$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/RHpJE66Fvym1EIiNdXdW-pumF4I.roa File: RHpJE66Fvym1EIiNdXdW-pumF4I.roa (raw, json) Hash identifier: DNyw2hc6VwyqE6gKVk+h7pLuNU/WFDgNG0UMBI9auQk= Subject key identifier: 44:7A:49:13:AE:85:BF:29:B5:10:88:8D:75:77:56:FA:9B:A6:17:82 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 07FD Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/RHpJE66Fvym1EIiNdXdW-pumF4I.roa Signing time: Fri 23 May 2025 07:07:19 +0000 ROA not before: Fri 23 May 2025 07:07:19 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 56040 IP address blocks: 223.160.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 14:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:07:19 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=447A4913AE85BF29B510888D757756FA9BA61782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b4:ac:91:4f:3e:f2:80:0e:ea:a7:8b:f1:57: 17:c0:cf:0d:39:2b:af:88:00:b6:88:94:d6:3c:1c: 48:4c:e4:22:c7:c3:2d:e0:60:8d:18:fd:45:38:d9: 76:84:c4:55:72:16:ca:eb:16:2b:8d:1a:c8:18:ad: 1f:44:ff:a0:c8:54:dc:a6:32:e1:57:8b:e4:b5:13: 19:a9:0b:88:0c:42:72:73:36:e6:f2:fd:04:2f:c0: f7:05:86:1a:fe:2f:b6:55:f8:ed:8e:8d:b5:fc:50: c9:a1:8b:19:b4:16:57:8d:9f:78:73:99:d6:57:a0: b0:86:7a:a3:d9:2d:e8:f1:c4:89:d0:99:86:6b:bd: 0a:7f:69:f1:b3:5b:e3:bd:26:64:61:28:ee:69:20: 67:d5:26:18:aa:5d:e3:6a:a2:b9:e9:52:d6:37:c7: 75:b7:51:76:eb:fa:cf:dc:e0:82:58:af:c6:c4:56: 2d:36:74:d2:cc:00:36:26:8a:de:c6:4a:e1:16:49: e6:07:bf:63:89:1b:47:51:28:d4:a2:1b:b6:03:dc: 2e:b4:d0:60:f3:62:fc:eb:31:15:ef:75:f3:dd:8b: 08:01:3c:ee:ea:8c:70:38:75:62:53:b6:13:a6:e8: aa:1d:bf:11:ed:17:e6:f9:5e:51:56:46:95:23:6d: 13:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:7A:49:13:AE:85:BF:29:B5:10:88:8D:75:77:56:FA:9B:A6:17:82 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/RHpJE66Fvym1EIiNdXdW-pumF4I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.160.14.0/23 Signature Algorithm: sha256WithRSAEncryption 62:71:8d:47:dd:28:00:de:7e:39:98:f2:05:d0:81:27:0a:0b: 49:d3:90:8d:23:d0:f9:84:e3:5c:59:03:fc:33:52:ef:9f:0c: a7:de:3c:90:be:21:f6:6a:25:16:b8:14:c9:0d:7d:ca:92:15: d2:a0:18:67:39:c6:8b:07:28:a5:1f:10:f6:f0:5b:db:37:1c: 12:70:2c:6c:25:71:db:64:62:a6:c4:58:b4:e7:a2:11:62:40: 1a:b3:f6:6d:b0:45:66:9d:b9:de:73:3d:20:9a:2d:e5:f5:18: fb:c9:3d:e4:3a:3e:04:c4:58:dc:bd:fd:e8:65:20:36:8e:1f: 9f:78:4b:fe:95:70:14:4f:aa:20:c7:db:3e:d2:26:f6:07:e2: 0b:dd:54:c2:d2:15:7f:0f:e7:b4:b7:4b:a8:63:e1:8b:78:86: 4e:e3:c9:0d:a7:5a:b5:27:3c:1c:b3:88:a6:80:fb:d5:30:1b: 91:b1:f6:68:f8:a0:79:be:09:3b:a6:4e:8d:b4:c5:ed:d2:d1: 26:fc:68:b4:d6:0f:c2:ad:4e:cc:50:e5:5f:00:03:06:6e:c3: 79:66:27:cf:2c:cb:af:87:a2:ce:d0:d1:22:d2:aa:59:85:7a: 30:62:a5:78:bb:19:db:e4:7b:17:c6:d5:43:58:fa:0c:74:4b: 0f:c1:a2:3e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzA3MTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ0N0E0OTEzQUU4NUJG MjlCNTEwODg4RDc1Nzc1NkZBOUJBNjE3ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvtKyRTz7ygA7qp4vxVxfAzw05K6+IALaIlNY8HEhM5CLHwy3g YI0Y/UU42XaExFVyFsrrFiuNGsgYrR9E/6DIVNymMuFXi+S1ExmpC4gMQnJzNuby /QQvwPcFhhr+L7ZV+O2OjbX8UMmhixm0FleNn3hzmdZXoLCGeqPZLejxxInQmYZr vQp/afGzW+O9JmRhKO5pIGfVJhiqXeNqornpUtY3x3W3UXbr+s/c4IJYr8bEVi02 dNLMADYmit7GSuEWSeYHv2OJG0dRKNSiG7YD3C600GDzYvzrMRXvdfPdiwgBPO7q jHA4dWJTthOm6KodvxHtF+b5XlFWRpUjbROzAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQURHpJE66Fvym1EIiNdXdW+pumF4IwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9SSHBKRTY2RnZ5bTFFSWlO ZFhkVy1wdW1GNEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB 36AOMA0GCSqGSIb3DQEBCwUAA4IBAQBicY1H3SgA3n45mPIF0IEnCgtJ05CNI9D5 hONcWQP8M1Lvnwyn3jyQviH2aiUWuBTJDX3KkhXSoBhnOcaLByilHxD28FvbNxwS cCxsJXHbZGKmxFi056IRYkAas/ZtsEVmnbnecz0gmi3l9Rj7yT3kOj4ExFjcvf3o ZSA2jh+feEv+lXAUT6ogx9s+0ib2B+IL3VTC0hV/D+e0t0uoY+GLeIZO48kNp1q1 Jzwcs4imgPvVMBuRsfZo+KB5vgk7pk6NtMXt0tEm/Gi01g/CrU7MUOVfAAMGbsN5 ZifPLMuvh6LO0NEi0qpZhXowYqV4uxnb5HsXxtVDWPoMdEsPwaI+ -----END CERTIFICATE-----Generated at Sun Jun 22 10:59:39 2025 by rpki-client