$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/zbUWB4Rv29LeCADnrWjyBAuyMKg.roa File: zbUWB4Rv29LeCADnrWjyBAuyMKg.roa (raw, json) Hash identifier: HqlhMW18Y/foFGfCLXogoll5IARHJSJ+0+BwVuJR1gM= Subject key identifier: CD:B5:16:07:84:6F:DB:D2:DE:08:00:E7:AD:68:F2:04:0B:B2:30:A8 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 07FE Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/zbUWB4Rv29LeCADnrWjyBAuyMKg.roa Signing time: Fri 23 May 2025 07:07:20 +0000 ROA not before: Fri 23 May 2025 07:07:20 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 9808 IP address blocks: 223.160.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 17:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2046 (0x7fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:07:20 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=CDB51607846FDBD2DE0800E7AD68F2040BB230A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8e:2c:ce:8b:98:2e:d0:a3:84:5f:cd:21:86: da:a4:0e:e7:c1:90:cc:52:4e:84:97:db:42:ad:e2: 84:ce:01:9a:5c:67:aa:53:72:6c:27:05:d2:dd:94: 38:60:ca:1e:db:7b:98:a6:0c:3f:f5:a3:c9:08:cd: 0b:d9:49:e7:a1:a1:11:36:b6:ae:19:55:7b:72:76: 5f:94:50:14:74:ec:31:ab:77:bf:21:39:2a:0a:cf: 66:86:34:03:10:4a:4e:8f:4d:9d:f2:4d:f7:d7:5b: fc:b1:e8:ed:bf:49:04:db:a5:58:c4:64:0e:a0:ea: b8:3d:66:8f:93:e5:f4:6e:27:22:56:cf:bb:10:5e: a7:5d:9e:40:d8:17:07:02:67:ce:8f:c0:10:f5:f3: 8f:27:04:0c:5a:ed:30:0b:d3:7a:84:2c:41:5f:fe: cf:d5:b8:e4:0d:b6:e9:5a:4d:02:6d:16:c1:0a:83: 95:e6:4c:50:92:ea:89:dd:10:5a:6d:90:2c:c4:f8: ce:b2:92:8c:bf:0f:dc:8e:27:14:08:21:de:ca:29: 15:11:43:c6:c9:ce:62:cc:65:3b:c7:5a:aa:42:23: 6d:d0:86:26:b2:b8:37:73:a6:b4:85:34:40:6d:ce: 27:78:2a:b0:fb:3d:61:94:c0:8c:c1:77:70:aa:88: 85:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B5:16:07:84:6F:DB:D2:DE:08:00:E7:AD:68:F2:04:0B:B2:30:A8 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/zbUWB4Rv29LeCADnrWjyBAuyMKg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.160.116.0/22 Signature Algorithm: sha256WithRSAEncryption 01:80:98:83:c4:c7:cf:ab:af:ff:2d:5d:48:86:d9:d2:ca:38: 1b:41:88:35:90:7b:ea:ef:76:6d:89:48:55:62:81:ba:77:5b: e7:2a:e8:18:64:5a:a9:fa:ff:89:67:75:dc:77:2a:fc:04:60: 3e:e9:d7:3d:5c:1b:2d:92:b8:31:57:7b:07:59:f2:39:bf:7b: 88:67:5d:48:91:e0:8a:8c:f3:bc:8f:04:e8:c8:6c:b3:af:6a: b2:55:07:50:c0:41:f4:c5:98:f2:df:f1:58:0d:bb:06:31:c7: 46:5c:71:d6:42:0e:64:60:8b:37:5c:19:86:c4:50:56:ec:ee: bd:4e:11:d9:4b:fc:ce:e1:8d:08:fc:1f:ec:ca:99:61:73:cd: 23:59:16:d1:f3:11:42:3c:10:03:cf:b6:c4:98:8a:c4:ce:a2: 7b:84:fa:77:f4:79:dd:b9:96:ba:54:9c:6b:3b:9d:c2:32:e0: d9:d7:2d:20:6a:e7:f7:e5:92:ea:f4:08:46:47:34:e5:07:fa: 90:82:43:f0:a6:4b:18:d0:ad:22:b2:c2:0f:f3:a7:5a:1d:30: d0:58:4b:06:15:33:86:f0:80:c2:fd:0f:b3:22:9c:a9:f4:16: 42:20:62:12:d0:00:9d:a5:c7:49:56:2c:c0:f3:9f:ce:c6:a0: 82:06:da:ea -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICB/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzA3MjBaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKENEQjUxNjA3ODQ2RkRC RDJERTA4MDBFN0FENjhGMjA0MEJCMjMwQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpjizOi5gu0KOEX80hhtqkDufBkMxSToSX20Kt4oTOAZpcZ6pT cmwnBdLdlDhgyh7be5imDD/1o8kIzQvZSeehoRE2tq4ZVXtydl+UUBR07DGrd78h OSoKz2aGNAMQSk6PTZ3yTffXW/yx6O2/SQTbpVjEZA6g6rg9Zo+T5fRuJyJWz7sQ XqddnkDYFwcCZ86PwBD1848nBAxa7TAL03qELEFf/s/VuOQNtulaTQJtFsEKg5Xm TFCS6ondEFptkCzE+M6ykoy/D9yOJxQIId7KKRURQ8bJzmLMZTvHWqpCI23Qhiay uDdzprSFNEBtzid4KrD7PWGUwIzBd3CqiIVjAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUzbUWB4Rv29LeCADnrWjyBAuyMKgwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy96YlVXQjRSdjI5TGVDQURu cldqeUJBdXlNS2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC 36B0MA0GCSqGSIb3DQEBCwUAA4IBAQABgJiDxMfPq6//LV1IhtnSyjgbQYg1kHvq 73ZtiUhVYoG6d1vnKugYZFqp+v+JZ3Xcdyr8BGA+6dc9XBstkrgxV3sHWfI5v3uI Z11IkeCKjPO8jwToyGyzr2qyVQdQwEH0xZjy3/FYDbsGMcdGXHHWQg5kYIs3XBmG xFBW7O69ThHZS/zO4Y0I/B/syplhc80jWRbR8xFCPBADz7bEmIrEzqJ7hPp39Hnd uZa6VJxrO53CMuDZ1y0gauf35ZLq9AhGRzTlB/qQgkPwpksY0K0issIP86daHTDQ WEsGFTOG8IDC/Q+zIpyp9BZCIGIS0ACdpcdJVizA85/OxqCCBtrq -----END CERTIFICATE-----Generated at Fri Jul 4 16:52:54 2025 by rpki-client