$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1534/W121KRGtk8IhoEscUAS_Ux_MsFI.roa File: W121KRGtk8IhoEscUAS_Ux_MsFI.roa (raw, json) Hash identifier: 4ZI7H6UdSt/wxYwlPgOwwG5fCm/2RHwJd/algAIVOV0= Subject key identifier: 5B:5D:B5:29:11:AD:93:C2:21:A0:4B:1C:50:04:BF:53:1F:CC:B0:52 Certificate issuer: /CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E Certificate serial: 2350 Authority key identifier: 0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/W121KRGtk8IhoEscUAS_Ux_MsFI.roa Signing time: Tue 08 Apr 2025 03:23:47 +0000 ROA not before: Tue 08 Apr 2025 03:23:47 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 59067 IP address blocks: 103.202.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9040 (0x2350) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CA4F183C659ED57FB46D59AD5483D6FE9B34F4E Validity Not Before: Apr 8 03:23:47 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=5B5DB52911AD93C221A04B1C5004BF531FCCB052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a6:09:e1:56:21:25:ca:b0:6d:01:7d:f1:7d: 4e:5f:80:14:f9:f3:13:39:f3:f7:19:45:ae:4a:62: 79:8e:57:7d:8d:9d:dc:ed:4c:fa:ca:e6:be:c8:0d: 5f:b5:3c:a7:19:8e:66:bd:2a:8a:54:01:e8:87:29: 36:96:38:c1:1b:6a:75:02:49:6b:5d:05:2e:77:b8: a2:9d:95:5d:b5:1d:09:ed:c3:65:ad:a1:7c:b0:b6: c4:7c:a8:49:90:d3:f5:62:7f:81:6c:5a:ce:98:f5: b7:36:69:80:5c:d3:54:a1:ed:e9:5e:d1:de:ba:ac: 30:5f:09:40:3a:9d:e6:73:e7:6a:ee:1c:b9:86:18: d1:22:c0:1d:26:c5:b5:38:d7:e9:7f:0b:5d:61:d4: 90:9a:77:a6:40:b9:ef:a5:01:df:df:88:52:d3:fd: 2f:fe:6b:18:a2:60:02:47:7f:8f:5e:a8:bb:69:12: cc:b6:05:38:a8:8c:92:a1:b2:95:23:8a:b3:bd:a6: 25:d4:e1:34:9e:54:19:b0:ed:93:56:17:bd:c3:54: 9d:08:d2:10:93:bc:7a:71:68:06:bc:85:57:11:53: 14:23:ba:23:bf:34:08:8a:5d:e5:3c:03:91:4e:b2: d7:6c:c8:0c:d7:19:d3:c2:ec:ae:20:06:00:61:34: ad:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:5D:B5:29:11:AD:93:C2:21:A0:4B:1C:50:04:BF:53:1F:CC:B0:52 X509v3 Authority Key Identifier: keyid:0C:A4:F1:83:C6:59:ED:57:FB:46:D5:9A:D5:48:3D:6F:E9:B3:4F:4E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DKTxg8ZZ7Vf7RtWa1Ug9b-mzT04.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1534/W121KRGtk8IhoEscUAS_Ux_MsFI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.202.116.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:40:75:54:3d:57:f7:2f:5d:61:f1:e0:19:3f:40:71:02:8d: 0c:57:20:2b:41:33:db:30:f5:4a:88:f4:af:31:b9:a8:c3:bf: 56:d0:9a:d2:53:7e:a9:90:43:87:f9:63:ae:84:80:28:2a:68: 36:cd:08:70:39:99:54:9d:71:57:96:a1:fd:da:51:63:da:49: 11:73:c3:68:3f:a4:f6:c1:3d:4a:e1:c4:f5:0c:5e:f0:f1:73: 78:be:d2:8e:e6:a8:6c:53:a6:b4:85:7b:b4:03:1b:be:a8:71: 87:96:91:3c:48:cb:18:dd:10:d3:87:4f:6f:b5:bd:43:2b:1f: 13:cf:31:fc:79:a4:fe:0d:15:69:46:f1:ac:06:98:3b:75:b0: a3:ab:e2:16:aa:be:9c:13:f4:66:c7:2a:5e:bc:57:d1:14:d4: 85:d3:cf:71:14:c0:55:ff:48:b4:be:ed:fa:b4:b8:2c:33:2e: ca:8c:f9:50:b6:0e:0b:90:e0:7f:69:55:20:74:35:19:9e:cb: 52:46:ed:90:d3:ef:91:3a:e6:3f:3d:f2:83:df:76:eb:74:b6: 97:c5:43:a8:3b:65:6d:89:7e:cc:a4:0a:61:05:4b:07:cd:dc: 71:17:de:2c:86:9a:05:4a:6d:4b:7d:b7:0a:76:d1:95:10:55: fb:c0:98:52 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICI1AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENB NEYxODNDNjU5RUQ1N0ZCNDZENTlBRDU0ODNENkZFOUIzNEY0RTAeFw0yNTA0MDgw MzIzNDdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDVCNURCNTI5MTFBRDkz QzIyMUEwNEIxQzUwMDRCRjUzMUZDQ0IwNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwpgnhViElyrBtAX3xfU5fgBT58xM58/cZRa5KYnmOV32Nndzt TPrK5r7IDV+1PKcZjma9KopUAeiHKTaWOMEbanUCSWtdBS53uKKdlV21HQntw2Wt oXywtsR8qEmQ0/Vif4FsWs6Y9bc2aYBc01Sh7ele0d66rDBfCUA6neZz52ruHLmG GNEiwB0mxbU41+l/C11h1JCad6ZAue+lAd/fiFLT/S/+axiiYAJHf49eqLtpEsy2 BTiojJKhspUjirO9piXU4TSeVBmw7ZNWF73DVJ0I0hCTvHpxaAa8hVcRUxQjuiO/ NAiKXeU8A5FOstdsyAzXGdPC7K4gBgBhNK3xAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUW121KRGtk8IhoEscUAS/Ux/MsFIwHwYDVR0jBBgwFoAUDKTxg8ZZ7Vf7RtWa 1Ug9b+mzT04wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTUz NC9ES1R4ZzhaWjdWZjdSdFdhMVVnOWItbXpUMDQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RLVHhnOFpaN1ZmN1J0V2ExVWc5Yi1telQwNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1MzQvVzEyMUtSR3RrOElo b0VzY1VBU19VeF9Nc0ZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfKdDANBgkqhkiG9w0BAQsFAAOCAQEAOkB1VD1X9y9dYfHgGT9AcQKNDFcg K0Ez2zD1Soj0rzG5qMO/VtCa0lN+qZBDh/ljroSAKCpoNs0IcDmZVJ1xV5ah/dpR Y9pJEXPDaD+k9sE9SuHE9Qxe8PFzeL7SjuaobFOmtIV7tAMbvqhxh5aRPEjLGN0Q 04dPb7W9QysfE88x/Hmk/g0VaUbxrAaYO3Wwo6viFqq+nBP0ZscqXrxX0RTUhdPP cRTAVf9ItL7t+rS4LDMuyoz5ULYOC5Dgf2lVIHQ1GZ7LUkbtkNPvkTrmPz3yg992 63S2l8VDqDtlbYl+zKQKYQVLB83ccRfeLIaaBUptS323CnbRlRBV+8CYUg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:26 2025 by rpki-client