$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3078/gt4hRVn9T1adljFN4uXD8LWM6aM.roa File: gt4hRVn9T1adljFN4uXD8LWM6aM.roa (raw, json) Hash identifier: 3g7kM7vAQLxaRG2Zsm4kbInXebdRJAnraRR/FiHhTn0= Subject key identifier: 82:DE:21:45:59:FD:4F:56:9D:96:31:4D:E2:E5:C3:F0:B5:8C:E9:A3 Certificate issuer: /CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Certificate serial: 47 Authority key identifier: F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/gt4hRVn9T1adljFN4uXD8LWM6aM.roa Signing time: Sat 17 May 2025 03:42:34 +0000 ROA not before: Sat 17 May 2025 03:42:34 +0000 ROA not after: Sun 10 May 2026 04:51:55 +0000 asID: 151270 IP address blocks: 110.40.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Validity Not Before: May 17 03:42:34 2025 GMT Not After : May 10 04:51:55 2026 GMT Subject: CN=82DE214559FD4F569D96314DE2E5C3F0B58CE9A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:79:36:aa:87:81:e2:a4:29:99:37:cf:62: 96:b4:1a:7b:a0:c3:d5:d8:98:63:6a:a7:97:dc:d5: b9:95:61:bd:07:20:5f:eb:ca:5c:45:46:81:b7:78: c1:83:e0:bb:6d:f7:e0:f5:76:53:64:4e:30:56:c2: 09:26:01:80:76:8e:4c:97:29:c0:20:5c:29:fb:8a: 8d:b5:95:c7:74:f9:b5:78:e8:fd:39:6e:d5:59:37: d6:57:23:86:23:59:62:3f:b3:88:0e:aa:a6:e2:f2: 89:a1:df:20:f3:b2:14:bb:04:05:70:9a:8c:7e:b9: 19:8c:02:6c:44:7b:2a:fa:ad:c5:33:20:79:94:c2: 61:06:34:ff:56:9b:b8:35:aa:3a:b4:08:d7:ed:67: 70:b0:14:6f:1c:39:f7:84:b1:28:74:84:ba:cb:ab: cd:4f:e7:23:18:9d:07:a5:30:0b:95:55:52:3f:04: c5:79:71:f2:89:55:0d:8c:47:f5:84:83:bc:40:ef: 10:12:d3:79:95:47:ac:87:65:42:d6:d5:84:e5:b4: 47:23:96:70:93:39:d5:5b:4a:85:5c:7d:32:cf:72: eb:26:ff:e5:90:1a:2f:00:8e:4d:84:c7:2f:6a:d1: a4:01:fd:5b:01:70:ef:e7:8e:32:f1:9b:70:70:9c: ba:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:DE:21:45:59:FD:4F:56:9D:96:31:4D:E2:E5:C3:F0:B5:8C:E9:A3 X509v3 Authority Key Identifier: keyid:F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/gt4hRVn9T1adljFN4uXD8LWM6aM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.40.60.0/24 Signature Algorithm: sha256WithRSAEncryption 74:98:6f:0d:61:bc:85:34:1b:7c:71:97:ef:44:22:ea:59:d3: bf:49:82:00:17:aa:38:c8:45:56:aa:5d:ee:72:86:ed:76:20: d3:d8:93:d0:a1:69:c0:b3:32:84:6b:f8:70:3c:04:7b:57:02: 15:41:f0:c2:40:77:a9:8f:cb:8a:9e:cd:23:63:36:ed:dc:44: 91:cc:82:a8:11:08:83:36:35:a7:e3:aa:4a:e5:0f:4b:40:52: fa:78:ef:2e:f2:7c:39:20:15:a2:e4:c8:5e:cc:05:a1:bd:d3: e4:14:3a:59:d9:6f:9e:a5:bf:5e:48:4f:ae:f6:8d:77:c3:7b: 36:91:1a:5c:bf:bc:15:f4:d5:7d:5d:e7:bc:e1:ba:10:0b:f6: 60:79:7c:7f:fb:d3:34:38:6f:c2:a5:a8:e9:7b:c3:30:d5:eb: 67:fc:40:14:2e:32:05:43:03:49:9e:c0:25:02:92:f2:ff:a4: ac:2a:1d:29:aa:bc:b0:18:8c:f4:51:e8:52:70:ae:92:89:50: 8f:23:e9:02:1f:62:1d:d0:d0:1e:f6:52:75:aa:fd:de:95:f5: ab:37:d9:d6:c1:a6:80:e5:7e:71:26:85:ae:bb:8c:16:c9:6a: 12:52:06:c5:c3:bf:bf:d1:5f:80:5c:32:9e:73:f6:14:97:be: 9d:3b:4c:f1 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNzAy OTM1RjAyRkMxQjgxMjk3RDFGRkI0Qzc4Q0UwQkExRDQzNzg1MB4XDTI1MDUxNzAz NDIzNFoXDTI2MDUxMDA0NTE1NVowMzExMC8GA1UEAxMoODJERTIxNDU1OUZENEY1 NjlEOTYzMTRERTJFNUMzRjBCNThDRTlBMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMCReTaqh4HipCmZN89ilrQae6DD1diYY2qnl9zVuZVhvQcgX+vK XEVGgbd4wYPgu2334PV2U2ROMFbCCSYBgHaOTJcpwCBcKfuKjbWVx3T5tXjo/Tlu 1Vk31lcjhiNZYj+ziA6qpuLyiaHfIPOyFLsEBXCajH65GYwCbER7KvqtxTMgeZTC YQY0/1abuDWqOrQI1+1ncLAUbxw594SxKHSEusurzU/nIxidB6UwC5VVUj8ExXlx 8olVDYxH9YSDvEDvEBLTeZVHrIdlQtbVhOW0RyOWcJM51VtKhVx9Ms9y6yb/5ZAa LwCOTYTHL2rRpAH9WwFw7+eOMvGbcHCcup8CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSC3iFFWf1PVp2WMU3i5cPwtYzpozAfBgNVHSMEGDAWgBT3ApNfAvwbgSl9H/tM eM4LodQ3hTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDc4 Lzl3S1RYd0w4RzRFcGZSXzdUSGpPQzZIVU40VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXdLVFh3TDhHNEVwZlJfN1RIak9DNkhVTjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3OC9ndDRoUlZuOVQxYWRs akZONHVYRDhMV002YU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbig8MA0GCSqGSIb3DQEBCwUAA4IBAQB0mG8NYbyFNBt8cZfvRCLqWdO/SYIA F6o4yEVWql3ucobtdiDT2JPQoWnAszKEa/hwPAR7VwIVQfDCQHepj8uKns0jYzbt 3ESRzIKoEQiDNjWn46pK5Q9LQFL6eO8u8nw5IBWi5MhezAWhvdPkFDpZ2W+epb9e SE+u9o13w3s2kRpcv7wV9NV9Xee84boQC/ZgeXx/+9M0OG/Cpajpe8Mw1etn/EAU LjIFQwNJnsAlApLy/6SsKh0pqrywGIz0UehScK6SiVCPI+kCH2Id0NAe9lJ1qv3e lfWrN9nWwaaA5X5xJoWuu4wWyWoSUgbFw7+/0V+AXDKec/YUl76dO0zx -----END CERTIFICATE-----Generated at Sun Jun 22 06:32:05 2025 by rpki-client