$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/q24KTeyt1Z_TYH6IuYb-C6bdDkU.roa File: q24KTeyt1Z_TYH6IuYb-C6bdDkU.roa (raw, json) Hash identifier: l3Yv4ne6aDhkSgiX9YyqYl2/C/5Fgwb7RD3ZvKmtJ6Q= Subject key identifier: AB:6E:0A:4D:EC:AD:D5:9F:D3:60:7E:88:B9:86:FE:0B:A6:DD:0E:45 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1867 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/q24KTeyt1Z_TYH6IuYb-C6bdDkU.roa Signing time: Fri 06 Jun 2025 13:20:48 +0000 ROA not before: Fri 06 Jun 2025 13:20:48 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 398704 IP address blocks: 180.223.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 19:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6247 (0x1867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Jun 6 13:20:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=AB6E0A4DECADD59FD3607E88B986FE0BA6DD0E45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d0:91:45:c8:11:6b:83:0f:06:87:42:e5:06: 98:7e:a1:26:d3:46:e6:98:29:92:dc:f5:b4:1a:4a: ea:13:4a:5d:75:84:5d:35:a7:93:cf:57:79:eb:f3: 93:4b:ac:e8:1d:d7:0f:18:28:39:4c:bc:94:5e:d0: 7e:ad:1d:de:69:33:f3:78:b7:a5:50:f2:d0:02:62: 8b:a0:8c:86:35:de:8c:67:45:a0:d5:ce:a1:f9:a8: 83:ed:b9:9a:08:ea:4d:fb:ed:ea:30:96:ac:28:2a: 33:1a:af:b5:ee:ec:16:ef:83:ba:92:76:91:96:f1: ce:05:d4:51:e3:83:e5:75:53:ad:f7:4f:93:61:b4: ff:76:e8:1e:bf:a2:e2:80:6a:39:24:fe:99:ed:3e: 03:94:c1:b0:7f:4e:7e:27:fc:6d:04:94:af:8b:d1: 70:df:ae:18:42:bf:1c:e3:91:27:ee:cd:78:9e:aa: 84:db:8b:38:e4:30:b8:b3:5e:cd:84:e7:a6:af:b0: 7d:d7:b4:cd:16:cf:18:ff:40:21:ff:07:29:76:07: 9e:08:c8:0d:0c:0e:22:9f:a8:f0:8d:aa:17:ef:10: 66:12:13:26:53:ed:37:bd:d9:cb:2f:99:89:cd:7b: 73:3a:22:76:ca:11:80:09:97:20:f4:2c:3f:99:be: 1b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6E:0A:4D:EC:AD:D5:9F:D3:60:7E:88:B9:86:FE:0B:A6:DD:0E:45 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/q24KTeyt1Z_TYH6IuYb-C6bdDkU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.215.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:cb:fc:b7:e5:bc:a1:25:3f:05:d6:49:4c:31:29:6d:c2:73: ff:ed:09:f7:ce:f1:ad:23:9f:58:e8:39:6b:b8:d6:b4:dc:39: bc:2e:ee:62:75:fa:0d:87:08:ab:bb:1e:a5:b9:9d:22:c8:f4: f2:13:de:31:33:bc:25:43:4b:fe:39:3b:2e:b3:da:a1:35:13: 40:df:e5:ce:51:77:50:53:c1:18:1d:25:35:33:4e:28:78:5d: 13:f3:3e:b1:35:c8:2d:2c:a7:7c:bb:57:f5:69:fc:7b:77:38: 3b:f2:d2:87:0e:a7:bf:f5:93:57:3f:f6:c4:a2:c6:83:ee:a7: 30:fd:34:bc:d8:94:2c:eb:00:0f:70:9e:91:ad:f1:dc:6e:ed: 30:61:b6:80:73:c2:55:be:72:3f:31:bf:4d:62:9c:3d:2b:fc: b2:2f:df:6a:bf:3f:65:83:74:18:a4:58:d6:da:2d:b4:63:fc: d5:5c:4b:21:f2:33:3d:b2:4f:f5:33:38:4a:fe:3c:96:64:dc: be:e5:fb:14:a4:61:69:59:b1:9c:e4:92:93:ee:57:0e:db:55: 5d:d5:47:5d:e9:22:fe:df:bf:06:f7:df:24:c9:5d:bb:0a:72: 65:c9:2f:f8:e4:9b:dd:05:aa:01:a7:fe:27:5d:77:90:9d:fb: 33:05:59:b1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGGcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA2MDYx MzIwNDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEFCNkUwQTRERUNBREQ1 OUZEMzYwN0U4OEI5ODZGRTBCQTZERDBFNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq0JFFyBFrgw8Gh0LlBph+oSbTRuaYKZLc9bQaSuoTSl11hF01 p5PPV3nr85NLrOgd1w8YKDlMvJRe0H6tHd5pM/N4t6VQ8tACYougjIY13oxnRaDV zqH5qIPtuZoI6k377eowlqwoKjMar7Xu7Bbvg7qSdpGW8c4F1FHjg+V1U633T5Nh tP926B6/ouKAajkk/pntPgOUwbB/Tn4n/G0ElK+L0XDfrhhCvxzjkSfuzXieqoTb izjkMLizXs2E56avsH3XtM0Wzxj/QCH/Byl2B54IyA0MDiKfqPCNqhfvEGYSEyZT 7Te92csvmYnNe3M6InbKEYAJlyD0LD+Zvhu/AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUq24KTeyt1Z/TYH6IuYb+C6bdDkUwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvcTI0S1RleXQxWl9U WUg2SXVZYi1DNmJkRGtVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTf1zANBgkqhkiG9w0BAQsFAAOCAQEAGsv8t+W8oSU/BdZJTDEpbcJz/+0J 987xrSOfWOg5a7jWtNw5vC7uYnX6DYcIq7sepbmdIsj08hPeMTO8JUNL/jk7LrPa oTUTQN/lzlF3UFPBGB0lNTNOKHhdE/M+sTXILSynfLtX9Wn8e3c4O/LShw6nv/WT Vz/2xKLGg+6nMP00vNiULOsAD3Ceka3x3G7tMGG2gHPCVb5yPzG/TWKcPSv8si/f ar8/ZYN0GKRY1tottGP81VxLIfIzPbJP9TM4Sv48lmTcvuX7FKRhaVmxnOSSk+5X DttVXdVHXeki/t+/BvffJMlduwpyZckv+OSb3QWqAaf+J113kJ37MwVZsQ== -----END CERTIFICATE-----Generated at Fri Jun 20 16:18:09 2025 by rpki-client