$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/sBZVccsjmyqi-e3o3CasRIUB9pM.roa File: sBZVccsjmyqi-e3o3CasRIUB9pM.roa (raw, json) Hash identifier: uHb4p9He0Vi317aykd8BB5B5J3pBHubwhU8QRsvGT7E= Subject key identifier: B0:16:55:71:CB:23:9B:2A:A2:F9:ED:E8:DC:26:AC:44:85:01:F6:93 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 36 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/sBZVccsjmyqi-e3o3CasRIUB9pM.roa Signing time: Thu 17 Apr 2025 11:34:32 +0000 ROA not before: Thu 17 Apr 2025 11:34:32 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.115.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:34:32 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=B0165571CB239B2AA2F9EDE8DC26AC448501F693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6b:22:67:ed:0a:74:19:d9:03:db:44:63:f9: e0:3b:da:7f:6e:09:84:de:4c:8f:c2:74:94:ac:42: fe:45:9a:10:88:e7:a3:a8:07:d6:f7:b9:6b:e9:1d: 8c:8e:54:ab:09:cb:6f:5b:53:bf:3b:33:ff:5a:8a: 36:77:a9:9e:e5:c7:e8:54:a6:0e:2e:46:93:45:1c: 1e:2b:de:ff:67:93:c1:f0:4a:00:ea:15:6d:b3:03: 69:93:32:bf:c3:66:d2:34:68:7a:f8:74:cd:71:3a: 1d:71:19:ab:db:95:53:47:f6:a3:96:0b:50:13:b0: 3d:e0:3f:29:74:a4:64:41:a5:00:71:b0:8d:37:51: 65:fb:72:7e:d5:10:45:fb:ee:54:46:d2:87:37:d3: a4:11:26:d2:92:29:b5:4a:9b:9d:c2:0c:8a:c0:30: fc:ad:80:42:4d:da:df:07:e4:b8:37:6b:c7:5d:69: f6:7a:c6:79:cb:5c:3a:93:98:7f:ec:97:2f:2d:30: a9:2a:fe:2c:2c:64:a6:6f:ae:ac:eb:37:89:cd:24: dc:f0:ec:35:0b:35:0a:c9:87:68:d7:e5:c8:40:cf: fd:de:dc:9b:db:f0:49:46:f4:86:39:a5:63:ba:ce: f9:8d:ac:75:02:0e:15:b1:9f:90:14:25:49:6f:b1: 13:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:16:55:71:CB:23:9B:2A:A2:F9:ED:E8:DC:26:AC:44:85:01:F6:93 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/sBZVccsjmyqi-e3o3CasRIUB9pM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.115.48.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:b7:cf:49:23:bb:36:18:96:08:78:02:59:aa:c0:08:b2:91: 0d:17:93:2c:92:d2:8e:c6:e7:37:04:4e:da:1c:9d:91:b9:7b: d0:69:74:7f:30:0f:89:d5:32:dd:74:2c:3d:e7:0a:43:44:f9: 0f:19:82:0c:b2:20:55:70:ed:cf:cc:82:50:c0:66:6e:9b:0f: 23:18:bd:e0:a0:33:a3:ef:99:9e:90:66:41:8d:ab:0c:77:ba: 45:6e:a0:bd:87:80:96:28:8b:8f:a5:44:d8:3a:ba:5f:97:02: de:9a:42:00:97:5e:10:57:b5:1f:f0:8d:ce:8c:c8:32:dd:73: fe:37:cd:af:96:86:a6:d8:20:4e:cc:97:36:ee:be:74:de:cc: ce:54:43:b4:06:15:80:7f:89:5f:24:55:66:cc:76:e4:eb:d5: ff:49:77:e9:0e:19:79:c4:4c:24:00:18:c3:af:1a:04:da:e4: 4c:90:92:89:ed:24:2b:e0:fa:ad:71:51:90:f1:40:3c:00:61: db:4e:1f:25:8b:0c:16:b8:29:a3:ae:e7:b5:6f:ec:62:71:bc: 48:00:f2:b5:49:0f:e0:03:59:ef:97:f6:f8:f4:b8:2a:67:af: ef:c9:2f:6d:c8:f6:7d:c7:57:de:c5:55:e1:e2:b0:02:eb:ba: e7:99:02:9b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx MzQzMloXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoQjAxNjU1NzFDQjIzOUIy QUEyRjlFREU4REMyNkFDNDQ4NTAxRjY5MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJlrImftCnQZ2QPbRGP54Dvaf24JhN5Mj8J0lKxC/kWaEIjno6gH 1ve5a+kdjI5UqwnLb1tTvzsz/1qKNnepnuXH6FSmDi5Gk0UcHive/2eTwfBKAOoV bbMDaZMyv8Nm0jRoevh0zXE6HXEZq9uVU0f2o5YLUBOwPeA/KXSkZEGlAHGwjTdR ZftyftUQRfvuVEbShzfTpBEm0pIptUqbncIMisAw/K2AQk3a3wfkuDdrx11p9nrG ectcOpOYf+yXLy0wqSr+LCxkpm+urOs3ic0k3PDsNQs1CsmHaNflyEDP/d7cm9vw SUb0hjmlY7rO+Y2sdQIOFbGfkBQlSW+xExsCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSwFlVxyyObKqL57ejcJqxEhQH2kzAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi9zQlpWY2Nzam15cWkt ZTNvM0Nhc1JJVUI5cE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3MwMA0GCSqGSIb3DQEBCwUAA4IBAQBvt89JI7s2GJYIeAJZqsAIspENF5Ms ktKOxuc3BE7aHJ2RuXvQaXR/MA+J1TLddCw95wpDRPkPGYIMsiBVcO3PzIJQwGZu mw8jGL3goDOj75mekGZBjasMd7pFbqC9h4CWKIuPpUTYOrpflwLemkIAl14QV7Uf 8I3OjMgy3XP+N82vloam2CBOzJc27r503szOVEO0BhWAf4lfJFVmzHbk69X/SXfp Dhl5xEwkABjDrxoE2uRMkJKJ7SQr4PqtcVGQ8UA8AGHbTh8liwwWuCmjrue1b+xi cbxIAPK1SQ/gA1nvl/b49LgqZ6/vyS9tyPZ9x1fexVXh4rAC67rnmQKb -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:02 2025 by rpki-client