$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/4K_xJOO7dF_4FuiOc6Nyu_H_U80.roa File: 4K_xJOO7dF_4FuiOc6Nyu_H_U80.roa (raw, json) Hash identifier: HS/Do41BJlGIfQZsl/gRTCoFj/vMrBG7YZWykUzGlN4= Subject key identifier: E0:AF:F1:24:E3:BB:74:5F:F8:16:E8:8E:73:A3:72:BB:F1:FF:53:CD Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 10DB Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/4K_xJOO7dF_4FuiOc6Nyu_H_U80.roa Signing time: Sun 09 Mar 2025 16:18:53 +0000 ROA not before: Sun 09 Mar 2025 16:18:53 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 62387 IP address blocks: 101.232.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 15:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4315 (0x10db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Mar 9 16:18:53 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=E0AFF124E3BB745FF816E88E73A372BBF1FF53CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d0:75:01:bc:64:93:d8:6c:b2:9f:60:87:82: 26:5a:db:41:a2:b5:c8:7c:a7:68:0c:4d:08:34:3b: e1:6b:92:bc:ca:59:f4:d9:c6:b7:3e:1c:48:9c:31: 5c:57:dc:ec:d8:2e:3b:df:bc:bb:08:b6:7e:80:26: b5:ce:82:e6:7a:19:07:5b:c2:44:eb:ae:d5:f4:ca: 5f:7f:63:78:f8:ec:84:a2:d2:5f:d3:6d:4b:56:f6: e3:66:b7:97:f0:bc:72:36:98:94:60:29:3c:9c:72: 6a:eb:41:fd:1a:6e:5a:c6:f7:3c:cb:c0:1b:a3:d8: 19:ed:d3:18:66:40:8b:ee:5b:56:94:2f:4d:6a:6d: fc:a5:2c:3d:cb:5f:5f:df:5f:4c:5c:35:60:be:c7: ab:03:e3:e5:1b:af:47:ce:81:e7:d4:bb:0f:ee:b2: 04:4d:ea:8e:cd:0d:7a:a8:b0:e1:e9:55:ce:cd:79: 87:f4:bc:7b:e9:9e:97:b7:88:77:40:05:ec:e9:12: 31:d3:09:dc:74:4a:0c:dd:f8:fa:ed:24:ce:3d:f8: c1:af:31:13:ac:5b:10:88:2b:15:00:8c:cb:1c:fb: a9:03:dd:19:49:4b:0f:ec:88:a9:31:e2:e2:0d:e6: 72:99:4e:e0:ac:1f:c5:01:eb:1e:c6:ee:c0:5c:94: 33:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AF:F1:24:E3:BB:74:5F:F8:16:E8:8E:73:A3:72:BB:F1:FF:53:CD X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/4K_xJOO7dF_4FuiOc6Nyu_H_U80.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.16.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:fc:8b:fd:de:16:81:8b:93:77:30:53:90:cc:f4:2f:8a:66: 69:e8:71:92:53:48:0b:e3:b2:b9:0a:44:d2:8c:c4:10:31:04: cf:34:2e:1a:0d:9f:a6:56:ee:81:65:b7:16:a8:fe:c8:2e:67: 00:9c:74:2f:e3:f8:79:49:4d:8a:e4:86:a4:0d:ba:e7:aa:c9: c4:c8:b4:c1:e7:8f:ee:6c:22:78:d1:00:6f:58:bf:0f:55:f2: f8:30:7b:aa:2e:5c:6c:c2:31:8c:27:3c:09:c4:f4:5e:be:c9: 11:dc:d5:c1:f2:70:88:5e:de:08:ff:69:e9:54:1d:2d:23:78: cc:7d:2e:fe:04:44:e3:fc:f9:59:38:dc:17:81:bf:9f:49:d5: a7:62:8d:6c:db:db:56:1e:65:91:8a:4f:ce:86:ac:8a:50:c9: 29:65:22:38:7e:27:9c:c3:8e:42:4b:5f:78:0a:c6:98:88:1a: 7c:d3:3e:d7:76:34:c3:28:5c:55:8e:76:f5:92:20:97:f4:d7: aa:b1:0c:20:ef:3d:65:ed:2a:f8:ed:f1:c8:73:85:c7:6e:3e: 23:2f:28:79:91:16:0a:93:39:8d:92:e0:3b:22:34:bb:bd:e8: bd:db:f3:27:16:c4:2a:5f:6d:0d:82:34:03:1e:a3:60:17:ed: 5c:bd:16:cc -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICENswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTAzMDkx NjE4NTNaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEUwQUZGMTI0RTNCQjc0 NUZGODE2RTg4RTczQTM3MkJCRjFGRjUzQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx0HUBvGST2Gyyn2CHgiZa20Gitch8p2gMTQg0O+FrkrzKWfTZ xrc+HEicMVxX3OzYLjvfvLsItn6AJrXOguZ6GQdbwkTrrtX0yl9/Y3j47ISi0l/T bUtW9uNmt5fwvHI2mJRgKTyccmrrQf0ablrG9zzLwBuj2Bnt0xhmQIvuW1aUL01q bfylLD3LX1/fX0xcNWC+x6sD4+Ubr0fOgefUuw/usgRN6o7NDXqosOHpVc7NeYf0 vHvpnpe3iHdABezpEjHTCdx0Sgzd+PrtJM49+MGvMROsWxCIKxUAjMsc+6kD3RlJ Sw/siKkx4uIN5nKZTuCsH8UB6x7G7sBclDNNAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU4K/xJOO7dF/4FuiOc6Nyu/H/U80wHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzLzRLX3hKT083ZEZfNEZ1 aU9jNk55dV9IX1U4MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6BAwDQYJKoZIhvcNAQELBQADggEBAG78i/3eFoGLk3cwU5DM9C+KZmnocZJT SAvjsrkKRNKMxBAxBM80LhoNn6ZW7oFltxao/sguZwCcdC/j+HlJTYrkhqQNuueq ycTItMHnj+5sInjRAG9Yvw9V8vgwe6ouXGzCMYwnPAnE9F6+yRHc1cHycIhe3gj/ aelUHS0jeMx9Lv4EROP8+Vk43BeBv59J1adijWzb21YeZZGKT86GrIpQySllIjh+ J5zDjkJLX3gKxpiIGnzTPtd2NMMoXFWOdvWSIJf016qxDCDvPWXtKvjt8chzhcdu PiMvKHmRFgqTOY2S4DsiNLu96L3b8ycWxCpfbQ2CNAMeo2AX7Vy9Fsw= -----END CERTIFICATE-----Generated at Sat Apr 26 15:12:48 2025 by rpki-client