$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/BsKRKSP14HMV2MuJplyiqG8gZe8.roa File: BsKRKSP14HMV2MuJplyiqG8gZe8.roa (raw, json) Hash identifier: UZCCmKzoNzVaF2WPr86X28fx6/jvUYBNDRxL0CpmKdU= Subject key identifier: 06:C2:91:29:23:F5:E0:73:15:D8:CB:89:A6:5C:A2:A8:6F:20:65:EF Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 1DB3 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/BsKRKSP14HMV2MuJplyiqG8gZe8.roa Signing time: Wed 09 Apr 2025 06:48:22 +0000 ROA not before: Wed 09 Apr 2025 06:48:22 +0000 ROA not after: Thu 09 Apr 2026 06:41:08 +0000 asID: 63689 IP address blocks: 202.160.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7603 (0x1db3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Apr 9 06:48:22 2025 GMT Not After : Apr 9 06:41:08 2026 GMT Subject: CN=06C2912923F5E07315D8CB89A65CA2A86F2065EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:14:0e:df:0c:28:da:52:b8:0b:bc:2b:f6:0e: 35:e8:f7:a9:c0:88:8d:00:cf:dc:31:9f:db:31:fd: ad:71:22:c0:92:56:e3:bb:6a:c5:8f:d8:be:f2:60: 7d:28:dd:15:ef:3d:c8:52:58:b2:a4:0c:55:24:5e: 85:13:75:00:24:ca:98:b7:89:d1:32:05:fe:c4:f8: 2c:79:06:1d:42:8f:88:6a:33:c6:31:9f:3d:63:13: b5:47:33:5a:42:8b:d5:14:f6:b0:a5:20:aa:51:88: 6c:f5:48:29:90:de:e7:4e:df:92:00:9d:76:d3:ab: 81:7e:1e:95:46:1b:01:db:d7:38:eb:6c:86:65:3c: 10:ad:a0:93:4e:84:0e:5f:54:4f:0b:dc:bc:9d:1b: fb:df:cf:46:8d:bb:ba:57:25:27:9a:0b:bb:96:c1: 34:6f:5a:d4:81:25:73:f8:5e:09:f5:cf:2a:75:bc: 52:3f:c4:1b:38:f6:29:09:f0:f7:a2:c5:66:4f:aa: e4:b9:47:8b:98:ef:60:ea:7d:c7:85:4a:2f:b4:53: ff:4e:3b:30:51:01:b7:76:69:cd:ad:48:d8:9d:ad: 2e:a4:dc:e2:e3:ee:7d:6a:62:77:23:f9:98:2c:8e: b9:50:f5:39:64:12:6d:98:d5:47:67:cb:58:0d:8a: 98:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C2:91:29:23:F5:E0:73:15:D8:CB:89:A6:5C:A2:A8:6F:20:65:EF X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/BsKRKSP14HMV2MuJplyiqG8gZe8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.140.0/22 Signature Algorithm: sha256WithRSAEncryption 27:5b:38:f8:4d:9e:5f:2d:c3:ce:7e:ba:49:6b:58:a1:f3:0b: 1b:81:ca:1e:24:bc:6f:70:f8:96:9a:5e:8c:12:e9:d3:11:1a: b4:2f:a8:1b:8f:ea:86:d7:1c:d5:49:a5:bb:bf:56:31:20:b0: 09:6c:29:81:de:87:73:6e:1f:5c:28:0a:1c:c6:78:57:c7:9e: f4:8f:29:ad:69:8b:7d:63:a0:fa:5b:36:f6:6c:47:b8:d7:c3: 9f:52:59:6e:06:17:18:97:95:cc:22:13:13:a5:82:f9:0f:c5: 8e:ab:8b:7b:48:1a:e8:05:46:4a:98:20:6e:a4:eb:7c:f4:91: 86:39:78:c4:23:dd:a9:95:5d:18:80:74:ec:53:e8:ec:73:3d: e0:1b:16:f1:22:41:72:70:44:a2:3e:ff:33:f6:d3:3d:5f:e0: c7:88:32:7c:8c:8c:e9:11:91:b8:fb:f8:e9:27:28:36:b5:aa: 56:3c:85:14:ba:66:78:92:c8:bd:7c:5e:82:15:f6:07:4e:6d: b5:dc:c5:ba:35:f9:f7:d5:e4:3d:29:b8:0d:5d:96:1a:6d:7d: 3e:cf:19:26:cc:0e:9b:fa:df:d7:2e:0c:89:1b:9a:90:dc:e2: af:8a:73:b0:1f:19:95:1e:6c:9e:dd:78:3b:b5:f0:f8:81:47: dd:8a:c7:71 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTA0MDkw NjQ4MjJaFw0yNjA0MDkwNjQxMDhaMDMxMTAvBgNVBAMTKDA2QzI5MTI5MjNGNUUw NzMxNUQ4Q0I4OUE2NUNBMkE4NkYyMDY1RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFFA7fDCjaUrgLvCv2DjXo96nAiI0Az9wxn9sx/a1xIsCSVuO7 asWP2L7yYH0o3RXvPchSWLKkDFUkXoUTdQAkypi3idEyBf7E+Cx5Bh1Cj4hqM8Yx nz1jE7VHM1pCi9UU9rClIKpRiGz1SCmQ3udO35IAnXbTq4F+HpVGGwHb1zjrbIZl PBCtoJNOhA5fVE8L3LydG/vfz0aNu7pXJSeaC7uWwTRvWtSBJXP4Xgn1zyp1vFI/ xBs49ikJ8PeixWZPquS5R4uY72DqfceFSi+0U/9OOzBRAbd2ac2tSNidrS6k3OLj 7n1qYncj+ZgsjrlQ9TlkEm2Y1Udny1gNiphbAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUBsKRKSP14HMV2MuJplyiqG8gZe8wHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvQnNLUktTUDE0SE1W Mk11SnBseWlxRzhnWmU4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsqgjDANBgkqhkiG9w0BAQsFAAOCAQEAJ1s4+E2eXy3Dzn66SWtYofMLG4HK HiS8b3D4lppejBLp0xEatC+oG4/qhtcc1Umlu79WMSCwCWwpgd6Hc24fXCgKHMZ4 V8ee9I8prWmLfWOg+ls29mxHuNfDn1JZbgYXGJeVzCITE6WC+Q/FjquLe0ga6AVG SpggbqTrfPSRhjl4xCPdqZVdGIB07FPo7HM94BsW8SJBcnBEoj7/M/bTPV/gx4gy fIyM6RGRuPv46ScoNrWqVjyFFLpmeJLIvXxeghX2B05ttdzFujX599XkPSm4DV2W Gm19Ps8ZJswOm/rf1y4MiRuakNzir4pzsB8ZlR5snt14O7Xw+IFH3YrHcQ== -----END CERTIFICATE-----Generated at Sat Apr 26 13:12:32 2025 by rpki-client