$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/FR2xi36t_McbvNwxvGSiMzXMtV8.roa File: FR2xi36t_McbvNwxvGSiMzXMtV8.roa (raw, json) Hash identifier: 6mSCJ1WObUEYttKcMeBG/SpyUEH6H4fCHjXNvPJXgw4= Subject key identifier: 15:1D:B1:8B:7E:AD:FC:C7:1B:BC:DC:31:BC:64:A2:33:35:CC:B5:5F Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 134F Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/FR2xi36t_McbvNwxvGSiMzXMtV8.roa Signing time: Thu 22 May 2025 09:04:48 +0000 ROA not before: Thu 22 May 2025 09:04:48 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 55990 IP address blocks: 115.175.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 22:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4943 (0x134f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: May 22 09:04:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=151DB18B7EADFCC71BBCDC31BC64A23335CCB55F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:f8:59:04:8c:85:6b:22:10:4f:67:49:8d: 4e:73:28:87:99:49:e1:01:2f:53:93:8d:97:29:7c: d6:0b:a0:dd:09:a3:07:07:c3:50:e8:a6:60:ce:fe: 24:bf:89:67:fa:f5:f0:0d:37:76:27:1b:e1:5b:7d: e2:4a:15:aa:fe:ee:74:fa:8f:ce:07:e6:67:84:01: 3b:9a:7b:f6:cc:df:5a:12:6e:66:3d:f9:00:76:38: b2:4b:6f:92:a8:c2:58:f9:41:12:90:0b:7c:d6:79: 37:35:5a:e8:90:a9:9f:de:ef:22:e6:39:8f:0c:90: 71:6b:e2:17:89:84:3f:ec:6a:5a:79:6c:f7:9f:b0: 06:59:a6:89:ea:5c:e7:a8:1e:a6:e6:81:5d:bf:f9: 8e:82:fc:96:0f:69:3d:8b:9e:ef:4d:0a:c5:fc:6d: e8:b3:18:75:fe:0e:8e:b3:bf:d6:97:43:bf:d1:1f: 50:c7:d7:87:53:48:46:8b:50:99:80:c0:bb:9a:55: 9d:d8:9a:a2:9e:f8:6f:b2:58:5d:de:9d:47:c8:d8: b1:54:49:23:4c:ce:8c:40:aa:21:4b:8d:aa:61:ca: 61:c3:ea:21:ad:a9:c3:79:40:03:2a:b0:25:7a:99: ee:07:ef:3a:49:15:45:fa:8a:6e:9a:9f:8b:21:17: be:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:1D:B1:8B:7E:AD:FC:C7:1B:BC:DC:31:BC:64:A2:33:35:CC:B5:5F X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/FR2xi36t_McbvNwxvGSiMzXMtV8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.175.192.0/19 Signature Algorithm: sha256WithRSAEncryption 4f:23:f6:92:fe:cb:d0:40:42:63:7b:0a:39:18:43:1f:06:50: 08:15:34:34:25:7f:4c:b1:32:ab:9d:b0:91:ba:11:49:e2:95: 57:4f:e9:99:66:71:65:05:9f:63:4a:a7:60:04:95:34:b6:12: 48:94:12:f3:d8:66:7b:f9:6d:ee:43:2f:23:99:42:88:1c:95: 07:93:6f:3c:ff:73:d2:0f:0c:3e:91:ab:0a:10:d2:e7:ea:97: 76:e0:2e:91:67:65:7f:41:6d:98:cd:dd:3f:d8:c8:30:17:b6: 50:99:3d:18:65:4e:15:5c:ac:20:54:03:b9:77:ca:0e:29:3b: 83:d2:2e:b1:e0:8b:ee:61:ac:f9:a1:e5:4a:22:ff:00:d5:d6: a5:24:28:5e:ef:30:bc:04:59:a4:ee:fd:73:2d:c1:67:24:dc: 88:09:c6:7e:c0:f9:6f:1f:57:16:ed:53:32:98:5b:fd:81:3d: 45:b6:9b:42:db:4b:ed:2b:c7:10:f6:cc:26:37:23:97:0a:12: 35:29:21:56:1c:07:e5:47:b4:d7:ba:2d:b5:ed:91:ad:08:89: a0:72:02:2c:07:26:36:c4:f7:4a:b3:9a:8d:37:c0:27:d7:dc: 3b:9f:5c:e8:03:44:fb:ea:a6:fc:c1:1e:34:2a:6f:66:9d:e0: b7:49:73:40 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICE08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA1MjIw OTA0NDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDE1MURCMThCN0VBREZD QzcxQkJDREMzMUJDNjRBMjMzMzVDQ0I1NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDItfhZBIyFayIQT2dJjU5zKIeZSeEBL1OTjZcpfNYLoN0JowcH w1DopmDO/iS/iWf69fANN3YnG+FbfeJKFar+7nT6j84H5meEATuae/bM31oSbmY9 +QB2OLJLb5Kowlj5QRKQC3zWeTc1WuiQqZ/e7yLmOY8MkHFr4heJhD/salp5bPef sAZZponqXOeoHqbmgV2/+Y6C/JYPaT2Lnu9NCsX8beizGHX+Do6zv9aXQ7/RH1DH 14dTSEaLUJmAwLuaVZ3YmqKe+G+yWF3enUfI2LFUSSNMzoxAqiFLjaphymHD6iGt qcN5QAMqsCV6me4H7zpJFUX6im6an4shF75FAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUFR2xi36t/McbvNwxvGSiMzXMtV8wHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvRlIyeGkzNnRfTWNi dk53eHZHU2lNelhNdFY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXOvwDANBgkqhkiG9w0BAQsFAAOCAQEATyP2kv7L0EBCY3sKORhDHwZQCBU0 NCV/TLEyq52wkboRSeKVV0/pmWZxZQWfY0qnYASVNLYSSJQS89hme/lt7kMvI5lC iByVB5NvPP9z0g8MPpGrChDS5+qXduAukWdlf0FtmM3dP9jIMBe2UJk9GGVOFVys IFQDuXfKDik7g9IuseCL7mGs+aHlSiL/ANXWpSQoXu8wvARZpO79cy3BZyTciAnG fsD5bx9XFu1TMphb/YE9RbabQttL7SvHEPbMJjcjlwoSNSkhVhwH5Ue017otte2R rQiJoHICLAcmNsT3SrOajTfAJ9fcO59c6ANE++qm/MEeNCpvZp3gt0lzQA== -----END CERTIFICATE-----Generated at Thu Jun 5 20:26:09 2025 by rpki-client