$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/PhFB6vU2BEWo-XsF2P4jnXuF9Lw.roa File: PhFB6vU2BEWo-XsF2P4jnXuF9Lw.roa (raw, json) Hash identifier: 5F538O+o2y+co0XqoG9sBzYv2RAWBhm4EFwO+xO9VRM= Subject key identifier: 3E:11:41:EA:F5:36:04:45:A8:F9:7B:05:D8:FE:23:9D:7B:85:F4:BC Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 1A Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/PhFB6vU2BEWo-XsF2P4jnXuF9Lw.roa Signing time: Thu 17 Apr 2025 11:31:17 +0000 ROA not before: Thu 17 Apr 2025 11:31:17 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.118.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:31:17 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=3E1141EAF5360445A8F97B05D8FE239D7B85F4BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:70:f3:e9:e8:47:9a:f6:1e:e9:48:d6:a9: 91:37:bb:5a:b1:fa:bc:17:1a:6e:b7:3c:a0:6e:00: 9c:01:60:92:81:76:13:ee:d9:f2:ec:82:26:bb:19: 7e:09:c4:6b:af:b3:82:48:fb:e6:75:75:34:7a:f9: 2a:4d:92:05:22:f0:3f:12:98:dc:6c:79:bd:a8:af: 8a:bb:e7:8f:e6:a6:ee:79:86:69:22:e1:e6:8c:c7: 1a:b2:97:c6:a5:c7:42:6a:45:1d:39:b2:dc:ec:2b: 77:14:e8:8c:58:bc:f2:7c:ae:ea:4a:fa:57:6b:7a: 0a:10:2e:ad:25:cd:9b:15:99:c7:0b:69:31:0d:00: 04:70:8d:49:75:fd:1e:17:52:1c:6d:55:7a:ed:9b: 8f:98:78:5c:f0:be:95:22:63:3d:e6:a6:ca:1d:65: 26:0e:d3:28:35:68:73:0d:cc:cd:e1:94:b1:03:9c: 71:04:d4:bc:b8:9a:9d:f2:2e:73:74:b9:59:b8:d9: e6:f7:ae:1a:20:e4:1a:bf:98:30:ce:9a:eb:ea:77: ea:bb:50:24:a0:03:54:9c:dd:b0:f5:dd:29:3b:23: 70:fb:5b:3c:d6:aa:03:52:a5:77:1e:fd:f0:46:57: 9c:ea:97:c9:fa:c7:e8:22:a1:f1:8e:1c:e0:52:d6: a6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:11:41:EA:F5:36:04:45:A8:F9:7B:05:D8:FE:23:9D:7B:85:F4:BC X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/PhFB6vU2BEWo-XsF2P4jnXuF9Lw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.220.0/22 Signature Algorithm: sha256WithRSAEncryption 03:1f:a1:b1:f8:95:2c:79:40:c5:05:d3:15:96:81:74:6e:7f: 80:9d:7d:d7:99:ed:5d:95:2f:4e:82:03:58:6d:af:3b:dd:90: 8a:af:40:7e:87:2e:d7:47:da:28:8e:f4:cc:6b:b1:fe:ea:89: 32:7a:29:bb:a7:d7:03:55:47:30:7d:f1:5a:a6:74:3a:ab:a3: 3d:a0:53:64:21:02:2d:e9:7a:0c:67:b7:e0:a1:8b:89:95:2b: 62:17:d9:a9:27:c3:02:80:8c:95:d7:27:d1:c6:16:37:c9:69: b3:75:a4:9e:2c:a5:77:d4:3a:eb:08:ef:53:29:d2:e4:c9:30: 1d:86:41:56:30:61:5a:68:04:c6:ab:a4:23:87:15:29:93:d8: 44:36:e4:e3:1e:a4:88:7b:49:1b:dc:41:b4:77:5c:83:3d:32: 51:5d:34:a7:3b:ae:24:11:2b:b6:41:37:e4:01:0b:27:aa:90: cc:2c:25:9c:7a:56:af:3f:b5:cd:04:f2:b8:96:75:81:12:36: 96:17:ab:5b:01:b5:27:49:0b:fc:9e:1d:50:0d:e1:70:be:f6: ee:05:98:9e:c1:ad:81:e9:fa:cd:4e:da:d2:a3:ac:f3:f8:5a: 21:7c:6f:ee:11:73:7c:f7:58:40:30:42:e0:68:44:48:ec:e1: 6d:80:af:f5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzExN1oXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoM0UxMTQxRUFGNTM2MDQ0 NUE4Rjk3QjA1RDhGRTIzOUQ3Qjg1RjRCQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALJ2cPPp6Eea9h7pSNapkTe7WrH6vBcabrc8oG4AnAFgkoF2E+7Z 8uyCJrsZfgnEa6+zgkj75nV1NHr5Kk2SBSLwPxKY3Gx5vaivirvnj+am7nmGaSLh 5ozHGrKXxqXHQmpFHTmy3OwrdxTojFi88nyu6kr6V2t6ChAurSXNmxWZxwtpMQ0A BHCNSXX9HhdSHG1Veu2bj5h4XPC+lSJjPeamyh1lJg7TKDVocw3MzeGUsQOccQTU vLianfIuc3S5WbjZ5veuGiDkGr+YMM6a6+p36rtQJKADVJzdsPXdKTsjcPtbPNaq A1Kldx798EZXnOqXyfrH6CKh8Y4c4FLWpt0CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQ+EUHq9TYERaj5ewXY/iOde4X0vDAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9QaEZCNnZVMkJFV28t WHNGMlA0am5YdUY5THcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3bcMA0GCSqGSIb3DQEBCwUAA4IBAQADH6Gx+JUseUDFBdMVloF0bn+AnX3X me1dlS9OggNYba873ZCKr0B+hy7XR9oojvTMa7H+6okyeim7p9cDVUcwffFapnQ6 q6M9oFNkIQIt6XoMZ7fgoYuJlStiF9mpJ8MCgIyV1yfRxhY3yWmzdaSeLKV31Drr CO9TKdLkyTAdhkFWMGFaaATGq6QjhxUpk9hENuTjHqSIe0kb3EG0d1yDPTJRXTSn O64kESu2QTfkAQsnqpDMLCWcelavP7XNBPK4lnWBEjaWF6tbAbUnSQv8nh1QDeFw vvbuBZiewa2B6frNTtrSo6zz+FohfG/uEXN891hAMELgaERI7OFtgK/1 -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:57 2025 by rpki-client