$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/SC-gmzDveFyGg_dseE93y3saJQw.roa File: SC-gmzDveFyGg_dseE93y3saJQw.roa (raw, json) Hash identifier: jDsxcPqFfSPxo4MFhwa6vmrKrCQNmT4UYxR2jsxxLZc= Subject key identifier: 48:2F:A0:9B:30:EF:78:5C:86:83:F7:6C:78:4F:77:CB:7B:1A:25:0C Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 1211 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/SC-gmzDveFyGg_dseE93y3saJQw.roa Signing time: Mon 05 May 2025 12:06:02 +0000 ROA not before: Mon 05 May 2025 12:06:02 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4625 (0x1211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: May 5 12:06:02 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=482FA09B30EF785C8683F76C784F77CB7B1A250C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e9:06:aa:51:c7:eb:90:3e:b8:aa:de:0d:ae: b1:8e:a3:fa:ae:00:be:7d:bf:ed:21:36:2a:cc:f4: 1c:74:18:92:21:6f:a4:96:ea:6d:72:e9:f6:e8:77: 9e:6d:d4:22:5f:7f:0b:48:d6:5a:31:a0:08:f7:f3: 6a:b7:74:cd:be:36:92:a4:e1:ad:cb:f9:ea:94:c3: c0:0c:01:f3:27:72:0b:9a:c4:a1:71:c8:07:f9:7d: 66:1c:3c:36:19:27:d4:55:19:b2:06:d6:f7:e2:80: 45:89:16:ff:89:97:60:2a:67:79:e8:d2:c9:f4:df: f1:27:e0:83:d4:fb:fc:a8:09:cf:60:52:ca:75:a8: bf:b2:78:d6:14:bc:f7:66:6b:d8:50:68:28:5b:d1: a0:c6:e1:80:df:44:ed:17:68:a8:48:d7:1f:fa:39: 21:8d:58:5a:ea:33:a6:11:3e:0d:bd:77:18:1c:16: b3:12:d4:21:97:f6:5b:6e:d3:7e:e4:35:7f:6c:5e: 9b:ca:83:87:42:ed:d1:4e:33:ae:3b:c3:d6:b6:b1: 2c:35:0e:10:3b:ee:0e:71:1d:04:c2:8d:bd:3e:3d: a0:c3:a9:2f:7e:10:8b:41:c0:4d:59:f9:1c:b6:09: 79:20:fc:cb:ca:e8:ce:9d:7f:e0:3c:51:01:cf:af: 02:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:A0:9B:30:EF:78:5C:86:83:F7:6C:78:4F:77:CB:7B:1A:25:0C X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/SC-gmzDveFyGg_dseE93y3saJQw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.100.0/22 Signature Algorithm: sha256WithRSAEncryption c0:27:fe:ba:52:e0:c7:a6:7b:2a:ca:8b:15:5f:06:4c:cc:b7: 3b:ff:f8:2a:95:e4:e0:5a:a6:d1:65:51:09:bb:ee:95:81:d0: f5:3b:0c:3f:77:2d:f7:16:c2:37:4b:25:4e:b0:fe:47:ed:0a: 88:17:e5:ed:b9:bd:f5:26:6a:ae:96:fd:7b:de:86:30:8e:e2: 34:fa:2e:ad:f6:02:a2:c7:99:fa:ed:f7:db:15:c0:d1:bf:4c: bc:1d:06:08:ad:7f:9f:fa:1b:58:b7:e1:ba:ed:02:b0:09:87: a5:87:81:df:41:0e:36:d9:4c:4f:57:ff:0c:1d:40:fd:30:f8: 3d:2c:2b:ec:7f:58:50:78:63:6f:32:d9:ff:4a:3c:df:7a:63: e8:f1:6d:ab:54:65:a9:2a:38:d2:96:52:97:a8:43:fd:9c:c0: c6:76:02:77:57:52:44:b7:86:83:73:9f:c3:41:57:44:b3:c3: de:2a:fa:d1:76:e8:b7:91:34:89:26:78:dd:b8:d2:cf:3c:02: 05:99:e3:cd:10:c0:e2:07:34:38:65:6c:4e:b0:b6:56:c6:f0: 6a:2c:e8:74:4d:87:af:09:85:39:69:7c:bb:da:e0:fa:bb:64: 7e:13:d8:e1:8b:d3:3c:bf:f1:29:1c:56:d5:73:33:7b:fe:99: 0c:81:a1:c9 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA1MDUx MjA2MDJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ4MkZBMDlCMzBFRjc4 NUM4NjgzRjc2Qzc4NEY3N0NCN0IxQTI1MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCV6QaqUcfrkD64qt4NrrGOo/quAL59v+0hNirM9Bx0GJIhb6SW 6m1y6fbod55t1CJffwtI1loxoAj382q3dM2+NpKk4a3L+eqUw8AMAfMncguaxKFx yAf5fWYcPDYZJ9RVGbIG1vfigEWJFv+Jl2AqZ3no0sn03/En4IPU+/yoCc9gUsp1 qL+yeNYUvPdma9hQaChb0aDG4YDfRO0XaKhI1x/6OSGNWFrqM6YRPg29dxgcFrMS 1CGX9ltu037kNX9sXpvKg4dC7dFOM647w9a2sSw1DhA77g5xHQTCjb0+PaDDqS9+ EItBwE1Z+Ry2CXkg/MvK6M6df+A8UQHPrwIPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSC+gmzDveFyGg/dseE93y3saJQwwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL1NDLWdtekR2ZUZ5R2df ZHNlRTkzeTNzYUpRdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6GQwDQYJKoZIhvcNAQELBQADggEBAMAn/rpS4MemeyrKixVfBkzMtzv/+CqV 5OBaptFlUQm77pWB0PU7DD93LfcWwjdLJU6w/kftCogX5e25vfUmaq6W/XvehjCO 4jT6Lq32AqLHmfrt99sVwNG/TLwdBgitf5/6G1i34brtArAJh6WHgd9BDjbZTE9X /wwdQP0w+D0sK+x/WFB4Y28y2f9KPN96Y+jxbatUZakqONKWUpeoQ/2cwMZ2AndX UkS3hoNzn8NBV0Szw94q+tF26LeRNIkmeN240s88AgWZ480QwOIHNDhlbE6wtlbG 8Gos6HRNh68JhTlpfLva4Pq7ZH4T2OGL0zy/8SkcVtVzM3v+mQyBock= -----END CERTIFICATE-----Generated at Sat May 17 19:23:54 2025 by rpki-client