$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/nBj9sxRJNRJ6c8eA7QYvqI6L36o.roa File: nBj9sxRJNRJ6c8eA7QYvqI6L36o.roa (raw, json) Hash identifier: UPs/cdgvTN4Pd1qNIcSh3KsXXUSreTIhoXKY3jRMhWM= Subject key identifier: 9C:18:FD:B3:14:49:35:12:7A:73:C7:80:ED:06:2F:A8:8E:8B:DF:AA Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 34 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/nBj9sxRJNRJ6c8eA7QYvqI6L36o.roa Signing time: Thu 17 Apr 2025 11:34:32 +0000 ROA not before: Thu 17 Apr 2025 11:34:32 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.119.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:34:32 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=9C18FDB3144935127A73C780ED062FA88E8BDFAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a4:91:b0:e6:6f:4a:95:89:53:58:e6:66:0b: db:31:52:c7:af:5d:28:24:88:de:04:7f:b6:4d:31: 2e:98:db:45:83:38:b4:06:f4:d8:49:15:a4:c3:68: 7c:5b:d1:e9:07:89:16:32:c6:7f:e0:76:a8:ba:c6: 47:53:78:3a:dd:b9:01:8f:69:f0:93:5f:b3:54:36: 2d:94:2e:4b:90:68:c5:97:f4:fa:45:d6:e1:a4:c4: e2:b0:d3:65:66:dc:60:ae:d3:9d:4d:0f:87:84:08: a1:30:8d:7d:6b:08:b6:c7:b9:bd:80:40:de:f5:b6: ff:de:0f:d3:d8:4e:5a:b4:da:72:92:73:45:da:a3: e3:c5:00:9f:b3:3f:c0:c0:8e:06:0c:42:4a:ca:18: 5d:ae:32:a5:f0:79:b7:d6:12:f1:5a:fc:80:91:77: b0:64:88:10:af:32:c7:11:95:2b:e0:57:d7:45:7c: ee:e4:1a:3f:7e:cf:32:39:79:e7:20:7d:3b:e4:fb: e2:a8:0b:e6:90:03:6a:2d:b8:1c:7a:4f:3a:cd:3b: e4:fb:0c:4a:8c:49:0a:ad:bc:4d:3f:02:36:c6:a0: 86:a8:89:6f:ec:70:50:04:4b:e0:89:78:57:e6:c5: c3:cd:9d:e4:0f:94:88:54:4b:56:8e:47:19:b8:8d: 66:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:18:FD:B3:14:49:35:12:7A:73:C7:80:ED:06:2F:A8:8E:8B:DF:AA X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/nBj9sxRJNRJ6c8eA7QYvqI6L36o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.119.12.0/22 Signature Algorithm: sha256WithRSAEncryption cc:6b:12:d5:09:02:97:ca:17:b1:56:a6:93:38:9f:bc:62:e3: 2f:9d:8b:79:5b:b0:f9:66:c8:bf:ab:2d:af:17:05:7f:0b:2b: 3d:46:b5:08:51:33:ef:03:e2:70:9c:6f:47:f2:12:bc:aa:19: 77:cd:95:e1:de:25:58:9d:7f:70:da:66:a2:3c:d7:35:25:7b: b8:09:af:dd:c3:bc:8a:13:f8:fe:4b:b1:9e:bb:b8:d8:2d:34: 89:49:40:29:18:75:90:e9:af:a9:03:b3:02:53:8f:85:c6:f9: 4a:9c:bd:3f:08:ad:9c:1c:49:34:ff:9a:55:f1:b8:bc:98:25: 42:13:56:d9:47:8c:84:fa:a6:de:1d:dc:16:b3:c1:d4:e9:bf: a4:6d:0c:de:b5:11:a6:38:d9:61:9d:64:2f:cb:5f:99:3a:03: 9a:0f:eb:1d:71:d7:fe:f5:2d:b9:9a:5a:5d:21:c5:ec:d4:fd: 43:56:85:e2:3c:fc:82:34:56:50:16:d8:b6:1e:8a:0c:bf:eb: 2a:4d:51:36:78:b4:c0:46:94:10:91:61:28:23:6e:3e:fb:ba: 26:bf:94:b5:9a:84:39:bd:4c:50:15:31:59:25:6f:4e:2c:17: b5:0a:1f:c8:a7:9a:ed:69:3c:3c:6d:06:30:3c:01:15:23:b8: a0:0f:a2:53 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzQzMloXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoOUMxOEZEQjMxNDQ5MzUx MjdBNzNDNzgwRUQwNjJGQTg4RThCREZBQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANukkbDmb0qViVNY5mYL2zFSx69dKCSI3gR/tk0xLpjbRYM4tAb0 2EkVpMNofFvR6QeJFjLGf+B2qLrGR1N4Ot25AY9p8JNfs1Q2LZQuS5BoxZf0+kXW 4aTE4rDTZWbcYK7TnU0Ph4QIoTCNfWsItse5vYBA3vW2/94P09hOWrTacpJzRdqj 48UAn7M/wMCOBgxCSsoYXa4ypfB5t9YS8Vr8gJF3sGSIEK8yxxGVK+BX10V87uQa P37PMjl55yB9O+T74qgL5pADai24HHpPOs075PsMSoxJCq28TT8CNsaghqiJb+xw UARL4Il4V+bFw82d5A+UiFRLVo5HGbiNZksCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBScGP2zFEk1Enpzx4DtBi+ojovfqjAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9uQmo5c3hSSk5SSjZj OGVBN1FZdnFJNkwzNm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3cMMA0GCSqGSIb3DQEBCwUAA4IBAQDMaxLVCQKXyhexVqaTOJ+8YuMvnYt5 W7D5Zsi/qy2vFwV/Cys9RrUIUTPvA+JwnG9H8hK8qhl3zZXh3iVYnX9w2maiPNc1 JXu4Ca/dw7yKE/j+S7Geu7jYLTSJSUApGHWQ6a+pA7MCU4+FxvlKnL0/CK2cHEk0 /5pV8bi8mCVCE1bZR4yE+qbeHdwWs8HU6b+kbQzetRGmONlhnWQvy1+ZOgOaD+sd cdf+9S25mlpdIcXs1P1DVoXiPPyCNFZQFti2HooMv+sqTVE2eLTARpQQkWEoI24+ +7omv5S1moQ5vUxQFTFZJW9OLBe1Ch/Ip5rtaTw8bQYwPAEVI7igD6JT -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:02 2025 by rpki-client