$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/ArDdaiQ8muMJu2nYo3I-zvDrVl8.roa File: ArDdaiQ8muMJu2nYo3I-zvDrVl8.roa (raw, json) Hash identifier: BceRGcTmBGR/acYjl2O+YdJmDn13ukXV8iYrPW4Z0z8= Subject key identifier: 02:B0:DD:6A:24:3C:9A:E3:09:BB:69:D8:A3:72:3E:CE:F0:EB:56:5F Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 3E Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/ArDdaiQ8muMJu2nYo3I-zvDrVl8.roa Signing time: Thu 17 Apr 2025 11:42:30 +0000 ROA not before: Thu 17 Apr 2025 11:42:30 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 134176 IP address blocks: 103.115.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:42:30 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=02B0DD6A243C9AE309BB69D8A3723ECEF0EB565F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:44:33:c1:ce:c8:64:1e:e3:55:b4:84:5e:9c: c8:bd:06:ec:af:73:5d:d4:20:98:f6:f0:ce:7c:cc: b5:57:0f:23:eb:9e:ad:d3:57:68:7a:11:38:e2:c4: 2d:48:f4:a8:9d:bb:dd:4e:01:f4:3b:2b:3f:10:a9: a9:aa:4d:cc:5f:a4:02:7a:cd:9e:b9:7a:c3:9b:5a: 3e:84:ad:54:fc:86:5c:fb:8e:10:43:5e:68:73:71: 23:b3:9b:b5:bc:7a:2b:4b:42:4f:4c:69:f4:14:8e: 27:9b:6c:6b:09:88:73:56:79:60:c3:0f:f4:3f:48: 23:e2:c0:14:a2:49:19:f1:47:af:73:e9:04:a8:30: 13:f2:e8:71:55:ab:a9:13:5c:c4:7e:c5:a7:4f:85: 75:82:4a:2b:f7:77:33:e7:cf:d2:d6:aa:8f:75:0b: 18:a1:9b:91:c9:20:9b:89:10:10:58:1c:1e:12:18: 40:85:c5:66:38:d7:6f:a3:20:56:47:fd:fc:6e:88: 89:11:46:d1:b8:85:6d:51:1a:c2:fb:63:c5:8c:b1: 20:5a:34:b3:3f:61:c8:18:26:f9:9b:48:d9:32:60: 71:8d:0a:23:35:7c:18:8e:25:3d:df:f9:b2:27:bb: f5:c3:57:99:e7:f7:c4:4c:29:2e:e3:68:ef:3a:13: 69:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B0:DD:6A:24:3C:9A:E3:09:BB:69:D8:A3:72:3E:CE:F0:EB:56:5F X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/ArDdaiQ8muMJu2nYo3I-zvDrVl8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.115.67.0/24 Signature Algorithm: sha256WithRSAEncryption 45:7e:99:9c:9b:cd:06:b3:c0:23:dc:df:2b:5f:5b:ab:64:16: b5:2e:dc:ea:11:0b:81:b7:e3:7f:d1:f6:1f:f3:b4:e4:6d:61: d7:3e:de:89:0a:d9:5d:80:7a:0c:15:86:ac:da:83:5d:64:dd: f1:48:f0:f6:52:c5:bb:60:dd:c3:6b:da:b8:2b:7c:7e:71:04: ca:47:f5:f8:92:b0:d6:71:cc:67:35:1b:2d:86:f9:f3:04:8f: b4:89:d7:7a:e5:3b:e9:cb:16:24:ab:ed:f3:67:ff:08:c8:a5: 0f:2c:f3:d3:06:ff:09:8a:0e:9a:5f:1c:10:b2:0e:93:81:75: 5a:70:93:01:c9:09:15:7a:a0:20:fc:b9:04:95:e9:ae:2c:3a: 9e:34:b4:62:7c:37:20:b6:77:2b:6e:1d:25:36:97:2e:7a:f0: dc:c5:a6:82:3f:11:73:80:ff:1f:f0:d5:28:13:51:a3:fc:76: 4e:3c:34:89:9e:75:b0:ad:ac:d4:63:82:88:f9:63:f6:21:6b: d3:47:bb:34:d4:a5:cb:0a:df:3c:61:d7:65:97:09:4c:a7:b4: d2:67:cd:1c:07:89:32:7e:94:ac:12:3b:74:7b:b5:c7:f5:0c: cf:5f:33:a7:a5:45:96:be:fb:e4:5a:58:1f:d9:9d:7b:86:26: d2:ea:9c:9c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx NDIzMFoXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoMDJCMERENkEyNDNDOUFF MzA5QkI2OUQ4QTM3MjNFQ0VGMEVCNTY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL5EM8HOyGQe41W0hF6cyL0G7K9zXdQgmPbwznzMtVcPI+uerdNX aHoROOLELUj0qJ273U4B9DsrPxCpqapNzF+kAnrNnrl6w5taPoStVPyGXPuOEENe aHNxI7Obtbx6K0tCT0xp9BSOJ5tsawmIc1Z5YMMP9D9II+LAFKJJGfFHr3PpBKgw E/LocVWrqRNcxH7Fp0+FdYJKK/d3M+fP0taqj3ULGKGbkckgm4kQEFgcHhIYQIXF ZjjXb6MgVkf9/G6IiRFG0biFbVEawvtjxYyxIFo0sz9hyBgm+ZtI2TJgcY0KIzV8 GI4lPd/5sie79cNXmef3xEwpLuNo7zoTaZkCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQCsN1qJDya4wm7adijcj7O8OtWXzAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9BckRkYWlROG11TUp1 Mm5ZbzNJLXp2RHJWbDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3NDMA0GCSqGSIb3DQEBCwUAA4IBAQBFfpmcm80Gs8Aj3N8rX1urZBa1Ltzq EQuBt+N/0fYf87TkbWHXPt6JCtldgHoMFYas2oNdZN3xSPD2UsW7YN3Da9q4K3x+ cQTKR/X4krDWccxnNRsthvnzBI+0idd65TvpyxYkq+3zZ/8IyKUPLPPTBv8Jig6a XxwQsg6TgXVacJMByQkVeqAg/LkElemuLDqeNLRifDcgtncrbh0lNpcuevDcxaaC PxFzgP8f8NUoE1Gj/HZOPDSJnnWwrazUY4KI+WP2IWvTR7s01KXLCt88YddllwlM p7TSZ80cB4kyfpSsEjt0e7XH9QzPXzOnpUWWvvvkWlgf2Z17hibS6pyc -----END CERTIFICATE-----Generated at Sat Apr 26 15:33:22 2025 by rpki-client