$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/P6r-jtYQX8yuW5PIPBrquKAR6nA.roa File: P6r-jtYQX8yuW5PIPBrquKAR6nA.roa (raw, json) Hash identifier: kJvFQkYyYdCzU5NFQjCtBIMRDv5WQ8NuwhIoJ5VyIAg= Subject key identifier: 3F:AA:FE:8E:D6:10:5F:CC:AE:5B:93:C8:3C:1A:EA:B8:A0:11:EA:70 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 2C Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/P6r-jtYQX8yuW5PIPBrquKAR6nA.roa Signing time: Thu 17 Apr 2025 11:34:28 +0000 ROA not before: Thu 17 Apr 2025 11:34:28 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.115.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:34:28 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=3FAAFE8ED6105FCCAE5B93C83C1AEAB8A011EA70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c2:95:62:c8:65:32:c7:8c:9b:93:e6:51:65: ed:b9:42:6d:3b:e8:04:c9:d5:8f:2c:56:34:79:0b: dd:6a:20:79:52:1b:55:14:1e:50:98:5b:a7:dc:53: 09:04:36:03:d6:0f:53:98:1b:d8:8f:51:68:e6:3a: 9e:34:d2:f6:9b:27:a7:47:e8:95:4d:60:81:42:44: db:66:04:78:52:1a:b0:43:76:09:b2:b3:88:24:25: 12:f1:dc:90:a5:46:5b:51:5f:9c:33:68:25:c2:0c: 47:57:b3:f7:9b:8d:cd:6d:f6:41:d5:81:bd:a3:28: 3d:74:47:52:11:3a:03:61:d5:3f:11:5e:fd:3c:6d: f1:d1:e2:f8:61:47:80:51:7a:50:9a:f1:60:de:78: 4d:a5:7e:b1:d7:c6:0f:b0:67:a0:e3:f8:75:38:74: 2b:cf:ee:73:21:cb:86:07:70:64:d5:f0:05:9b:b8: d8:8c:0f:f2:17:2f:a7:65:ae:0e:b4:c4:3e:37:fe: d9:a0:fc:05:f7:f9:e9:d6:6c:3a:5c:f8:ff:71:b3: c7:6f:78:c1:61:b4:14:44:5a:c4:33:45:c9:07:d1: ca:4e:b7:cd:c4:1e:c8:0d:df:2f:40:22:f7:86:8b: 63:b5:6c:d7:04:ef:e8:c3:9b:9b:52:8f:41:08:5d: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AA:FE:8E:D6:10:5F:CC:AE:5B:93:C8:3C:1A:EA:B8:A0:11:EA:70 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/P6r-jtYQX8yuW5PIPBrquKAR6nA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.115.40.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:99:85:95:75:f4:60:9d:da:a0:a8:22:c6:dd:d8:64:2c:d4: 1b:76:3d:46:5a:75:53:77:31:ba:dc:4c:24:31:ee:fc:13:39: 92:97:4f:7f:6b:e7:8b:6f:4b:0e:d2:d6:40:e5:3b:0c:e9:7a: 55:77:45:49:ed:d9:20:53:03:3d:5b:1c:5a:1a:88:83:d6:07: dc:e6:b1:54:4f:39:c8:13:e7:3d:69:86:7b:00:f3:d8:1c:29: 44:30:cc:e9:c4:b3:a4:29:68:33:8a:88:9a:ec:de:24:7e:17: 38:f1:b0:28:2b:7f:fa:7a:8f:dd:99:0d:b6:67:f6:b1:3a:53: 61:bd:4f:db:01:96:8e:5f:3a:f0:b7:ad:4f:1a:44:8f:a4:db: 9c:8c:c9:c3:9e:ed:26:48:5d:69:44:eb:34:7d:31:3a:b7:3c: 4e:58:26:d5:4b:13:98:d2:15:4d:5f:82:e9:02:12:7c:52:d9: 36:f1:11:3a:05:c7:ce:52:36:1a:98:9d:4f:9c:9c:00:f5:d3: 6f:2b:5f:61:2f:a4:a6:12:6e:c3:7e:c2:15:3d:ae:6d:79:db: cb:f1:f5:3f:34:cf:1d:50:21:1a:97:b3:f7:c6:95:6b:08:09: 54:30:3f:dd:2f:41:88:a5:da:0a:e8:b0:1e:e7:48:fc:c6:9c: 47:23:36:96 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzQyOFoXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoM0ZBQUZFOEVENjEwNUZD Q0FFNUI5M0M4M0MxQUVBQjhBMDExRUE3MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL/ClWLIZTLHjJuT5lFl7blCbTvoBMnVjyxWNHkL3WogeVIbVRQe UJhbp9xTCQQ2A9YPU5gb2I9RaOY6njTS9psnp0folU1ggUJE22YEeFIasEN2CbKz iCQlEvHckKVGW1FfnDNoJcIMR1ez95uNzW32QdWBvaMoPXRHUhE6A2HVPxFe/Txt 8dHi+GFHgFF6UJrxYN54TaV+sdfGD7BnoOP4dTh0K8/ucyHLhgdwZNXwBZu42IwP 8hcvp2WuDrTEPjf+2aD8Bff56dZsOlz4/3Gzx294wWG0FERaxDNFyQfRyk63zcQe yA3fL0Ai94aLY7Vs1wTv6MObm1KPQQhdRu0CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQ/qv6O1hBfzK5bk8g8Guq4oBHqcDAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9QNnItanRZUVg4eXVX NVBJUEJycXVLQVI2bkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3MoMA0GCSqGSIb3DQEBCwUAA4IBAQCamYWVdfRgndqgqCLG3dhkLNQbdj1G WnVTdzG63EwkMe78EzmSl09/a+eLb0sO0tZA5TsM6XpVd0VJ7dkgUwM9WxxaGoiD 1gfc5rFUTznIE+c9aYZ7APPYHClEMMzpxLOkKWgzioia7N4kfhc48bAoK3/6eo/d mQ22Z/axOlNhvU/bAZaOXzrwt61PGkSPpNucjMnDnu0mSF1pROs0fTE6tzxOWCbV SxOY0hVNX4LpAhJ8Utk28RE6BcfOUjYamJ1PnJwA9dNvK19hL6SmEm7DfsIVPa5t edvL8fU/NM8dUCEal7P3xpVrCAlUMD/dL0GIpdoK6LAe50j8xpxHIzaW -----END CERTIFICATE-----Generated at Sat Apr 26 15:24:21 2025 by rpki-client