$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1587/wtvTPuhmzVJCd_X7b2rh9ryeHF8.roa File: wtvTPuhmzVJCd_X7b2rh9ryeHF8.roa (raw, json) Hash identifier: l8TmmsUONvk+RcsfGvugUdYcEvXw0az+pgPY+bq0Rko= Subject key identifier: C2:DB:D3:3E:E8:66:CD:52:42:77:F5:FB:6F:6A:E1:F6:BC:9E:1C:5F Certificate issuer: /CN=49449B46CAECE75D1C558061394DB402B6D009BE Certificate serial: 1DB0 Authority key identifier: 49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/wtvTPuhmzVJCd_X7b2rh9ryeHF8.roa Signing time: Wed 09 Apr 2025 06:48:21 +0000 ROA not before: Wed 09 Apr 2025 06:48:21 +0000 ROA not after: Thu 09 Apr 2026 06:41:08 +0000 asID: 59033 IP address blocks: 202.160.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7600 (0x1db0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49449B46CAECE75D1C558061394DB402B6D009BE Validity Not Before: Apr 9 06:48:21 2025 GMT Not After : Apr 9 06:41:08 2026 GMT Subject: CN=C2DBD33EE866CD524277F5FB6F6AE1F6BC9E1C5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ad:3e:28:04:58:7a:e7:0b:7a:67:b9:d6:c6: 05:f3:10:48:cf:b1:67:0a:08:22:bd:7a:5b:45:9a: 97:01:92:6b:9a:88:55:5f:a2:1e:c8:ba:b2:f5:0b: 8c:19:9e:fc:ff:af:91:94:30:c8:49:a7:8d:85:8d: 1c:b5:6c:d9:7f:07:34:5a:44:f4:f7:cd:18:55:b9: dc:01:1c:46:aa:9a:82:7f:3c:fa:80:f0:7f:ae:2d: dd:c8:c9:28:b8:33:db:dc:26:d4:4d:da:3a:21:22: 0e:c6:c1:76:9d:30:54:3a:0a:68:9d:3b:35:2f:04: b9:aa:4a:62:42:cb:73:80:6b:31:3f:20:36:d2:67: 94:ad:5f:d4:16:d5:bb:15:79:45:ae:09:2c:9d:ac: 16:cd:54:a1:2a:c4:02:9e:de:b0:d1:55:ad:0e:40: e3:92:2f:59:93:0d:b0:da:bf:2b:87:57:26:c4:78: 63:da:27:db:68:93:9a:f3:5c:4f:c9:96:f2:9e:68: b4:7a:c1:95:48:ad:76:5b:7a:1a:f3:a8:5e:35:8a: 66:fc:c4:db:bb:f5:04:84:08:18:55:98:80:ee:2f: ea:17:bd:f4:14:46:ce:b1:23:b0:a2:61:49:07:50: c9:2a:4b:0f:b5:f2:ee:74:c4:bb:76:6f:de:18:c5: 9d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DB:D3:3E:E8:66:CD:52:42:77:F5:FB:6F:6A:E1:F6:BC:9E:1C:5F X509v3 Authority Key Identifier: keyid:49:44:9B:46:CA:EC:E7:5D:1C:55:80:61:39:4D:B4:02:B6:D0:09:BE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/SUSbRsrs510cVYBhOU20ArbQCb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SUSbRsrs510cVYBhOU20ArbQCb4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1587/wtvTPuhmzVJCd_X7b2rh9ryeHF8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.140.0/22 Signature Algorithm: sha256WithRSAEncryption 05:d7:ae:be:94:27:cd:05:63:9a:fd:62:c7:b4:79:d0:04:dc: 11:43:ef:e3:1c:de:50:ef:30:61:0f:44:e3:1a:d7:ac:f2:01: e0:65:7b:b6:3a:9a:6b:de:ba:02:9a:dd:ff:17:93:8e:f3:ef: 8b:48:c6:dd:b5:a9:77:11:14:a3:1a:e5:f0:22:3c:4f:d0:d0: 1e:0e:dd:32:20:15:60:49:f0:80:95:b4:dd:d6:42:76:54:9f: 73:ba:20:3e:af:37:03:20:85:ed:6e:36:8b:c1:b6:0c:0b:2c: ef:fe:c4:6b:8f:f5:68:11:56:f5:c1:ad:d1:c9:79:79:15:11: 0d:64:21:ed:4e:7d:d7:d2:63:84:43:1f:8b:b6:b9:63:5d:16: fc:1e:19:a6:ae:78:49:32:d9:57:c9:9c:fa:57:2e:8c:5c:68: d2:2e:55:59:5c:47:4b:71:28:29:8b:4a:75:65:60:9a:c1:ef: 4a:2f:92:eb:46:51:3a:10:4d:05:37:dc:6f:86:bc:f8:bd:50: a7:4d:40:0c:af:05:2b:11:d7:c9:dc:aa:0d:82:e4:ca:e3:c1: c0:78:ff:ee:e2:9a:41:22:1b:49:16:9d:d3:14:45:10:fd:de: be:10:2e:b9:83:ea:4f:ba:2f:0f:bd:f1:11:3a:8a:4d:2c:f7: e7:86:02:59 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICHbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDk0 NDlCNDZDQUVDRTc1RDFDNTU4MDYxMzk0REI0MDJCNkQwMDlCRTAeFw0yNTA0MDkw NjQ4MjFaFw0yNjA0MDkwNjQxMDhaMDMxMTAvBgNVBAMTKEMyREJEMzNFRTg2NkNE NTI0Mjc3RjVGQjZGNkFFMUY2QkM5RTFDNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhrT4oBFh65wt6Z7nWxgXzEEjPsWcKCCK9eltFmpcBkmuaiFVf oh7IurL1C4wZnvz/r5GUMMhJp42FjRy1bNl/BzRaRPT3zRhVudwBHEaqmoJ/PPqA 8H+uLd3IySi4M9vcJtRN2johIg7GwXadMFQ6CmidOzUvBLmqSmJCy3OAazE/IDbS Z5StX9QW1bsVeUWuCSydrBbNVKEqxAKe3rDRVa0OQOOSL1mTDbDavyuHVybEeGPa J9tok5rzXE/JlvKeaLR6wZVIrXZbehrzqF41imb8xNu79QSECBhVmIDuL+oXvfQU Rs6xI7CiYUkHUMkqSw+18u50xLt2b94YxZ1nAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUwtvTPuhmzVJCd/X7b2rh9ryeHF8wHwYDVR0jBBgwFoAUSUSbRsrs510cVYBh OU20ArbQCb4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTU4 Ny9TVVNiUnNyczUxMGNWWUJoT1UyMEFyYlFDYjQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NVU2JSc3JzNTEwY1ZZQmhPVTIwQXJiUUNiNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE1ODcvd3R2VFB1aG16VkpD ZF9YN2Iycmg5cnllSEY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsqgjDANBgkqhkiG9w0BAQsFAAOCAQEABdeuvpQnzQVjmv1ix7R50ATcEUPv 4xzeUO8wYQ9E4xrXrPIB4GV7tjqaa966Aprd/xeTjvPvi0jG3bWpdxEUoxrl8CI8 T9DQHg7dMiAVYEnwgJW03dZCdlSfc7ogPq83AyCF7W42i8G2DAss7/7Ea4/1aBFW 9cGt0cl5eRURDWQh7U5919JjhEMfi7a5Y10W/B4Zpq54STLZV8mc+lcujFxo0i5V WVxHS3EoKYtKdWVgmsHvSi+S60ZROhBNBTfcb4a8+L1Qp01ADK8FKxHXydyqDYLk yuPBwHj/7uKaQSIbSRad0xRFEP3evhAuuYPqT7ovD73xETqKTSz354YCWQ== -----END CERTIFICATE-----Generated at Sat Apr 26 15:27:30 2025 by rpki-client