$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/Z5Om1pGyKlhixdvGRYKtjQfJxGw.roa File: Z5Om1pGyKlhixdvGRYKtjQfJxGw.roa (raw, json) Hash identifier: dugH52tYqaFB0ihOqeTEW+VxDZ1u0aYG8vb2c2hAbhc= Subject key identifier: 67:93:A6:D6:91:B2:2A:58:62:C5:DB:C6:45:82:AD:8D:07:C9:C4:6C Certificate issuer: /CN=C1DE29DF9ECB8BDACBFBE1FDDB86DF296B6908EB Certificate serial: 317C Authority key identifier: C1:DE:29:DF:9E:CB:8B:DA:CB:FB:E1:FD:DB:86:DF:29:6B:69:08:EB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/wd4p357Li9rL--H924bfKWtpCOs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/Z5Om1pGyKlhixdvGRYKtjQfJxGw.roa Signing time: Sun 15 Jun 2025 05:42:27 +0000 ROA not before: Sun 15 Jun 2025 05:42:27 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 151492 IP address blocks: 103.186.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/wd4p357Li9rL--H924bfKWtpCOs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/wd4p357Li9rL--H924bfKWtpCOs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/wd4p357Li9rL--H924bfKWtpCOs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 14:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12668 (0x317c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1DE29DF9ECB8BDACBFBE1FDDB86DF296B6908EB Validity Not Before: Jun 15 05:42:27 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=6793A6D691B22A5862C5DBC64582AD8D07C9C46C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:90:c7:41:eb:a4:8f:a5:16:5e:d4:ea:b4:94: 97:c9:63:98:82:8c:cf:75:e6:ad:8c:a4:03:65:d6: 0d:31:ea:da:45:48:27:1c:f6:1a:d0:c4:c1:60:33: d4:74:cb:85:61:96:d9:27:39:ab:c4:3b:9b:b4:f2: cb:f5:64:25:96:c3:31:71:60:d8:cb:a7:7c:2a:fd: 78:2b:3c:98:a5:65:a1:63:5a:f9:f7:e1:c4:ac:4f: ef:d2:f2:35:eb:6b:6e:c8:53:89:9a:26:97:e1:0c: 58:1e:6b:a0:31:c2:d1:a1:d8:d1:2e:be:f3:62:bd: 37:f2:63:2e:b5:f6:2e:7f:89:b6:4c:d6:8b:7b:ab: 7f:39:ed:f7:ab:6e:8f:cf:26:96:64:7c:83:0b:fb: 54:29:52:20:d7:1d:29:b6:87:8e:72:65:9e:3c:f2: ad:a6:bd:7a:5a:1f:dc:36:05:1b:c4:16:b9:e1:93: d7:34:89:82:6d:a5:bb:7f:a8:f4:20:78:1f:4b:df: d8:21:b8:10:d4:70:ef:8a:66:88:04:5a:c0:bd:66: 02:53:a6:18:29:d1:17:0b:98:ac:7a:20:d5:86:c0: 8d:2e:f0:9d:db:2e:07:29:b8:73:40:04:c2:1d:19: 28:57:c1:14:e5:de:3c:db:6f:ac:20:f6:1e:39:7e: fb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:93:A6:D6:91:B2:2A:58:62:C5:DB:C6:45:82:AD:8D:07:C9:C4:6C X509v3 Authority Key Identifier: keyid:C1:DE:29:DF:9E:CB:8B:DA:CB:FB:E1:FD:DB:86:DF:29:6B:69:08:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/wd4p357Li9rL--H924bfKWtpCOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/wd4p357Li9rL--H924bfKWtpCOs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/Z5Om1pGyKlhixdvGRYKtjQfJxGw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.186.136.0/24 Signature Algorithm: sha256WithRSAEncryption 55:79:61:25:41:14:8d:0e:02:d8:f4:98:e0:dd:e3:d5:bb:7d: a3:51:68:38:f1:ca:67:ec:c9:b8:30:54:77:dd:c6:44:2e:a8: a2:b0:5d:20:c7:e2:47:63:cf:5e:ea:19:04:6a:14:eb:70:67: 3a:cf:cd:d4:fb:dc:f3:37:8b:6e:5b:34:a8:a3:61:3d:71:d1: e4:ef:49:1a:63:60:79:e3:c5:d4:42:71:f2:de:6d:41:84:89: e3:57:6a:d7:76:de:f5:9e:99:22:9a:b0:30:2e:27:5f:35:50: 5d:b0:a9:5d:28:f9:fd:90:91:cb:3d:20:d4:4d:a0:1c:d8:ec: b2:3b:5b:f0:40:ae:52:a5:16:f9:cd:bb:e2:9f:88:5b:32:bb: 9a:74:9c:4c:1f:49:7f:27:aa:a6:1e:d4:25:68:eb:21:d6:65: 7e:a8:24:17:ef:03:66:1d:55:40:42:3b:3d:f9:48:af:ab:6d: 35:7b:6e:82:6c:1e:8b:61:b3:a5:b7:ed:1e:e0:db:b0:e5:98: 39:24:b8:de:27:10:f7:fb:9e:08:ae:f6:94:e0:0f:d5:8c:1b: b9:d3:26:18:a8:52:14:66:ae:d1:0b:00:a5:df:9c:14:10:17: 9a:68:9e:6f:a7:d3:68:0f:5d:c2:e2:55:4d:02:a6:e1:f9:f3: 26:00:ed:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICMXwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzFE RTI5REY5RUNCOEJEQUNCRkJFMUZEREI4NkRGMjk2QjY5MDhFQjAeFw0yNTA2MTUw NTQyMjdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDY3OTNBNkQ2OTFCMjJB NTg2MkM1REJDNjQ1ODJBRDhEMDdDOUM0NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCQkMdB66SPpRZe1Oq0lJfJY5iCjM915q2MpANl1g0x6tpFSCcc 9hrQxMFgM9R0y4VhltknOavEO5u08sv1ZCWWwzFxYNjLp3wq/XgrPJilZaFjWvn3 4cSsT+/S8jXra27IU4maJpfhDFgea6AxwtGh2NEuvvNivTfyYy619i5/ibZM1ot7 q3857ferbo/PJpZkfIML+1QpUiDXHSm2h45yZZ488q2mvXpaH9w2BRvEFrnhk9c0 iYJtpbt/qPQgeB9L39ghuBDUcO+KZogEWsC9ZgJTphgp0RcLmKx6INWGwI0u8J3b LgcpuHNABMIdGShXwRTl3jzbb6wg9h45fvvtAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUZ5Om1pGyKlhixdvGRYKtjQfJxGwwHwYDVR0jBBgwFoAUwd4p357Li9rL++H9 24bfKWtpCOswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE0 Ni93ZDRwMzU3TGk5ckwtLUg5MjRiZktXdHBDT3MuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3dkNHAzNTdMaTlyTC0tSDkyNGJmS1d0cENPcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNDYvWjVPbTFwR3lLbGhp eGR2R1JZS3RqUWZKeEd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGe6iDANBgkqhkiG9w0BAQsFAAOCAQEAVXlhJUEUjQ4C2PSY4N3j1bt9o1Fo OPHKZ+zJuDBUd93GRC6oorBdIMfiR2PPXuoZBGoU63BnOs/N1Pvc8zeLbls0qKNh PXHR5O9JGmNgeePF1EJx8t5tQYSJ41dq13be9Z6ZIpqwMC4nXzVQXbCpXSj5/ZCR yz0g1E2gHNjssjtb8ECuUqUW+c274p+IWzK7mnScTB9Jfyeqph7UJWjrIdZlfqgk F+8DZh1VQEI7PflIr6ttNXtugmwei2GzpbftHuDbsOWYOSS43icQ9/ueCK72lOAP 1YwbudMmGKhSFGau0QsApd+cFBAXmmieb6fTaA9dwuJVTQKm4fnzJgDt8Q== -----END CERTIFICATE-----Generated at Sun Jun 22 12:07:54 2025 by rpki-client