$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/192/snw-NI25N0Ia9kFy4kqbaf1-Dz8.roa File: snw-NI25N0Ia9kFy4kqbaf1-Dz8.roa (raw, json) Hash identifier: MZ8UlnboUaU3f+1a6FsBRFwSkOPQ7Y4u/AxUpRNGThk= Subject key identifier: B2:7C:3E:34:8D:B9:37:42:1A:F6:41:72:E2:4A:9B:69:FD:7E:0F:3F Certificate issuer: /CN=F6D5AF21959B7F9C1B230D725898F111AAA3F9AE Certificate serial: 1BC5 Authority key identifier: F6:D5:AF:21:95:9B:7F:9C:1B:23:0D:72:58:98:F1:11:AA:A3:F9:AE Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9tWvIZWbf5wbIw1yWJjxEaqj-a4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/snw-NI25N0Ia9kFy4kqbaf1-Dz8.roa Signing time: Fri 17 Jan 2025 01:29:06 +0000 ROA not before: Fri 17 Jan 2025 01:29:06 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 4134 IP address blocks: 202.141.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/9tWvIZWbf5wbIw1yWJjxEaqj-a4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/9tWvIZWbf5wbIw1yWJjxEaqj-a4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9tWvIZWbf5wbIw1yWJjxEaqj-a4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 21:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7109 (0x1bc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F6D5AF21959B7F9C1B230D725898F111AAA3F9AE Validity Not Before: Jan 17 01:29:06 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=B27C3E348DB937421AF64172E24A9B69FD7E0F3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:06:a4:39:81:a6:51:c8:72:93:6b:60:af:c3: 51:c5:a7:bb:33:7c:27:13:8a:50:0d:4c:bf:d0:ac: b4:44:13:5d:0c:b2:9b:9a:ce:3e:59:2f:b8:8b:0f: 20:de:8e:19:4c:ea:c7:75:b9:c6:cf:e9:36:f0:e7: 88:7e:f6:20:0e:6a:37:d2:a3:89:18:7f:9c:f3:8e: dd:13:0b:b5:d1:2c:de:4e:ad:dc:41:8e:54:29:bc: 78:af:ac:ff:9c:65:70:8e:38:1e:68:b5:31:38:3c: 4c:d3:11:ee:26:0d:ee:84:bd:55:90:85:67:19:c3: 22:bd:a0:77:22:f3:5e:dc:3f:54:62:a3:29:82:c9: a6:62:82:f7:32:7b:3a:48:5e:29:9e:13:f3:84:c8: ba:dc:2f:ac:e3:b5:da:be:f6:63:3b:c1:05:89:ae: 46:b1:ef:6c:00:f3:dd:d2:19:f2:57:3f:c9:d6:ed: 43:cd:c1:17:3b:2f:65:79:1c:6b:0f:d4:25:58:99: a9:f2:4f:ea:9a:6b:e2:9f:9b:61:55:14:f6:86:c5: 71:c9:58:1c:29:29:48:e0:40:2d:63:65:e0:85:45: 43:b6:df:05:b4:54:7e:6b:f2:e8:f3:03:a5:5b:8a: e5:2c:ae:03:4e:24:a8:a2:06:07:46:4b:e3:81:33: 4b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:7C:3E:34:8D:B9:37:42:1A:F6:41:72:E2:4A:9B:69:FD:7E:0F:3F X509v3 Authority Key Identifier: keyid:F6:D5:AF:21:95:9B:7F:9C:1B:23:0D:72:58:98:F1:11:AA:A3:F9:AE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/9tWvIZWbf5wbIw1yWJjxEaqj-a4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9tWvIZWbf5wbIw1yWJjxEaqj-a4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/192/snw-NI25N0Ia9kFy4kqbaf1-Dz8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.141.160.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:43:9e:6a:98:ec:a3:5d:60:66:8e:e7:93:37:62:0a:f2:29: c0:65:b2:70:40:f3:17:fe:eb:f3:58:58:ea:f8:8f:1e:6f:18: 07:0d:32:46:fb:1b:4b:44:dd:e3:90:1b:de:7c:eb:52:8b:50: 34:dc:90:44:7b:0d:19:75:84:8b:a5:f0:17:fe:e4:3f:ce:a2: d2:68:22:4d:17:81:b0:81:6a:16:20:b5:6b:82:d4:e4:ce:05: ee:6c:f9:ea:cc:68:69:04:75:92:cc:3e:42:76:50:7d:cf:21: f9:4a:f2:d4:b8:23:46:1c:ec:8a:e7:5f:1c:76:8c:ba:67:7e: c6:a9:59:5b:84:fd:ed:b7:b0:5d:2a:a7:cc:b2:5f:0a:6e:7a: dd:0d:d6:96:38:f6:3e:0a:25:17:73:8b:65:12:6c:67:5d:ac: 23:f0:54:3d:86:79:7a:99:24:84:94:bc:8e:9a:81:1d:93:d7: 02:00:d8:2e:20:49:15:36:2e:96:ea:c0:af:9c:74:1f:13:d2: 32:b3:57:72:db:ea:3e:10:3a:73:7c:55:e2:2c:54:80:e5:dc: 89:e5:fa:77:9d:8a:93:64:de:07:f0:32:4c:d3:34:d3:65:80: 08:ac:65:bd:a6:a1:08:fb:72:42:73:cb:34:29:ff:a2:29:61: de:a9:3b:27 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICG8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjZE NUFGMjE5NTlCN0Y5QzFCMjMwRDcyNTg5OEYxMTFBQUEzRjlBRTAeFw0yNTAxMTcw MTI5MDZaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEIyN0MzRTM0OERCOTM3 NDIxQUY2NDE3MkUyNEE5QjY5RkQ3RTBGM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHBqQ5gaZRyHKTa2Cvw1HFp7szfCcTilANTL/QrLREE10Mspua zj5ZL7iLDyDejhlM6sd1ucbP6Tbw54h+9iAOajfSo4kYf5zzjt0TC7XRLN5OrdxB jlQpvHivrP+cZXCOOB5otTE4PEzTEe4mDe6EvVWQhWcZwyK9oHci817cP1RioymC yaZigvcyezpIXimeE/OEyLrcL6zjtdq+9mM7wQWJrkax72wA893SGfJXP8nW7UPN wRc7L2V5HGsP1CVYmanyT+qaa+Kfm2FVFPaGxXHJWBwpKUjgQC1jZeCFRUO23wW0 VH5r8ujzA6VbiuUsrgNOJKiiBgdGS+OBM0uRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUsnw+NI25N0Ia9kFy4kqbaf1+Dz8wHwYDVR0jBBgwFoAU9tWvIZWbf5wbIw1y WJjxEaqj+a4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTky Lzl0V3ZJWldiZjV3Ykl3MXlXSmp4RWFxai1hNC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXRXdklaV2JmNXdiSXcxeVdKanhFYXFqLWE0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTkyL3Nudy1OSTI1TjBJYTlr Rnk0a3FiYWYxLUR6OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATKjaAwDQYJKoZIhvcNAQELBQADggEBAGtDnmqY7KNdYGaO55M3YgryKcBlsnBA 8xf+6/NYWOr4jx5vGAcNMkb7G0tE3eOQG95861KLUDTckER7DRl1hIul8Bf+5D/O otJoIk0XgbCBahYgtWuC1OTOBe5s+erMaGkEdZLMPkJ2UH3PIflK8tS4I0Yc7Irn Xxx2jLpnfsapWVuE/e23sF0qp8yyXwpuet0N1pY49j4KJRdzi2USbGddrCPwVD2G eXqZJISUvI6agR2T1wIA2C4gSRU2LpbqwK+cdB8T0jKzV3Lb6j4QOnN8VeIsVIDl 3Inl+nedipNk3gfwMkzTNNNlgAisZb2moQj7ckJzyzQp/6IpYd6pOyc= -----END CERTIFICATE-----Generated at Wed Feb 19 20:36:36 2025 by rpki-client