d:4b:0e:90:85:ab:46: 0d:14:ee:77:3b:bb:4f:c3:06:c4:88:74:39:f4:45: 76:14:54:51:3a:f4:b7:7e:a3:53:73:62:93:c8:54: 56:ab:8d:90:2e:64:92:99:ba:35:84:27:36:e0:1a: c3:d5:f6:cf:4f:c0:be:ab:e3:8a:5d:e6:95:75:16: 29:ea:48:90:80:86:97:fe:db:84:97:cf:f4:2d:22: e3:4a:2f:8a:59:20:10:81:6b:c3:db:8a:82:37:d5: 77:50:65:12:83:d3:d8:8c:08:40:6f:b6:52:8b:f0: be:cd:22:7c:db:fb:6a:15:e5:5b:ae:60:11:43:30: 91:96:fa:5f:89:c2:f1:86:33:85:94:3c:06:8b:78: a9:e0:f2:48:bf:d3:cc:5a:e8:38:23:6d:05:41:5e: 0d:27:87:fc:75:c1:21:b3:3c:00:64:35:95:5c:63: 07:76:a0:eb:e0:e7:b7:b2:49:68:a8:5d:b8:62:0a: d5:31:bf:13:77:64:a3:cf:e6:5e:04:e5:c6:35:34: 34:68:3f:22:2b:60:1e:14:9c:d5:f6:25:39:15:08: d4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:1F:83:A7:41:4D:14:A6:15:C9:C7:1A:AE:98:32:A3:5B:6E:F5:8B X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Mx-Dp0FNFKYVyccarpgyo1tu9Ys.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.132.160.0/24 Signature Algorithm: sha256WithRSAEncryption cd:d9:a7:30:5d:42:b0:ae:0a:7b:bb:eb:e5:72:6e:03:e8:43: 88:d9:67:1c:4b:68:04:1a:86:e3:18:3b:72:7d:8c:4a:7a:d9: af:97:2c:41:8c:73:2d:63:06:9f:21:52:31:bf:df:19:1f:d0: 5e:1b:ae:61:3e:1a:76:e9:b7:df:ec:eb:47:63:7f:79:94:7b: fc:cb:52:d9:fe:1e:da:59:be:44:00:c6:8f:6a:a7:e3:e8:c8: d2:c9:1e:26:2e:14:9b:dd:e0:88:2b:5e:6c:0e:ac:1d:2e:35: 7a:0b:2b:d7:62:07:c0:19:40:d6:aa:ab:fc:55:59:39:bf:b3: b7:fd:a4:34:74:09:ac:db:a8:f6:54:e0:93:46:0b:0e:6b:7b: 96:3e:26:4e:69:25:07:bf:c5:b6:47:09:69:d3:6a:81:0a:7a: d1:eb:e4:40:e0:0f:37:99:0a:3e:43:2e:35:1b:32:7e:11:55: ab:78:44:e5:1f:fa:6b:3a:2b:54:5b:d3:78:cf:69:56:6d:bf: 2a:ec:54:ec:22:b3:50:ee:81:ef:6a:20:98:1d:b6:55:2d:4b: f1:f6:2b:eb:bc:7c:5a:3c:17:c5:27:bd:e9:01:56:9b:50:8f: 4f:6f:f6:ac:9d:34:12:4e:bf:57:af:e3:66:17:b5:a2:80:e4: bc:c1:2f:ae -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF RTg1MkZFMTM4Q0RFREM1QjQyRDExQTM0Mjk1RDEwOUFENDkyNTAeFw0yNTA3MDIx MjQ4NTBaFw0yNjA0MTUwOTA4MzBaMDMxMTAvBgNVBAMTKDMzMUY4M0E3NDE0RDE0 QTYxNUM5QzcxQUFFOTgzMkEzNUI2RUY1OEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzStTINAX/ZHy2W4ZFxUlR8JZA3FAccC26MOdbkwk1Xj3I/5X2 HUsOkIWrRg0U7nc7u0/DBsSIdDn0RXYUVFE69Ld+o1NzYpPIVFarjZAuZJKZujWE JzbgGsPV9s9PwL6r44pd5pV1FinqSJCAhpf+24SXz/QtIuNKL4pZIBCBa8PbioI3 1XdQZRKD09iMCEBvtlKL8L7NInzb+2oV5VuuYBFDMJGW+l+JwvGGM4WUPAaLeKng 8ki/08xa6DgjbQVBXg0nh/x1wSGzPABkNZVcYwd2oOvg57eySWioXbhiCtUxvxN3 ZKPP5l4E5cY1NDRoPyIrYB4UnNX2JTkVCNRnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUMx+Dp0FNFKYVyccarpgyo1tu9YswHwYDVR0jBBgwFoAUOe6FL+E4ze3FtC0R o0KV0QmtSSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcx Ni9PZTZGTC1FNHplM0Z0QzBSbzBLVjBRbXRTU1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MTYvTXgtRHAwRk5GS1lW eWNjYXJwZ3lvMXR1OVlzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGeEoDANBgkqhkiG9w0BAQsFAAOCAQEAzdmnMF1CsK4Ke7vr5XJuA+hDiNln HEtoBBqG4xg7cn2MSnrZr5csQYxzLWMGnyFSMb/fGR/QXhuuYT4adum33+zrR2N/ eZR7/MtS2f4e2lm+RADGj2qn4+jI0skeJi4Um93giCtebA6sHS41egsr12IHwBlA 1qqr/FVZOb+zt/2kNHQJrNuo9lTgk0YLDmt7lj4mTmklB7/FtkcJadNqgQp60evk QOAPN5kKPkMuNRsyfhFVq3hE5R/6azorVFvTeM9pVm2/KuxU7CKzUO6B72ogmB22 VS1L8fYr67x8WjwXxSe96QFWm1CPT2/2rJ00Ek6/V6/jZhe1ooDkvMEvrg== -----END CERTIFICATE-----Generated at Thu Jul 3 18:32:17 2025 by rpki-client