$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/ATDiQVa7Jj6pl5_4jJGxxS0F_7s.roa File: ATDiQVa7Jj6pl5_4jJGxxS0F_7s.roa (raw, json) Hash identifier: BCuFDNtjX7hVl/3kgchlrCUKd45djLfUOZoxOoF5UZE= Subject key identifier: 01:30:E2:41:56:BB:26:3E:A9:97:9F:F8:8C:91:B1:C5:2D:05:FF:BB Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 1DF4 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/ATDiQVa7Jj6pl5_4jJGxxS0F_7s.roa Signing time: Mon 21 Apr 2025 07:54:05 +0000 ROA not before: Mon 21 Apr 2025 07:54:05 +0000 ROA not after: Thu 09 Apr 2026 06:41:08 +0000 asID: 63689 IP address blocks: 103.90.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7668 (0x1df4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Apr 21 07:54:05 2025 GMT Not After : Apr 9 06:41:08 2026 GMT Subject: CN=0130E24156BB263EA9979FF88C91B1C52D05FFBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2e:80:6f:07:19:3f:27:d1:6f:81:6b:f2:f7: c1:a5:46:a9:e2:75:b1:f1:c0:8f:9b:30:47:c0:13: a7:e5:7b:91:84:de:30:2e:92:26:1c:33:50:7e:3a: c0:59:df:8d:f4:d2:02:be:47:7e:8d:fb:78:a4:31: cf:34:d1:29:46:83:8b:84:b9:40:38:33:67:19:51: cb:1d:2d:e2:70:5b:77:6d:da:59:da:59:83:40:9b: 5c:6d:70:cf:55:ca:d0:6e:11:4d:99:b0:0a:c7:3a: 58:d2:8b:a7:69:d6:f5:fc:18:54:1d:82:46:7b:9e: af:38:d6:18:68:51:e7:6b:84:25:4c:c5:67:19:27: 75:55:4b:93:66:c1:eb:72:b7:ad:e9:d1:0b:1c:bc: 9a:a8:5d:11:6d:d5:50:e7:14:e5:32:14:52:17:32: 79:4c:6d:ec:60:07:d3:11:b2:3d:bb:57:13:1f:9b: 91:79:6c:06:fd:cd:56:38:16:48:10:45:99:85:86: 71:5b:33:30:bd:60:6b:3b:a0:94:f6:fc:c7:3f:56: 11:9d:61:89:59:c1:79:8c:17:4e:68:83:7f:6e:dd: 84:0d:a6:4d:97:6a:91:8b:32:ae:6b:ad:c9:b0:a3: 28:d1:e7:d0:c4:3a:1b:99:43:29:11:ba:57:45:0d: 5a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:30:E2:41:56:BB:26:3E:A9:97:9F:F8:8C:91:B1:C5:2D:05:FF:BB X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/ATDiQVa7Jj6pl5_4jJGxxS0F_7s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.90.51.0/24 Signature Algorithm: sha256WithRSAEncryption 25:e6:ae:a2:18:32:2e:a6:1d:4a:21:f5:93:00:e5:4d:bd:b4: db:c7:05:0e:34:20:a5:fd:44:0b:cd:71:d1:33:44:f0:3a:16: 6c:05:11:42:14:c7:eb:e2:74:52:e7:0b:4c:44:62:c6:c6:ff: 08:c1:e9:a7:e3:9d:1b:19:04:7f:47:bb:db:b4:c3:66:2d:dd: 1b:cb:1d:46:ab:15:1d:ce:f1:29:67:cf:12:b7:ef:37:a9:a3: a0:7a:19:07:a1:c9:4f:83:62:78:ed:56:35:c8:41:17:ff:4f: e5:ba:f3:ab:13:4f:79:1e:2a:63:28:11:8b:2c:a5:b5:99:d2: b9:d6:07:13:b4:81:96:03:29:07:9e:fc:e9:dd:db:d7:b1:6b: 9d:5b:b6:0f:75:0d:1a:53:06:91:8c:ab:79:f7:2c:4a:13:90: 60:0b:a0:96:5f:19:e8:3a:df:7b:9a:1e:ed:ca:d6:6e:87:e4: 87:43:7d:0b:68:8a:93:4a:82:84:94:ca:d1:e7:a8:4d:06:67: 93:6f:aa:b0:eb:32:9c:b6:c6:e7:5b:30:3f:fb:6c:6b:f6:3b: 4d:c9:2d:8c:ca:43:42:08:c9:96:39:4a:47:9e:cc:83:89:20: e5:64:f6:d7:04:7c:49:8b:6e:7c:d3:a2:db:db:40:82:29:ab: 36:3a:a7:10 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTA0MjEw NzU0MDVaFw0yNjA0MDkwNjQxMDhaMDMxMTAvBgNVBAMTKDAxMzBFMjQxNTZCQjI2 M0VBOTk3OUZGODhDOTFCMUM1MkQwNUZGQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3LoBvBxk/J9FvgWvy98GlRqnidbHxwI+bMEfAE6fle5GE3jAu kiYcM1B+OsBZ34300gK+R36N+3ikMc800SlGg4uEuUA4M2cZUcsdLeJwW3dt2lna WYNAm1xtcM9VytBuEU2ZsArHOljSi6dp1vX8GFQdgkZ7nq841hhoUedrhCVMxWcZ J3VVS5Nmwetyt63p0QscvJqoXRFt1VDnFOUyFFIXMnlMbexgB9MRsj27VxMfm5F5 bAb9zVY4FkgQRZmFhnFbMzC9YGs7oJT2/Mc/VhGdYYlZwXmMF05og39u3YQNpk2X apGLMq5rrcmwoyjR59DEOhuZQykRuldFDVqtAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUATDiQVa7Jj6pl5/4jJGxxS0F/7swHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvQVREaVFWYTdKajZw bDVfNGpKR3h4UzBGXzdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdaMzANBgkqhkiG9w0BAQsFAAOCAQEAJeauohgyLqYdSiH1kwDlTb2028cF DjQgpf1EC81x0TNE8DoWbAURQhTH6+J0UucLTERixsb/CMHpp+OdGxkEf0e727TD Zi3dG8sdRqsVHc7xKWfPErfvN6mjoHoZB6HJT4NieO1WNchBF/9P5brzqxNPeR4q YygRiyyltZnSudYHE7SBlgMpB5786d3b17FrnVu2D3UNGlMGkYyrefcsShOQYAug ll8Z6Drfe5oe7crWbofkh0N9C2iKk0qChJTK0eeoTQZnk2+qsOsynLbG51swP/ts a/Y7TcktjMpDQgjJljlKR57Mg4kg5WT21wR8SYtufNOi29tAgimrNjqnEA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:49 2025 by rpki-client