$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3146/cY6S44cRDedEJFUdnqIJXhck4FU.roa File: cY6S44cRDedEJFUdnqIJXhck4FU.roa (raw, json) Hash identifier: k0KFYNwYTHa5wPizu6wqiaO0BMIC/WkhkLQPzW1jjCo= Subject key identifier: 71:8E:92:E3:87:11:0D:E7:44:24:55:1D:9E:A2:09:5E:17:24:E0:55 Certificate issuer: /CN=C1DE29DF9ECB8BDACBFBE1FDDB86DF296B6908EB Certificate serial: 317D Authority key identifier: C1:DE:29:DF:9E:CB:8B:DA:CB:FB:E1:FD:DB:86:DF:29:6B:69:08:EB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/wd4p357Li9rL--H924bfKWtpCOs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/cY6S44cRDedEJFUdnqIJXhck4FU.roa Signing time: Sun 15 Jun 2025 05:42:27 +0000 ROA not before: Sun 15 Jun 2025 05:42:27 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 53587 IP address blocks: 103.186.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/wd4p357Li9rL--H924bfKWtpCOs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/wd4p357Li9rL--H924bfKWtpCOs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/wd4p357Li9rL--H924bfKWtpCOs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12669 (0x317d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1DE29DF9ECB8BDACBFBE1FDDB86DF296B6908EB Validity Not Before: Jun 15 05:42:27 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=718E92E387110DE74424551D9EA2095E1724E055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:21:f8:2b:62:ac:b9:86:ac:46:8d:62:99: ac:2e:39:c6:34:63:b2:1b:79:51:ee:01:3f:de:21: 6a:91:ef:92:c8:cb:50:22:40:ad:5f:cd:95:6c:be: c2:94:08:d3:ef:22:df:20:58:47:b5:75:b7:e9:f6: 99:b6:5b:c0:44:cc:7d:07:79:6f:68:29:ac:ad:64: 71:70:41:40:0d:72:51:0c:9e:e0:b6:77:dc:dd:70: 0c:39:f8:e4:79:a1:aa:b6:4a:12:23:f5:d7:c2:9e: c6:f6:06:5b:ad:d2:d9:07:c6:1d:57:57:db:7a:1f: 8d:11:f7:ab:15:47:92:44:92:87:cb:2f:13:f4:d6: 84:f9:bf:81:0e:2b:47:9d:28:2e:b5:db:8b:25:44: 88:86:ff:ed:a5:5a:9f:38:37:f8:f7:02:eb:56:b8: 0b:e9:22:f8:3f:0b:e5:03:47:5c:4c:a7:fc:a1:40: 49:03:0c:9d:d5:da:4d:be:ad:dc:2a:a2:1b:72:99: a5:3e:9c:cb:0b:69:0e:86:e6:92:7d:f9:57:0f:4e: e1:2f:64:a2:0c:86:e1:a8:be:9d:d4:57:59:4f:a5: e1:a9:25:e7:02:f3:cf:a6:52:c2:df:3d:3c:17:b2: cb:c2:6e:10:23:12:90:b0:ea:13:a0:d9:96:f4:c2: 56:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8E:92:E3:87:11:0D:E7:44:24:55:1D:9E:A2:09:5E:17:24:E0:55 X509v3 Authority Key Identifier: keyid:C1:DE:29:DF:9E:CB:8B:DA:CB:FB:E1:FD:DB:86:DF:29:6B:69:08:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/wd4p357Li9rL--H924bfKWtpCOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/wd4p357Li9rL--H924bfKWtpCOs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3146/cY6S44cRDedEJFUdnqIJXhck4FU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.186.136.0/23 Signature Algorithm: sha256WithRSAEncryption b5:8e:f1:dc:88:eb:09:64:e7:13:5c:c1:bb:1f:fe:0a:5a:8d: aa:aa:3e:58:b9:da:c3:99:bd:d5:08:a7:e4:2b:33:e9:dc:95: 1c:39:ce:63:fa:35:fe:13:f5:65:57:2d:34:22:b1:54:05:9d: 9d:08:07:6c:e1:2f:29:d5:bb:8d:29:df:25:f6:cb:1a:e9:90: b1:4d:97:7a:0b:19:2b:ba:a8:b2:ba:a9:3c:09:c5:7d:cf:17: a4:3a:3e:2a:45:f3:13:eb:ea:71:9e:17:e6:09:45:2a:80:78: 2f:fd:4f:f0:74:d4:2a:aa:ef:5e:61:c8:6b:d9:1c:e0:f3:59: 27:d1:50:ba:0a:58:7a:5b:69:22:ca:1f:f8:8f:3f:d9:49:c3: 42:3b:75:12:34:8b:e2:f1:09:9c:2a:48:8f:d2:27:ba:51:46: c4:63:f7:4a:d7:45:23:8c:f1:16:6e:de:23:17:ff:cf:6c:98: fd:8e:46:74:5e:2f:40:a9:67:a4:48:7d:fe:d2:68:8e:bb:4e: e5:bf:4f:98:d5:15:ad:57:25:39:f7:51:3e:9d:16:1a:19:5b: d7:a2:61:52:8d:5f:ff:d9:69:13:7a:1d:1a:be:fe:7d:51:ca: 71:46:89:6a:5f:50:54:af:de:97:bb:69:9a:a3:3e:c5:0e:66: ad:d5:d9:59 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICMX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzFE RTI5REY5RUNCOEJEQUNCRkJFMUZEREI4NkRGMjk2QjY5MDhFQjAeFw0yNTA2MTUw NTQyMjdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDcxOEU5MkUzODcxMTBE RTc0NDI0NTUxRDlFQTIwOTVFMTcyNEUwNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBJyH4K2KsuYasRo1imawuOcY0Y7IbeVHuAT/eIWqR75LIy1Ai QK1fzZVsvsKUCNPvIt8gWEe1dbfp9pm2W8BEzH0HeW9oKaytZHFwQUANclEMnuC2 d9zdcAw5+OR5oaq2ShIj9dfCnsb2Blut0tkHxh1XV9t6H40R96sVR5JEkofLLxP0 1oT5v4EOK0edKC6124slRIiG/+2lWp84N/j3AutWuAvpIvg/C+UDR1xMp/yhQEkD DJ3V2k2+rdwqohtymaU+nMsLaQ6G5pJ9+VcPTuEvZKIMhuGovp3UV1lPpeGpJecC 88+mUsLfPTwXssvCbhAjEpCw6hOg2Zb0wlapAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUcY6S44cRDedEJFUdnqIJXhck4FUwHwYDVR0jBBgwFoAUwd4p357Li9rL++H9 24bfKWtpCOswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE0 Ni93ZDRwMzU3TGk5ckwtLUg5MjRiZktXdHBDT3MuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3dkNHAzNTdMaTlyTC0tSDkyNGJmS1d0cENPcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNDYvY1k2UzQ0Y1JEZWRF SkZVZG5xSUpYaGNrNEZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWe6iDANBgkqhkiG9w0BAQsFAAOCAQEAtY7x3IjrCWTnE1zBux/+ClqNqqo+ WLnaw5m91Qin5Csz6dyVHDnOY/o1/hP1ZVctNCKxVAWdnQgHbOEvKdW7jSnfJfbL GumQsU2XegsZK7qosrqpPAnFfc8XpDo+KkXzE+vqcZ4X5glFKoB4L/1P8HTUKqrv XmHIa9kc4PNZJ9FQugpYeltpIsof+I8/2UnDQjt1EjSL4vEJnCpIj9InulFGxGP3 StdFI4zxFm7eIxf/z2yY/Y5GdF4vQKlnpEh9/tJojrtO5b9PmNUVrVclOfdRPp0W Ghlb16JhUo1f/9lpE3odGr7+fVHKcUaJal9QVK/el7tpmqM+xQ5mrdXZWQ== -----END CERTIFICATE-----Generated at Sat Jun 21 15:11:01 2025 by rpki-client