$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/d1VbAHjcKP5VVZ1AkRRIquYyZM8.roa File: d1VbAHjcKP5VVZ1AkRRIquYyZM8.roa (raw, json) Hash identifier: /6UOAIJo3SFucPVLmkHlWMCazynBW/o/e0RRayZhPcs= Subject key identifier: 77:55:5B:00:78:DC:28:FE:55:55:9D:40:91:14:48:AA:E6:32:64:CF Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 120F Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/d1VbAHjcKP5VVZ1AkRRIquYyZM8.roa Signing time: Mon 05 May 2025 12:05:48 +0000 ROA not before: Mon 05 May 2025 12:05:48 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 06:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4623 (0x120f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: May 5 12:05:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=77555B0078DC28FE55559D40911448AAE63264CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:aa:58:13:37:c1:27:55:fc:0c:fa:f3:ba:5d: 3d:35:ca:3f:c9:75:3f:15:eb:a7:69:f5:13:ed:c7: ad:80:ae:a5:e6:ef:13:cf:cc:d5:c7:74:60:81:16: a3:65:73:ad:8f:46:e8:dd:a1:c8:61:3b:75:b1:da: 0a:6f:3b:ba:ef:3f:f2:49:40:5a:d0:31:1c:3c:63: 50:ee:b3:b3:37:23:5d:d3:e2:e8:e9:52:75:87:5f: 7d:c8:6e:d1:2c:24:aa:66:d8:16:62:47:1a:9f:31: 74:d5:89:7f:4d:fa:c2:cc:81:f4:75:62:a4:17:4b: ac:cc:6a:9f:6c:9a:82:06:a8:4f:ed:20:3e:70:4f: cb:0d:35:5a:5d:47:aa:73:fe:c5:76:f5:46:99:27: 70:6b:16:0d:54:ee:32:87:57:54:63:c7:4f:39:a6: 2d:5b:9d:7a:56:10:2a:3b:f6:b5:4a:62:e3:e1:bc: 76:3d:77:0a:0b:d6:30:5c:1b:a1:cb:5e:17:14:2e: ee:86:55:f7:23:0f:dc:24:e8:4f:05:b7:d5:13:98: 99:85:e8:d0:3a:af:c2:b7:51:84:c4:d3:ed:55:cd: c0:6f:07:4d:be:51:26:38:57:db:37:66:c2:f9:fc: c2:af:59:46:1a:02:f2:41:70:d7:89:8b:8b:c5:01: 18:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:55:5B:00:78:DC:28:FE:55:55:9D:40:91:14:48:AA:E6:32:64:CF X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/d1VbAHjcKP5VVZ1AkRRIquYyZM8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.96.0/22 Signature Algorithm: sha256WithRSAEncryption 27:4e:e3:c3:20:6f:54:fb:23:70:07:56:69:20:6e:47:2b:b3: 6c:56:ac:fe:aa:49:ae:f8:05:13:2e:07:c9:1f:ed:07:30:e4: 6a:8b:c7:40:a9:89:12:49:41:e3:35:a8:78:66:6c:21:bf:3c: 4a:dc:9b:bd:cb:b2:5c:86:88:02:c2:b6:3a:5e:c5:b9:52:b2: a7:82:39:51:6d:a1:7a:35:e9:c9:ae:5b:d4:9d:40:75:19:ad: 09:b1:aa:36:51:4b:7b:80:47:44:7c:d3:a3:39:2f:91:bc:1a: 7e:8f:e2:35:cf:68:71:63:74:07:a1:dc:23:cc:17:9c:77:d2: 1b:5c:06:5c:be:3b:62:df:6f:df:e1:c8:ee:f0:11:45:5f:cb: ed:d3:dd:25:f4:14:01:1e:34:48:43:f8:86:b9:97:b5:e5:a2: 4a:da:cd:02:bc:c8:31:ce:61:8e:9f:00:35:41:cb:c3:3b:ba: 23:75:c3:8f:5a:07:2b:2b:1e:f8:00:62:cb:43:f2:75:ef:96: dc:76:c3:e6:d6:6d:a6:a3:10:44:69:ed:35:25:4a:7d:d1:6f: 9e:da:60:bf:c2:4b:b8:77:7e:61:22:df:bb:d6:b4:64:6e:76: 41:ff:03:a2:52:8d:33:51:8d:ce:8c:df:af:a4:95:2a:48:21: e0:22:fd:f1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA1MDUx MjA1NDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDc3NTU1QjAwNzhEQzI4 RkU1NTU1OUQ0MDkxMTQ0OEFBRTYzMjY0Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1qlgTN8EnVfwM+vO6XT01yj/JdT8V66dp9RPtx62ArqXm7xPP zNXHdGCBFqNlc62PRujdochhO3Wx2gpvO7rvP/JJQFrQMRw8Y1Dus7M3I13T4ujp UnWHX33IbtEsJKpm2BZiRxqfMXTViX9N+sLMgfR1YqQXS6zMap9smoIGqE/tID5w T8sNNVpdR6pz/sV29UaZJ3BrFg1U7jKHV1Rjx085pi1bnXpWECo79rVKYuPhvHY9 dwoL1jBcG6HLXhcULu6GVfcjD9wk6E8Ft9UTmJmF6NA6r8K3UYTE0+1VzcBvB02+ USY4V9s3ZsL5/MKvWUYaAvJBcNeJi4vFARjdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUd1VbAHjcKP5VVZ1AkRRIquYyZM8wHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL2QxVmJBSGpjS1A1VlZa MUFrUlJJcXVZeVpNOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6GAwDQYJKoZIhvcNAQELBQADggEBACdO48Mgb1T7I3AHVmkgbkcrs2xWrP6q Sa74BRMuB8kf7Qcw5GqLx0CpiRJJQeM1qHhmbCG/PErcm73LslyGiALCtjpexblS sqeCOVFtoXo16cmuW9SdQHUZrQmxqjZRS3uAR0R806M5L5G8Gn6P4jXPaHFjdAeh 3CPMF5x30htcBly+O2Lfb9/hyO7wEUVfy+3T3SX0FAEeNEhD+Ia5l7XlokrazQK8 yDHOYY6fADVBy8M7uiN1w49aBysrHvgAYstD8nXvltx2w+bWbaajEERp7TUlSn3R b57aYL/CS7h3fmEi37vWtGRudkH/A6JSjTNRjc6M36+klSpIIeAi/fE= -----END CERTIFICATE-----Generated at Sat May 17 06:01:33 2025 by rpki-client