$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/247/ax6Brr5Qy4yty1JTej5RprcHubo.roa File: ax6Brr5Qy4yty1JTej5RprcHubo.roa (raw, json) Hash identifier: pa2V1Imp9zLF4DnXCoh5XMu4J52FFjBTSGSbQ+qwgzY= Subject key identifier: 6B:1E:81:AE:BE:50:CB:8C:AD:CB:52:53:7A:3E:51:A6:B7:07:B9:BA Certificate issuer: /CN=FD27EB32A94DA8CBCB9D7D343FE471DF35C85003 Certificate serial: 207E Authority key identifier: FD:27:EB:32:A9:4D:A8:CB:CB:9D:7D:34:3F:E4:71:DF:35:C8:50:03 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_SfrMqlNqMvLnX00P-Rx3zXIUAM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/ax6Brr5Qy4yty1JTej5RprcHubo.roa Signing time: Wed 09 Apr 2025 07:08:30 +0000 ROA not before: Wed 09 Apr 2025 07:08:30 +0000 ROA not after: Thu 09 Apr 2026 06:40:07 +0000 asID: 54994 IP address blocks: 203.130.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/_SfrMqlNqMvLnX00P-Rx3zXIUAM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/_SfrMqlNqMvLnX00P-Rx3zXIUAM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_SfrMqlNqMvLnX00P-Rx3zXIUAM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8318 (0x207e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD27EB32A94DA8CBCB9D7D343FE471DF35C85003 Validity Not Before: Apr 9 07:08:30 2025 GMT Not After : Apr 9 06:40:07 2026 GMT Subject: CN=6B1E81AEBE50CB8CADCB52537A3E51A6B707B9BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:73:89:14:ef:9a:e7:3f:f0:77:7b:89:44:ca: e9:ee:32:88:40:f5:ad:f3:76:20:bb:95:42:53:82: 76:df:41:d2:01:78:f3:95:22:6d:f6:29:6a:66:b7: c0:ce:9e:27:7a:d9:78:16:df:9a:c0:b9:36:41:f3: bd:54:57:18:52:f5:9b:9d:cc:e0:a8:0d:6b:81:3b: b3:3f:52:98:e8:be:35:e0:ab:78:a8:67:bd:e1:be: 63:46:3a:94:32:fb:80:ac:8f:32:4e:c6:05:73:89: 11:98:3f:bc:29:6a:91:66:a8:9a:9a:68:06:b3:7d: f3:6d:af:c4:ae:72:d0:78:ed:7d:8f:5b:37:f0:7d: 97:ad:e2:ca:b9:b8:ff:8d:5e:ae:80:f3:23:e0:80: 33:3b:04:40:04:14:ee:62:00:e6:03:c3:e2:37:2b: 15:8e:9c:d1:90:01:af:3d:db:a0:55:87:e9:0f:41: cc:3c:19:24:6a:54:86:79:17:4d:e3:1e:d8:02:e3: 0b:fa:34:de:ee:9b:31:fb:62:49:e0:e3:45:03:01: a1:46:77:cd:e8:84:76:7a:ba:61:51:c3:84:53:75: fa:fe:1f:cc:07:9b:3e:f9:a1:6e:68:4c:dc:1b:e2: 5e:a0:ba:68:d6:6a:8f:23:79:c6:cf:d5:5f:e6:ef: 82:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1E:81:AE:BE:50:CB:8C:AD:CB:52:53:7A:3E:51:A6:B7:07:B9:BA X509v3 Authority Key Identifier: keyid:FD:27:EB:32:A9:4D:A8:CB:CB:9D:7D:34:3F:E4:71:DF:35:C8:50:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/_SfrMqlNqMvLnX00P-Rx3zXIUAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_SfrMqlNqMvLnX00P-Rx3zXIUAM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/247/ax6Brr5Qy4yty1JTej5RprcHubo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.130.63.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:7f:7a:9f:13:72:26:06:33:ae:77:4d:bc:be:0b:f5:1c:67: 68:a1:fa:8e:50:67:19:5f:51:f8:5a:32:60:da:0e:64:26:61: 5a:22:fa:5a:70:6e:cd:62:de:21:62:0c:bb:93:ea:2d:91:28: ac:c3:4a:e2:04:44:d0:90:3c:09:96:1e:9b:19:1a:53:ef:36: b5:4d:77:74:72:6b:6a:7a:a9:8c:3b:3b:00:6f:86:fa:7d:ea: 51:23:e4:40:c7:ee:72:cc:e2:37:06:40:c0:bb:48:58:2d:68: 04:cc:82:e4:ee:68:85:97:ca:6d:b9:55:79:86:37:b7:38:77: a5:7e:8a:c4:d1:5d:4a:be:fd:36:ce:fa:4f:cd:d5:0e:d2:e1: 66:04:5e:a8:db:78:e3:c7:67:ca:1a:d0:7f:e2:cc:11:8a:c7: 25:4d:e6:9d:dd:4c:4f:09:da:67:57:fb:ba:4f:27:fe:0a:31: 6c:3b:a0:b6:22:9c:05:95:a4:57:38:49:70:c9:b7:81:13:cb: 50:d6:1f:b4:34:f9:79:a3:4f:7c:e8:35:b7:93:b5:93:dd:c8: 45:16:04:20:c3:43:70:11:96:86:86:37:2b:fa:70:1b:f2:69: fc:88:c3:93:a5:94:10:11:7f:79:4a:d9:3a:94:17:4b:b3:d8: c7:bd:d7:df -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkQy N0VCMzJBOTREQThDQkNCOUQ3RDM0M0ZFNDcxREYzNUM4NTAwMzAeFw0yNTA0MDkw NzA4MzBaFw0yNjA0MDkwNjQwMDdaMDMxMTAvBgNVBAMTKDZCMUU4MUFFQkU1MENC OENBRENCNTI1MzdBM0U1MUE2QjcwN0I5QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbc4kU75rnP/B3e4lEyunuMohA9a3zdiC7lUJTgnbfQdIBePOV Im32KWpmt8DOnid62XgW35rAuTZB871UVxhS9ZudzOCoDWuBO7M/UpjovjXgq3io Z73hvmNGOpQy+4CsjzJOxgVziRGYP7wpapFmqJqaaAazffNtr8SuctB47X2PWzfw fZet4sq5uP+NXq6A8yPggDM7BEAEFO5iAOYDw+I3KxWOnNGQAa8926BVh+kPQcw8 GSRqVIZ5F03jHtgC4wv6NN7umzH7Ykng40UDAaFGd83ohHZ6umFRw4RTdfr+H8wH mz75oW5oTNwb4l6gumjWao8jecbP1V/m74JRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUax6Brr5Qy4yty1JTej5RprcHubowHwYDVR0jBBgwFoAU/SfrMqlNqMvLnX00 P+Rx3zXIUAMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQ3 L19TZnJNcWxOcU12TG5YMDBQLVJ4M3pYSVVBTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvX1Nmck1xbE5xTXZMblgwMFAtUngzelhJVUFNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQ3L2F4NkJycjVReTR5dHkx SlRlajVScHJjSHViby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLgj8wDQYJKoZIhvcNAQELBQADggEBAFt/ep8TciYGM653Tby+C/UcZ2ih+o5Q ZxlfUfhaMmDaDmQmYVoi+lpwbs1i3iFiDLuT6i2RKKzDSuIERNCQPAmWHpsZGlPv NrVNd3Rya2p6qYw7OwBvhvp96lEj5EDH7nLM4jcGQMC7SFgtaATMguTuaIWXym25 VXmGN7c4d6V+isTRXUq+/TbO+k/N1Q7S4WYEXqjbeOPHZ8oa0H/izBGKxyVN5p3d TE8J2mdX+7pPJ/4KMWw7oLYinAWVpFc4SXDJt4ETy1DWH7Q0+XmjT3zoNbeTtZPd yEUWBCDDQ3ARloaGNyv6cBvyafyIw5OllBARf3lK2TqUF0uz2Me9198= -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:53 2025 by rpki-client