$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/890/rCpq4Xp_P_54Lf9l73xLd74CVDs.roa File: rCpq4Xp_P_54Lf9l73xLd74CVDs.roa (raw, json) Hash identifier: rMg9xMvifp6cG1OLKpe0ElaE1f2GFC7wKKLuYfVyce0= Subject key identifier: AC:2A:6A:E1:7A:7F:3F:FE:78:2D:FF:65:EF:7C:4B:77:BE:02:54:3B Certificate issuer: /CN=DBB4C5FA96B8741BF68B48BF004DBD6FD9636FAD Certificate serial: 0D20 Authority key identifier: DB:B4:C5:FA:96:B8:74:1B:F6:8B:48:BF:00:4D:BD:6F:D9:63:6F:AD Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27TF-pa4dBv2i0i_AE29b9ljb60.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/rCpq4Xp_P_54Lf9l73xLd74CVDs.roa Signing time: Wed 02 Jul 2025 09:18:35 +0000 ROA not before: Wed 02 Jul 2025 09:18:35 +0000 ROA not after: Thu 09 Apr 2026 06:41:00 +0000 asID: 63567 IP address blocks: 103.37.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/27TF-pa4dBv2i0i_AE29b9ljb60.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/27TF-pa4dBv2i0i_AE29b9ljb60.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27TF-pa4dBv2i0i_AE29b9ljb60.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 03:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBB4C5FA96B8741BF68B48BF004DBD6FD9636FAD Validity Not Before: Jul 2 09:18:35 2025 GMT Not After : Apr 9 06:41:00 2026 GMT Subject: CN=AC2A6AE17A7F3FFE782DFF65EF7C4B77BE02543B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:5e:e7:42:51:8a:44:3b:f0:d2:e4:28:27:c6: 5a:fe:9b:5f:a6:30:32:24:9a:86:32:e8:34:be:c7: 2c:9e:ba:9a:b4:16:82:40:3d:49:2f:02:90:46:d8: fa:fa:fb:50:9f:3e:b4:9c:72:82:a6:2c:ed:4f:22: 9a:8a:c7:cd:d1:19:f0:fd:e6:aa:dd:aa:e8:b2:96: 43:a7:5b:c9:6a:d8:59:81:2d:ba:ea:c9:89:33:af: 07:99:9a:ae:3b:56:a9:2f:73:85:19:c5:7f:be:2c: 5d:8e:13:53:f7:ce:83:91:89:bc:da:d6:d8:df:f3: 5d:70:82:d4:a3:60:e7:ce:b6:af:4b:ab:02:c9:7a: f6:7f:3b:7b:50:23:51:e1:c0:ef:20:3b:f3:43:cf: 2e:9c:2b:1e:37:5c:ba:e3:d1:29:67:4f:e3:5a:18: 1f:2a:d2:ce:1c:e0:12:fa:ab:0d:b7:a4:3f:62:ff: 52:d6:4f:b3:60:06:20:35:47:24:df:53:03:5a:d6: 1f:b1:ce:57:dc:4e:a9:01:30:31:41:82:41:d3:4d: 3c:b9:8e:87:19:f8:35:d0:fa:02:2b:35:04:e2:02: 75:06:52:5d:78:b9:eb:a5:25:dd:db:ec:23:6c:7e: 7c:51:87:ec:8a:b3:dd:6e:d5:c3:75:6f:01:be:44: d2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2A:6A:E1:7A:7F:3F:FE:78:2D:FF:65:EF:7C:4B:77:BE:02:54:3B X509v3 Authority Key Identifier: keyid:DB:B4:C5:FA:96:B8:74:1B:F6:8B:48:BF:00:4D:BD:6F:D9:63:6F:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/27TF-pa4dBv2i0i_AE29b9ljb60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27TF-pa4dBv2i0i_AE29b9ljb60.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/890/rCpq4Xp_P_54Lf9l73xLd74CVDs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.37.45.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:dc:3e:89:26:da:c3:95:fe:7e:22:21:9f:6a:c5:b8:87:cd: b2:f1:5a:9b:f8:0b:03:3a:7b:b4:8d:04:a7:d9:1d:ba:a6:e6: 9c:c8:41:58:f9:02:e4:d4:46:63:55:17:af:fe:cb:f6:2d:e6: e0:de:ca:b3:d3:a7:7e:b6:13:83:ff:70:68:e7:25:bd:4a:ae: 4d:32:ab:1e:5d:67:58:16:f3:1e:ae:19:fc:81:a7:ae:ca:07: ee:c6:4c:6c:a4:e4:4d:0d:f4:cb:42:77:45:c1:3e:17:53:0c: 83:e3:d6:2e:0c:2d:8c:6a:81:dd:e8:db:9d:87:6d:2c:42:64: 2e:b5:ab:dc:b9:bb:bc:a9:72:c1:78:93:23:6e:50:70:d8:d4: 2d:a2:76:ae:b9:80:b9:04:95:4b:94:e1:e0:d5:2c:7d:7a:1d: 0d:21:ac:85:24:1b:a4:4c:6f:29:61:19:70:7c:78:7e:b4:46: 6f:96:b2:f2:68:ad:54:9b:17:0e:12:fc:e1:f0:29:2c:72:82: 06:af:dc:f6:28:43:a4:d1:04:44:55:1c:19:92:d9:d2:af:01: 1b:97:ad:d0:65:1e:be:33:a3:ea:f6:b2:ad:e7:83:a0:e1:ee: cd:eb:ea:35:f4:8b:bf:7f:8f:a5:18:2a:7c:98:c0:e0:d9:ee: f1:ef:72:4e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJC NEM1RkE5NkI4NzQxQkY2OEI0OEJGMDA0REJENkZEOTYzNkZBRDAeFw0yNTA3MDIw OTE4MzVaFw0yNjA0MDkwNjQxMDBaMDMxMTAvBgNVBAMTKEFDMkE2QUUxN0E3RjNG RkU3ODJERkY2NUVGN0M0Qjc3QkUwMjU0M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtXudCUYpEO/DS5Cgnxlr+m1+mMDIkmoYy6DS+xyyeupq0FoJA PUkvApBG2Pr6+1CfPrSccoKmLO1PIpqKx83RGfD95qrdquiylkOnW8lq2FmBLbrq yYkzrweZmq47Vqkvc4UZxX++LF2OE1P3zoORibza1tjf811wgtSjYOfOtq9LqwLJ evZ/O3tQI1HhwO8gO/NDzy6cKx43XLrj0SlnT+NaGB8q0s4c4BL6qw23pD9i/1LW T7NgBiA1RyTfUwNa1h+xzlfcTqkBMDFBgkHTTTy5jocZ+DXQ+gIrNQTiAnUGUl14 ueulJd3b7CNsfnxRh+yKs91u1cN1bwG+RNIbAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUrCpq4Xp/P/54Lf9l73xLd74CVDswHwYDVR0jBBgwFoAU27TF+pa4dBv2i0i/ AE29b9ljb60wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODkw LzI3VEYtcGE0ZEJ2MmkwaV9BRTI5YjlsamI2MC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvMjdURi1wYTRkQnYyaTBpX0FFMjliOWxqYjYwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODkwL3JDcHE0WHBfUF81NExm OWw3M3hMZDc0Q1ZEcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnJS0wDQYJKoZIhvcNAQELBQADggEBAA3cPokm2sOV/n4iIZ9qxbiHzbLxWpv4 CwM6e7SNBKfZHbqm5pzIQVj5AuTURmNVF6/+y/Yt5uDeyrPTp362E4P/cGjnJb1K rk0yqx5dZ1gW8x6uGfyBp67KB+7GTGyk5E0N9MtCd0XBPhdTDIPj1i4MLYxqgd3o 252HbSxCZC61q9y5u7ypcsF4kyNuUHDY1C2idq65gLkElUuU4eDVLH16HQ0hrIUk G6RMbylhGXB8eH60Rm+WsvJorVSbFw4S/OHwKSxyggav3PYoQ6TRBERVHBmS2dKv ARuXrdBlHr4zo+r2sq3ng6Dh7s3r6jX0i79/j6UYKnyYwODZ7vHvck4= -----END CERTIFICATE-----Generated at Sat Jul 5 02:54:49 2025 by rpki-client