$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2815/6Ox9vYEkQ0kauWeF3ci5J0DCnyY.roa File: 6Ox9vYEkQ0kauWeF3ci5J0DCnyY.roa (raw, json) Hash identifier: 7JH9vYwSOtQSmbNbZ1sNn45vDXImlBZc/Di0RUGYK+w= Subject key identifier: E8:EC:7D:BD:81:24:43:49:1A:B9:67:85:DD:C8:B9:27:40:C2:9F:26 Certificate issuer: /CN=1FCAD722567791FD73A091FE891C948F1914D672 Certificate serial: 05A9 Authority key identifier: 1F:CA:D7:22:56:77:91:FD:73:A0:91:FE:89:1C:94:8F:19:14:D6:72 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/6Ox9vYEkQ0kauWeF3ci5J0DCnyY.roa Signing time: Wed 09 Apr 2025 07:08:45 +0000 ROA not before: Wed 09 Apr 2025 07:08:45 +0000 ROA not after: Thu 09 Apr 2026 06:41:32 +0000 asID: 132019 IP address blocks: 103.69.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1449 (0x5a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FCAD722567791FD73A091FE891C948F1914D672 Validity Not Before: Apr 9 07:08:45 2025 GMT Not After : Apr 9 06:41:32 2026 GMT Subject: CN=E8EC7DBD812443491AB96785DDC8B92740C29F26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:05:31:78:02:7f:6f:f9:2f:b5:25:05:8a:c4: 6a:90:54:94:73:a7:65:ef:03:a6:2b:d4:21:bc:d8: b3:ee:ae:8b:ca:bd:6d:53:ef:1a:d2:41:25:38:43: 41:20:f6:41:10:bb:0f:c6:8e:b0:57:60:90:f2:c4: b1:24:89:99:e2:a6:e4:93:f7:ef:c5:9f:ba:fd:f1: 96:ec:c7:5b:9a:0f:ee:ba:90:be:36:fa:bd:f9:d6: 12:4f:fe:50:ef:20:11:66:f7:d0:31:60:a2:b9:58: 60:41:2c:25:3c:91:d3:ce:bc:28:79:b0:d4:b6:8b: 01:a2:31:44:e0:88:01:ee:c4:f1:47:5f:de:37:50: eb:28:ab:d8:04:57:d1:7d:84:d7:56:fe:5d:4d:60: f0:30:76:f8:19:ae:bd:6e:56:1c:36:a0:ab:17:8f: c4:a9:fc:da:5d:19:92:cd:a0:6d:fd:16:4a:a1:31: d3:9e:18:9c:12:be:21:39:f6:b8:7f:38:f9:dd:e3: 2c:e7:11:4c:79:ed:32:7c:a0:c0:0f:1c:13:4d:c5: cb:4e:0f:09:b5:a5:32:aa:a9:de:1f:cc:39:6c:c3: 88:71:8d:4f:9f:24:16:1f:f5:f6:04:58:5a:e7:0a: 9c:c4:7f:c9:77:03:31:45:86:24:1e:48:0f:81:da: 6d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:EC:7D:BD:81:24:43:49:1A:B9:67:85:DD:C8:B9:27:40:C2:9F:26 X509v3 Authority Key Identifier: keyid:1F:CA:D7:22:56:77:91:FD:73:A0:91:FE:89:1C:94:8F:19:14:D6:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/H8rXIlZ3kf1zoJH-iRyUjxkU1nI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2815/6Ox9vYEkQ0kauWeF3ci5J0DCnyY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.117.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:3e:97:7a:e3:7c:cf:f4:8e:5e:af:10:80:3d:b2:e2:9c:6f: 94:33:f1:a2:7b:32:31:0e:1c:b7:f9:38:89:b7:e2:ff:72:28: 63:a0:57:f6:e1:f9:ae:71:79:f0:ba:6a:84:46:79:97:4b:5b: dc:80:e1:8d:60:92:a8:fe:73:62:1a:3e:65:4b:f5:45:fd:72: 81:28:82:be:d9:20:4d:69:e2:0f:10:79:ba:d3:9b:ab:2d:9d: ef:d6:4d:7b:4d:a3:2d:3c:5a:97:62:cd:f4:00:ba:4a:3f:b5: 6e:7a:cc:dd:f4:8e:d1:b2:ff:03:d0:7a:a9:f7:ec:95:a0:73: 20:d1:c4:84:47:3f:46:3e:1f:cd:09:f6:52:c4:9e:3a:91:b3: a8:94:db:3e:fd:19:54:fa:44:2f:65:0e:bc:68:0f:47:b2:b4: 08:6c:ff:fc:af:8d:1d:2d:e4:fd:81:03:94:8b:da:a4:19:e0: a4:69:1b:2c:ce:34:e3:63:12:29:43:85:dd:5f:1e:30:46:35: c6:46:24:54:f8:db:c2:c5:51:0c:67:d5:b6:42:b9:e7:59:75: f1:26:95:91:13:c3:95:7b:58:08:d8:fe:2e:e5:a7:60:0d:d3: a6:21:4c:78:cb:55:2d:78:ae:03:19:6e:64:40:04:c2:2d:19: 1d:fe:f1:56 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUZD QUQ3MjI1Njc3OTFGRDczQTA5MUZFODkxQzk0OEYxOTE0RDY3MjAeFw0yNTA0MDkw NzA4NDVaFw0yNjA0MDkwNjQxMzJaMDMxMTAvBgNVBAMTKEU4RUM3REJEODEyNDQz NDkxQUI5Njc4NUREQzhCOTI3NDBDMjlGMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMBTF4An9v+S+1JQWKxGqQVJRzp2XvA6Yr1CG82LPurovKvW1T 7xrSQSU4Q0Eg9kEQuw/GjrBXYJDyxLEkiZnipuST9+/Fn7r98Zbsx1uaD+66kL42 +r351hJP/lDvIBFm99AxYKK5WGBBLCU8kdPOvCh5sNS2iwGiMUTgiAHuxPFHX943 UOsoq9gEV9F9hNdW/l1NYPAwdvgZrr1uVhw2oKsXj8Sp/NpdGZLNoG39FkqhMdOe GJwSviE59rh/OPnd4yznEUx57TJ8oMAPHBNNxctODwm1pTKqqd4fzDlsw4hxjU+f JBYf9fYEWFrnCpzEf8l3AzFFhiQeSA+B2m1rAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU6Ox9vYEkQ0kauWeF3ci5J0DCnyYwHwYDVR0jBBgwFoAUH8rXIlZ3kf1zoJH+ iRyUjxkU1nIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjgx NS9IOHJYSWxaM2tmMXpvSkgtaVJ5VWp4a1UxbkkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0g4clhJbFoza2Yxem9KSC1pUnlVanhrVTFuSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4MTUvNk94OXZZRWtRMGth dVdlRjNjaTVKMERDbnlZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdFdTANBgkqhkiG9w0BAQsFAAOCAQEAXj6XeuN8z/SOXq8QgD2y4pxvlDPx onsyMQ4ct/k4ibfi/3IoY6BX9uH5rnF58LpqhEZ5l0tb3IDhjWCSqP5zYho+ZUv1 Rf1ygSiCvtkgTWniDxB5utObqy2d79ZNe02jLTxal2LN9AC6Sj+1bnrM3fSO0bL/ A9B6qffslaBzINHEhEc/Rj4fzQn2UsSeOpGzqJTbPv0ZVPpEL2UOvGgPR7K0CGz/ /K+NHS3k/YEDlIvapBngpGkbLM4042MSKUOF3V8eMEY1xkYkVPjbwsVRDGfVtkK5 51l18SaVkRPDlXtYCNj+LuWnYA3TpiFMeMtVLXiuAxluZEAEwi0ZHf7xVg== -----END CERTIFICATE-----Generated at Sat Apr 26 14:42:00 2025 by rpki-client