$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/rxP8WwdicimdCHWQu2XS_rFsNGI.roa File: rxP8WwdicimdCHWQu2XS_rFsNGI.roa (raw, json) Hash identifier: TJAXA4lmceyybbk6Ok37Ia6Xoa3Yf7o3+8nztHw7VTM= Subject key identifier: AF:13:FC:5B:07:62:72:29:9D:08:75:90:BB:65:D2:FE:B1:6C:34:62 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 25 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/rxP8WwdicimdCHWQu2XS_rFsNGI.roa Signing time: Thu 17 Apr 2025 11:31:21 +0000 ROA not before: Thu 17 Apr 2025 11:31:21 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.115.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:31:21 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=AF13FC5B076272299D087590BB65D2FEB16C3462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:67:cd:94:a7:44:e4:c1:e1:f5:22:45:5c: 32:a8:c9:56:91:03:8e:23:37:83:16:6d:c5:ee:ac: 56:86:8d:51:dc:42:ee:63:64:85:8e:f7:f0:11:96: 4d:c1:be:9e:c8:68:5a:d7:44:eb:01:eb:09:5f:46: 1e:08:95:2c:62:07:8f:52:da:e5:3e:89:34:be:c2: 0b:5a:6c:b7:ab:7d:d6:79:5f:83:d7:d2:6f:49:6e: b8:64:16:4a:a1:06:50:4f:e3:db:76:2e:5c:55:2e: 97:f7:fb:e3:63:fe:3b:08:8b:bc:54:3b:8b:94:77: 97:70:02:cb:3e:06:46:43:1a:95:19:8e:97:ab:b2: 99:6a:c2:1e:6f:54:06:9c:a5:6b:99:37:f2:be:ec: 6b:ca:7a:0c:15:e7:03:0b:fa:14:8c:b5:4f:7a:41: a8:03:a0:ed:2b:ba:3d:50:11:c5:db:55:50:72:57: 6a:76:f9:d6:33:e5:1b:84:2d:b6:e4:76:98:f7:fe: f4:90:56:f8:b1:66:65:f4:23:65:aa:49:e5:47:99: be:2e:95:6a:40:c3:59:b4:4b:1f:16:92:67:79:18: 42:1f:57:04:93:23:3f:36:37:be:36:97:07:12:6b: 77:84:c1:b0:f8:a3:bd:c0:b2:e3:9d:31:a4:66:6a: da:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:13:FC:5B:07:62:72:29:9D:08:75:90:BB:65:D2:FE:B1:6C:34:62 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/rxP8WwdicimdCHWQu2XS_rFsNGI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.115.60.0/22 Signature Algorithm: sha256WithRSAEncryption cd:33:86:23:f0:c4:18:6c:57:de:58:39:5e:5c:bb:40:c1:5a: 0e:02:c7:06:df:8a:d0:0b:5a:19:70:af:1c:a0:93:98:6b:cb: 3d:c2:94:79:e6:99:d1:5f:2c:f4:68:7b:39:24:77:a5:1f:b1: be:9a:70:b7:7e:7e:4f:fa:00:2d:be:42:86:5f:e2:45:f9:c6: ef:70:32:2f:b8:d6:39:c0:bd:a2:11:d2:11:1d:57:ce:04:2d: 77:02:38:ab:81:41:f0:a4:41:7c:b8:a0:d9:bc:07:6b:63:fa: ba:54:e4:fe:2b:26:cb:12:c0:fd:19:d2:59:b7:d6:49:2c:97: b6:51:78:6d:bb:f4:b7:71:d4:03:7f:df:86:51:17:e3:37:23: 05:4a:ad:d2:96:07:7e:c3:c8:a4:d4:1e:31:11:95:75:ae:4b: 5e:3c:ca:c2:70:76:12:6f:55:95:9d:3e:54:a5:80:73:0d:62: 16:4c:24:1c:0b:6b:44:17:fc:f3:bd:a0:dd:39:0d:d1:ab:3b: 8c:b9:ee:47:fa:73:f3:8f:0c:de:58:27:08:4b:d4:70:96:21: 7d:f3:4a:7b:e0:36:24:1f:2a:ce:e2:40:df:86:2c:97:6f:31: c2:66:ad:7d:f4:e2:dc:3a:26:63:ec:cf:69:77:30:b6:39:1c: 41:a8:b5:04 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzEyMVoXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoQUYxM0ZDNUIwNzYyNzIy OTlEMDg3NTkwQkI2NUQyRkVCMTZDMzQ2MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMEhZ82Up0TkweH1IkVcMqjJVpEDjiM3gxZtxe6sVoaNUdxC7mNk hY738BGWTcG+nshoWtdE6wHrCV9GHgiVLGIHj1La5T6JNL7CC1pst6t91nlfg9fS b0luuGQWSqEGUE/j23YuXFUul/f742P+OwiLvFQ7i5R3l3ACyz4GRkMalRmOl6uy mWrCHm9UBpyla5k38r7sa8p6DBXnAwv6FIy1T3pBqAOg7Su6PVARxdtVUHJXanb5 1jPlG4QttuR2mPf+9JBW+LFmZfQjZapJ5UeZvi6VakDDWbRLHxaSZ3kYQh9XBJMj PzY3vjaXBxJrd4TBsPijvcCy450xpGZq2icCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSvE/xbB2JyKZ0IdZC7ZdL+sWw0YjAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9yeFA4V3dkaWNpbWRD SFdRdTJYU19yRnNOR0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3M8MA0GCSqGSIb3DQEBCwUAA4IBAQDNM4Yj8MQYbFfeWDleXLtAwVoOAscG 34rQC1oZcK8coJOYa8s9wpR55pnRXyz0aHs5JHelH7G+mnC3fn5P+gAtvkKGX+JF +cbvcDIvuNY5wL2iEdIRHVfOBC13AjirgUHwpEF8uKDZvAdrY/q6VOT+KybLEsD9 GdJZt9ZJLJe2UXhtu/S3cdQDf9+GURfjNyMFSq3Slgd+w8ik1B4xEZV1rktePMrC cHYSb1WVnT5UpYBzDWIWTCQcC2tEF/zzvaDdOQ3RqzuMue5H+nPzjwzeWCcIS9Rw liF980p74DYkHyrO4kDfhiyXbzHCZq199OLcOiZj7M9pdzC2ORxBqLUE -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:09 2025 by rpki-client