$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3078/33jTY9V1hCz_7lxqPnYnrqtmbww.roa File: 33jTY9V1hCz_7lxqPnYnrqtmbww.roa (raw, json) Hash identifier: fRw/pTWMsv++tZnPZQ39YWgs+P4gBTu4GB1RGlc19Lg= Subject key identifier: DF:78:D3:63:D5:75:84:2C:FF:EE:5C:6A:3E:76:27:AE:AB:66:6F:0C Certificate issuer: /CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Certificate serial: 39 Authority key identifier: F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/33jTY9V1hCz_7lxqPnYnrqtmbww.roa Signing time: Sat 17 May 2025 03:40:39 +0000 ROA not before: Sat 17 May 2025 03:40:39 +0000 ROA not after: Sun 10 May 2026 04:51:55 +0000 asID: 151270 IP address blocks: 110.40.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 22:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Validity Not Before: May 17 03:40:39 2025 GMT Not After : May 10 04:51:55 2026 GMT Subject: CN=DF78D363D575842CFFEE5C6A3E7627AEAB666F0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:72:14:45:c9:b7:9a:00:19:b8:83:2d:95:7a: dd:b4:72:39:ff:c9:56:57:53:30:96:2b:f9:d7:21: 5e:75:4d:e0:82:df:4f:ae:48:d5:9d:3e:37:7e:69: 86:4c:f1:b8:c4:61:d4:46:78:6b:8a:59:f1:d7:25: bd:61:5d:4b:d8:c3:55:92:95:90:f7:fd:0b:24:c4: 58:44:da:8a:d1:41:97:53:f8:0c:ae:c5:16:bb:65: c7:14:fa:64:9f:7e:aa:59:5a:91:7e:f6:1c:0e:fd: ff:79:e3:4d:9b:32:9a:54:32:85:c8:68:5a:a9:dd: 06:59:7f:43:24:5c:1d:34:41:2b:6b:4e:28:fe:fa: bc:bf:61:67:97:0c:4d:dc:93:64:e8:20:29:62:e5: 1a:f7:bb:ee:99:ff:30:a2:3d:00:04:59:20:93:1d: a8:86:9e:9a:9b:b8:7b:e8:b5:09:0c:22:20:9e:6f: 59:b6:48:64:b7:88:49:27:c1:e7:36:10:b8:69:ba: 60:e1:ba:3b:e0:86:cb:67:1a:e7:9c:85:b3:0e:9c: 93:6e:ab:2e:13:e8:a8:5d:71:d3:03:db:96:63:3f: 0a:b4:df:d1:cd:5a:c6:1d:d5:8e:db:2c:81:26:7b: bc:b6:5d:a6:2a:08:0f:07:7b:cb:3b:ee:e4:c3:03: 40:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:78:D3:63:D5:75:84:2C:FF:EE:5C:6A:3E:76:27:AE:AB:66:6F:0C X509v3 Authority Key Identifier: keyid:F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/33jTY9V1hCz_7lxqPnYnrqtmbww.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.40.35.0/24 Signature Algorithm: sha256WithRSAEncryption 13:01:f1:2c:51:1c:08:3b:a2:c9:e0:f9:01:74:1e:76:de:b8: 89:5d:f9:fe:b8:df:91:ed:54:48:c6:9e:1a:fc:f8:ad:c1:69: d0:50:d2:68:bc:54:3d:46:fd:cf:3b:07:ea:3e:d4:40:9e:60: b6:68:3c:d1:e4:b9:13:b2:e6:6c:9b:11:35:29:50:9e:0a:eb: 89:d1:a3:ab:ea:d8:15:9b:d9:9e:90:7b:88:16:a1:ea:50:89: 60:10:3f:58:99:94:7c:1c:95:f8:2e:e5:84:fa:81:f7:f4:4b: 3f:f0:15:c6:c9:61:32:71:fb:ed:21:c2:52:8f:45:25:f4:e8: e6:29:5b:dd:d4:c7:64:4d:74:84:9c:37:9c:a3:db:e7:67:88: a2:44:dc:01:3b:21:1c:31:80:ae:24:84:6f:28:65:d2:e3:ba: 19:80:8f:88:e0:17:f8:7f:5b:3f:41:e2:87:66:a1:d9:1f:bc: 25:5a:a1:f0:f3:8a:c7:28:eb:26:fb:89:5a:a8:93:6a:06:da: be:9c:c7:e1:5a:db:f7:49:a9:84:9a:57:2e:da:9d:12:03:03: 34:55:15:97:1b:d1:1a:12:e6:7f:cf:74:f0:21:3b:a5:aa:08: 8a:90:d6:58:f2:3b:f8:cc:72:28:2e:71:90:09:d2:c3:14:bf: 01:79:ae:28 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNzAy OTM1RjAyRkMxQjgxMjk3RDFGRkI0Qzc4Q0UwQkExRDQzNzg1MB4XDTI1MDUxNzAz NDAzOVoXDTI2MDUxMDA0NTE1NVowMzExMC8GA1UEAxMoREY3OEQzNjNENTc1ODQy Q0ZGRUU1QzZBM0U3NjI3QUVBQjY2NkYwQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKVyFEXJt5oAGbiDLZV63bRyOf/JVldTMJYr+dchXnVN4ILfT65I 1Z0+N35phkzxuMRh1EZ4a4pZ8dclvWFdS9jDVZKVkPf9CyTEWETaitFBl1P4DK7F FrtlxxT6ZJ9+qllakX72HA79/3njTZsymlQyhchoWqndBll/QyRcHTRBK2tOKP76 vL9hZ5cMTdyTZOggKWLlGve77pn/MKI9AARZIJMdqIaempu4e+i1CQwiIJ5vWbZI ZLeISSfB5zYQuGm6YOG6O+CGy2ca55yFsw6ck26rLhPoqF1x0wPblmM/CrTf0c1a xh3VjtssgSZ7vLZdpioIDwd7yzvu5MMDQJECAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTfeNNj1XWELP/uXGo+dieuq2ZvDDAfBgNVHSMEGDAWgBT3ApNfAvwbgSl9H/tM eM4LodQ3hTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDc4 Lzl3S1RYd0w4RzRFcGZSXzdUSGpPQzZIVU40VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXdLVFh3TDhHNEVwZlJfN1RIak9DNkhVTjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3OC8zM2pUWTlWMWhDel83 bHhxUG5ZbnJxdG1id3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbigjMA0GCSqGSIb3DQEBCwUAA4IBAQATAfEsURwIO6LJ4PkBdB523riJXfn+ uN+R7VRIxp4a/PitwWnQUNJovFQ9Rv3POwfqPtRAnmC2aDzR5LkTsuZsmxE1KVCe CuuJ0aOr6tgVm9mekHuIFqHqUIlgED9YmZR8HJX4LuWE+oH39Es/8BXGyWEycfvt IcJSj0Ul9OjmKVvd1MdkTXSEnDeco9vnZ4iiRNwBOyEcMYCuJIRvKGXS47oZgI+I 4Bf4f1s/QeKHZqHZH7wlWqHw84rHKOsm+4laqJNqBtq+nMfhWtv3SamEmlcu2p0S AwM0VRWXG9EaEuZ/z3TwITulqgiKkNZY8jv4zHIoLnGQCdLDFL8Bea4o -----END CERTIFICATE-----Generated at Thu Jun 5 20:28:20 2025 by rpki-client