$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3379/bf80vGJx1kOSgi2RVns6J-gthuM.roa File: bf80vGJx1kOSgi2RVns6J-gthuM.roa (raw, json) Hash identifier: fYtyeR4OpchTaBP5z19Hqq6dvcexMPu8HpmrKS3XhdQ= Subject key identifier: 6D:FF:34:BC:62:71:D6:43:92:82:2D:91:56:7B:3A:27:E8:2D:86:E3 Certificate issuer: /CN=2CB237ABE1A66A755DA9545795F1DD229F0E0311 Certificate serial: 04 Authority key identifier: 2C:B2:37:AB:E1:A6:6A:75:5D:A9:54:57:95:F1:DD:22:9F:0E:03:11 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/bf80vGJx1kOSgi2RVns6J-gthuM.roa Signing time: Wed 25 Jun 2025 13:51:26 +0000 ROA not before: Wed 25 Jun 2025 13:51:26 +0000 ROA not after: Thu 25 Jun 2026 05:55:52 +0000 asID: 139187 IP address blocks: 165.101.71.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 05:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB237ABE1A66A755DA9545795F1DD229F0E0311 Validity Not Before: Jun 25 13:51:26 2025 GMT Not After : Jun 25 05:55:52 2026 GMT Subject: CN=6DFF34BC6271D64392822D91567B3A27E82D86E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:44:27:f2:ef:cf:97:1e:fa:9a:e4:bc:8f:50: 1c:ff:fa:ad:6b:23:0c:58:3c:78:2f:fa:2f:f8:80: a9:d3:7d:0e:6b:69:ec:f0:3e:39:01:f0:fa:14:4e: fd:b0:d9:5b:63:91:48:5a:11:ac:bf:44:99:ef:a1: dc:38:9a:de:92:23:92:04:75:2a:57:92:82:af:cb: 50:cf:25:a3:29:a8:7d:f1:f7:45:53:f1:02:a1:61: f1:33:e1:72:f7:2e:21:b0:97:f6:0c:f2:db:7b:19: 3d:f2:2b:fa:66:52:00:0e:27:9e:26:05:aa:8e:58: 36:fd:c5:f1:b8:56:88:d5:da:30:b7:56:7b:3c:3f: 5f:f2:7c:74:e5:2f:53:89:9d:3f:d6:59:39:17:33: ce:f1:cb:d2:e2:5b:8e:bb:7e:ef:8c:bb:47:6f:59: 58:ac:9e:0d:77:43:5a:64:bf:ad:c9:a1:c3:1e:94: f2:b2:f7:37:61:58:05:f8:d6:aa:28:fc:d8:fd:09: cc:ce:ef:54:f2:dc:79:f4:b0:0b:eb:a7:fe:f2:8a: e0:b4:2c:dc:48:96:cc:e0:e3:c1:0a:48:b2:9c:29: 92:87:85:8a:cd:cd:e6:34:9f:d7:20:62:8c:04:92: de:0d:b5:65:5a:36:68:16:52:d4:bd:b4:35:44:89: 51:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FF:34:BC:62:71:D6:43:92:82:2D:91:56:7B:3A:27:E8:2D:86:E3 X509v3 Authority Key Identifier: keyid:2C:B2:37:AB:E1:A6:6A:75:5D:A9:54:57:95:F1:DD:22:9F:0E:03:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/bf80vGJx1kOSgi2RVns6J-gthuM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.71.0/24 Signature Algorithm: sha256WithRSAEncryption 39:24:ac:6b:4e:46:94:0f:6e:4e:86:8b:cb:b2:ec:e5:02:a7: b7:2e:e3:1b:25:96:32:ec:05:58:65:46:be:dc:9a:6b:29:18: 1b:0e:c1:f9:a2:7f:6a:41:1a:f0:00:a3:37:a5:a8:50:45:73: 9a:25:32:bf:05:99:57:fc:08:d4:c3:f3:0a:73:52:34:58:36: 13:f5:46:38:b2:14:89:73:96:b3:1f:64:98:88:8d:f3:2f:63: 3c:62:bf:38:4c:ce:75:25:f0:2f:3c:0c:56:74:c9:c8:e7:0a: f6:26:2a:b9:f7:a4:cb:2f:17:7e:5d:f2:d4:b1:eb:cb:85:65: 5e:6b:9e:b1:8a:4d:51:92:bf:cc:37:5b:ee:2f:b0:07:93:03: 4c:c8:ec:6d:ae:f0:1e:f4:04:cd:26:ba:d3:b7:fd:4e:7d:95: 2b:80:54:fb:1b:8c:79:d0:46:2b:7d:a9:a0:7f:11:77:55:af: 79:d4:61:6c:5b:81:ea:39:b9:7c:32:8e:6b:80:56:64:ae:f6: 67:4a:f9:b6:5f:a2:93:09:5d:fb:bd:aa:ab:5b:7a:68:c9:f4: 7f:1e:0b:b5:23:d7:12:6d:b9:0d:b0:22:1e:57:03:49:db:82: a6:29:bc:85:40:d8:0e:86:03:76:4d:23:ab:8a:d9:aa:0f:bb: ea:1c:b1:40 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyQ0Iy MzdBQkUxQTY2QTc1NURBOTU0NTc5NUYxREQyMjlGMEUwMzExMB4XDTI1MDYyNTEz NTEyNloXDTI2MDYyNTA1NTU1MlowMzExMC8GA1UEAxMoNkRGRjM0QkM2MjcxRDY0 MzkyODIyRDkxNTY3QjNBMjdFODJEODZFMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOVEJ/Lvz5ce+prkvI9QHP/6rWsjDFg8eC/6L/iAqdN9Dmtp7PA+ OQHw+hRO/bDZW2ORSFoRrL9Eme+h3Dia3pIjkgR1KleSgq/LUM8loymoffH3RVPx AqFh8TPhcvcuIbCX9gzy23sZPfIr+mZSAA4nniYFqo5YNv3F8bhWiNXaMLdWezw/ X/J8dOUvU4mdP9ZZORczzvHL0uJbjrt+74y7R29ZWKyeDXdDWmS/rcmhwx6U8rL3 N2FYBfjWqij82P0JzM7vVPLcefSwC+un/vKK4LQs3EiWzODjwQpIspwpkoeFis3N 5jSf1yBijASS3g21ZVo2aBZS1L20NUSJUXUCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRt/zS8YnHWQ5KCLZFWezon6C2G4zAfBgNVHSMEGDAWgBQssjer4aZqdV2pVFeV 8d0inw4DETAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMzc5 L0xMSTNxLUdtYW5WZHFWUlhsZkhkSXA4T0F4RS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTExJM3EtR21hblZkcVZSWGxmSGRJcDhPQXhFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM3OS9iZjgwdkdKeDFrT1Nn aTJSVm5zNkotZ3RodU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQApWVHMA0GCSqGSIb3DQEBCwUAA4IBAQA5JKxrTkaUD25OhovLsuzlAqe3LuMb JZYy7AVYZUa+3JprKRgbDsH5on9qQRrwAKM3pahQRXOaJTK/BZlX/AjUw/MKc1I0 WDYT9UY4shSJc5azH2SYiI3zL2M8Yr84TM51JfAvPAxWdMnI5wr2Jiq596TLLxd+ XfLUsevLhWVea56xik1Rkr/MN1vuL7AHkwNMyOxtrvAe9ATNJrrTt/1OfZUrgFT7 G4x50EYrfamgfxF3Va951GFsW4HqObl8Mo5rgFZkrvZnSvm2X6KTCV37vaqrW3po yfR/Hgu1I9cSbbkNsCIeVwNJ24KmKbyFQNgOhgN2TSOritmqD7vqHLFA -----END CERTIFICATE-----Generated at Sat Jul 5 05:11:37 2025 by rpki-client