$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3026/SE4HIZF08YN-nIMI1S-WDjDMC5U.roa File: SE4HIZF08YN-nIMI1S-WDjDMC5U.roa (raw, json) Hash identifier: CCGc3FYn/DVWtvbFeoc4H+UPcrrTQKAj5hNvOzi5RKg= Subject key identifier: 48:4E:07:21:91:74:F1:83:7E:9C:83:08:D5:2F:96:0E:30:CC:0B:95 Certificate issuer: /CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Certificate serial: 06F5 Authority key identifier: 0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/SE4HIZF08YN-nIMI1S-WDjDMC5U.roa Signing time: Fri 22 Aug 2025 15:26:28 +0000 ROA not before: Fri 22 Aug 2025 15:26:28 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55991 IP address blocks: 103.43.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 02:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Validity Not Before: Aug 22 15:26:28 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=484E07219174F1837E9C8308D52F960E30CC0B95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d2:f8:4f:87:58:60:3d:67:b9:43:7d:44:89: 50:23:c8:21:f3:a4:4d:7a:3a:4a:3e:5d:be:b2:b9: a7:04:4a:87:c3:eb:59:f0:46:95:9e:88:b2:8c:54: c9:41:7b:49:82:23:d8:33:9b:d3:09:5a:41:ac:60: 0d:7d:6a:c6:ff:51:20:55:27:80:9a:89:94:1b:ee: 0b:06:64:df:49:4d:07:47:fa:f6:05:6f:7d:c2:1a: ab:bc:02:23:12:6e:79:5b:0c:d8:5d:7a:fb:14:5d: 50:5c:05:c4:3d:99:ea:87:fb:20:71:99:8a:9f:b7: fe:81:1a:89:7b:91:83:93:04:6a:95:fc:f8:cb:94: e3:b0:1c:35:3b:ac:c7:0c:0b:a7:f8:94:bb:54:5a: fe:23:b0:38:59:af:d7:0a:d0:55:dd:a1:19:6c:7e: 66:1f:f8:c5:a2:d7:13:6e:7c:d3:e9:81:af:f0:aa: 7a:33:d2:06:cd:91:64:62:de:d0:e1:7e:b3:75:18: 71:f1:a0:8f:30:1a:2b:23:99:03:8a:fc:5c:2f:fa: 0a:d9:38:83:17:b0:70:da:37:61:c0:e5:b2:3e:77: 6a:1d:be:09:73:13:99:09:6e:99:81:fe:07:6b:e8: 0e:e2:e4:0a:23:44:b1:1b:bb:5b:06:dd:0f:61:c3: ec:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:4E:07:21:91:74:F1:83:7E:9C:83:08:D5:2F:96:0E:30:CC:0B:95 X509v3 Authority Key Identifier: keyid:0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/SE4HIZF08YN-nIMI1S-WDjDMC5U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.133.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:e8:f0:15:f4:5f:3d:65:da:c0:a3:59:47:1f:b6:6e:21:d0: aa:0a:33:5f:1d:0b:2f:5e:f8:13:1f:f7:0c:c5:10:a2:dc:f3: bd:7e:79:6d:6a:24:ca:ad:a4:7d:00:b7:92:c8:17:df:0f:cf: 14:31:32:cf:09:ca:59:1f:35:64:e2:2d:7d:36:52:ed:2c:0c: a8:20:89:91:b7:90:da:53:5b:5f:aa:3e:67:60:88:a9:b8:b8: a2:63:4a:18:38:fd:39:a7:ae:6d:ec:12:a3:21:d7:bb:3a:e3: 5a:c8:21:67:a6:08:73:95:00:16:43:85:5d:f0:d9:ce:30:84: bb:2a:ec:9e:ad:95:18:76:ec:88:44:0c:4b:8e:08:6f:bc:82: 36:3e:b1:ad:de:3f:34:9b:78:b9:a9:06:e6:db:38:30:18:ea: 6e:1a:29:7a:3c:26:c6:c9:7b:a3:7a:6d:e2:9d:c4:0e:1f:8f: 89:28:dd:32:fd:54:65:a7:ed:5e:af:cf:3f:1b:d6:6e:0a:df: 41:2a:48:5c:61:02:5a:87:fd:ba:28:a7:0b:e4:44:68:56:44: f1:64:b1:65:25:8a:aa:5a:54:dc:bd:28:25:a2:0c:86:e6:7f: 0a:c4:25:93:b4:3b:20:fb:38:6c:97:fd:d1:64:56:81:ea:06: 4c:b0:c7:e6 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENC MDRDQzVBNkIzOUIxNDhERDcxMEVGNUM2RTNGMkQ5MzgwQjQ1NTAeFw0yNTA4MjIx NTI2MjhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ4NEUwNzIxOTE3NEYx ODM3RTlDODMwOEQ1MkY5NjBFMzBDQzBCOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC10vhPh1hgPWe5Q31EiVAjyCHzpE16Oko+Xb6yuacESofD61nw RpWeiLKMVMlBe0mCI9gzm9MJWkGsYA19asb/USBVJ4CaiZQb7gsGZN9JTQdH+vYF b33CGqu8AiMSbnlbDNhdevsUXVBcBcQ9meqH+yBxmYqft/6BGol7kYOTBGqV/PjL lOOwHDU7rMcMC6f4lLtUWv4jsDhZr9cK0FXdoRlsfmYf+MWi1xNufNPpga/wqnoz 0gbNkWRi3tDhfrN1GHHxoI8wGisjmQOK/Fwv+grZOIMXsHDaN2HA5bI+d2odvglz E5kJbpmB/gdr6A7i5AojRLEbu1sG3Q9hw+x1AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUSE4HIZF08YN+nIMI1S+WDjDMC5UwHwYDVR0jBBgwFoAUDLBMxaazmxSN1xDv XG4/LZOAtFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy Ni9ETEJNeGFhem14U04xeER2WEc0X0xaT0F0RlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RMQk14YWF6bXhTTjF4RHZYRzRfTFpPQXRGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjYvU0U0SElaRjA4WU4t bklNSTFTLVdEakRNQzVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcrhTANBgkqhkiG9w0BAQsFAAOCAQEAfejwFfRfPWXawKNZRx+2biHQqgoz Xx0LL174Ex/3DMUQotzzvX55bWokyq2kfQC3ksgX3w/PFDEyzwnKWR81ZOItfTZS 7SwMqCCJkbeQ2lNbX6o+Z2CIqbi4omNKGDj9OaeubewSoyHXuzrjWsghZ6YIc5UA FkOFXfDZzjCEuyrsnq2VGHbsiEQMS44Ib7yCNj6xrd4/NJt4uakG5ts4MBjqbhop ejwmxsl7o3pt4p3EDh+PiSjdMv1UZaftXq/PPxvWbgrfQSpIXGECWof9uiinC+RE aFZE8WSxZSWKqlpU3L0oJaIMhuZ/CsQlk7Q7IPs4bJf90WRWgeoGTLDH5g== -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:31 2025 by rpki-client