$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2927/JT72N6S_EYA3mmlM2ip-AjzM4RI.roa File: JT72N6S_EYA3mmlM2ip-AjzM4RI.roa (raw, json) Hash identifier: 4tl/25+uQxAUAN0qFimxxmltHs1PvKl6ZgGgmRH6bP0= Subject key identifier: 25:3E:F6:37:A4:BF:11:80:37:9A:69:4C:DA:2A:7E:02:3C:CC:E1:12 Certificate issuer: /CN=73D211D5B210E3B196054DB71892D8E38A4E09EF Certificate serial: 05 Authority key identifier: 73:D2:11:D5:B2:10:E3:B1:96:05:4D:B7:18:92:D8:E3:8A:4E:09:EF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c9IR1bIQ47GWBU23GJLY44pOCe8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2927/JT72N6S_EYA3mmlM2ip-AjzM4RI.roa Signing time: Wed 25 Jun 2025 02:40:30 +0000 ROA not before: Wed 25 Jun 2025 02:40:30 +0000 ROA not after: Thu 25 Jun 2026 02:35:12 +0000 asID: 134760 IP address blocks: 103.143.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2927/c9IR1bIQ47GWBU23GJLY44pOCe8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2927/c9IR1bIQ47GWBU23GJLY44pOCe8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c9IR1bIQ47GWBU23GJLY44pOCe8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 18:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73D211D5B210E3B196054DB71892D8E38A4E09EF Validity Not Before: Jun 25 02:40:30 2025 GMT Not After : Jun 25 02:35:12 2026 GMT Subject: CN=253EF637A4BF1180379A694CDA2A7E023CCCE112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:fb:2e:f7:46:67:11:80:75:f3:9a:6e:e3: 6a:d2:f4:c8:54:f4:7d:5b:47:63:98:7a:bb:dd:6d: 5d:97:47:16:49:8c:2f:fc:c8:f1:51:21:16:eb:df: a5:66:69:04:f9:47:d2:6a:9d:0c:19:25:06:8c:34: 35:63:7d:53:24:8c:a2:5d:d7:20:cf:1b:47:75:f4: 01:98:e9:cb:21:f7:71:cc:9b:42:8e:c0:1f:9b:52: 7a:15:85:4b:7f:45:c3:5e:1b:dd:91:ab:12:0e:9d: 55:38:c5:2a:08:b1:90:48:19:7d:0b:ef:80:d0:b9: 0b:33:fb:09:94:3e:75:1f:51:ab:e2:a7:8a:d7:56: 64:e5:1a:5c:d6:b2:98:fe:fc:ea:bc:35:3b:a3:07: fb:ca:e3:07:38:d3:a5:8a:10:ca:50:2c:6b:77:54: 56:0f:ef:37:51:e3:a7:ae:a7:09:ee:a3:fb:d8:ab: 26:1e:c1:67:34:16:fe:d3:f9:63:8e:69:dc:62:32: 92:40:db:7f:b6:00:c5:7e:fa:92:06:be:24:34:5e: 3e:4b:a9:bd:a2:b7:47:12:de:76:15:5b:26:ae:de: 7c:09:d8:ec:b5:85:ea:29:f7:20:95:a5:ce:73:b4: c9:9e:6b:8c:db:61:4e:ab:a4:95:1b:15:0e:04:c0: a3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3E:F6:37:A4:BF:11:80:37:9A:69:4C:DA:2A:7E:02:3C:CC:E1:12 X509v3 Authority Key Identifier: keyid:73:D2:11:D5:B2:10:E3:B1:96:05:4D:B7:18:92:D8:E3:8A:4E:09:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2927/c9IR1bIQ47GWBU23GJLY44pOCe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/c9IR1bIQ47GWBU23GJLY44pOCe8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2927/JT72N6S_EYA3mmlM2ip-AjzM4RI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.143.18.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:71:54:96:8b:33:96:16:3c:b4:a4:2e:51:23:fa:1c:ac:29: 52:b9:71:c2:1b:1b:30:6b:20:59:e2:55:49:4e:b4:d4:bd:5a: 71:fd:ee:8d:b4:ec:e5:ea:11:a8:61:2e:bb:9f:96:f7:4d:3f: 95:9a:f4:30:37:01:e6:db:87:b4:41:a5:56:94:06:2c:f2:d4: 03:fa:11:fb:a6:7b:c3:e0:32:70:b2:c7:30:45:83:6a:b5:56: d8:16:29:23:1d:ce:d6:f0:94:e8:9f:dd:d9:bb:ae:83:2d:bb: 80:18:d7:cf:a0:69:c0:b7:f8:8d:8f:dd:32:ab:ea:30:23:1e: 77:6a:ef:d2:d5:6c:79:9e:45:77:6e:ca:df:83:f5:79:3c:b2: d8:6c:6c:a6:3b:36:53:03:31:6e:63:c8:bc:de:60:78:56:97: e4:8a:b6:23:e3:0a:e9:0a:ef:e7:81:b4:7e:d9:63:2c:c3:6f: da:d6:a5:32:af:9d:81:fe:04:e4:77:9e:59:a3:a1:a9:78:29: b2:4e:d2:9c:29:73:e1:94:39:b5:cb:b0:95:34:ae:44:b5:c4: 43:8a:37:e1:12:c0:be:79:6d:64:6f:97:55:1b:30:ad:f9:d4: 5d:3b:93:6e:b6:e9:8c:ee:66:06:8c:ce:4c:6b:d4:8f:9c:e8: 8e:9d:02:8d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3M0Qy MTFENUIyMTBFM0IxOTYwNTREQjcxODkyRDhFMzhBNEUwOUVGMB4XDTI1MDYyNTAy NDAzMFoXDTI2MDYyNTAyMzUxMlowMzExMC8GA1UEAxMoMjUzRUY2MzdBNEJGMTE4 MDM3OUE2OTRDREEyQTdFMDIzQ0NDRTExMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANrf+y73RmcRgHXzmm7jatL0yFT0fVtHY5h6u91tXZdHFkmML/zI 8VEhFuvfpWZpBPlH0mqdDBklBow0NWN9UySMol3XIM8bR3X0AZjpyyH3ccybQo7A H5tSehWFS39Fw14b3ZGrEg6dVTjFKgixkEgZfQvvgNC5CzP7CZQ+dR9Rq+KnitdW ZOUaXNaymP786rw1O6MH+8rjBzjTpYoQylAsa3dUVg/vN1Hjp66nCe6j+9irJh7B ZzQW/tP5Y45p3GIykkDbf7YAxX76kga+JDRePkupvaK3RxLedhVbJq7efAnY7LWF 6in3IJWlznO0yZ5rjNthTquklRsVDgTAo4MCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQlPvY3pL8RgDeaaUzaKn4CPMzhEjAfBgNVHSMEGDAWgBRz0hHVshDjsZYFTbcY ktjjik4J7zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yOTI3 L2M5SVIxYklRNDdHV0JVMjNHSkxZNDRwT0NlOC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvYzlJUjFiSVE0N0dXQlUyM0dKTFk0NHBPQ2U4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjkyNy9KVDcyTjZTX0VZQTNt bWxNMmlwLUFqek00Ukkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ48SMA0GCSqGSIb3DQEBCwUAA4IBAQCMcVSWizOWFjy0pC5RI/ocrClSuXHC GxswayBZ4lVJTrTUvVpx/e6NtOzl6hGoYS67n5b3TT+VmvQwNwHm24e0QaVWlAYs 8tQD+hH7pnvD4DJwsscwRYNqtVbYFikjHc7W8JTon93Zu66DLbuAGNfPoGnAt/iN j90yq+owIx53au/S1Wx5nkV3bsrfg/V5PLLYbGymOzZTAzFuY8i83mB4VpfkirYj 4wrpCu/ngbR+2WMsw2/a1qUyr52B/gTkd55Zo6GpeCmyTtKcKXPhlDm1y7CVNK5E tcRDijfhEsC+eW1kb5dVGzCt+dRdO5NutumM7mYGjM5Ma9SPnOiOnQKN -----END CERTIFICATE-----Generated at Fri Jul 4 14:33:57 2025 by rpki-client