$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/767/3dhzqJicrZtcJED5LJd0P-_GyDo.roa File: 3dhzqJicrZtcJED5LJd0P-_GyDo.roa (raw, json) Hash identifier: gWcxEbZavfMioC+whBvGR0NGSe+saLl1taPAoYqtvvQ= Subject key identifier: DD:D8:73:A8:98:9C:AD:9B:5C:24:40:F9:2C:97:74:3F:EF:C6:C8:3A Certificate issuer: /CN=FEE0C827CE296202006EB4ED2B6595DCE0E97C7B Certificate serial: 179A Authority key identifier: FE:E0:C8:27:CE:29:62:02:00:6E:B4:ED:2B:65:95:DC:E0:E9:7C:7B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/3dhzqJicrZtcJED5LJd0P-_GyDo.roa Signing time: Wed 09 Apr 2025 07:08:37 +0000 ROA not before: Wed 09 Apr 2025 07:08:37 +0000 ROA not after: Thu 09 Apr 2026 06:40:47 +0000 asID: 59015 IP address blocks: 119.38.224.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6042 (0x179a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FEE0C827CE296202006EB4ED2B6595DCE0E97C7B Validity Not Before: Apr 9 07:08:37 2025 GMT Not After : Apr 9 06:40:47 2026 GMT Subject: CN=DDD873A8989CAD9B5C2440F92C97743FEFC6C83A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bd:8b:31:fa:08:b0:9a:20:26:1b:12:42:aa: 70:c0:91:b8:21:a4:fa:95:98:da:98:e3:fe:d2:9b: a9:b0:84:7f:31:23:26:38:19:2a:c1:cd:ef:24:e6: 56:3a:2d:ac:a6:62:43:17:81:23:52:72:fc:6e:d9: 13:42:b8:70:38:25:07:10:06:90:11:a7:7f:8d:5a: 1e:8c:d1:f0:fe:49:d3:9a:69:d6:41:cf:b0:a9:7b: 3d:75:0f:50:46:a6:b5:2c:46:e7:b3:d2:bc:35:0e: 4b:51:7d:c8:96:20:d6:e9:97:42:23:23:9d:ef:c9: a1:b4:2b:62:51:e7:7b:26:7e:8f:bf:1e:29:4d:6d: 59:81:54:a4:0a:07:af:d3:f8:1a:9e:78:f2:f3:7b: 35:a6:44:37:66:2b:51:fd:fa:68:fe:1f:cd:a0:6d: 03:ec:b1:68:63:72:81:da:28:6f:4c:a0:a7:90:74: ae:36:9d:52:a5:46:41:19:cd:35:f9:da:81:41:2d: c0:e9:82:3a:e6:98:9a:f9:f2:32:55:6a:6a:8b:57: 4d:61:ec:0c:6a:cb:50:32:01:9a:88:94:de:a8:3b: cf:8d:bb:42:f3:88:42:98:36:fd:cb:d0:4e:13:04: 66:b9:31:db:75:c8:03:6d:0b:54:92:1b:36:37:26: 10:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D8:73:A8:98:9C:AD:9B:5C:24:40:F9:2C:97:74:3F:EF:C6:C8:3A X509v3 Authority Key Identifier: keyid:FE:E0:C8:27:CE:29:62:02:00:6E:B4:ED:2B:65:95:DC:E0:E9:7C:7B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/3dhzqJicrZtcJED5LJd0P-_GyDo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.38.224.0/19 Signature Algorithm: sha256WithRSAEncryption 31:e2:4f:fa:98:e4:97:df:a1:1e:e3:cd:2d:dc:ae:50:b3:7d: 08:98:74:f7:cb:55:a1:67:eb:43:b9:62:7b:1a:6f:8c:18:9d: bd:64:c6:a8:6e:7b:34:28:12:0d:6b:93:fd:4f:64:73:13:d1: 36:97:16:21:83:a7:14:64:ee:b2:8d:cc:9a:99:fe:43:70:4b: 63:0a:44:aa:59:d3:2c:38:64:ec:c7:67:65:d2:0f:17:af:1a: 30:27:53:16:a9:39:a6:94:29:35:d6:2c:e2:88:e6:20:dc:58: a9:57:71:f9:a1:c6:b6:f6:11:54:ed:7d:5a:a1:6f:ae:63:a2: fd:19:c4:c3:63:87:ab:78:90:da:62:bf:fa:55:3e:a2:96:06: 44:ff:3e:68:46:e5:74:ae:f9:68:c4:0d:0f:0d:ef:5a:5f:b3: 76:bf:c3:3f:09:23:f0:29:ef:28:ce:c2:03:bc:b3:a5:eb:f8: 58:8d:83:68:cb:1d:fd:ff:8e:09:ef:32:96:58:03:48:27:65: 85:5c:25:7f:69:90:23:7d:9d:e8:23:5a:a6:3d:14:50:cb:ec: 8d:c2:12:7d:31:59:9b:6d:e0:02:91:f0:75:6c:5d:0d:29:e0: d2:9a:a0:32:95:e9:ff:37:ee:22:be:27:e3:1e:c2:86:ad:7a: 72:10:a0:6d -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICF5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkVF MEM4MjdDRTI5NjIwMjAwNkVCNEVEMkI2NTk1RENFMEU5N0M3QjAeFw0yNTA0MDkw NzA4MzdaFw0yNjA0MDkwNjQwNDdaMDMxMTAvBgNVBAMTKERERDg3M0E4OTg5Q0FE OUI1QzI0NDBGOTJDOTc3NDNGRUZDNkM4M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZvYsx+giwmiAmGxJCqnDAkbghpPqVmNqY4/7Sm6mwhH8xIyY4 GSrBze8k5lY6LaymYkMXgSNScvxu2RNCuHA4JQcQBpARp3+NWh6M0fD+SdOaadZB z7Cpez11D1BGprUsRuez0rw1DktRfciWINbpl0IjI53vyaG0K2JR53smfo+/HilN bVmBVKQKB6/T+BqeePLzezWmRDdmK1H9+mj+H82gbQPssWhjcoHaKG9MoKeQdK42 nVKlRkEZzTX52oFBLcDpgjrmmJr58jJVamqLV01h7Axqy1AyAZqIlN6oO8+Nu0Lz iEKYNv3L0E4TBGa5Mdt1yANtC1SSGzY3JhCBAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU3dhzqJicrZtcJED5LJd0P+/GyDowHwYDVR0jBBgwFoAU/uDIJ84pYgIAbrTt K2WV3ODpfHswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzY3 L191RElKODRwWWdJQWJyVHRLMldWM09EcGZIcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvX3VESUo4NHBZZ0lBYnJUdEsyV1YzT0RwZkhzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzY3LzNkaHpxSmljclp0Y0pF RDVMSmQwUC1fR3lEby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAV3JuAwDQYJKoZIhvcNAQELBQADggEBADHiT/qY5JffoR7jzS3crlCzfQiYdPfL VaFn60O5Ynsab4wYnb1kxqhuezQoEg1rk/1PZHMT0TaXFiGDpxRk7rKNzJqZ/kNw S2MKRKpZ0yw4ZOzHZ2XSDxevGjAnUxapOaaUKTXWLOKI5iDcWKlXcfmhxrb2EVTt fVqhb65jov0ZxMNjh6t4kNpiv/pVPqKWBkT/PmhG5XSu+WjEDQ8N71pfs3a/wz8J I/Ap7yjOwgO8s6Xr+FiNg2jLHf3/jgnvMpZYA0gnZYVcJX9pkCN9negjWqY9FFDL 7I3CEn0xWZtt4AKR8HVsXQ0p4NKaoDKV6f837iK+J+MewoatenIQoG0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:39:43 2025 by rpki-client