$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/f0ZGUO9bch1Jbut4POBt4zNBCHQ.roa File: f0ZGUO9bch1Jbut4POBt4zNBCHQ.roa (raw, json) Hash identifier: HGksMQn/YUxBt47YKCnsegoZZk895LLzuOqfQcOcZp4= Subject key identifier: 7F:46:46:50:EF:5B:72:1D:49:6E:EB:78:3C:E0:6D:E3:33:41:08:74 Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 1DA9 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/f0ZGUO9bch1Jbut4POBt4zNBCHQ.roa Signing time: Wed 09 Apr 2025 06:48:18 +0000 ROA not before: Wed 09 Apr 2025 06:48:18 +0000 ROA not after: Thu 09 Apr 2026 06:41:08 +0000 asID: 132168 IP address blocks: 103.204.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7593 (0x1da9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Apr 9 06:48:18 2025 GMT Not After : Apr 9 06:41:08 2026 GMT Subject: CN=7F464650EF5B721D496EEB783CE06DE333410874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f6:c0:bf:01:d9:62:93:f2:8a:08:b7:22:07: 28:95:1e:27:a4:f5:b5:fb:b9:db:a6:4c:26:fa:15: 77:ba:a4:0d:c5:ed:1a:12:7c:ac:e9:41:bc:66:70: 90:ee:38:9c:49:03:f0:4f:44:8a:2d:72:29:99:03: 5a:39:cf:71:2b:61:d6:1a:84:d7:69:90:d7:29:e8: d7:66:2a:1c:fe:34:87:00:7b:8b:e4:9a:3c:9d:77: 14:34:6e:4c:bd:bf:7d:15:cb:61:04:c6:86:77:3f: f8:0d:ef:46:26:f7:a1:64:1b:8b:b5:8e:64:ec:d9: a6:60:b0:6b:05:ed:48:6e:38:31:67:49:86:fb:9b: 7c:23:98:9c:7d:a1:7e:8b:39:34:2c:f5:5a:ce:9d: 76:cf:68:de:6e:e8:84:4d:83:96:15:94:9c:f8:b5: 91:c6:9f:df:72:b1:90:ab:7d:73:0b:28:b9:6d:82: c9:aa:47:70:92:9f:43:a7:6b:61:e2:57:d1:bf:a1: e1:5c:66:db:8c:9a:30:8e:d5:e5:33:e5:40:d8:a3: 58:86:85:c7:21:4e:17:d6:fd:20:78:5b:be:cd:a8: 2e:a4:da:ad:8d:b1:08:3e:be:b3:d9:52:aa:5f:bc: 39:80:83:aa:75:c3:6a:5d:de:61:da:8c:55:55:f7: 95:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:46:46:50:EF:5B:72:1D:49:6E:EB:78:3C:E0:6D:E3:33:41:08:74 X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/f0ZGUO9bch1Jbut4POBt4zNBCHQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.204.72.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:d2:63:e4:04:1a:c5:64:dc:aa:a0:38:ce:c7:d8:61:0a:55: 87:79:6c:51:4c:fd:ef:a4:f3:aa:66:da:13:01:49:4e:a5:25: 27:73:e6:bd:b1:47:9f:6a:d3:5b:51:a1:8f:28:d4:55:31:fc: b2:4c:01:b3:b5:19:b8:75:30:24:fa:44:70:d8:02:28:8d:50: e7:f8:93:e1:e8:5f:65:48:60:43:76:c0:5a:93:f9:4f:99:2c: fd:8e:e4:c7:33:65:1c:83:db:38:39:03:06:8e:6d:82:71:a9: 93:c3:24:50:59:7b:00:e2:ed:02:73:35:42:2f:b7:43:4c:94: d5:a1:31:27:0e:94:3e:fc:bd:5a:5f:65:ab:45:77:50:56:21: bc:24:c3:e2:33:c4:39:38:40:ce:41:7a:89:14:75:cb:f3:aa: 04:ae:47:af:ef:20:7f:0c:a3:1e:e3:9d:89:b8:53:6d:8a:51: ed:2e:05:cf:ea:5f:27:96:7a:80:bb:72:a5:fc:65:68:6e:b4: fc:bf:c4:46:15:93:dc:bf:df:87:68:f0:52:da:c2:37:03:60: c6:32:79:57:bf:af:b8:2d:85:fc:04:cb:de:3d:59:c5:97:76: 39:9c:a1:0b:21:a3:28:e4:73:43:a4:16:54:b7:1e:91:a3:69: 98:66:73:37 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTA0MDkw NjQ4MThaFw0yNjA0MDkwNjQxMDhaMDMxMTAvBgNVBAMTKDdGNDY0NjUwRUY1Qjcy MUQ0OTZFRUI3ODNDRTA2REUzMzM0MTA4NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT9sC/Adlik/KKCLciByiVHiek9bX7udumTCb6FXe6pA3F7RoS fKzpQbxmcJDuOJxJA/BPRIotcimZA1o5z3ErYdYahNdpkNcp6NdmKhz+NIcAe4vk mjyddxQ0bky9v30Vy2EExoZ3P/gN70Ym96FkG4u1jmTs2aZgsGsF7UhuODFnSYb7 m3wjmJx9oX6LOTQs9VrOnXbPaN5u6IRNg5YVlJz4tZHGn99ysZCrfXMLKLltgsmq R3CSn0Ona2HiV9G/oeFcZtuMmjCO1eUz5UDYo1iGhcchThfW/SB4W77NqC6k2q2N sQg+vrPZUqpfvDmAg6p1w2pd3mHajFVV95UXAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUf0ZGUO9bch1Jbut4POBt4zNBCHQwHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvZjBaR1VPOWJjaDFK YnV0NFBPQnQ0ek5CQ0hRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfMSDANBgkqhkiG9w0BAQsFAAOCAQEAjtJj5AQaxWTcqqA4zsfYYQpVh3ls UUz976TzqmbaEwFJTqUlJ3PmvbFHn2rTW1GhjyjUVTH8skwBs7UZuHUwJPpEcNgC KI1Q5/iT4ehfZUhgQ3bAWpP5T5ks/Y7kxzNlHIPbODkDBo5tgnGpk8MkUFl7AOLt AnM1Qi+3Q0yU1aExJw6UPvy9Wl9lq0V3UFYhvCTD4jPEOThAzkF6iRR1y/OqBK5H r+8gfwyjHuOdibhTbYpR7S4Fz+pfJ5Z6gLtypfxlaG60/L/ERhWT3L/fh2jwUtrC NwNgxjJ5V7+vuC2F/ATL3j1ZxZd2OZyhCyGjKORzQ6QWVLcekaNpmGZzNw== -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:41 2025 by rpki-client