$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/_kYE-Wm-icz2m-DV9o6uFffwScY.roa File: _kYE-Wm-icz2m-DV9o6uFffwScY.roa (raw, json) Hash identifier: 3JVq1tbyJZD+ITwxj0sBAi2QyihiWD9Zvc6IaKmB+wY= Subject key identifier: FE:46:04:F9:69:BE:89:CC:F6:9B:E0:D5:F6:8E:AE:15:F7:F0:49:C6 Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708 Certificate serial: 1FEF Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/_kYE-Wm-icz2m-DV9o6uFffwScY.roa Signing time: Tue 10 Jun 2025 09:27:50 +0000 ROA not before: Tue 10 Jun 2025 09:27:50 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4811 IP address blocks: 118.145.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 07:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8175 (0x1fef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708 Validity Not Before: Jun 10 09:27:50 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=FE4604F969BE89CCF69BE0D5F68EAE15F7F049C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b2:0f:73:ba:0e:6a:e7:d3:cc:37:34:db:bb: 44:c5:5d:85:61:a4:b9:94:3c:ef:ec:d5:b0:b3:b3: 6e:93:b7:ae:9d:07:be:42:d5:08:19:b0:b9:4a:07: 61:a5:51:45:5b:ce:90:08:41:fe:c2:07:db:e2:69: a6:c6:86:c9:78:9f:d5:be:9f:41:f3:3c:07:b1:11: 9c:37:20:79:1f:a9:49:6d:51:75:bc:37:7d:3d:44: 21:97:11:18:80:bf:a4:00:c6:52:7e:d0:5f:1c:cb: 4f:96:92:93:17:7f:d0:89:63:55:93:ee:87:57:bd: fb:c5:fe:be:02:79:39:a8:c0:84:16:9f:5f:10:68: 21:5f:32:d2:50:75:a8:e9:9e:0e:c8:15:54:af:36: 90:d1:09:4a:5d:7c:8c:d7:59:02:1d:c7:70:ca:07: ae:e5:24:fa:57:e3:af:de:77:2f:d8:b2:21:69:58: 14:d1:ba:73:99:1c:fd:e6:4c:cb:e4:a4:88:c0:59: 1f:c6:1c:ad:f0:30:3c:22:0b:b5:5c:e5:00:3b:8f: c1:c5:f0:e7:65:cc:99:eb:50:20:32:ac:2a:de:03: f0:f3:69:ea:76:23:36:14:c6:81:2b:96:4e:c4:36: 87:05:2b:48:cc:95:bf:fc:af:3a:37:9b:f5:37:f8: 6f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:46:04:F9:69:BE:89:CC:F6:9B:E0:D5:F6:8E:AE:15:F7:F0:49:C6 X509v3 Authority Key Identifier: keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/_kYE-Wm-icz2m-DV9o6uFffwScY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.145.64.0/18 Signature Algorithm: sha256WithRSAEncryption 08:d1:44:a8:1c:f4:30:87:07:82:b8:9b:dd:32:6f:c2:4d:1d: fa:cd:77:93:01:63:6b:17:88:e4:d7:9d:a6:55:a7:f8:48:00: 66:cf:27:c5:c0:25:9c:f1:5a:bf:b2:a1:2a:d8:cf:91:87:39: 11:2e:67:1d:57:b1:d8:ff:c0:8e:56:3f:de:e4:6e:f8:65:ab: 26:0b:d7:ff:62:85:ee:a1:b7:43:f6:4e:5e:9a:69:80:49:bf: fa:9e:a7:b5:35:70:ce:a0:e5:a1:cd:96:c5:76:07:b7:0f:60: 52:29:b7:90:9f:f1:92:57:34:ea:d7:5b:b0:23:be:61:d8:17: 28:c4:cd:11:04:6f:0e:36:70:a7:9a:b3:f9:38:07:f3:a1:5f: 63:b4:52:64:3f:ff:bf:4a:e2:19:34:1d:50:3c:5d:0a:77:60: 53:be:9f:98:e9:ca:4f:04:ea:5e:2c:99:c4:6b:27:92:2d:42: 2e:dd:e7:51:2a:1f:a4:8a:1e:7c:7d:df:b8:99:e4:4d:10:b3: 38:b5:4f:2e:5a:88:fd:7f:f6:ca:90:3a:ea:94:92:c7:87:f1: 67:95:ba:98:b1:e7:a6:f9:3b:f2:0d:dc:92:61:6c:3a:fa:e9: c2:c1:ff:2b:c7:ef:a5:de:68:74:c7:50:b8:e8:97:c9:37:79: 97:58:05:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICH+8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4 QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yNTA2MTAw OTI3NTBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEZFNDYwNEY5NjlCRTg5 Q0NGNjlCRTBENUY2OEVBRTE1RjdGMDQ5QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCWsg9zug5q59PMNzTbu0TFXYVhpLmUPO/s1bCzs26Tt66dB75C 1QgZsLlKB2GlUUVbzpAIQf7CB9viaabGhsl4n9W+n0HzPAexEZw3IHkfqUltUXW8 N309RCGXERiAv6QAxlJ+0F8cy0+WkpMXf9CJY1WT7odXvfvF/r4CeTmowIQWn18Q aCFfMtJQdajpng7IFVSvNpDRCUpdfIzXWQIdx3DKB67lJPpX46/edy/YsiFpWBTR unOZHP3mTMvkpIjAWR/GHK3wMDwiC7Vc5QA7j8HF8OdlzJnrUCAyrCreA/Dzaep2 IzYUxoErlk7ENocFK0jMlb/8rzo3m/U3+G8tAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU/kYE+Wm+icz2m+DV9o6uFffwScYwHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvX2tZRS1XbS1pY3oy bS1EVjlvNnVGZmZ3U2NZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBnaRQDANBgkqhkiG9w0BAQsFAAOCAQEACNFEqBz0MIcHgrib3TJvwk0d+s13 kwFjaxeI5NedplWn+EgAZs8nxcAlnPFav7KhKtjPkYc5ES5nHVex2P/AjlY/3uRu +GWrJgvX/2KF7qG3Q/ZOXpppgEm/+p6ntTVwzqDloc2WxXYHtw9gUim3kJ/xklc0 6tdbsCO+YdgXKMTNEQRvDjZwp5qz+TgH86FfY7RSZD//v0riGTQdUDxdCndgU76f mOnKTwTqXiyZxGsnki1CLt3nUSofpIoefH3fuJnkTRCzOLVPLlqI/X/2ypA66pSS x4fxZ5W6mLHnpvk78g3ckmFsOvrpwsH/K8fvpd5odMdQuOiXyTd5l1gF8Q== -----END CERTIFICATE-----Generated at Sat Jul 5 03:41:02 2025 by rpki-client