$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/76/N068Movxhd0HY-G9IlBTH0wcH-o.roa File: N068Movxhd0HY-G9IlBTH0wcH-o.roa (raw, json) Hash identifier: 52PacQFpyIpw+nFdeX2RQwEMG/bZk45cRChsSeSXizk= Subject key identifier: 37:4E:BC:32:8B:F1:85:DD:07:63:E1:BD:22:50:53:1F:4C:1C:1F:EA Certificate issuer: /CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Certificate serial: 0A Authority key identifier: 2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/N068Movxhd0HY-G9IlBTH0wcH-o.roa Signing time: Wed 09 Apr 2025 07:08:23 +0000 ROA not before: Wed 09 Apr 2025 07:08:23 +0000 ROA not after: Thu 09 Apr 2026 06:33:21 +0000 asID: 9391 IP address blocks: 210.77.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E266DC3EAD80EB25D49858A64DC1EF1C8A1B942 Validity Not Before: Apr 9 07:08:23 2025 GMT Not After : Apr 9 06:33:21 2026 GMT Subject: CN=374EBC328BF185DD0763E1BD2250531F4C1C1FEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a0:f0:c9:dd:b3:43:54:7a:fc:da:42:89:01: 13:fe:69:fa:94:84:c6:f8:58:f2:b4:29:6e:cc:d5: 86:e1:ae:6a:67:a8:e8:13:af:21:36:3d:db:f8:f6: 51:cb:35:9b:9e:05:49:3a:bd:e7:00:97:3f:15:76: 94:09:51:61:01:70:98:cc:5b:86:e1:84:b9:97:4d: d5:d9:b5:4c:71:f1:07:36:3f:d8:84:4f:ae:29:28: dc:6d:27:0a:36:6d:85:8d:20:37:28:5c:3e:16:15: b1:82:03:13:bf:a9:16:f4:58:4d:08:1f:69:3f:c3: 81:55:f7:a0:ae:25:24:be:df:66:63:02:71:d4:5e: e7:3f:fa:f9:30:cb:a7:d4:dc:65:1a:60:00:ab:a5: 84:d0:a4:39:89:14:85:81:c0:91:74:31:76:97:c0: 61:bd:f5:0d:4b:e0:9e:cc:9d:ac:35:a5:e1:4b:d5: 04:41:63:59:2a:d0:2d:36:57:a2:6b:ef:0c:21:47: 13:21:ee:47:59:16:d2:2a:f0:d1:08:64:c4:7e:0b: 7b:ea:3f:60:b7:58:8a:7f:8c:23:e2:f3:da:92:16: e4:48:5b:7e:38:f8:6f:06:42:2c:35:b7:a8:3b:42: ff:19:2b:be:20:2f:80:a4:f1:34:98:b9:1b:d8:e3: ae:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4E:BC:32:8B:F1:85:DD:07:63:E1:BD:22:50:53:1F:4C:1C:1F:EA X509v3 Authority Key Identifier: keyid:2E:26:6D:C3:EA:D8:0E:B2:5D:49:85:8A:64:DC:1E:F1:C8:A1:B9:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/LiZtw-rYDrJdSYWKZNwe8cihuUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LiZtw-rYDrJdSYWKZNwe8cihuUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/76/N068Movxhd0HY-G9IlBTH0wcH-o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.77.96.0/19 Signature Algorithm: sha256WithRSAEncryption 07:68:56:15:43:1b:b3:39:c4:74:c0:fd:36:fe:5c:54:ca:6b: be:e3:8c:e7:24:00:80:a9:27:58:e9:c8:03:12:57:d7:34:66: 47:03:3a:4f:12:38:f0:34:6f:ee:2a:32:e6:db:11:ae:ff:f0: 75:d5:ad:1e:81:78:5b:60:26:72:34:ee:99:8f:6c:d9:b8:b0: 7d:0b:26:b5:cf:9a:a7:bd:c8:af:4d:26:d6:94:b5:91:e1:5a: c4:00:bb:87:22:b5:ff:6f:99:60:49:17:8f:38:48:f9:a4:6d: 42:7e:fa:86:75:c1:9d:db:8c:6f:9a:92:f7:51:3a:fb:0e:ef: c2:2b:15:ec:18:27:3e:38:cd:2b:66:5a:8c:2d:08:59:17:3c: 02:c6:33:1d:74:9a:cd:9c:26:ef:09:6b:9b:c2:f3:97:22:64: 10:b2:2f:f2:f9:3d:17:6f:2d:bc:86:b9:85:89:81:aa:72:0b: 18:37:ae:d9:85:3c:f6:8d:fd:38:bc:6b:c9:2f:b0:66:9d:72: cb:0c:d5:31:e4:09:9a:dc:7d:08:92:a1:4a:64:7b:c5:9c:59: 7a:fc:0a:1a:30:25:70:e2:55:ad:c7:09:b5:73:6b:7d:5a:f9: ac:0b:7a:3c:87:04:06:4f:d7:79:5e:73:a2:ac:91:49:b0:8d: 3e:77:e4:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyRTI2 NkRDM0VBRDgwRUIyNUQ0OTg1OEE2NERDMUVGMUM4QTFCOTQyMB4XDTI1MDQwOTA3 MDgyM1oXDTI2MDQwOTA2MzMyMVowMzExMC8GA1UEAxMoMzc0RUJDMzI4QkYxODVE RDA3NjNFMUJEMjI1MDUzMUY0QzFDMUZFQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALig8Mnds0NUevzaQokBE/5p+pSExvhY8rQpbszVhuGuameo6BOv ITY92/j2Ucs1m54FSTq95wCXPxV2lAlRYQFwmMxbhuGEuZdN1dm1THHxBzY/2IRP riko3G0nCjZthY0gNyhcPhYVsYIDE7+pFvRYTQgfaT/DgVX3oK4lJL7fZmMCcdRe 5z/6+TDLp9TcZRpgAKulhNCkOYkUhYHAkXQxdpfAYb31DUvgnsydrDWl4UvVBEFj WSrQLTZXomvvDCFHEyHuR1kW0irw0QhkxH4Le+o/YLdYin+MI+Lz2pIW5Ehbfjj4 bwZCLDW3qDtC/xkrviAvgKTxNJi5G9jjrgUCAwEAAaOCAe8wggHrMB0GA1UdDgQW BBQ3Trwyi/GF3Qdj4b0iUFMfTBwf6jAfBgNVHSMEGDAWgBQuJm3D6tgOsl1JhYpk 3B7xyKG5QjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC83Ni9M aVp0dy1yWURySmRTWVdLWk53ZThjaWh1VUkuY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL0xpWnR3LXJZRHJKZFNZV0taTndlOGNpaHVVSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzc2L04wNjhNb3Z4aGQwSFktRzlJ bEJUSDB3Y0gtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5j bi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXS TWAwDQYJKoZIhvcNAQELBQADggEBAAdoVhVDG7M5xHTA/Tb+XFTKa77jjOckAICp J1jpyAMSV9c0ZkcDOk8SOPA0b+4qMubbEa7/8HXVrR6BeFtgJnI07pmPbNm4sH0L JrXPmqe9yK9NJtaUtZHhWsQAu4citf9vmWBJF484SPmkbUJ++oZ1wZ3bjG+akvdR OvsO78IrFewYJz44zStmWowtCFkXPALGMx10ms2cJu8Ja5vC85ciZBCyL/L5PRdv LbyGuYWJgapyCxg3rtmFPPaN/Ti8a8kvsGadcssM1THkCZrcfQiSoUpke8WcWXr8 ChowJXDiVa3HCbVza31a+awLejyHBAZP13lec6KskUmwjT535Hs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:10:27 2025 by rpki-client