$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/192/jyhRZZk05R0sT5QRGMviY7tXhL0.roa File: jyhRZZk05R0sT5QRGMviY7tXhL0.roa (raw, json) Hash identifier: n4yUdcZZyYQ69zZ4X2qaoO7EG3bqfjqq8JkGEqzWgug= Subject key identifier: 8F:28:51:65:99:34:E5:1D:2C:4F:94:11:18:CB:E2:63:BB:57:84:BD Certificate issuer: /CN=193E93B5D1DD046927E649A3FC2328E119C40863 Certificate serial: 1D5F Authority key identifier: 19:3E:93:B5:D1:DD:04:69:27:E6:49:A3:FC:23:28:E1:19:C4:08:63 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/jyhRZZk05R0sT5QRGMviY7tXhL0.roa Signing time: Wed 09 Apr 2025 06:47:43 +0000 ROA not before: Wed 09 Apr 2025 06:47:43 +0000 ROA not after: Thu 09 Apr 2026 06:39:56 +0000 asID: 9808 IP address blocks: 202.141.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 12:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7519 (0x1d5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=193E93B5D1DD046927E649A3FC2328E119C40863 Validity Not Before: Apr 9 06:47:43 2025 GMT Not After : Apr 9 06:39:56 2026 GMT Subject: CN=8F2851659934E51D2C4F941118CBE263BB5784BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2e:3f:e5:09:4a:d7:cf:c0:d8:3a:37:f1:48: 99:b7:d3:3d:4b:1f:3a:03:b7:a6:35:b8:02:7f:2b: 1c:2b:b4:52:d7:a2:6d:2c:e0:50:fd:a5:d0:7d:fc: 6c:b6:55:d7:0a:1e:11:08:af:ea:e7:36:e9:df:eb: 4f:07:20:fd:34:58:9d:38:6e:2f:4c:d2:9d:ba:46: 9c:43:f0:c1:20:2d:9a:c6:23:bd:93:b9:7b:e4:ae: 00:bc:1a:ee:d0:c4:9e:2d:54:06:cb:4d:4c:55:18: 5f:fb:f5:1b:c8:48:cb:14:e1:3f:94:db:61:7e:f8: 4b:25:82:20:bd:de:90:1c:cc:9a:c3:6f:9c:37:12: fb:c9:1f:ea:5f:a0:8d:f2:7f:0e:15:81:16:40:7b: 3b:65:d0:ee:04:d7:b3:b8:cc:47:3d:07:76:7a:1e: 4a:d5:1d:4d:ed:31:e3:88:02:c0:a6:46:bc:ea:0e: 53:3d:16:49:56:a4:47:19:ba:2e:5b:df:ac:35:c6: d4:6f:69:d6:73:e6:8e:49:7d:83:48:f9:7c:b9:fd: 58:8f:b6:11:c6:e5:f0:f6:4c:97:93:a4:6e:5e:eb: 7a:92:4f:64:c8:3a:04:24:6a:92:60:94:d7:7d:c6: b5:cf:3f:9d:c6:55:f6:08:c1:1f:4c:7c:ca:ba:57: 1a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:28:51:65:99:34:E5:1D:2C:4F:94:11:18:CB:E2:63:BB:57:84:BD X509v3 Authority Key Identifier: keyid:19:3E:93:B5:D1:DD:04:69:27:E6:49:A3:FC:23:28:E1:19:C4:08:63 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/GT6TtdHdBGkn5kmj_CMo4RnECGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/GT6TtdHdBGkn5kmj_CMo4RnECGM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/jyhRZZk05R0sT5QRGMviY7tXhL0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.141.176.0/20 Signature Algorithm: sha256WithRSAEncryption 13:b3:99:68:71:1e:26:cd:1f:49:45:05:ed:e3:11:4e:55:09: fb:0c:86:de:78:ec:45:99:79:2b:d7:72:1f:df:50:2d:7a:f8: 1a:ae:56:00:03:07:23:c8:d3:f1:d3:cd:90:88:7f:65:39:5b: f8:d0:ba:d5:4a:3e:a6:d3:1d:92:30:02:ab:96:e1:07:3d:60: 92:9e:61:99:cf:d4:64:39:b7:38:32:52:34:26:cb:52:48:5c: a9:e5:b9:da:f4:cd:e6:14:9f:38:43:1b:41:b6:6f:9f:6f:ef: 14:a1:89:f6:bf:15:81:5c:56:93:c1:b2:82:14:cc:8d:df:7e: 35:23:53:44:19:af:f5:72:ce:af:77:3b:83:b7:aa:9d:54:0a: e4:37:0d:89:97:69:bb:2f:13:e4:ed:f7:32:1d:ff:15:76:d1: 35:57:72:a6:94:ba:dc:64:3d:bb:44:25:5c:f5:cc:50:2e:e1: e7:8a:63:f7:dc:9d:54:c7:4f:36:cc:b1:51:83:80:a1:4b:5a: 25:4d:f0:0f:2e:ce:88:93:b5:72:55:d8:be:5f:d8:08:8d:33: f1:84:31:ca:9d:85:3d:2e:da:4a:d1:12:70:96:11:71:4c:9b: 63:cd:50:ea:60:8d:a5:b1:86:e1:3d:b2:82:de:b8:65:58:d2: 83:9a:e9:54 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTkz RTkzQjVEMUREMDQ2OTI3RTY0OUEzRkMyMzI4RTExOUM0MDg2MzAeFw0yNTA0MDkw NjQ3NDNaFw0yNjA0MDkwNjM5NTZaMDMxMTAvBgNVBAMTKDhGMjg1MTY1OTkzNEU1 MUQyQzRGOTQxMTE4Q0JFMjYzQkI1Nzg0QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDILj/lCUrXz8DYOjfxSJm30z1LHzoDt6Y1uAJ/KxwrtFLXom0s 4FD9pdB9/Gy2VdcKHhEIr+rnNunf608HIP00WJ04bi9M0p26RpxD8MEgLZrGI72T uXvkrgC8Gu7QxJ4tVAbLTUxVGF/79RvISMsU4T+U22F++EslgiC93pAczJrDb5w3 EvvJH+pfoI3yfw4VgRZAeztl0O4E17O4zEc9B3Z6HkrVHU3tMeOIAsCmRrzqDlM9 FklWpEcZui5b36w1xtRvadZz5o5JfYNI+Xy5/ViPthHG5fD2TJeTpG5e63qST2TI OgQkapJglNd9xrXPP53GVfYIwR9MfMq6VxqVAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUjyhRZZk05R0sT5QRGMviY7tXhL0wHwYDVR0jBBgwFoAUGT6TtdHdBGkn5kmj /CMo4RnECGMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTky L0dUNlR0ZEhkQkdrbjVrbWpfQ01vNFJuRUNHTS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvR1Q2VHRkSGRCR2tuNWttal9DTW80Um5FQ0dNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkyL2p5aFJaWmswNVIwc1Q1 UVJHTXZpWTd0WGhMMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATKjbAwDQYJKoZIhvcNAQELBQADggEBABOzmWhxHibNH0lFBe3jEU5VCfsMht54 7EWZeSvXch/fUC16+BquVgADByPI0/HTzZCIf2U5W/jQutVKPqbTHZIwAquW4Qc9 YJKeYZnP1GQ5tzgyUjQmy1JIXKnludr0zeYUnzhDG0G2b59v7xShifa/FYFcVpPB soIUzI3ffjUjU0QZr/Vyzq93O4O3qp1UCuQ3DYmXabsvE+Tt9zId/xV20TVXcqaU utxkPbtEJVz1zFAu4eeKY/fcnVTHTzbMsVGDgKFLWiVN8A8uzoiTtXJV2L5f2AiN M/GEMcqdhT0u2krREnCWEXFMm2PNUOpgjaWxhuE9soLeuGVY0oOa6VQ= -----END CERTIFICATE-----Generated at Wed Apr 23 08:36:57 2025 by rpki-client