$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/LvYtsGMjh8G44hpkGqJLERIyWuE.roa File: LvYtsGMjh8G44hpkGqJLERIyWuE.roa (raw, json) Hash identifier: Ye5N6lLvXexV9vn9ia66uuTMmbRArU0IAIMxovPD60E= Subject key identifier: 2E:F6:2D:B0:63:23:87:C1:B8:E2:1A:64:1A:A2:4B:11:12:32:5A:E1 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 0145 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/LvYtsGMjh8G44hpkGqJLERIyWuE.roa Signing time: Fri 30 May 2025 16:02:24 +0000 ROA not before: Fri 30 May 2025 16:02:24 +0000 ROA not after: Wed 15 Apr 2026 09:08:30 +0000 asID: 216047 IP address blocks: 103.216.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: May 30 16:02:24 2025 GMT Not After : Apr 15 09:08:30 2026 GMT Subject: CN=2EF62DB0632387C1B8E21A641AA24B1112325AE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:6c:9a:dd:aa:b9:d1:3d:dc:06:cf:63:6f: f3:2f:b8:0f:db:69:f1:7f:6d:5d:1b:27:03:6c:72: ba:97:64:0c:67:18:6c:2c:84:ca:88:36:2e:1c:cc: dd:e5:9d:5b:45:7f:ad:57:82:d2:2c:2a:3f:a9:cb: 51:23:8f:71:6b:c5:70:ad:05:36:5d:93:d6:c7:ba: 2a:3c:fa:79:73:38:56:f4:ca:58:1b:ce:98:e7:ce: b5:c4:5a:b2:16:cc:98:02:b4:f2:9c:db:8b:60:48: 05:5d:1f:4f:05:09:ee:96:25:b0:05:13:54:5a:10: 20:e8:7b:ea:9f:76:40:47:71:f0:18:f5:d3:9f:1f: 9d:bb:6e:f5:bc:d7:c1:72:88:aa:04:52:43:e1:51: 0a:41:58:ee:24:58:42:63:ab:15:96:a5:9a:c3:5a: 00:91:e5:35:d1:12:41:96:71:1e:27:66:73:2b:4c: 21:c0:37:90:aa:41:58:f5:a7:05:97:08:ee:af:f8: 09:2c:48:dc:91:40:3f:ac:ed:3e:a1:31:a6:8b:9e: e9:16:ce:b5:9a:01:87:2a:a8:11:08:c2:f9:3f:9f: 59:4a:96:c1:f5:9c:86:6c:99:06:99:42:90:f8:c5: cf:50:df:a3:35:19:93:08:14:3e:b9:de:4a:6f:a9: dd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F6:2D:B0:63:23:87:C1:B8:E2:1A:64:1A:A2:4B:11:12:32:5A:E1 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/LvYtsGMjh8G44hpkGqJLERIyWuE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.216.229.0/24 Signature Algorithm: sha256WithRSAEncryption 94:43:a0:ed:1d:bc:b3:4f:9e:6c:34:ca:46:27:10:bc:bf:43: 7e:58:7a:64:c2:d5:ea:fb:d4:93:3a:3a:7f:e2:df:6d:02:fb: 03:ab:e1:9c:6d:ca:1d:9f:af:cd:f7:75:19:ec:4a:dd:dd:e4: 2b:46:fd:5a:87:4b:81:ee:3f:21:53:54:58:3b:38:ed:f9:69: e1:c1:63:9e:03:96:38:ee:96:54:70:93:57:fb:b5:e3:2b:dc: 04:b2:fa:ef:ed:9e:d6:ae:ce:c2:9a:bb:ab:33:7c:f5:5a:3f: 9a:6a:4e:10:de:c4:dc:9f:e8:c8:14:e0:e6:b7:d8:a1:94:61: bd:d7:95:00:aa:0b:b8:6b:78:0b:33:f0:8a:1d:f0:ef:4e:f2: 08:cb:f0:56:5e:06:01:27:1f:ed:ac:92:91:a1:64:d3:19:65: 11:12:82:fd:1c:de:36:40:76:60:db:6d:68:a1:33:83:8f:d0: c9:4f:ee:79:fe:ce:9c:a0:49:a0:89:a3:6d:3b:d8:36:9c:d0: 50:4d:93:cd:5e:26:c3:36:dc:e1:3d:ab:b5:58:37:48:a6:57: e1:34:4f:a2:a4:f9:8c:41:63:a7:6f:c8:58:74:55:68:c2:5a: 1b:fa:c6:2e:32:b6:05:6d:6c:bb:f3:1a:07:28:d0:a6:8d:e8: 2c:60:60:27 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF RTg1MkZFMTM4Q0RFREM1QjQyRDExQTM0Mjk1RDEwOUFENDkyNTAeFw0yNTA1MzAx NjAyMjRaFw0yNjA0MTUwOTA4MzBaMDMxMTAvBgNVBAMTKDJFRjYyREIwNjMyMzg3 QzFCOEUyMUE2NDFBQTI0QjExMTIzMjVBRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAZmya3aq50T3cBs9jb/MvuA/bafF/bV0bJwNscrqXZAxnGGws hMqINi4czN3lnVtFf61XgtIsKj+py1Ejj3FrxXCtBTZdk9bHuio8+nlzOFb0ylgb zpjnzrXEWrIWzJgCtPKc24tgSAVdH08FCe6WJbAFE1RaECDoe+qfdkBHcfAY9dOf H527bvW818FyiKoEUkPhUQpBWO4kWEJjqxWWpZrDWgCR5TXREkGWcR4nZnMrTCHA N5CqQVj1pwWXCO6v+AksSNyRQD+s7T6hMaaLnukWzrWaAYcqqBEIwvk/n1lKlsH1 nIZsmQaZQpD4xc9Q36M1GZMIFD653kpvqd3hAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQULvYtsGMjh8G44hpkGqJLERIyWuEwHwYDVR0jBBgwFoAUOe6FL+E4ze3FtC0R o0KV0QmtSSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcx Ni9PZTZGTC1FNHplM0Z0QzBSbzBLVjBRbXRTU1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MTYvTHZZdHNHTWpoOEc0 NGhwa0dxSkxFUkl5V3VFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfY5TANBgkqhkiG9w0BAQsFAAOCAQEAlEOg7R28s0+ebDTKRicQvL9Dflh6 ZMLV6vvUkzo6f+LfbQL7A6vhnG3KHZ+vzfd1GexK3d3kK0b9WodLge4/IVNUWDs4 7flp4cFjngOWOO6WVHCTV/u14yvcBLL67+2e1q7Owpq7qzN89Vo/mmpOEN7E3J/o yBTg5rfYoZRhvdeVAKoLuGt4CzPwih3w707yCMvwVl4GAScf7aySkaFk0xllERKC /RzeNkB2YNttaKEzg4/QyU/uef7OnKBJoImjbTvYNpzQUE2TzV4mwzbc4T2rtVg3 SKZX4TRPoqT5jEFjp2/IWHRVaMJaG/rGLjK2BW1su/MaByjQpo3oLGBgJw== -----END CERTIFICATE-----Generated at Wed Jun 4 02:10:05 2025 by rpki-client