$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/SnQjLART4zUdcedPoa4kKXPh1-E.roa File: SnQjLART4zUdcedPoa4kKXPh1-E.roa (raw, json) Hash identifier: LrRmbVP0HSVOlxmU3aaWFMbLSvuFJr5CxeuWrMSwwV8= Subject key identifier: 4A:74:23:2C:04:53:E3:35:1D:71:E7:4F:A1:AE:24:29:73:E1:D7:E1 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 29 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/SnQjLART4zUdcedPoa4kKXPh1-E.roa Signing time: Thu 17 Apr 2025 11:34:27 +0000 ROA not before: Thu 17 Apr 2025 11:34:27 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 138968 IP address blocks: 103.119.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:34:27 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=4A74232C0453E3351D71E74FA1AE242973E1D7E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:16:63:a6:3c:46:fb:15:85:0a:2f:2b:40:91: fa:83:6f:4a:e8:52:5e:3f:09:b2:59:71:b0:27:59: 0e:7e:f9:42:57:1b:b7:ea:31:c2:77:22:67:7a:ca: 3c:91:20:13:bf:3f:34:9c:1b:a7:eb:84:74:2b:84: 70:c6:f6:15:4f:0c:17:56:8e:77:4a:d7:69:27:66: 7f:6f:4c:f3:11:59:4a:bc:ad:8f:5c:63:ba:ae:04: e7:4a:84:9f:66:0b:11:b1:19:fb:65:fc:f1:c3:4d: b8:e1:65:ad:3c:1b:8c:12:d9:96:18:44:a2:df:74: c2:f0:c8:7a:c0:a4:93:df:8b:09:86:1e:38:3a:69: 88:2d:cf:e2:6d:a1:13:b5:b7:1d:2b:18:48:00:6f: bf:74:42:75:33:dd:66:de:ad:95:6a:2e:94:5c:b8: a5:4d:36:b9:76:b1:a7:14:31:81:20:3c:cf:20:11: 2b:92:c1:82:86:d3:27:f8:56:ef:ed:aa:05:d9:2f: 63:ff:c0:dd:3f:23:eb:e2:4b:b6:7f:b5:bd:e4:ab: 4e:db:f9:8f:19:8a:a1:33:65:87:35:4f:de:36:a1: df:dd:10:86:b5:f3:fe:cc:c2:0b:a0:cd:43:eb:7a: 74:4d:f2:46:0a:06:4d:37:b8:28:7f:50:26:3a:da: b2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:74:23:2C:04:53:E3:35:1D:71:E7:4F:A1:AE:24:29:73:E1:D7:E1 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/SnQjLART4zUdcedPoa4kKXPh1-E.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.119.0.0/22 Signature Algorithm: sha256WithRSAEncryption d6:b2:04:37:d8:7f:41:8f:26:cb:44:d2:ff:99:29:03:52:70: 2b:08:7a:0d:36:75:70:c7:86:e9:15:60:77:0e:83:be:fc:f3: f3:79:ef:17:6b:0e:43:c4:c5:db:5f:c4:be:bf:b4:61:4a:85: dc:30:22:aa:90:5c:cc:0b:6a:51:fc:0c:8e:71:8d:b3:5d:e3: 05:bd:6f:8d:19:68:54:8f:53:91:a0:9b:a6:bd:4c:1f:28:27: 4e:84:66:e1:3b:de:54:f3:5c:37:79:69:f8:84:22:bb:4c:6b: 9c:c5:d0:a3:9e:1d:ec:3e:f2:b8:c5:11:80:b1:84:7c:ba:32: a1:85:ae:fb:71:e3:68:92:e4:c9:c7:1e:87:09:a2:fb:5a:68: 39:ac:fb:f7:c7:1e:ce:c4:c0:9b:cc:e1:07:d9:2f:40:c5:fe: c0:de:75:9a:02:d8:b6:c4:09:c8:1e:e5:9a:8d:cc:7e:2e:9e: 88:1a:7e:48:83:e4:f1:82:a6:67:7c:ac:7f:33:9e:5b:3b:62: d1:b3:05:8d:cb:66:98:2e:1b:76:ea:2a:8b:a5:bb:16:88:cf: 42:c3:4e:bc:b8:71:b8:71:4c:21:36:0a:5f:21:7d:7e:6b:cd: 17:2f:66:50:5a:81:c5:a9:98:58:0b:28:20:6e:84:97:c5:e0: c7:85:03:d3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzQyN1oXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoNEE3NDIzMkMwNDUzRTMz NTFENzFFNzRGQTFBRTI0Mjk3M0UxRDdFMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN0WY6Y8RvsVhQovK0CR+oNvSuhSXj8JsllxsCdZDn75Qlcbt+ox wnciZ3rKPJEgE78/NJwbp+uEdCuEcMb2FU8MF1aOd0rXaSdmf29M8xFZSrytj1xj uq4E50qEn2YLEbEZ+2X88cNNuOFlrTwbjBLZlhhEot90wvDIesCkk9+LCYYeODpp iC3P4m2hE7W3HSsYSABvv3RCdTPdZt6tlWoulFy4pU02uXaxpxQxgSA8zyARK5LB gobTJ/hW7+2qBdkvY//A3T8j6+JLtn+1veSrTtv5jxmKoTNlhzVP3jah390QhrXz /szCC6DNQ+t6dE3yRgoGTTe4KH9QJjrasssCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRKdCMsBFPjNR1x50+hriQpc+HX4TAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9TblFqTEFSVDR6VWRj ZWRQb2E0a0tYUGgxLUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3cAMA0GCSqGSIb3DQEBCwUAA4IBAQDWsgQ32H9BjybLRNL/mSkDUnArCHoN NnVwx4bpFWB3DoO+/PPzee8Xaw5DxMXbX8S+v7RhSoXcMCKqkFzMC2pR/AyOcY2z XeMFvW+NGWhUj1ORoJumvUwfKCdOhGbhO95U81w3eWn4hCK7TGucxdCjnh3sPvK4 xRGAsYR8ujKhha77ceNokuTJxx6HCaL7Wmg5rPv3xx7OxMCbzOEH2S9Axf7A3nWa Ati2xAnIHuWajcx+Lp6IGn5Ig+TxgqZnfKx/M55bO2LRswWNy2aYLht26iqLpbsW iM9Cw068uHG4cUwhNgpfIX1+a80XL2ZQWoHFqZhYCyggboSXxeDHhQPT -----END CERTIFICATE-----Generated at Sat Apr 26 16:27:43 2025 by rpki-client