$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/623/a4cZD9b3xGd2zyGNUp3-aR78HbI.roa File: a4cZD9b3xGd2zyGNUp3-aR78HbI.roa (raw, json) Hash identifier: hKJl9OnIM2hWpAqdWK4Ac9sCKod1T25gm/tq67rmnT4= Subject key identifier: 6B:87:19:0F:D6:F7:C4:67:76:CF:21:8D:52:9D:FE:69:1E:FC:1D:B2 Certificate issuer: /CN=DEBFC900EDC34F81DA4827F1F9F63D04E0E2F756 Certificate serial: 07B1 Authority key identifier: DE:BF:C9:00:ED:C3:4F:81:DA:48:27:F1:F9:F6:3D:04:E0:E2:F7:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/a4cZD9b3xGd2zyGNUp3-aR78HbI.roa Signing time: Mon 12 May 2025 07:33:15 +0000 ROA not before: Mon 12 May 2025 07:33:15 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 58834 IP address blocks: 202.168.162.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEBFC900EDC34F81DA4827F1F9F63D04E0E2F756 Validity Not Before: May 12 07:33:15 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=6B87190FD6F7C46776CF218D529DFE691EFC1DB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:68:da:f3:ae:dd:5f:c7:cd:bf:04:1d:ca: 2a:56:1d:18:40:9d:0b:99:ca:cd:41:d5:58:b3:5c: b9:14:a9:0a:fc:fe:fa:2b:60:d8:03:72:5d:54:cd: 10:83:13:3c:d8:67:1e:12:f9:1a:5a:8f:59:9a:be: ba:ec:4f:10:af:0c:0b:8d:b4:9a:68:87:b4:cc:ea: 9d:b5:63:8f:57:b9:26:9e:3b:fd:1b:03:51:49:a8: 2a:4d:74:16:94:a7:01:48:52:71:45:b5:75:9e:39: b7:19:d8:fd:51:30:10:fb:81:07:5f:2e:00:05:61: cd:a5:7d:08:d4:76:fe:c0:38:32:91:5e:47:aa:a5: d8:64:ac:6c:13:8e:71:86:0b:15:ef:d9:62:52:67: 7a:51:82:9b:b9:2c:d6:a1:c8:52:d8:56:c5:60:5d: fe:da:78:fb:4d:cc:5d:93:39:82:fe:75:58:fa:fe: 60:61:04:f2:f5:07:5b:65:fe:a4:4d:54:b9:17:7e: 46:0d:2c:8b:20:91:ba:84:a8:97:2f:92:f0:dc:92: c4:64:e9:94:ff:2a:60:09:07:7b:37:ed:1c:fb:d4: 41:d1:0a:a0:91:be:3a:6a:05:f3:62:db:3b:1d:aa: f5:48:56:a1:1a:fb:35:ad:9e:ae:97:7e:aa:8f:d6: 97:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:87:19:0F:D6:F7:C4:67:76:CF:21:8D:52:9D:FE:69:1E:FC:1D:B2 X509v3 Authority Key Identifier: keyid:DE:BF:C9:00:ED:C3:4F:81:DA:48:27:F1:F9:F6:3D:04:E0:E2:F7:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/a4cZD9b3xGd2zyGNUp3-aR78HbI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.168.162.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:d7:86:d6:ba:89:fc:24:49:7b:4e:70:56:6b:90:e1:03:14: 19:4b:ff:8a:08:de:cd:35:04:1f:7f:e7:0f:de:96:5b:b8:c4: 46:76:9f:65:98:7a:ad:71:bd:0c:af:4b:a1:9a:e9:20:07:63: ed:e6:75:c8:c3:7a:b9:7a:e7:ee:b6:99:74:ed:1a:75:98:0c: 71:58:17:0d:b9:14:eb:db:2a:ca:25:c3:03:9a:d1:90:4e:d6: 0f:1f:ee:a0:84:3f:b9:19:b3:6b:01:1a:0f:0d:b4:73:12:06: 14:c4:d9:18:36:86:a4:3a:6c:6e:5b:fb:6d:f2:e9:a6:8a:26: a0:33:eb:a8:41:a9:9e:89:61:79:7f:13:f1:4c:7b:81:11:fd: 13:d6:bc:7f:07:11:1d:7f:45:3c:ac:6b:79:45:ae:0f:a1:21: 7a:ac:87:1f:b1:15:75:f8:13:54:ef:48:c8:0d:21:ea:76:45: 7d:77:da:81:b9:a6:33:5a:d9:e3:8f:20:cc:f4:83:a0:ee:b2: 3d:eb:9d:a4:d0:0a:be:12:bf:75:f2:c3:ce:6c:37:5b:a0:3b: 8b:09:27:a4:a8:a7:1d:87:77:4c:59:7a:c6:37:cf:d7:fa:a2: d6:a6:80:37:97:0c:54:0f:69:4e:84:cb:f2:ca:ed:88:21:9c: 54:7a:24:05 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVC RkM5MDBFREMzNEY4MURBNDgyN0YxRjlGNjNEMDRFMEUyRjc1NjAeFw0yNTA1MTIw NzMzMTVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDZCODcxOTBGRDZGN0M0 Njc3NkNGMjE4RDUyOURGRTY5MUVGQzFEQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDMmja867dX8fNvwQdyipWHRhAnQuZys1B1VizXLkUqQr8/vor YNgDcl1UzRCDEzzYZx4S+Rpaj1mavrrsTxCvDAuNtJpoh7TM6p21Y49XuSaeO/0b A1FJqCpNdBaUpwFIUnFFtXWeObcZ2P1RMBD7gQdfLgAFYc2lfQjUdv7AODKRXkeq pdhkrGwTjnGGCxXv2WJSZ3pRgpu5LNahyFLYVsVgXf7aePtNzF2TOYL+dVj6/mBh BPL1B1tl/qRNVLkXfkYNLIsgkbqEqJcvkvDcksRk6ZT/KmAJB3s37Rz71EHRCqCR vjpqBfNi2zsdqvVIVqEa+zWtnq6XfqqP1penAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUa4cZD9b3xGd2zyGNUp3+aR78HbIwHwYDVR0jBBgwFoAU3r/JAO3DT4HaSCfx +fY9BODi91YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIz LzNyX0pBTzNEVDRIYVNDZngtZlk5Qk9EaTkxWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvM3JfSkFPM0RUNEhhU0NmeC1mWTlCT0RpOTFZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIzL2E0Y1pEOWIzeEdkMnp5 R05VcDMtYVI3OEhiSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKqKIwDQYJKoZIhvcNAQELBQADggEBAGzXhta6ifwkSXtOcFZrkOEDFBlL/4oI 3s01BB9/5w/ellu4xEZ2n2WYeq1xvQyvS6Ga6SAHY+3mdcjDerl65+62mXTtGnWY DHFYFw25FOvbKsolwwOa0ZBO1g8f7qCEP7kZs2sBGg8NtHMSBhTE2Rg2hqQ6bG5b +23y6aaKJqAz66hBqZ6JYXl/E/FMe4ER/RPWvH8HER1/RTysa3lFrg+hIXqshx+x FXX4E1TvSMgNIep2RX132oG5pjNa2eOPIMz0g6Dusj3rnaTQCr4Sv3Xyw85sN1ug O4sJJ6Sopx2Hd0xZesY3z9f6otamgDeXDFQPaU6Ey/LK7YghnFR6JAU= -----END CERTIFICATE-----Generated at Sun May 18 01:49:24 2025 by rpki-client