$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/G08QJspKe_7xe-_GYODZm_EvX_4.roa File: G08QJspKe_7xe-_GYODZm_EvX_4.roa (raw, json) Hash identifier: 5/6Ycpdn++m9vnyx1oI/gJLxsVhaJWVVvH+Ubli0qW4= Subject key identifier: 1B:4F:10:26:CA:4A:7B:FE:F1:7B:EF:C6:60:E0:D9:9B:F1:2F:5F:FE Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 1225 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/G08QJspKe_7xe-_GYODZm_EvX_4.roa Signing time: Tue 06 May 2025 08:43:51 +0000 ROA not before: Tue 06 May 2025 08:43:51 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 22:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4645 (0x1225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: May 6 08:43:51 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=1B4F1026CA4A7BFEF17BEFC660E0D99BF12F5FFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:84:e2:64:e7:99:84:3d:63:44:17:8b:5b:a9: 84:e2:3f:82:59:65:db:5e:00:4c:78:79:5e:c6:b5: 28:62:a0:b8:da:d0:6c:fe:ba:34:94:b3:6b:dc:db: 3b:32:2a:dc:6b:9a:26:81:fd:1a:70:75:42:2c:7a: b9:f5:66:c2:1a:0e:25:be:a2:5e:0e:46:e7:7e:d8: 97:eb:8d:9d:ac:ea:43:32:1b:7f:18:ef:4e:e9:6b: ee:6c:9b:11:e7:02:7f:47:52:c0:e4:19:ff:16:94: 65:69:f0:5a:fd:30:ea:95:57:05:13:7d:55:26:12: ed:17:2b:ec:be:51:96:b7:31:2f:f1:cd:ff:b6:5a: e2:c6:f1:76:c2:89:bf:22:c0:8a:c1:0f:e7:74:31: 05:02:08:ba:28:4d:60:d1:a5:35:77:35:1d:35:2d: 09:c7:2d:3b:40:b7:76:11:fd:89:4c:6b:69:82:a9: 9b:87:44:7c:b6:ac:fd:44:26:33:08:b1:8e:f9:87: 07:51:57:05:60:96:b4:cd:1a:ed:96:30:3c:05:d3: 93:e5:e4:08:fe:53:66:3d:6a:df:40:65:3f:2a:60: 05:a7:5a:41:77:de:59:a6:5e:93:b6:de:26:29:29: c7:cc:8c:43:6f:67:59:1c:94:a7:4e:a3:d7:90:53: 65:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:4F:10:26:CA:4A:7B:FE:F1:7B:EF:C6:60:E0:D9:9B:F1:2F:5F:FE X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/G08QJspKe_7xe-_GYODZm_EvX_4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.52.0/22 Signature Algorithm: sha256WithRSAEncryption bd:7b:0b:36:35:78:d6:cf:97:ed:d2:90:26:95:20:2d:83:dd: 21:c2:03:03:b9:80:13:35:91:1b:c5:5f:d5:15:b6:b2:67:ee: ca:d5:40:13:f0:f1:38:78:8b:ca:79:db:2a:2b:6d:af:ef:18: 74:88:e0:f8:41:9b:33:b2:f4:2b:0c:ed:29:f0:ef:d1:52:3f: 8b:0a:f6:2c:d5:d3:99:06:01:02:79:a5:88:85:f9:6d:f9:80: 54:8b:ed:d5:71:cc:2c:d8:48:6b:a9:f6:66:ca:e2:4d:44:8e: 21:23:3f:95:9b:d3:e9:e9:6a:58:5a:47:08:78:9d:2f:ca:7f: 24:92:6b:47:91:77:9d:8c:2b:7d:ad:62:8c:d2:f3:2b:2c:a9: 9d:85:86:8d:82:61:2f:e4:7a:80:49:b3:4e:80:54:d6:c3:11: f6:3f:3c:08:fb:fe:03:d7:d3:76:2d:cf:d9:e5:69:b8:48:fb: b1:d9:7b:85:b7:3b:02:5e:c4:59:d7:cc:52:bc:55:bb:83:79: 95:8c:1c:ed:21:be:05:45:bd:3c:0f:6a:bc:84:ab:b2:38:03: 52:89:84:8f:1b:23:0c:1d:ab:21:56:2f:09:a5:37:82:f8:a7: 2c:79:c7:ac:c4:d8:0e:e7:df:52:fd:7f:4c:a7:11:d0:c7:ce: 96:26:9b:b0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA1MDYw ODQzNTFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDFCNEYxMDI2Q0E0QTdC RkVGMTdCRUZDNjYwRTBEOTlCRjEyRjVGRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0hOJk55mEPWNEF4tbqYTiP4JZZdteAEx4eV7GtShioLja0Gz+ ujSUs2vc2zsyKtxrmiaB/RpwdUIsern1ZsIaDiW+ol4ORud+2JfrjZ2s6kMyG38Y 707pa+5smxHnAn9HUsDkGf8WlGVp8Fr9MOqVVwUTfVUmEu0XK+y+UZa3MS/xzf+2 WuLG8XbCib8iwIrBD+d0MQUCCLooTWDRpTV3NR01LQnHLTtAt3YR/YlMa2mCqZuH RHy2rP1EJjMIsY75hwdRVwVglrTNGu2WMDwF05Pl5Aj+U2Y9at9AZT8qYAWnWkF3 3lmmXpO23iYpKcfMjENvZ1kclKdOo9eQU2WLAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUG08QJspKe/7xe+/GYODZm/EvX/4wHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL0cwOFFKc3BLZV83eGUt X0dZT0RabV9FdlhfNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6DQwDQYJKoZIhvcNAQELBQADggEBAL17CzY1eNbPl+3SkCaVIC2D3SHCAwO5 gBM1kRvFX9UVtrJn7srVQBPw8Th4i8p52yorba/vGHSI4PhBmzOy9CsM7Snw79FS P4sK9izV05kGAQJ5pYiF+W35gFSL7dVxzCzYSGup9mbK4k1EjiEjP5Wb0+npalha Rwh4nS/KfySSa0eRd52MK32tYozS8yssqZ2Fho2CYS/keoBJs06AVNbDEfY/PAj7 /gPX03Ytz9nlabhI+7HZe4W3OwJexFnXzFK8VbuDeZWMHO0hvgVFvTwParyEq7I4 A1KJhI8bIwwdqyFWLwmlN4L4pyx5x6zE2A7n31L9f0ynEdDHzpYmm7A= -----END CERTIFICATE-----Generated at Sun May 18 20:16:02 2025 by rpki-client