$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1228/5phZxr5Uhb3NSuw3CQS7G12n8Ms.roa File: 5phZxr5Uhb3NSuw3CQS7G12n8Ms.roa (raw, json) Hash identifier: TiBiBqmX2u+8+lnUT723Nkj/vXcdxQpMq2cHfeG1nv8= Subject key identifier: E6:98:59:C6:BE:54:85:BD:CD:4A:EC:37:09:04:BB:1B:5D:A7:F0:CB Certificate issuer: /CN=ADD2726DD6FF9F5A459AE5B0A9EE8E7DDFC7F07C Certificate serial: 011C Authority key identifier: AD:D2:72:6D:D6:FF:9F:5A:45:9A:E5:B0:A9:EE:8E:7D:DF:C7:F0:7C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/5phZxr5Uhb3NSuw3CQS7G12n8Ms.roa Signing time: Sat 05 Jul 2025 04:48:34 +0000 ROA not before: Sat 05 Jul 2025 04:48:34 +0000 ROA not after: Sat 16 May 2026 10:06:17 +0000 asID: 133033 IP address blocks: 43.254.192.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 18:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADD2726DD6FF9F5A459AE5B0A9EE8E7DDFC7F07C Validity Not Before: Jul 5 04:48:34 2025 GMT Not After : May 16 10:06:17 2026 GMT Subject: CN=E69859C6BE5485BDCD4AEC370904BB1B5DA7F0CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:83:a3:eb:58:eb:99:73:04:0e:6c:0c:c7: 25:c9:c3:9f:a8:5a:50:6d:5d:8f:ff:0e:b9:e9:02: 0e:31:2c:bf:60:21:e5:4d:81:1b:39:69:f3:ea:c2: dd:4c:cf:d6:b9:cc:bc:10:7a:e4:6e:49:e6:66:ca: fb:28:e3:ab:66:cc:96:d5:3b:3f:b5:1a:14:28:22: c4:ed:8a:cb:49:53:f8:ea:09:47:0a:33:ee:cd:36: 37:13:33:c3:67:fa:0c:aa:66:01:0e:cf:dd:20:31: 0d:e9:2c:1f:e1:f0:3d:7d:be:bd:1c:2a:a0:e7:04: 8c:f5:8d:c2:1f:30:0b:d7:b0:ef:5c:b9:85:0b:b5: 9f:92:bf:f3:45:7c:21:4e:13:ed:45:c1:ab:08:27: 8d:dc:db:57:53:c2:78:9b:d9:4b:51:0d:90:bb:a1: 66:a1:97:09:d9:e5:18:5b:74:5e:22:03:30:95:c0: c4:79:86:05:45:3d:78:fe:ad:30:c8:70:e8:fd:f3: 2c:f9:30:84:d2:25:55:4b:89:e0:4a:7d:ee:9d:30: 11:3f:b4:5e:9f:a7:6e:3f:cb:35:8d:fa:26:ce:da: c0:8f:56:5d:2e:e6:10:af:f9:fe:f5:57:8f:3a:f4: 2b:7f:f2:83:66:1d:ed:40:16:19:0d:71:bb:b4:74: bd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:98:59:C6:BE:54:85:BD:CD:4A:EC:37:09:04:BB:1B:5D:A7:F0:CB X509v3 Authority Key Identifier: keyid:AD:D2:72:6D:D6:FF:9F:5A:45:9A:E5:B0:A9:EE:8E:7D:DF:C7:F0:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/5phZxr5Uhb3NSuw3CQS7G12n8Ms.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.254.192.0/22 Signature Algorithm: sha256WithRSAEncryption 37:0e:05:b8:3e:88:29:4f:78:df:74:1f:e6:aa:a2:66:7f:e0: ff:f1:45:e6:d6:32:88:24:35:3a:bb:02:22:e1:56:96:96:9c: ae:64:e3:5c:d7:bb:b5:fd:56:26:ef:26:0d:8b:7b:de:cb:6d: 6e:24:06:7f:e5:d2:10:06:d9:af:8a:59:84:2b:a3:1b:75:e3: c8:df:53:55:2f:01:2f:9f:bb:7e:99:62:f5:29:5c:03:f1:2a: d5:4c:d9:de:08:81:55:9c:a6:2d:86:c2:ec:0d:5c:f5:3a:2c: 1f:4d:e3:c5:d1:5a:1e:38:88:11:36:9e:91:4e:ed:de:b0:0a: a0:12:b6:00:76:0b:91:3d:7c:29:1a:3c:70:6e:d7:fc:ad:ad: 55:0f:b3:4e:ab:2f:4d:b2:eb:da:08:c5:1b:34:cf:f6:43:62: 35:a5:0d:8f:e9:ce:1f:74:a3:f7:b1:d0:90:ed:af:35:60:af: 70:97:cf:93:8a:07:d6:96:62:71:86:ea:9f:b4:d0:e2:57:ac: 32:d4:0b:d3:0e:18:74:a7:60:b1:9f:b6:92:37:d8:25:c8:16: a6:47:5c:16:3f:64:c0:e7:50:56:ef:fe:fc:cd:9d:8f:23:e2: c6:f9:bb:e1:fd:45:f3:24:f1:b5:3b:f2:62:d2:4b:a7:63:50: 4f:f7:3b:36 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICARwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURE MjcyNkRENkZGOUY1QTQ1OUFFNUIwQTlFRThFN0RERkM3RjA3QzAeFw0yNTA3MDUw NDQ4MzRaFw0yNjA1MTYxMDA2MTdaMDMxMTAvBgNVBAMTKEU2OTg1OUM2QkU1NDg1 QkRDRDRBRUMzNzA5MDRCQjFCNURBN0YwQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+tIOj61jrmXMEDmwMxyXJw5+oWlBtXY//DrnpAg4xLL9gIeVN gRs5afPqwt1Mz9a5zLwQeuRuSeZmyvso46tmzJbVOz+1GhQoIsTtistJU/jqCUcK M+7NNjcTM8Nn+gyqZgEOz90gMQ3pLB/h8D19vr0cKqDnBIz1jcIfMAvXsO9cuYUL tZ+Sv/NFfCFOE+1FwasIJ43c21dTwnib2UtRDZC7oWahlwnZ5RhbdF4iAzCVwMR5 hgVFPXj+rTDIcOj98yz5MITSJVVLieBKfe6dMBE/tF6fp24/yzWN+ibO2sCPVl0u 5hCv+f71V4869Ct/8oNmHe1AFhkNcbu0dL2xAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU5phZxr5Uhb3NSuw3CQS7G12n8MswHwYDVR0jBBgwFoAUrdJybdb/n1pFmuWw qe6Ofd/H8HwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIy OC9yZEp5YmRiX24xcEZtdVd3cWU2T2ZkX0g4SHcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3JkSnliZGJfbjFwRm11V3dxZTZPZmRfSDhIdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEyMjgvNXBoWnhyNVVoYjNO U3V3M0NRUzdHMTJuOE1zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAiv+wDANBgkqhkiG9w0BAQsFAAOCAQEANw4FuD6IKU9433Qf5qqiZn/g//FF 5tYyiCQ1OrsCIuFWlpacrmTjXNe7tf1WJu8mDYt73sttbiQGf+XSEAbZr4pZhCuj G3XjyN9TVS8BL5+7fpli9SlcA/Eq1UzZ3giBVZymLYbC7A1c9TosH03jxdFaHjiI ETaekU7t3rAKoBK2AHYLkT18KRo8cG7X/K2tVQ+zTqsvTbLr2gjFGzTP9kNiNaUN j+nOH3Sj97HQkO2vNWCvcJfPk4oH1pZicYbqn7TQ4lesMtQL0w4YdKdgsZ+2kjfY JcgWpkdcFj9kwOdQVu/+/M2djyPixvm74f1F8yTxtTvyYtJLp2NQT/c7Ng== -----END CERTIFICATE-----Generated at Sun Jul 20 18:37:17 2025 by rpki-client