$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/E-BHpiLu6fnnMJjoOhA2dCwpzRw.roa File: E-BHpiLu6fnnMJjoOhA2dCwpzRw.roa (raw, json) Hash identifier: 8wwwnenBqMQ7Bxp2kSAmh3xXgwn6pL2Kdpyn2FevBgI= Subject key identifier: 13:E0:47:A6:22:EE:E9:F9:E7:30:98:E8:3A:10:36:74:2C:29:CD:1C Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 48 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/E-BHpiLu6fnnMJjoOhA2dCwpzRw.roa Signing time: Thu 17 Apr 2025 11:45:23 +0000 ROA not before: Thu 17 Apr 2025 11:45:23 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.118.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:45:23 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=13E047A622EEE9F9E73098E83A1036742C29CD1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a3:01:e4:92:a0:92:ca:ee:16:f8:0a:fe:d7: 52:e7:b4:57:45:9f:ad:86:fa:5c:b6:c6:96:c1:c4: ac:c6:c9:36:90:30:25:7e:fa:16:9f:4c:d4:e2:14: d4:ff:72:65:3b:54:2c:93:b7:45:f3:60:31:4c:d5: cf:e5:7d:88:a0:fc:9c:e5:e4:c9:a3:e4:bc:18:76: 35:c1:ea:f0:58:3c:0d:1d:f2:57:d2:86:e9:e3:27: 4a:6e:2f:81:5a:17:68:7c:11:29:ea:40:7f:59:fc: f0:37:67:c0:7e:ac:76:96:84:21:53:1a:90:0d:fc: 7a:42:59:1f:73:74:98:9f:da:99:23:30:a8:19:ba: 2b:d1:6c:d4:42:d1:35:53:88:76:6c:a8:e6:9d:6f: ed:1d:00:c1:6d:8d:41:91:73:e8:4b:d1:11:92:7d: b2:1b:90:48:9d:d1:1c:35:61:36:c0:b4:76:15:22: 85:1e:1a:41:86:89:f8:21:99:db:8f:94:6d:e4:dd: 58:c3:1f:b2:61:f6:b9:d4:d8:1b:99:84:b3:03:a5: 1d:52:a2:81:79:23:3a:b0:04:a2:f8:dd:27:63:4a: f7:71:25:d9:6f:00:12:a2:8f:79:db:ea:6c:0d:4c: f8:b6:a1:7f:85:a6:89:06:51:2c:0a:61:97:5e:d1: 81:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E0:47:A6:22:EE:E9:F9:E7:30:98:E8:3A:10:36:74:2C:29:CD:1C X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/E-BHpiLu6fnnMJjoOhA2dCwpzRw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.244.0/22 Signature Algorithm: sha256WithRSAEncryption 85:90:3a:b2:df:d1:ca:88:b4:7c:3b:e7:38:1f:0e:f3:e3:29: 30:e5:71:75:2c:7f:0a:dc:10:14:da:34:d4:14:02:e8:ba:86: a0:ac:37:28:c9:68:73:41:6a:9f:60:60:e2:cf:2a:2e:c2:94: f9:de:06:a9:e8:56:ca:c8:ae:58:98:a7:f7:7a:9d:c5:d4:73: 6e:21:e4:5d:05:0a:8a:95:45:f1:7d:ae:9d:3c:61:7e:06:5d: 3a:8d:69:4b:17:88:12:d6:0f:b4:ed:8c:1c:3e:6b:69:1e:0d: f0:f4:39:60:d2:64:0c:84:0d:65:19:8b:65:cd:9a:af:75:ea: 39:cc:4d:30:ea:5e:c7:d8:9e:4b:da:e0:ed:a0:a8:8c:73:ad: a2:24:b7:9e:4a:de:0b:7f:23:ff:da:8a:07:cf:eb:43:d9:9d: 32:1f:80:56:57:5a:ce:f6:9d:e9:4b:52:53:26:13:77:bb:70: d0:65:b4:dc:0e:e2:79:f1:fe:91:21:df:e0:29:90:b0:16:79: 7e:8b:f8:68:2e:c3:9c:3b:36:75:ce:ea:eb:ba:00:0a:c9:18: 55:b0:37:69:e7:27:bb:16:57:33:e0:9f:75:7a:dc:50:6e:0a: 47:bf:15:90:7b:0c:74:eb:24:84:0b:0a:3f:7b:d5:2c:b3:6a: f4:4a:3e:d7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx NDUyM1oXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoMTNFMDQ3QTYyMkVFRTlG OUU3MzA5OEU4M0ExMDM2NzQyQzI5Q0QxQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMCjAeSSoJLK7hb4Cv7XUue0V0WfrYb6XLbGlsHErMbJNpAwJX76 Fp9M1OIU1P9yZTtULJO3RfNgMUzVz+V9iKD8nOXkyaPkvBh2NcHq8Fg8DR3yV9KG 6eMnSm4vgVoXaHwRKepAf1n88DdnwH6sdpaEIVMakA38ekJZH3N0mJ/amSMwqBm6 K9Fs1ELRNVOIdmyo5p1v7R0AwW2NQZFz6EvREZJ9shuQSJ3RHDVhNsC0dhUihR4a QYaJ+CGZ24+UbeTdWMMfsmH2udTYG5mEswOlHVKigXkjOrAEovjdJ2NK93El2W8A EqKPedvqbA1M+Lahf4WmiQZRLAphl17RgbcCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQT4EemIu7p+ecwmOg6EDZ0LCnNHDAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9FLUJIcGlMdTZmbm5N SmpvT2hBMmRDd3B6Uncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3b0MA0GCSqGSIb3DQEBCwUAA4IBAQCFkDqy39HKiLR8O+c4Hw7z4ykw5XF1 LH8K3BAU2jTUFALouoagrDcoyWhzQWqfYGDizyouwpT53gap6FbKyK5YmKf3ep3F 1HNuIeRdBQqKlUXxfa6dPGF+Bl06jWlLF4gS1g+07YwcPmtpHg3w9Dlg0mQMhA1l GYtlzZqvdeo5zE0w6l7H2J5L2uDtoKiMc62iJLeeSt4LfyP/2ooHz+tD2Z0yH4BW V1rO9p3pS1JTJhN3u3DQZbTcDuJ58f6RId/gKZCwFnl+i/hoLsOcOzZ1zurrugAK yRhVsDdp5ye7Flcz4J91etxQbgpHvxWQewx06ySECwo/e9Uss2r0Sj7X -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:04 2025 by rpki-client