$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/192/BOenrqJKc9KlJ3R4Bb6iBOqblCw.roa File: BOenrqJKc9KlJ3R4Bb6iBOqblCw.roa (raw, json) Hash identifier: coERWlP2FM8p3ZDcv5C74f13lEgEvxJy0S06JKJMgg4= Subject key identifier: 04:E7:A7:AE:A2:4A:73:D2:A5:27:74:78:05:BE:A2:04:EA:9B:94:2C Certificate issuer: /CN=193E93B5D1DD046927E649A3FC2328E119C40863 Certificate serial: 1D60 Authority key identifier: 19:3E:93:B5:D1:DD:04:69:27:E6:49:A3:FC:23:28:E1:19:C4:08:63 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/BOenrqJKc9KlJ3R4Bb6iBOqblCw.roa Signing time: Wed 09 Apr 2025 06:47:44 +0000 ROA not before: Wed 09 Apr 2025 06:47:44 +0000 ROA not after: Thu 09 Apr 2026 06:39:56 +0000 asID: 9808 IP address blocks: 121.255.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 12:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7520 (0x1d60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=193E93B5D1DD046927E649A3FC2328E119C40863 Validity Not Before: Apr 9 06:47:44 2025 GMT Not After : Apr 9 06:39:56 2026 GMT Subject: CN=04E7A7AEA24A73D2A527747805BEA204EA9B942C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:49:84:bb:e4:74:8d:2b:16:aa:9d:da:94:bd: f5:32:76:39:73:fb:ec:91:9b:65:82:b1:ce:9b:51: b9:4c:e5:21:b1:01:a7:b1:b1:e1:41:94:75:10:d0: 97:ed:66:76:0e:b7:9e:cb:1f:8e:4a:e7:43:ea:0a: 3c:95:4a:f1:7c:61:aa:28:e4:18:35:d1:32:a8:6d: 52:ad:f3:94:30:22:92:1a:a8:21:ff:4b:0a:d8:a0: 8b:c7:81:18:e0:e8:b6:f7:7e:18:9e:32:24:b1:19: d8:f4:94:01:38:6b:ba:17:7a:9e:3e:34:f9:3b:d4: f0:c0:f4:38:44:b0:1d:11:ff:b3:45:79:b7:ab:c8: 64:11:c3:29:7f:da:57:25:d6:6f:d7:18:08:7c:9e: d9:9c:99:16:e4:01:0e:26:b8:2c:a4:51:e0:9e:7e: 26:87:44:3a:75:c5:de:f0:2f:6e:02:b1:99:82:fe: aa:c0:0b:19:4a:6f:4c:53:91:5d:6a:02:47:63:3e: 0e:fe:8e:c8:e5:cf:e3:65:09:8d:d4:22:20:d0:31: 1a:0a:b8:30:a9:3d:16:12:34:56:16:45:ba:e7:df: 51:bb:a4:f0:ef:8e:05:04:46:d9:57:81:1a:90:ef: cc:70:f4:f4:b1:87:ee:5e:33:68:fd:57:c4:c6:e8: 07:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E7:A7:AE:A2:4A:73:D2:A5:27:74:78:05:BE:A2:04:EA:9B:94:2C X509v3 Authority Key Identifier: keyid:19:3E:93:B5:D1:DD:04:69:27:E6:49:A3:FC:23:28:E1:19:C4:08:63 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/BOenrqJKc9KlJ3R4Bb6iBOqblCw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.255.0.0/16 Signature Algorithm: sha256WithRSAEncryption a4:3c:c7:32:44:20:60:ec:27:ca:06:8b:6e:1d:df:86:fb:5f: 13:b4:50:ad:62:c3:a3:a6:6d:fc:a2:bd:f3:80:e2:19:81:ba: f3:23:2b:99:e4:29:b6:a3:47:ab:3e:be:20:42:b5:9b:53:cd: 09:95:9e:e6:71:d9:89:33:36:e8:b5:03:69:cc:d8:b9:16:ca: 17:6f:46:ca:67:23:48:0f:5e:6d:92:dd:22:78:a2:32:b9:aa: 58:ad:40:e1:93:fc:46:12:24:56:c3:df:c3:b8:8c:cc:52:ec: b7:70:77:8b:1b:e6:f4:25:53:64:56:c3:71:cb:dd:84:8e:3c: 36:13:ed:05:cc:b9:3d:1e:bc:9c:dd:d5:ca:02:b0:56:92:be: 73:45:37:0d:a6:f2:c9:14:d5:35:a9:8e:09:7e:d1:62:b0:dc: a8:29:e2:c4:e6:24:20:0f:2f:df:11:fb:16:86:37:64:d3:e2: c5:69:ce:f4:57:e7:de:c9:1f:81:72:71:c6:8b:80:cd:6c:85: 6f:c2:e3:01:17:78:26:15:21:00:73:9a:d6:6f:cd:81:4f:0b: 2f:18:3e:21:63:e1:ce:4a:a5:d0:16:6d:8c:d8:32:b7:37:d0: 92:40:9e:7c:10:56:e3:13:5f:81:cf:44:00:37:93:9c:95:0a: 99:15:b0:74 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICHWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTkz RTkzQjVEMUREMDQ2OTI3RTY0OUEzRkMyMzI4RTExOUM0MDg2MzAeFw0yNTA0MDkw NjQ3NDRaFw0yNjA0MDkwNjM5NTZaMDMxMTAvBgNVBAMTKDA0RTdBN0FFQTI0QTcz RDJBNTI3NzQ3ODA1QkVBMjA0RUE5Qjk0MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDySYS75HSNKxaqndqUvfUydjlz++yRm2WCsc6bUblM5SGxAaex seFBlHUQ0JftZnYOt57LH45K50PqCjyVSvF8Yaoo5Bg10TKobVKt85QwIpIaqCH/ SwrYoIvHgRjg6Lb3fhieMiSxGdj0lAE4a7oXep4+NPk71PDA9DhEsB0R/7NFeber yGQRwyl/2lcl1m/XGAh8ntmcmRbkAQ4muCykUeCefiaHRDp1xd7wL24CsZmC/qrA CxlKb0xTkV1qAkdjPg7+jsjlz+NlCY3UIiDQMRoKuDCpPRYSNFYWRbrn31G7pPDv jgUERtlXgRqQ78xw9PSxh+5eM2j9V8TG6AfZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBOenrqJKc9KlJ3R4Bb6iBOqblCwwHwYDVR0jBBgwFoAUGT6TtdHdBGkn5kmj /CMo4RnECGMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTky L0dUNlR0ZEhkQkdrbjVrbWpfQ01vNFJuRUNHTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvR1Q2VHRkSGRCR2tuNWttal9DTW80Um5FQ0dNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkyL0JPZW5ycUpLYzlLbEoz UjRCYjZpQk9xYmxDdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwB5/zANBgkqhkiG9w0BAQsFAAOCAQEApDzHMkQgYOwnygaLbh3fhvtfE7RQrWLD o6Zt/KK984DiGYG68yMrmeQptqNHqz6+IEK1m1PNCZWe5nHZiTM26LUDaczYuRbK F29GymcjSA9ebZLdIniiMrmqWK1A4ZP8RhIkVsPfw7iMzFLst3B3ixvm9CVTZFbD ccvdhI48NhPtBcy5PR68nN3VygKwVpK+c0U3DabyyRTVNamOCX7RYrDcqCnixOYk IA8v3xH7FoY3ZNPixWnO9Ffn3skfgXJxxouAzWyFb8LjARd4JhUhAHOa1m/NgU8L Lxg+IWPhzkql0BZtjNgytzfQkkCefBBW4xNfgc9EADeTnJUKmRWwdA== -----END CERTIFICATE-----Generated at Wed Apr 23 08:11:00 2025 by rpki-client