$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/eFFBI7HyMfmSB3sdZ1kyhUhegUw.roa File: eFFBI7HyMfmSB3sdZ1kyhUhegUw.roa (raw, json) Hash identifier: RbWIfTvN4OmqTp0iOV9zT07xIH4JEHgni/OSWa9BjAc= Subject key identifier: 78:51:41:23:B1:F2:31:F9:92:07:7B:1D:67:59:32:85:48:5E:81:4C Certificate issuer: /CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Certificate serial: 0769 Authority key identifier: 4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/eFFBI7HyMfmSB3sdZ1kyhUhegUw.roa Signing time: Wed 28 May 2025 15:55:58 +0000 ROA not before: Wed 28 May 2025 15:55:58 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 151261 IP address blocks: 160.19.83.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1897 (0x769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CF09146DE604C0E442D56C68FC86CC50400AD21 Validity Not Before: May 28 15:55:58 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=78514123B1F231F992077B1D67593285485E814C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:9c:8f:71:17:1d:36:36:91:c9:5f:2e:1a: d0:c5:62:95:7b:3b:ef:7f:de:1a:fb:de:7c:43:8e: 9f:9b:eb:9f:ff:2b:2b:28:f3:13:83:af:98:d1:9e: 3e:d0:d5:2c:d0:c5:0c:bc:c8:f2:39:c8:79:96:61: f1:4d:24:c8:d9:32:ef:e7:51:77:fb:19:d3:fd:25: 08:2c:b8:34:fa:77:c0:cb:f9:4e:61:12:cd:54:4c: 5c:da:83:fc:0d:cd:09:26:90:8d:44:5d:00:71:3d: 80:b0:b9:0b:b7:fc:7b:cf:c1:cb:74:7d:7d:da:4d: 22:95:6a:c6:62:59:cb:6c:4e:47:47:1a:c4:08:df: 02:07:84:70:fa:dd:55:b5:07:f4:e9:3c:80:1f:3a: d7:f8:56:6d:7e:a0:71:dd:78:fb:9f:a2:ab:7a:a8: 1f:d5:c3:24:fd:92:47:86:f7:ca:18:b5:0f:da:80: d6:1f:ef:a9:08:9b:f9:17:2a:01:8f:5e:90:fe:1d: 36:40:d5:99:b8:6a:ec:cb:58:a0:02:c9:af:83:48: 41:3e:43:00:7a:85:69:76:36:90:36:ba:bd:ba:13: fd:48:9c:35:c8:b4:72:45:15:00:16:b4:b9:a4:65: 04:20:75:4d:56:1c:e5:02:12:a5:b8:b7:0e:ca:62: e1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:51:41:23:B1:F2:31:F9:92:07:7B:1D:67:59:32:85:48:5E:81:4C X509v3 Authority Key Identifier: keyid:4C:F0:91:46:DE:60:4C:0E:44:2D:56:C6:8F:C8:6C:C5:04:00:AD:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TPCRRt5gTA5ELVbGj8hsxQQArSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TPCRRt5gTA5ELVbGj8hsxQQArSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/eFFBI7HyMfmSB3sdZ1kyhUhegUw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.19.83.0/24 Signature Algorithm: sha256WithRSAEncryption 00:15:0c:3a:22:ca:a3:e1:af:15:79:ec:c7:7f:9c:77:77:53: 8e:a4:5b:9f:01:c1:52:14:c5:98:db:a1:95:9f:46:c7:68:83: e1:9e:2a:d4:0c:ce:36:7f:e2:b1:9a:d6:18:29:d5:12:68:6e: cb:c6:38:78:b3:57:2a:b0:f0:05:8f:41:99:ae:4e:75:d6:58: d3:3f:bd:df:7f:bb:ee:77:3b:6c:1d:2d:f7:22:36:6b:77:de: 20:50:8f:18:a8:fb:28:34:1c:e6:bc:16:43:ce:d9:b8:ba:f3: b9:58:cd:9b:c9:72:61:5a:69:ec:a7:4b:84:bc:f9:f4:38:af: 5d:74:45:ac:1d:00:4b:9e:5c:1b:0e:2b:90:2f:87:12:dd:ca: d3:17:52:5d:7e:a3:1b:9c:56:10:7f:19:88:b6:9c:17:bc:59: d5:f9:00:32:4e:00:67:08:30:63:06:f0:9c:44:60:c5:ae:90: 98:d7:48:76:a9:13:3d:bd:20:05:31:01:97:64:d4:31:df:97: 9d:cc:0b:99:33:1a:5a:4e:5b:88:b9:9a:0b:f9:82:ec:8d:15: 51:c7:0b:a3:be:a8:3b:40:05:07:a6:e4:9a:d9:e8:d1:a4:90: 52:c8:22:48:c9:7b:c6:85:9c:5b:63:3b:eb:29:29:05:f1:f0: 4e:3f:12:c4 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICB2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENG MDkxNDZERTYwNEMwRTQ0MkQ1NkM2OEZDODZDQzUwNDAwQUQyMTAeFw0yNTA1Mjgx NTU1NThaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDc4NTE0MTIzQjFGMjMx Rjk5MjA3N0IxRDY3NTkzMjg1NDg1RTgxNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD7JyPcRcdNjaRyV8uGtDFYpV7O+9/3hr73nxDjp+b65//Kyso 8xODr5jRnj7Q1SzQxQy8yPI5yHmWYfFNJMjZMu/nUXf7GdP9JQgsuDT6d8DL+U5h Es1UTFzag/wNzQkmkI1EXQBxPYCwuQu3/HvPwct0fX3aTSKVasZiWctsTkdHGsQI 3wIHhHD63VW1B/TpPIAfOtf4Vm1+oHHdePufoqt6qB/VwyT9kkeG98oYtQ/agNYf 76kIm/kXKgGPXpD+HTZA1Zm4auzLWKACya+DSEE+QwB6hWl2NpA2ur26E/1InDXI tHJFFQAWtLmkZQQgdU1WHOUCEqW4tw7KYuHhAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUeFFBI7HyMfmSB3sdZ1kyhUhegUwwHwYDVR0jBBgwFoAUTPCRRt5gTA5ELVbG j8hsxQQArSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9UUENSUnQ1Z1RBNUVMVmJHajhoc3hRUUFyU0UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RQQ1JSdDVnVEE1RUxWYkdqOGhzeFFRQXJTRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvZUZGQkk3SHlNZm1T QjNzZFoxa3loVWhlZ1V3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKATUzANBgkqhkiG9w0BAQsFAAOCAQEAABUMOiLKo+GvFXnsx3+cd3dTjqRb nwHBUhTFmNuhlZ9Gx2iD4Z4q1AzONn/isZrWGCnVEmhuy8Y4eLNXKrDwBY9Bma5O ddZY0z+933+77nc7bB0t9yI2a3feIFCPGKj7KDQc5rwWQ87ZuLrzuVjNm8lyYVpp 7KdLhLz59DivXXRFrB0AS55cGw4rkC+HEt3K0xdSXX6jG5xWEH8ZiLacF7xZ1fkA Mk4AZwgwYwbwnERgxa6QmNdIdqkTPb0gBTEBl2TUMd+XncwLmTMaWk5biLmaC/mC 7I0VUccLo76oO0AFB6bkmtno0aSQUsgiSMl7xoWcW2M76ykpBfHwTj8SxA== -----END CERTIFICATE-----Generated at Sat Jun 21 21:32:08 2025 by rpki-client