$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/whMIUz5KYdBd9kt74Hdv3J_xXGw.roa File: whMIUz5KYdBd9kt74Hdv3J_xXGw.roa (raw, json) Hash identifier: gRfuh90ZABoZPrrCG4b+bJHjaflWtWgYBKduc/22eXE= Subject key identifier: C2:13:08:53:3E:4A:61:D0:5D:F6:4B:7B:E0:77:6F:DC:9F:F1:5C:6C Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 46 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/whMIUz5KYdBd9kt74Hdv3J_xXGw.roa Signing time: Thu 17 Apr 2025 11:45:22 +0000 ROA not before: Thu 17 Apr 2025 11:45:22 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 55933 IP address blocks: 103.118.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Apr 17 11:45:22 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=C21308533E4A61D05DF64B7BE0776FDC9FF15C6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3e:75:17:9c:60:44:24:ee:8c:9f:09:31:1a: d1:df:46:0d:6a:09:d6:78:f8:4b:1b:70:9d:63:34: b5:c9:af:7d:89:f0:0c:8c:9d:95:71:11:bd:5a:23: ee:7e:7d:94:ff:4b:4f:31:74:d2:c9:25:ba:f5:e8: e9:e1:66:5e:29:cb:71:a8:06:fa:d3:1d:45:74:32: 50:d4:f5:80:5f:53:b0:68:e5:f3:ba:1a:3e:d3:75: 3c:20:40:c2:81:f1:1a:15:35:0a:d5:74:0a:d4:16: 0c:96:fc:e5:4c:2a:4e:96:7e:8c:ce:b1:b8:e9:d6: 2b:dd:31:c5:d4:80:43:22:e1:4f:a0:0b:81:d4:43: fd:f0:78:1e:b7:3b:80:a2:f2:eb:ea:8f:b6:70:c0: 53:e0:31:b5:0e:65:31:e5:61:35:56:1d:f3:df:20: a1:0c:1f:22:41:6e:e2:24:0a:c4:91:74:a8:fa:e9: 18:07:62:23:de:36:ed:b2:b8:84:c1:6e:d3:94:f4: d9:c2:28:fc:59:d1:0a:f1:a2:ac:3b:bd:a4:6a:c4: d5:f0:c3:c5:4b:c1:26:a7:c9:84:42:32:0c:84:49: 7a:25:7a:4a:f1:5b:88:f2:9e:6b:9d:0e:1e:25:c8: 23:9e:da:51:d9:37:b3:25:8c:90:99:8c:82:9d:a6: 72:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:13:08:53:3E:4A:61:D0:5D:F6:4B:7B:E0:77:6F:DC:9F:F1:5C:6C X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/whMIUz5KYdBd9kt74Hdv3J_xXGw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.248.0/22 Signature Algorithm: sha256WithRSAEncryption aa:26:53:b4:cc:5c:ec:7d:5a:0b:9b:25:9f:89:33:59:bf:b3: e5:86:bf:28:e7:29:09:7a:2e:3c:ab:73:24:2b:7c:43:47:65: c6:f6:e6:54:f0:8c:b8:5c:45:32:5d:32:9a:1e:94:22:6c:ab: 92:74:87:dc:81:ad:ba:41:07:3f:63:9b:89:e5:e8:35:46:51: 71:b5:ba:38:e7:bd:8e:2b:af:82:d1:ea:95:a9:87:82:f9:4c: 3e:fa:56:28:a8:ea:86:cb:7e:20:7f:25:63:df:36:28:82:63: 08:a8:51:f9:c1:85:a7:01:49:0b:d2:c2:9b:93:55:b9:29:f8: 23:7e:d8:3d:6d:52:41:7e:0d:d5:21:06:51:87:c1:f3:82:1e: 5f:47:d4:b5:42:78:1d:82:65:eb:19:e4:61:a6:33:3a:ee:44: e2:54:00:da:7b:1f:1e:74:df:47:83:93:8c:a4:5b:a0:8b:15: ed:2e:28:bd:e8:4b:2e:9d:4f:7d:41:25:71:b7:39:6e:5b:c2: f7:28:2f:36:e3:b9:7e:0d:f0:76:e2:77:d2:6a:9e:fa:1d:3e: a7:2f:f7:4c:4b:02:07:52:18:52:b5:cd:dd:c7:07:4c:a7:cf: c0:60:cd:6a:b2:a2:ba:03:b4:7d:da:58:c1:f1:27:38:61:02: 29:c0:f7:ab -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUVF ODUyRkUxMzhDREVEQzVCNDJEMTFBMzQyOTVEMTA5QUQ0OTI1MB4XDTI1MDQxNzEx NDUyMloXDTI2MDQxNTA5MDgzMFowMzExMC8GA1UEAxMoQzIxMzA4NTMzRTRBNjFE MDVERjY0QjdCRTA3NzZGREM5RkYxNUM2QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMw+dRecYEQk7oyfCTEa0d9GDWoJ1nj4SxtwnWM0tcmvfYnwDIyd lXERvVoj7n59lP9LTzF00skluvXo6eFmXinLcagG+tMdRXQyUNT1gF9TsGjl87oa PtN1PCBAwoHxGhU1CtV0CtQWDJb85UwqTpZ+jM6xuOnWK90xxdSAQyLhT6ALgdRD /fB4Hrc7gKLy6+qPtnDAU+AxtQ5lMeVhNVYd898goQwfIkFu4iQKxJF0qPrpGAdi I9427bK4hMFu05T02cIo/FnRCvGirDu9pGrE1fDDxUvBJqfJhEIyDIRJeiV6SvFb iPKea50OHiXII57aUdk3syWMkJmMgp2mctkCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTCEwhTPkph0F32S3vgd2/cn/FcbDAfBgNVHSMEGDAWgBQ57oUv4TjN7cW0LRGj QpXRCa1JJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNzE2 L09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvT2U2RkwtRTR6ZTNGdEMwUm8wS1YwUW10U1NVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcxNi93aE1JVXo1S1lkQmQ5 a3Q3NEhkdjNKX3hYR3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3b4MA0GCSqGSIb3DQEBCwUAA4IBAQCqJlO0zFzsfVoLmyWfiTNZv7Plhr8o 5ykJei48q3MkK3xDR2XG9uZU8Iy4XEUyXTKaHpQibKuSdIfcga26QQc/Y5uJ5eg1 RlFxtbo4572OK6+C0eqVqYeC+Uw++lYoqOqGy34gfyVj3zYogmMIqFH5wYWnAUkL 0sKbk1W5Kfgjftg9bVJBfg3VIQZRh8Hzgh5fR9S1QngdgmXrGeRhpjM67kTiVADa ex8edN9Hg5OMpFugixXtLii96EsunU99QSVxtzluW8L3KC8247l+DfB24nfSap76 HT6nL/dMSwIHUhhStc3dxwdMp8/AYM1qsqK6A7R92ljB8Sc4YQIpwPer -----END CERTIFICATE-----Generated at Sat Apr 26 15:25:05 2025 by rpki-client