$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/361/e2sv8-TY5f8TwpeWdzOHudhiy7U.roa File: e2sv8-TY5f8TwpeWdzOHudhiy7U.roa (raw, json) Hash identifier: Kg2UK+S6W3aXr3C3ZkJLPWOvHhxx8HCuDZ6HqqV4DCU= Subject key identifier: 7B:6B:2F:F3:E4:D8:E5:FF:13:C2:97:96:77:33:87:B9:D8:62:CB:B5 Certificate issuer: /CN=585206C87420BE42C7B9042DE3E5FD51595FF14B Certificate serial: 1DAA Authority key identifier: 58:52:06:C8:74:20:BE:42:C7:B9:04:2D:E3:E5:FD:51:59:5F:F1:4B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WFIGyHQgvkLHuQQt4-X9UVlf8Us.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/e2sv8-TY5f8TwpeWdzOHudhiy7U.roa Signing time: Thu 24 Apr 2025 09:17:35 +0000 ROA not before: Thu 24 Apr 2025 09:17:35 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 4808 IP address blocks: 119.161.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/WFIGyHQgvkLHuQQt4-X9UVlf8Us.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/WFIGyHQgvkLHuQQt4-X9UVlf8Us.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WFIGyHQgvkLHuQQt4-X9UVlf8Us.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7594 (0x1daa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=585206C87420BE42C7B9042DE3E5FD51595FF14B Validity Not Before: Apr 24 09:17:35 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=7B6B2FF3E4D8E5FF13C29796773387B9D862CBB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:81:ff:eb:e9:da:21:9d:5d:99:9d:1b:d0:ec: b4:e3:f4:c7:41:9d:11:8e:d7:9b:c1:11:31:78:23: 53:1a:15:59:38:66:ad:3d:f1:b1:be:6a:aa:05:13: 80:c3:1f:7d:63:79:10:75:06:81:1c:73:45:dc:4e: c3:2a:f8:27:20:62:a3:6e:20:8c:55:a0:66:4a:4d: f0:54:63:d2:1f:11:92:97:e4:99:55:53:9d:a0:ea: a6:6f:a4:2f:a2:f5:cd:48:f6:ad:97:35:14:b7:4c: 88:d9:63:24:58:f5:1e:8f:7d:6c:65:31:9b:82:0c: 70:b1:bb:8e:7b:f9:8c:2d:8d:47:37:b3:70:d7:6f: 94:18:45:27:1c:34:19:f2:0a:a4:f4:22:a7:26:8e: d2:b5:05:69:52:da:75:3a:f8:60:87:80:02:ed:b8: fc:06:b0:ee:d2:f8:1d:d9:a3:f8:9e:aa:32:6c:a9: 84:b6:16:f3:f6:a0:32:66:66:e1:91:4b:8f:7d:6e: 83:2f:e7:a1:88:79:50:13:8f:10:66:eb:4f:4b:a1: 70:00:45:4a:eb:b5:10:18:d8:7a:7f:4d:0f:f7:9f: db:0c:c0:e9:df:f4:3f:89:ce:c2:87:81:97:e7:f1: b7:97:c9:f5:9d:26:3e:19:31:29:bd:b3:c5:27:d8: 99:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6B:2F:F3:E4:D8:E5:FF:13:C2:97:96:77:33:87:B9:D8:62:CB:B5 X509v3 Authority Key Identifier: keyid:58:52:06:C8:74:20:BE:42:C7:B9:04:2D:E3:E5:FD:51:59:5F:F1:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/WFIGyHQgvkLHuQQt4-X9UVlf8Us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WFIGyHQgvkLHuQQt4-X9UVlf8Us.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/e2sv8-TY5f8TwpeWdzOHudhiy7U.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.161.124.0/24 Signature Algorithm: sha256WithRSAEncryption 43:fe:39:4b:fd:57:91:10:fd:b9:fd:7d:15:25:8c:7a:75:0d: 6d:c5:dd:7c:2f:6b:fe:8f:cd:42:70:08:0d:b1:fe:35:bd:d9: f7:ce:44:f8:a5:20:61:3c:7e:8e:03:7d:7e:56:3c:d8:83:9e: 8d:83:f6:61:19:86:8a:fb:46:58:b0:46:39:e0:4e:42:6f:27: 14:3d:62:4b:99:d2:be:82:5f:72:c4:b7:99:6f:1a:86:3b:7d: 2b:87:e1:61:6b:f9:44:8a:aa:f1:fc:8f:42:a9:9b:38:92:17: ea:af:50:47:4c:77:84:1e:4d:bd:10:36:83:6f:5b:64:0a:28: c6:9f:c4:f1:1f:f6:9e:a7:1f:aa:ff:16:11:3b:35:ba:32:9b: a8:64:e6:a6:53:10:60:ce:2f:8a:48:11:c8:58:f3:fd:f0:62: 94:16:d1:e4:a9:4d:2c:16:98:e2:d8:03:8a:5e:e6:38:d6:25: 52:62:56:65:4f:ba:4d:f9:32:85:0e:dd:64:a2:9f:f2:87:c7: 5b:7b:6d:f3:2c:28:54:af:99:13:12:21:95:64:ca:85:5b:d7: 25:87:29:70:3e:cb:f8:94:0c:13:54:d7:7b:16:57:65:21:a4: c4:3c:3e:33:ed:3e:bb:ac:93:08:d2:b8:0d:31:cc:81:2d:e7: 54:1a:9a:e0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg1 MjA2Qzg3NDIwQkU0MkM3QjkwNDJERTNFNUZENTE1OTVGRjE0QjAeFw0yNTA0MjQw OTE3MzVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDdCNkIyRkYzRTREOEU1 RkYxM0MyOTc5Njc3MzM4N0I5RDg2MkNCQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsgf/r6dohnV2ZnRvQ7LTj9MdBnRGO15vBETF4I1MaFVk4Zq09 8bG+aqoFE4DDH31jeRB1BoEcc0XcTsMq+CcgYqNuIIxVoGZKTfBUY9IfEZKX5JlV U52g6qZvpC+i9c1I9q2XNRS3TIjZYyRY9R6PfWxlMZuCDHCxu457+YwtjUc3s3DX b5QYRSccNBnyCqT0IqcmjtK1BWlS2nU6+GCHgALtuPwGsO7S+B3Zo/ieqjJsqYS2 FvP2oDJmZuGRS499boMv56GIeVATjxBm609LoXAARUrrtRAY2Hp/TQ/3n9sMwOnf 9D+JzsKHgZfn8beXyfWdJj4ZMSm9s8Un2JlNAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUe2sv8+TY5f8TwpeWdzOHudhiy7UwHwYDVR0jBBgwFoAUWFIGyHQgvkLHuQQt 4+X9UVlf8UswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzYx L1dGSUd5SFFndmtMSHVRUXQ0LVg5VVZsZjhVcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvV0ZJR3lIUWd2a0xIdVFRdDQtWDlVVmxmOFVzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzYxL2Uyc3Y4LVRZNWY4VHdw ZVdkek9IdWRoaXk3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAB3oXwwDQYJKoZIhvcNAQELBQADggEBAEP+OUv9V5EQ/bn9fRUljHp1DW3F3Xwv a/6PzUJwCA2x/jW92ffORPilIGE8fo4DfX5WPNiDno2D9mEZhor7RliwRjngTkJv JxQ9YkuZ0r6CX3LEt5lvGoY7fSuH4WFr+USKqvH8j0KpmziSF+qvUEdMd4QeTb0Q NoNvW2QKKMafxPEf9p6nH6r/FhE7Nboym6hk5qZTEGDOL4pIEchY8/3wYpQW0eSp TSwWmOLYA4pe5jjWJVJiVmVPuk35MoUO3WSin/KHx1t7bfMsKFSvmRMSIZVkyoVb 1yWHKXA+y/iUDBNU13sWV2UhpMQ8PjPtPruskwjSuA0xzIEt51QamuA= -----END CERTIFICATE-----Generated at Sat Apr 26 15:25:56 2025 by rpki-client