$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1534/LsvjzuN68F6G92kl3Yb5zfmTqII.roa File: LsvjzuN68F6G92kl3Yb5zfmTqII.roa (raw, json) Hash identifier: wnqbw/6sLmp9bUld/HKzkTVwq3v5p7ASfDjFW0qXopw= Subject key identifier: 2E:CB:E3:CE:E3:7A:F0:5E:86:F7:69:25:DD:86:F9:CD:F9:93:A8:82 Certificate issuer: /CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E Certificate serial: 2349 Authority key identifier: 0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/LsvjzuN68F6G92kl3Yb5zfmTqII.roa Signing time: Tue 08 Apr 2025 03:09:15 +0000 ROA not before: Tue 08 Apr 2025 03:09:15 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 59067 IP address blocks: 103.202.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9033 (0x2349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E Validity Not Before: Apr 8 03:09:15 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=2ECBE3CEE37AF05E86F76925DD86F9CDF993A882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:d6:30:6d:5d:88:a0:67:66:97:3e:7a:8f: d7:e2:5f:60:08:79:fc:8e:98:3a:14:4a:68:3b:d2: 6a:21:43:d6:47:f9:e2:39:8c:2d:af:27:11:53:79: 50:cb:2f:c3:c6:cb:1a:5d:07:8d:4c:d0:c1:2b:49: c6:3f:d0:86:1d:68:8d:4e:7d:51:cb:cf:5b:eb:4d: 71:77:05:2b:ea:f1:b9:7b:ce:a0:27:31:57:48:51: fe:0e:1c:d0:58:3f:9b:9b:37:49:66:a1:c8:44:3f: 3b:90:e2:38:9f:c9:c4:d8:da:53:d9:46:d7:3e:3d: 9d:99:2e:ab:c6:0b:31:69:4e:7e:be:46:82:6a:bb: c6:d8:f8:ff:fb:ec:d8:d5:a7:22:63:3b:09:41:8b: 77:29:ca:5f:de:9e:00:6b:70:10:59:dc:1d:18:0d: e6:48:5e:34:b9:57:fd:5c:b1:f5:d4:14:5d:d3:93: 80:bd:06:a4:80:86:18:7a:69:b5:00:ea:0f:73:37: 17:52:6e:7d:d0:0b:bc:d6:e1:15:f6:0b:e9:4d:99: fc:5d:69:33:2d:8f:65:cf:88:66:2e:09:c1:3f:16: 4f:03:55:19:27:95:80:e8:1a:08:77:4b:26:43:76: c6:78:0b:62:b2:c4:81:9c:95:d3:fd:6a:3e:71:cd: 74:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CB:E3:CE:E3:7A:F0:5E:86:F7:69:25:DD:86:F9:CD:F9:93:A8:82 X509v3 Authority Key Identifier: keyid:0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/LsvjzuN68F6G92kl3Yb5zfmTqII.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.202.117.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:82:cb:df:50:40:e4:50:d9:01:0f:45:79:6e:d9:c3:f0:b3: b2:fa:c7:82:ed:66:b7:c9:a2:da:f9:0f:03:cf:63:f1:3a:bb: c1:ac:e0:f2:78:6f:7f:3d:99:12:bd:76:38:63:0b:7f:30:92: 73:21:4b:d1:4d:0d:e0:ea:d9:fb:ad:7a:46:93:e1:2d:23:4d: 2e:3d:45:bc:a7:dd:5f:d7:b1:3d:a3:8a:0e:a5:a6:8e:d9:20: 81:1f:28:2e:2a:c8:b7:50:ab:50:d4:04:0a:ba:df:78:e0:8b: f9:66:f7:5d:63:df:23:10:8c:2a:d5:4b:6c:12:39:24:35:b9: 62:e8:43:60:04:25:65:07:56:c5:3b:18:c9:d4:99:f9:90:13: 11:f7:63:d1:25:b5:94:6a:92:d1:b3:af:24:4b:1c:d8:52:1f: 96:32:63:e5:e5:4d:4c:f8:3c:34:68:55:47:08:66:a8:2d:db: 21:1a:06:0e:57:27:98:7b:34:05:88:55:76:95:53:5c:16:d9: 11:b5:ee:1c:a4:ae:f8:2e:ea:b6:34:fb:19:4c:a1:3a:54:d1: 66:d0:3e:14:fb:46:d5:8a:ab:21:fb:93:b6:d1:9e:a6:17:92: a9:6f:0d:75:c7:ac:60:5f:de:5c:22:a9:6d:ac:fa:58:1b:43: 21:74:e9:d1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICI0kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENB NEYxODNDNjU5RUQ1N0ZCNDZENTlBRDU0ODNENkZFOUIzNEY0RTAeFw0yNTA0MDgw MzA5MTVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDJFQ0JFM0NFRTM3QUYw NUU4NkY3NjkyNUREODZGOUNERjk5M0E4ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEDtYwbV2IoGdmlz56j9fiX2AIefyOmDoUSmg70mohQ9ZH+eI5 jC2vJxFTeVDLL8PGyxpdB41M0MErScY/0IYdaI1OfVHLz1vrTXF3BSvq8bl7zqAn MVdIUf4OHNBYP5ubN0lmochEPzuQ4jifycTY2lPZRtc+PZ2ZLqvGCzFpTn6+RoJq u8bY+P/77NjVpyJjOwlBi3cpyl/engBrcBBZ3B0YDeZIXjS5V/1csfXUFF3Tk4C9 BqSAhhh6abUA6g9zNxdSbn3QC7zW4RX2C+lNmfxdaTMtj2XPiGYuCcE/Fk8DVRkn lYDoGgh3SyZDdsZ4C2KyxIGcldP9aj5xzXQ5AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQULsvjzuN68F6G92kl3Yb5zfmTqIIwHwYDVR0jBBgwFoAUDKTxg8ZZ7Vf7RtWa 1Ug9b+mzT04wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTUz NC9ES1R4ZzhaWjdWZjdSdFdhMVVnOWItbXpUMDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RLVHhnOFpaN1ZmN1J0V2ExVWc5Yi1telQwNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1MzQvTHN2anp1TjY4RjZH OTJrbDNZYjV6Zm1UcUlJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfKdTANBgkqhkiG9w0BAQsFAAOCAQEAHILL31BA5FDZAQ9FeW7Zw/CzsvrH gu1mt8mi2vkPA89j8Tq7wazg8nhvfz2ZEr12OGMLfzCScyFL0U0N4OrZ+616RpPh LSNNLj1FvKfdX9exPaOKDqWmjtkggR8oLirIt1CrUNQECrrfeOCL+Wb3XWPfIxCM KtVLbBI5JDW5YuhDYAQlZQdWxTsYydSZ+ZATEfdj0SW1lGqS0bOvJEsc2FIfljJj 5eVNTPg8NGhVRwhmqC3bIRoGDlcnmHs0BYhVdpVTXBbZEbXuHKSu+C7qtjT7GUyh OlTRZtA+FPtG1YqrIfuTttGepheSqW8NdcesYF/eXCKpbaz6WBtDIXTp0Q== -----END CERTIFICATE-----Generated at Sat Apr 26 14:37:03 2025 by rpki-client