$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/87Fb90qL-QBj4izyuFu_KIn_mSo.roa File: 87Fb90qL-QBj4izyuFu_KIn_mSo.roa (raw, json) Hash identifier: q1GvJTn8xuNy3IkA6haRfh1TtoQ6X7KLeDGvW4Xg/qk= Subject key identifier: F3:B1:5B:F7:4A:8B:F9:00:63:E2:2C:F2:B8:5B:BF:28:89:FF:99:2A Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 3A Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/87Fb90qL-QBj4izyuFu_KIn_mSo.roa Signing time: Thu 17 Apr 2025 11:34:33 +0000 ROA not before: Thu 17 Apr 2025 11:34:33 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.115.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:34:33 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=F3B15BF74A8BF90063E22CF2B85BBF2889FF992A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1a:cb:e4:cd:e0:18:b0:44:ee:31:d1:fc:c9: 86:e7:b2:8e:76:77:f4:ab:67:49:7b:59:8b:53:32: 01:2f:f3:18:81:87:b5:8f:4f:3f:37:d3:8b:6f:a1: d7:60:12:b1:0e:35:8e:03:bd:32:44:07:8e:ef:82: c1:dd:dc:bf:ca:08:6f:ca:02:0e:69:4a:a7:11:61: ef:e2:db:8e:ac:b7:9c:72:20:f1:35:a1:d9:bf:4a: b8:78:04:80:39:ec:bc:f9:57:35:30:1b:d9:7e:bc: db:dd:e6:9b:5d:92:60:d9:69:15:4a:f5:de:03:d5: 63:e6:57:0d:20:80:16:b2:87:2f:7c:27:7f:6a:f7: ce:b3:27:a8:61:ce:c6:6e:89:2b:38:43:d2:78:90: 96:e3:e9:c8:cc:47:51:0c:64:c1:c1:80:94:57:80: 08:d1:ae:71:eb:19:7c:8a:4e:f9:ac:f8:58:7c:1e: 67:f2:20:fb:e3:0c:15:25:e9:e7:8b:ef:da:a8:2d: 9f:3a:d1:18:b8:9b:6b:dc:b1:4b:09:25:dd:3d:11: 76:82:89:f0:04:72:ab:dc:66:c5:d2:07:c9:d3:b0: 31:bb:fb:2a:ec:e4:32:47:9f:dc:f3:f4:3b:8a:5f: cf:a9:01:54:eb:8a:6d:d0:33:e9:d7:9c:9e:47:ce: cb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B1:5B:F7:4A:8B:F9:00:63:E2:2C:F2:B8:5B:BF:28:89:FF:99:2A X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/87Fb90qL-QBj4izyuFu_KIn_mSo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.115.56.0/22 Signature Algorithm: sha256WithRSAEncryption 17:7a:78:0d:3d:50:d9:fa:b2:cb:04:b7:be:3e:35:fe:a7:7d: 07:c2:14:da:d7:90:d6:ef:1f:95:cb:98:88:c8:53:85:d9:92: 38:0e:27:f8:d9:38:60:7f:61:34:12:01:f0:00:d5:5e:7d:20: 91:d1:12:58:be:94:7f:70:a8:e4:8e:44:bd:1f:93:7f:0e:91: e7:23:22:f4:19:c3:1d:a1:b1:6c:76:9c:7f:b1:92:46:96:9e: 3b:c0:8c:7c:af:3c:de:4c:e6:a5:32:cb:a9:d0:51:d0:f0:e6: 1e:06:17:26:d2:02:12:05:74:f4:10:e3:d5:7c:9c:5e:5e:97: 27:d2:03:63:48:22:87:e3:d3:4d:76:61:ab:9e:9c:fb:c4:b2: 96:70:6a:d4:b2:a0:9b:7c:58:df:04:68:76:5a:d7:b1:3c:fb: f6:91:e6:c1:28:b4:16:38:2a:b7:7c:61:83:6e:40:5b:77:eb: cf:69:88:be:14:de:af:53:01:d6:18:5d:6f:dd:15:e3:ad:4b: 10:f7:a0:82:2e:4f:84:35:bd:25:f8:2b:6c:4f:56:4f:94:d8: 32:92:e5:5f:e4:76:3e:6b:b4:e3:cd:8e:9e:16:63:3c:02:60: 3c:2e:52:53:17:f0:e7:0e:0b:21:e0:ba:e4:36:ee:1e:24:ba: 4f:d8:9b:5c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzQzM1oXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoRjNCMTVCRjc0QThCRjkw MDYzRTIyQ0YyQjg1QkJGMjg4OUZGOTkyQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN8ay+TN4BiwRO4x0fzJhueyjnZ39KtnSXtZi1MyAS/zGIGHtY9P PzfTi2+h12ASsQ41jgO9MkQHju+Cwd3cv8oIb8oCDmlKpxFh7+Lbjqy3nHIg8TWh 2b9KuHgEgDnsvPlXNTAb2X68293mm12SYNlpFUr13gPVY+ZXDSCAFrKHL3wnf2r3 zrMnqGHOxm6JKzhD0niQluPpyMxHUQxkwcGAlFeACNGucesZfIpO+az4WHweZ/Ig ++MMFSXp54vv2qgtnzrRGLiba9yxSwkl3T0RdoKJ8ARyq9xmxdIHydOwMbv7Kuzk Mkef3PP0O4pfz6kBVOuKbdAz6decnkfOy3sCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTzsVv3Sov5AGPiLPK4W78oif+ZKjAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi84N0ZiOTBxTC1RQmo0 aXp5dUZ1X0tJbl9tU28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3M4MA0GCSqGSIb3DQEBCwUAA4IBAQAXengNPVDZ+rLLBLe+PjX+p30HwhTa 15DW7x+Vy5iIyFOF2ZI4Dif42Thgf2E0EgHwANVefSCR0RJYvpR/cKjkjkS9H5N/ DpHnIyL0GcMdobFsdpx/sZJGlp47wIx8rzzeTOalMsup0FHQ8OYeBhcm0gISBXT0 EOPVfJxeXpcn0gNjSCKH49NNdmGrnpz7xLKWcGrUsqCbfFjfBGh2WtexPPv2kebB KLQWOCq3fGGDbkBbd+vPaYi+FN6vUwHWGF1v3RXjrUsQ96CCLk+ENb0l+CtsT1ZP lNgykuVf5HY+a7TjzY6eFmM8AmA8LlJTF/DnDgsh4LrkNu4eJLpP2Jtc -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:06 2025 by rpki-client