$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/497/imU9bcBr7hgyeXFqfTZmnAeJlhU.roa File: imU9bcBr7hgyeXFqfTZmnAeJlhU.roa (raw, json) Hash identifier: PY4enp06hDmmPvbNRcj0KK93xTkmT6kRWJIbjK/rHGs= Subject key identifier: 8A:65:3D:6D:C0:6B:EE:18:32:79:71:6A:7D:36:66:9C:07:89:96:15 Certificate issuer: /CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Certificate serial: 1D83 Authority key identifier: 7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/imU9bcBr7hgyeXFqfTZmnAeJlhU.roa Signing time: Wed 09 Apr 2025 07:08:35 +0000 ROA not before: Wed 09 Apr 2025 07:08:35 +0000 ROA not after: Thu 09 Apr 2026 06:40:34 +0000 asID: 56002 IP address blocks: 103.12.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7555 (0x1d83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E40AE900100E2B97B31CE006902F31E7D1D2AF2 Validity Not Before: Apr 9 07:08:35 2025 GMT Not After : Apr 9 06:40:34 2026 GMT Subject: CN=8A653D6DC06BEE183279716A7D36669C07899615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:66:2f:2d:9b:05:d2:c4:03:1c:db:ef:a8:30: 71:59:87:e6:2c:69:81:54:b6:c1:b5:ff:53:f6:66: 59:86:b1:3d:36:e6:47:cc:d9:34:20:03:77:d5:7a: 09:20:e5:ba:9f:83:f1:06:86:aa:46:6d:b2:85:55: 06:e2:a5:1e:cb:67:3b:d4:5a:9b:00:d8:63:3d:65: df:af:9c:c7:15:45:22:a4:72:1d:2c:00:2c:04:7f: e0:c5:0c:22:92:38:92:6c:2e:0e:95:f5:ee:53:81: e5:b9:66:fa:c3:7b:51:6b:cf:53:5b:8f:3d:a3:3a: bc:12:21:fe:09:9e:7f:74:a2:da:e3:12:4e:05:89: a1:66:52:1b:f6:6a:80:ed:e1:8f:b6:31:e3:34:cd: da:d1:15:11:a8:ce:8e:01:92:9c:14:aa:8c:ec:19: 0d:4e:9c:ee:b1:31:0a:58:97:c7:c0:0f:74:cd:30: 2f:90:68:52:ce:a4:33:96:16:32:a4:65:1b:36:6f: 0e:65:fe:47:de:2e:96:0e:cc:a2:17:df:bf:21:36: d6:d7:14:a6:67:e8:67:00:05:63:93:31:b3:a4:fe: 46:90:cd:6d:dc:0e:19:8d:15:5b:61:67:83:2d:64: fd:73:d0:ba:d2:a1:5a:4c:02:68:7a:67:42:1c:0b: a0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:65:3D:6D:C0:6B:EE:18:32:79:71:6A:7D:36:66:9C:07:89:96:15 X509v3 Authority Key Identifier: keyid:7E:40:AE:90:01:00:E2:B9:7B:31:CE:00:69:02:F3:1E:7D:1D:2A:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/fkCukAEA4rl7Mc4AaQLzHn0dKvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/fkCukAEA4rl7Mc4AaQLzHn0dKvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/497/imU9bcBr7hgyeXFqfTZmnAeJlhU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.12.234.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:66:de:22:74:e5:48:44:04:e1:82:98:b0:ca:c7:9f:63:ae: 12:ca:79:ad:cc:7f:fa:bd:52:61:88:a3:60:87:c3:e4:53:16: ec:cc:83:ef:52:e5:e1:a2:7a:59:9c:70:a1:5e:82:e3:d2:84: a4:81:e5:ed:be:e1:c6:60:66:fc:5b:d8:0a:b9:8a:c2:5a:9d: 67:98:3f:87:6e:d0:04:4c:48:d1:20:5f:48:90:31:cc:4a:55: 21:01:4a:a1:10:9d:89:08:78:51:2a:61:40:0b:a0:b0:f8:22: d4:8d:a6:d4:c1:e9:00:fa:55:60:1a:0c:d5:11:2c:c0:82:de: bc:40:c3:41:e0:0e:f7:a0:95:37:be:d9:4a:76:e2:22:a7:63: 19:eb:50:e5:17:0f:2e:f7:45:66:7d:35:2f:b5:1f:bc:6c:37: 54:43:11:18:0c:0c:d0:05:0c:07:3d:52:bb:f5:8f:a1:bb:96: 7f:45:80:a2:81:b1:38:7e:72:24:f6:4a:78:00:c5:4a:8a:80: 83:8f:12:6d:94:f8:37:ee:19:e7:97:d9:e4:6d:e4:cb:62:8f: a3:96:53:5c:fd:f3:16:0f:48:95:7d:f9:32:7b:85:ce:be:23: e1:75:c0:5e:b8:12:ef:54:0f:b3:aa:66:94:3f:78:bc:54:27: 7a:6d:4e:9d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHYMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0U0 MEFFOTAwMTAwRTJCOTdCMzFDRTAwNjkwMkYzMUU3RDFEMkFGMjAeFw0yNTA0MDkw NzA4MzVaFw0yNjA0MDkwNjQwMzRaMDMxMTAvBgNVBAMTKDhBNjUzRDZEQzA2QkVF MTgzMjc5NzE2QTdEMzY2NjlDMDc4OTk2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPZi8tmwXSxAMc2++oMHFZh+YsaYFUtsG1/1P2ZlmGsT025kfM 2TQgA3fVegkg5bqfg/EGhqpGbbKFVQbipR7LZzvUWpsA2GM9Zd+vnMcVRSKkch0s ACwEf+DFDCKSOJJsLg6V9e5TgeW5ZvrDe1Frz1Nbjz2jOrwSIf4Jnn90otrjEk4F iaFmUhv2aoDt4Y+2MeM0zdrRFRGozo4BkpwUqozsGQ1OnO6xMQpYl8fAD3TNMC+Q aFLOpDOWFjKkZRs2bw5l/kfeLpYOzKIX378hNtbXFKZn6GcABWOTMbOk/kaQzW3c DhmNFVthZ4MtZP1z0LrSoVpMAmh6Z0IcC6ATAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUimU9bcBr7hgyeXFqfTZmnAeJlhUwHwYDVR0jBBgwFoAUfkCukAEA4rl7Mc4A aQLzHn0dKvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3 L2ZrQ3VrQUVBNHJsN01jNEFhUUx6SG4wZEt2SS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZmtDdWtBRUE0cmw3TWM0QWFRTHpIbjBkS3ZJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDk3L2ltVTliY0JyN2hneWVY RnFmVFptbkFlSmxoVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnDOowDQYJKoZIhvcNAQELBQADggEBAI9m3iJ05UhEBOGCmLDKx59jrhLKea3M f/q9UmGIo2CHw+RTFuzMg+9S5eGielmccKFeguPShKSB5e2+4cZgZvxb2Aq5isJa nWeYP4du0ARMSNEgX0iQMcxKVSEBSqEQnYkIeFEqYUALoLD4ItSNptTB6QD6VWAa DNURLMCC3rxAw0HgDveglTe+2Up24iKnYxnrUOUXDy73RWZ9NS+1H7xsN1RDERgM DNAFDAc9Urv1j6G7ln9FgKKBsTh+ciT2SngAxUqKgIOPEm2U+DfuGeeX2eRt5Mti j6OWU1z98xYPSJV9+TJ7hc6+I+F1wF64Eu9UD7OqZpQ/eLxUJ3ptTp0= -----END CERTIFICATE-----Generated at Sat Apr 26 15:37:41 2025 by rpki-client