$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1534/EvAp2LPcsq3aOcNbl5r_bkz-rmM.roa File: EvAp2LPcsq3aOcNbl5r_bkz-rmM.roa (raw, json) Hash identifier: gEa2g5u9XRN7ZHQ39fHxNFt10InJwcyaDYVqhtUu4o4= Subject key identifier: 12:F0:29:D8:B3:DC:B2:AD:DA:39:C3:5B:97:9A:FF:6E:4C:FE:AE:63 Certificate issuer: /CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E Certificate serial: 2345 Authority key identifier: 0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/EvAp2LPcsq3aOcNbl5r_bkz-rmM.roa Signing time: Tue 08 Apr 2025 03:06:31 +0000 ROA not before: Tue 08 Apr 2025 03:06:31 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 59067 IP address blocks: 103.255.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9029 (0x2345) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E Validity Not Before: Apr 8 03:06:31 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=12F029D8B3DCB2ADDA39C35B979AFF6E4CFEAE63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:39:8d:76:51:9f:59:97:c1:54:c2:48:62:0b: ff:7b:a3:4f:83:e2:c3:d9:bb:5b:8b:26:9e:64:5f: 50:0c:09:1b:8b:a5:83:b7:d1:21:cd:d4:8e:f9:87: b8:fd:b8:6c:fa:af:53:4c:8e:d2:64:ad:4f:58:2c: 28:68:f5:2f:07:64:25:da:4b:36:5d:10:2d:d7:bf: b0:fb:1e:e8:2e:af:89:bc:4c:d2:7c:09:8a:bb:26: be:09:67:3a:72:b7:29:5b:23:78:52:37:e9:9f:ee: ca:63:7e:9a:19:a8:50:2d:52:83:b8:b0:ff:7f:14: d7:48:83:89:ae:67:b1:fb:3c:63:5c:da:e2:8d:2c: e1:a0:b4:76:0b:20:c5:bc:e5:1d:f4:7b:37:7f:dd: 21:80:66:1b:8e:7b:30:7e:7e:c1:39:0b:24:1d:f3: 73:17:df:6f:bd:16:a2:e6:7f:12:29:59:bb:9a:14: 97:e2:16:96:25:b9:6f:0a:42:f9:94:89:65:16:ea: 8a:48:8d:85:f5:e8:ee:13:db:a6:6a:f4:48:af:15: 70:72:2f:4a:6e:93:9d:1c:9a:19:41:0c:f3:20:14: 3f:12:7a:88:74:c6:bf:99:f1:3a:ed:48:7f:89:c4: b7:6e:24:93:4b:58:74:84:3e:67:04:56:a4:57:f3: 0d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F0:29:D8:B3:DC:B2:AD:DA:39:C3:5B:97:9A:FF:6E:4C:FE:AE:63 X509v3 Authority Key Identifier: keyid:0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/EvAp2LPcsq3aOcNbl5r_bkz-rmM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.255.140.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:4c:57:20:9d:23:e9:a3:a4:64:69:e1:68:13:fa:af:20:08: e5:1c:d7:ab:8c:89:64:47:2c:51:1d:70:28:71:2c:22:5f:88: 64:73:f2:a0:c5:c8:50:6a:3f:35:f7:6e:12:57:83:9a:45:d9: d6:64:f4:34:02:f6:8b:6e:53:40:07:dd:57:19:56:73:c9:39: 82:28:f1:75:0f:76:e8:4b:c3:5b:8b:43:ba:fb:24:e8:7d:b8: 93:a2:82:ed:95:26:73:f9:dc:9d:0e:02:2b:e2:45:38:3f:51: 27:a2:b6:60:f4:a4:56:7b:46:71:b6:2d:60:be:64:76:28:a3: e6:c1:49:3b:b5:80:76:ba:01:bb:c2:ac:d5:c8:0a:5f:79:ce: ba:aa:a0:f6:e1:14:19:eb:8e:36:30:29:eb:b6:02:2b:82:bc: 0d:82:4a:36:0e:98:ae:77:82:ac:51:43:e3:ae:12:28:a4:45: 49:51:f7:04:a6:9f:f3:0d:84:9e:7b:39:ee:6f:8c:d9:c9:e7: a1:f7:85:c5:7e:6c:bc:f0:40:94:a8:e4:cc:00:5f:2d:7c:e8: fc:c6:68:dc:a9:f1:a0:4d:0b:f7:61:de:f1:fc:8e:37:7a:b3: 3b:f7:2e:64:aa:c1:18:8c:3a:86:7e:36:7b:9f:a6:50:98:25: 50:81:fa:67 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICI0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENB NEYxODNDNjU5RUQ1N0ZCNDZENTlBRDU0ODNENkZFOUIzNEY0RTAeFw0yNTA0MDgw MzA2MzFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDEyRjAyOUQ4QjNEQ0Iy QUREQTM5QzM1Qjk3OUFGRjZFNENGRUFFNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4OY12UZ9Zl8FUwkhiC/97o0+D4sPZu1uLJp5kX1AMCRuLpYO3 0SHN1I75h7j9uGz6r1NMjtJkrU9YLCho9S8HZCXaSzZdEC3Xv7D7Hugur4m8TNJ8 CYq7Jr4JZzpytylbI3hSN+mf7spjfpoZqFAtUoO4sP9/FNdIg4muZ7H7PGNc2uKN LOGgtHYLIMW85R30ezd/3SGAZhuOezB+fsE5CyQd83MX32+9FqLmfxIpWbuaFJfi FpYluW8KQvmUiWUW6opIjYX16O4T26Zq9EivFXByL0puk50cmhlBDPMgFD8Seoh0 xr+Z8TrtSH+JxLduJJNLWHSEPmcEVqRX8w2XAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUEvAp2LPcsq3aOcNbl5r/bkz+rmMwHwYDVR0jBBgwFoAUDKTxg8ZZ7Vf7RtWa 1Ug9b+mzT04wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTUz NC9ES1R4ZzhaWjdWZjdSdFdhMVVnOWItbXpUMDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RLVHhnOFpaN1ZmN1J0V2ExVWc5Yi1telQwNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1MzQvRXZBcDJMUGNzcTNh T2NOYmw1cl9ia3otcm1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmf/jDANBgkqhkiG9w0BAQsFAAOCAQEAj0xXIJ0j6aOkZGnhaBP6ryAI5RzX q4yJZEcsUR1wKHEsIl+IZHPyoMXIUGo/NfduEleDmkXZ1mT0NAL2i25TQAfdVxlW c8k5gijxdQ926EvDW4tDuvsk6H24k6KC7ZUmc/ncnQ4CK+JFOD9RJ6K2YPSkVntG cbYtYL5kdiij5sFJO7WAdroBu8Ks1cgKX3nOuqqg9uEUGeuONjAp67YCK4K8DYJK Ng6YrneCrFFD464SKKRFSVH3BKaf8w2Enns57m+M2cnnofeFxX5svPBAlKjkzABf LXzo/MZo3KnxoE0L92He8fyON3qzO/cuZKrBGIw6hn42e5+mUJglUIH6Zw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:34:25 2025 by rpki-client