$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/6Cg7vrfLUbx1bEkIDCoYYjgRMz4.roa File: 6Cg7vrfLUbx1bEkIDCoYYjgRMz4.roa (raw, json) Hash identifier: jvxNASBJ8HYeMGwdmuE0Do8y27av35KDualjxDl1ZZc= Subject key identifier: E8:28:3B:BE:B7:CB:51:BC:75:6C:49:08:0C:2A:18:62:38:11:33:3E Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 1DF5 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/6Cg7vrfLUbx1bEkIDCoYYjgRMz4.roa Signing time: Mon 21 Apr 2025 07:54:05 +0000 ROA not before: Mon 21 Apr 2025 07:54:05 +0000 ROA not after: Thu 09 Apr 2026 06:41:08 +0000 asID: 59033 IP address blocks: 103.90.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7669 (0x1df5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Apr 21 07:54:05 2025 GMT Not After : Apr 9 06:41:08 2026 GMT Subject: CN=E8283BBEB7CB51BC756C49080C2A18623811333E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8a:6a:15:42:ed:2d:f1:19:c3:7c:0f:0c:d5: 56:ca:64:9c:63:29:66:98:06:0c:69:5e:39:d0:7d: 78:9c:f7:6e:84:c7:1c:a5:83:85:76:7a:82:ee:56: bb:0c:47:36:f3:03:7b:09:34:2e:7b:55:00:85:f8: 80:92:92:17:7e:54:f9:06:fa:b9:f0:b4:52:3a:11: e9:1d:3f:01:ce:35:f2:1c:75:53:7a:d7:94:bc:85: 00:c7:52:64:0f:dc:13:e8:e3:70:ca:98:a1:4a:87: 42:d4:26:69:89:a2:25:68:8d:e2:b2:cd:e2:f1:c0: f7:2c:2a:5b:e8:c4:b4:c6:a2:98:b5:8f:17:06:d7: f9:4e:22:bc:d0:06:11:aa:2c:2f:1b:8d:eb:96:9a: 70:94:26:d0:e8:55:a5:57:21:29:19:70:2c:1c:d5: cd:8e:e0:96:dc:78:dd:e9:86:62:45:6e:46:f0:0d: 16:8c:5e:cb:d2:de:41:6a:33:f8:1e:da:81:7a:95: 9f:84:67:04:f7:37:3a:ae:a8:43:c1:81:c3:5d:c9: 1a:ce:5f:6c:13:fb:95:00:8f:78:6e:6e:67:bd:35: a6:c1:84:70:fa:50:5e:76:4b:7d:29:02:a4:09:76: a1:a6:16:56:45:d8:d0:92:ff:80:2f:51:83:8a:d9: 74:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:28:3B:BE:B7:CB:51:BC:75:6C:49:08:0C:2A:18:62:38:11:33:3E X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/6Cg7vrfLUbx1bEkIDCoYYjgRMz4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.90.51.0/24 Signature Algorithm: sha256WithRSAEncryption 18:89:cf:a0:00:d1:c9:c8:c6:3e:41:fc:07:21:e3:71:db:6c: c1:0f:94:2f:9a:98:b7:c4:8a:f7:1a:84:3b:2d:39:79:7d:d1: d1:9f:7a:d6:ab:4c:e2:dc:03:7d:72:8e:25:9e:91:e3:64:61: 6e:11:82:dd:66:03:92:9f:b5:ae:0d:9d:4e:27:d9:f2:10:59: 6a:c8:61:30:e7:ac:07:d0:59:5a:50:ab:b2:90:64:09:35:f9: cb:8e:59:c6:e7:6d:5b:04:73:39:f7:59:27:dd:23:bf:f7:95: 37:28:d8:60:27:7f:7d:31:cb:92:cc:cd:88:12:93:86:41:14: ee:07:03:ce:f9:49:83:da:f8:93:14:9b:7d:92:ca:d6:2b:4d: 37:df:e3:de:24:4e:69:78:ba:36:be:25:c3:85:0a:d4:f9:1f: d7:50:13:65:63:f1:a1:4a:71:43:38:c9:bc:50:38:e1:8a:cb: f8:17:9f:70:3b:7a:8e:a0:bd:8e:ed:d7:0c:fc:41:4a:8c:81: be:8e:69:f3:7e:f2:98:c4:9a:ff:1b:78:23:a7:64:a8:c1:b7: dd:8b:52:11:0c:6b:f1:20:8f:a3:ad:db:0a:ff:cb:8b:66:05: 8a:23:a5:8b:06:d7:24:6c:77:05:ec:e4:5f:b6:9f:f9:38:ff: df:ac:e2:a9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHfUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTA0MjEw NzU0MDVaFw0yNjA0MDkwNjQxMDhaMDMxMTAvBgNVBAMTKEU4MjgzQkJFQjdDQjUx QkM3NTZDNDkwODBDMkExODYyMzgxMTMzM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCximoVQu0t8RnDfA8M1VbKZJxjKWaYBgxpXjnQfXic926Exxyl g4V2eoLuVrsMRzbzA3sJNC57VQCF+ICSkhd+VPkG+rnwtFI6EekdPwHONfIcdVN6 15S8hQDHUmQP3BPo43DKmKFKh0LUJmmJoiVojeKyzeLxwPcsKlvoxLTGopi1jxcG 1/lOIrzQBhGqLC8bjeuWmnCUJtDoVaVXISkZcCwc1c2O4JbceN3phmJFbkbwDRaM XsvS3kFqM/ge2oF6lZ+EZwT3NzquqEPBgcNdyRrOX2wT+5UAj3hubme9NabBhHD6 UF52S30pAqQJdqGmFlZF2NCS/4AvUYOK2XTHAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU6Cg7vrfLUbx1bEkIDCoYYjgRMz4wHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvNkNnN3ZyZkxVYngx YkVrSURDb1lZamdSTXo0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdaMzANBgkqhkiG9w0BAQsFAAOCAQEAGInPoADRycjGPkH8ByHjcdtswQ+U L5qYt8SK9xqEOy05eX3R0Z961qtM4twDfXKOJZ6R42RhbhGC3WYDkp+1rg2dTifZ 8hBZashhMOesB9BZWlCrspBkCTX5y45ZxudtWwRzOfdZJ90jv/eVNyjYYCd/fTHL kszNiBKThkEU7gcDzvlJg9r4kxSbfZLK1itNN9/j3iROaXi6Nr4lw4UK1Pkf11AT ZWPxoUpxQzjJvFA44YrL+BefcDt6jqC9ju3XDPxBSoyBvo5p837ymMSa/xt4I6dk qMG33YtSEQxr8SCPo63bCv/Li2YFiiOliwbXJGx3BezkX7af+Tj/36ziqQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:24:31 2025 by rpki-client