$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/DBPlOf1turXB5ZRvWgRN1Sx0c88.roa File: DBPlOf1turXB5ZRvWgRN1Sx0c88.roa (raw, json) Hash identifier: 6IAmN/YbGVf7nR03oKPiX2f/sdAiJqR9OQYDYPVLij8= Subject key identifier: 0C:13:E5:39:FD:6D:BA:B5:C1:E5:94:6F:5A:04:4D:D5:2C:74:73:CF Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094 Certificate serial: 1360 Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/DBPlOf1turXB5ZRvWgRN1Sx0c88.roa Signing time: Mon 21 Apr 2025 07:31:47 +0000 ROA not before: Mon 21 Apr 2025 07:31:47 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146806 IP address blocks: 45.250.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 14:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094 Validity Not Before: Apr 21 07:31:47 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=0C13E539FD6DBAB5C1E5946F5A044DD52C7473CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:43:b3:96:8d:0e:ee:53:56:32:dc:5a:e9:67: 07:97:fc:57:17:12:22:6e:fc:cf:e7:1d:bf:2c:81: 0e:9c:ff:e4:98:8a:98:ca:bf:17:35:44:b1:cc:b8: a6:d4:70:af:56:9a:34:fd:ee:07:3a:2e:48:80:2b: 54:02:b8:b0:72:09:24:31:40:7d:22:78:2b:55:b7: 19:84:90:7f:fb:cd:d8:f3:b5:75:8a:a7:56:e6:48: 22:2b:b9:04:93:6a:ef:55:d6:76:41:38:14:80:f9: 5b:5d:09:76:47:a9:df:aa:1c:dc:f9:fb:a4:4e:07: 42:3e:4b:4c:ec:4f:55:dd:bd:0a:f7:89:99:e8:1e: 02:2e:66:71:bd:d8:00:ce:ce:82:e0:32:88:54:89: fa:35:ba:f1:18:bb:d1:b3:d8:73:bb:18:0a:4b:c4: e4:bb:ca:51:f2:3e:79:d6:9e:b5:30:18:4c:8d:2b: 10:49:3e:58:34:41:34:f1:ff:d1:48:29:a2:02:eb: 69:b9:97:a9:62:72:90:55:68:b1:bc:57:b2:02:a2: 75:a0:53:ff:d9:63:5b:12:55:ee:71:39:17:3e:6a: f8:98:e5:0a:1d:a9:f2:c5:94:f6:44:3c:58:26:7d: d7:0b:d5:ec:8e:51:11:7a:73:02:92:89:69:76:25: 6e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:13:E5:39:FD:6D:BA:B5:C1:E5:94:6F:5A:04:4D:D5:2C:74:73:CF X509v3 Authority Key Identifier: keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/DBPlOf1turXB5ZRvWgRN1Sx0c88.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.250.155.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:61:38:33:27:c7:7b:0c:b7:5c:84:e8:33:e4:6c:dd:13:53: f5:9d:4c:fe:bc:20:a6:9b:32:ec:5c:d7:65:bf:48:91:f3:45: 45:7a:e3:62:ad:1d:d7:05:3e:c2:e5:41:b2:71:55:bf:7e:44: ec:35:17:45:6a:5f:8a:a2:86:33:52:f6:5a:07:d6:0d:d5:4b: 90:ab:a0:ea:69:53:03:eb:dc:7a:18:7f:6d:e9:20:33:65:41: 8f:c8:39:7f:fb:13:75:80:14:e1:ff:8e:38:2f:27:5f:0b:66: 50:f7:71:1b:2b:4e:54:da:7b:ea:0e:d5:94:3e:f1:22:29:2c: 8f:50:df:c3:56:82:43:55:5a:4b:bf:d6:04:92:32:38:71:c5: 28:9e:36:10:a5:98:c1:c6:f9:b3:f2:33:a5:a0:cd:24:f1:2c: 45:ac:a0:f9:b6:e2:5a:06:45:e8:2b:ba:73:ca:5f:fe:07:a8: d9:1e:9d:dc:0f:ad:6e:ee:f2:1e:3c:81:91:ae:ea:78:a3:94: f1:05:f8:71:3f:e9:e5:55:dc:76:37:5c:5c:fc:50:17:28:4b: 95:e3:63:f5:66:17:ae:60:ab:bd:09:b0:0b:fa:f3:f9:fd:1f: fd:d5:55:ad:9b:43:04:6b:88:f8:c0:6b:22:e9:f5:2f:7b:48: cd:b3:4d:e1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjQw OTg3RjQwQTYwMzBDREZBMzNERUQxRUVFN0NGNERDN0MzMDA5NDAeFw0yNTA0MjEw NzMxNDdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDBDMTNFNTM5RkQ2REJB QjVDMUU1OTQ2RjVBMDQ0REQ1MkM3NDczQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnQ7OWjQ7uU1Yy3FrpZweX/FcXEiJu/M/nHb8sgQ6c/+SYipjK vxc1RLHMuKbUcK9WmjT97gc6LkiAK1QCuLByCSQxQH0ieCtVtxmEkH/7zdjztXWK p1bmSCIruQSTau9V1nZBOBSA+VtdCXZHqd+qHNz5+6ROB0I+S0zsT1XdvQr3iZno HgIuZnG92ADOzoLgMohUifo1uvEYu9Gz2HO7GApLxOS7ylHyPnnWnrUwGEyNKxBJ Plg0QTTx/9FIKaIC62m5l6licpBVaLG8V7IConWgU//ZY1sSVe5xORc+aviY5Qod qfLFlPZEPFgmfdcL1eyOURF6cwKSiWl2JW7bAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUDBPlOf1turXB5ZRvWgRN1Sx0c88wHwYDVR0jBBgwFoAUJAmH9ApgMM36M97R 7ufPTcfDAJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 OC9KQW1IOUFwZ01NMzZNOTdSN3VmUFRjZkRBSlEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0pBbUg5QXBnTU0zNk05N1I3dWZQVGNmREFKUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjgvREJQbE9mMXR1clhC NVpSdldnUk4xU3gwYzg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAC36mzANBgkqhkiG9w0BAQsFAAOCAQEAj2E4MyfHewy3XIToM+Rs3RNT9Z1M /rwgppsy7FzXZb9IkfNFRXrjYq0d1wU+wuVBsnFVv35E7DUXRWpfiqKGM1L2WgfW DdVLkKug6mlTA+vcehh/bekgM2VBj8g5f/sTdYAU4f+OOC8nXwtmUPdxGytOVNp7 6g7VlD7xIiksj1Dfw1aCQ1VaS7/WBJIyOHHFKJ42EKWYwcb5s/IzpaDNJPEsRayg +bbiWgZF6Cu6c8pf/geo2R6d3A+tbu7yHjyBka7qeKOU8QX4cT/p5VXcdjdcXPxQ FyhLleNj9WYXrmCrvQmwC/rz+f0f/dVVrZtDBGuI+MBrIun1L3tIzbNN4Q== -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:31 2025 by rpki-client