$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/247/7NVQX1afa0YA2N92trkPikUeq0U.roa File: 7NVQX1afa0YA2N92trkPikUeq0U.roa (raw, json) Hash identifier: hI01GVVR233h7j5Ofr+8nE47tQWPLwdcrXhNW+T0gBQ= Subject key identifier: EC:D5:50:5F:56:9F:6B:46:00:D8:DF:76:B6:B9:0F:8A:45:1E:AB:45 Certificate issuer: /CN=FD27EB32A94DA8CBCB9D7D343FE471DF35C85003 Certificate serial: 207C Authority key identifier: FD:27:EB:32:A9:4D:A8:CB:CB:9D:7D:34:3F:E4:71:DF:35:C8:50:03 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_SfrMqlNqMvLnX00P-Rx3zXIUAM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/7NVQX1afa0YA2N92trkPikUeq0U.roa Signing time: Wed 09 Apr 2025 07:08:29 +0000 ROA not before: Wed 09 Apr 2025 07:08:29 +0000 ROA not after: Thu 09 Apr 2026 06:40:07 +0000 asID: 54994 IP address blocks: 203.130.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/_SfrMqlNqMvLnX00P-Rx3zXIUAM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/_SfrMqlNqMvLnX00P-Rx3zXIUAM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_SfrMqlNqMvLnX00P-Rx3zXIUAM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8316 (0x207c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD27EB32A94DA8CBCB9D7D343FE471DF35C85003 Validity Not Before: Apr 9 07:08:29 2025 GMT Not After : Apr 9 06:40:07 2026 GMT Subject: CN=ECD5505F569F6B4600D8DF76B6B90F8A451EAB45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c6:fe:59:34:e7:6a:37:65:29:25:dd:5b:e1: a9:fb:ee:a5:5b:af:b0:33:5e:0d:aa:cc:8c:80:19: 19:ed:7b:4e:29:31:db:4a:f1:aa:57:8a:17:ad:26: 81:cb:32:91:15:0a:11:cb:1d:c6:aa:25:c3:3a:5f: 86:6a:9d:4d:fd:c9:d8:79:25:60:12:18:98:bc:12: b0:38:c5:4e:12:8e:ab:81:af:ee:e6:7c:24:2a:b6: f6:c8:20:28:15:47:e3:ae:ad:2f:ee:aa:b7:6f:6d: 75:42:fc:2b:fb:e4:1b:2c:c9:c8:c3:c2:64:dd:cd: ef:6f:b3:71:f3:b9:92:d2:45:c9:c4:ac:64:23:64: 2a:aa:ff:e9:a3:63:a1:50:7d:76:c5:d1:eb:49:3e: 63:57:67:b3:62:31:de:80:5e:84:6b:79:67:da:d0: b9:88:1d:3d:b4:13:01:dd:db:9c:57:95:f8:ff:80: 5b:f2:19:1f:3b:b6:2f:9b:90:8e:a5:2d:65:15:1a: fe:20:ab:06:88:3e:35:eb:f1:0c:c6:b6:7d:f5:83: a1:95:12:e4:a0:5f:56:19:d7:43:07:8f:06:18:3a: 76:f4:d6:b8:f7:00:5c:2e:cd:64:a8:cb:9f:da:6e: ba:22:34:ee:d7:90:c7:6d:e7:3b:59:14:ce:03:96: db:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D5:50:5F:56:9F:6B:46:00:D8:DF:76:B6:B9:0F:8A:45:1E:AB:45 X509v3 Authority Key Identifier: keyid:FD:27:EB:32:A9:4D:A8:CB:CB:9D:7D:34:3F:E4:71:DF:35:C8:50:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/_SfrMqlNqMvLnX00P-Rx3zXIUAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_SfrMqlNqMvLnX00P-Rx3zXIUAM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/7NVQX1afa0YA2N92trkPikUeq0U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.130.52.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:55:62:14:f2:a0:2e:ee:47:08:75:e1:dc:8f:b2:14:8f:1c: f2:82:bd:b0:70:e1:1a:4c:d2:67:c2:8a:be:aa:1e:d9:73:6f: 2f:69:71:91:08:08:98:57:9f:08:e7:73:58:14:42:61:40:2a: 6b:95:10:13:53:72:f7:e2:fc:f6:6b:d7:36:c2:ea:55:92:25: 48:e0:59:17:d7:07:b1:95:92:d2:5e:44:4e:e6:55:12:3d:12: 73:38:f0:34:6f:c8:a8:5c:6f:4a:25:57:8b:83:04:25:29:26: 8a:32:37:7c:19:cf:36:08:76:a5:a5:d8:8b:ed:ed:11:d5:64: ff:3c:a5:9d:82:b6:67:ee:b9:ac:38:0d:0f:f4:f6:8e:c2:31: bc:e2:ca:56:f3:83:0e:2a:61:f8:9d:fa:58:88:ad:d9:a5:5e: 01:bf:27:67:cf:c5:d7:29:5a:62:eb:1f:dd:b3:b4:3c:ca:3e: 8f:27:cb:e1:cc:cd:82:4e:48:8e:29:b2:0a:3e:93:31:cd:18: 00:e5:07:5c:eb:ea:de:21:a5:61:b1:bd:e7:dd:ec:a9:75:b5: 4f:02:7e:2a:71:c4:fb:bf:9f:99:62:db:63:5b:04:4b:9a:b3: 57:70:8d:3d:9d:68:93:73:a6:71:bd:fc:48:41:f9:81:29:ee: 6e:0a:6d:fb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkQy N0VCMzJBOTREQThDQkNCOUQ3RDM0M0ZFNDcxREYzNUM4NTAwMzAeFw0yNTA0MDkw NzA4MjlaFw0yNjA0MDkwNjQwMDdaMDMxMTAvBgNVBAMTKEVDRDU1MDVGNTY5RjZC NDYwMEQ4REY3NkI2QjkwRjhBNDUxRUFCNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoxv5ZNOdqN2UpJd1b4an77qVbr7AzXg2qzIyAGRnte04pMdtK 8apXihetJoHLMpEVChHLHcaqJcM6X4ZqnU39ydh5JWASGJi8ErA4xU4SjquBr+7m fCQqtvbIICgVR+OurS/uqrdvbXVC/Cv75BssycjDwmTdze9vs3HzuZLSRcnErGQj ZCqq/+mjY6FQfXbF0etJPmNXZ7NiMd6AXoRreWfa0LmIHT20EwHd25xXlfj/gFvy GR87ti+bkI6lLWUVGv4gqwaIPjXr8QzGtn31g6GVEuSgX1YZ10MHjwYYOnb01rj3 AFwuzWSoy5/abroiNO7XkMdt5ztZFM4DltubAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU7NVQX1afa0YA2N92trkPikUeq0UwHwYDVR0jBBgwFoAU/SfrMqlNqMvLnX00 P+Rx3zXIUAMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQ3 L19TZnJNcWxOcU12TG5YMDBQLVJ4M3pYSVVBTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvX1Nmck1xbE5xTXZMblgwMFAtUngzelhJVUFNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQ3LzdOVlFYMWFmYTBZQTJO OTJ0cmtQaWtVZXEwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLgjQwDQYJKoZIhvcNAQELBQADggEBAE5VYhTyoC7uRwh14dyPshSPHPKCvbBw 4RpM0mfCir6qHtlzby9pcZEICJhXnwjnc1gUQmFAKmuVEBNTcvfi/PZr1zbC6lWS JUjgWRfXB7GVktJeRE7mVRI9EnM48DRvyKhcb0olV4uDBCUpJooyN3wZzzYIdqWl 2Ivt7RHVZP88pZ2Ctmfuuaw4DQ/09o7CMbziylbzgw4qYfid+liIrdmlXgG/J2fP xdcpWmLrH92ztDzKPo8ny+HMzYJOSI4psgo+kzHNGADlB1zr6t4hpWGxvefd7Kl1 tU8CfipxxPu/n5li22NbBEuas1dwjT2daJNzpnG9/EhB+YEp7m4Kbfs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:01 2025 by rpki-client