$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3078/JCPxJaIP25OQnQkvU9frtKZu6UQ.roa File: JCPxJaIP25OQnQkvU9frtKZu6UQ.roa (raw, json) Hash identifier: dgbW3NcCpIEoJIuVH/YLpRC8FwUYd50X50c5rchVDkM= Subject key identifier: 24:23:F1:25:A2:0F:DB:93:90:9D:09:2F:53:D7:EB:B4:A6:6E:E9:44 Certificate issuer: /CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Certificate serial: 33 Authority key identifier: F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/JCPxJaIP25OQnQkvU9frtKZu6UQ.roa Signing time: Sat 17 May 2025 03:40:37 +0000 ROA not before: Sat 17 May 2025 03:40:37 +0000 ROA not after: Sun 10 May 2026 04:51:55 +0000 asID: 151270 IP address blocks: 110.40.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Validity Not Before: May 17 03:40:37 2025 GMT Not After : May 10 04:51:55 2026 GMT Subject: CN=2423F125A20FDB93909D092F53D7EBB4A66EE944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c4:19:d4:70:0c:39:c0:7d:c5:c1:ff:cb:a6: 25:5f:d3:c5:9e:f4:e3:0f:6b:35:34:3f:cc:e1:9c: 95:75:3e:ec:c6:8e:5a:21:d4:f4:57:09:33:11:ff: d5:90:56:bf:e2:b7:c0:67:a3:fe:dd:f5:5e:02:d9: 09:a1:a6:ff:ab:4e:4f:08:de:ab:76:23:ff:78:dd: 5e:17:43:d6:14:79:2e:2b:b5:ea:7b:d3:18:4c:6d: 68:55:6c:ea:97:bf:92:3d:34:ee:1a:02:c5:b7:06: 05:c1:a7:ed:df:c5:4a:ad:74:d3:b5:7b:a1:43:b1: b0:1d:e1:22:89:11:d9:e8:b8:69:ca:21:dc:39:1c: e4:e9:91:a8:a3:ca:df:e0:af:7b:bb:10:ba:e0:c8: 4b:37:b3:2d:b9:97:64:41:57:19:e3:6c:f2:19:d3: c6:f4:2f:d3:78:42:f0:60:0c:11:a8:a3:57:12:6f: e5:60:b2:d2:57:6e:e2:74:f9:f6:41:a6:9b:2a:ba: 96:f6:70:f3:b7:d7:17:d6:60:e4:b8:2a:37:de:9f: 1e:2f:72:b3:de:97:0f:a8:23:9d:0e:9f:2a:37:9b: 07:3c:e1:97:49:f0:c3:bc:67:65:a0:74:c1:51:b4: 10:a8:a6:49:13:bf:05:4b:7c:76:ba:f2:4f:60:e4: 5f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:23:F1:25:A2:0F:DB:93:90:9D:09:2F:53:D7:EB:B4:A6:6E:E9:44 X509v3 Authority Key Identifier: keyid:F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/JCPxJaIP25OQnQkvU9frtKZu6UQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.40.57.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:eb:dd:98:4f:d3:74:11:58:9f:b3:b0:2e:6e:46:00:25:28: 5e:bc:6f:da:26:a2:77:ef:1b:b5:4f:ce:82:3d:32:67:a1:b8: 23:de:53:62:32:d9:ac:00:1a:eb:d4:f5:74:86:59:57:34:ad: cc:af:0e:42:7f:75:a8:38:7d:f1:28:41:9f:41:ee:32:d7:a3: c8:c3:44:3d:bc:1a:be:49:b9:c1:65:41:95:a6:75:54:60:e1: 5b:4a:cc:9a:ef:b4:76:22:77:ec:27:7d:c0:3f:39:38:c7:32: 9a:d3:20:6d:25:5f:b5:4f:9f:82:4a:1f:ed:ef:f4:cc:3c:a0: a9:28:78:86:80:07:53:17:f3:56:37:a9:3e:50:c8:78:60:47: cb:c7:22:dd:fa:1a:b1:0d:fa:92:50:1f:3a:7a:48:c6:5d:35: 71:9e:4e:13:1e:7d:2d:84:6e:09:21:0a:2d:4b:21:35:d5:f3: 5f:13:aa:3d:20:29:36:ff:eb:30:e8:6a:37:83:2b:54:bd:29: 45:05:01:36:4a:cc:93:60:04:14:f0:15:54:99:e0:ec:fd:33: ac:d8:8a:4e:40:db:1b:c1:1c:92:b0:71:04:ab:b2:c8:d0:7f: 00:12:d1:c5:d6:27:d5:ec:21:46:7e:cb:11:29:35:5d:4f:87: 59:8c:18:47 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNzAy OTM1RjAyRkMxQjgxMjk3RDFGRkI0Qzc4Q0UwQkExRDQzNzg1MB4XDTI1MDUxNzAz NDAzN1oXDTI2MDUxMDA0NTE1NVowMzExMC8GA1UEAxMoMjQyM0YxMjVBMjBGREI5 MzkwOUQwOTJGNTNEN0VCQjRBNjZFRTk0NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJnEGdRwDDnAfcXB/8umJV/TxZ704w9rNTQ/zOGclXU+7MaOWiHU 9FcJMxH/1ZBWv+K3wGej/t31XgLZCaGm/6tOTwjeq3Yj/3jdXhdD1hR5Liu16nvT GExtaFVs6pe/kj007hoCxbcGBcGn7d/FSq1007V7oUOxsB3hIokR2ei4acoh3Dkc 5OmRqKPK3+Cve7sQuuDISzezLbmXZEFXGeNs8hnTxvQv03hC8GAMEaijVxJv5WCy 0ldu4nT59kGmmyq6lvZw87fXF9Zg5LgqN96fHi9ys96XD6gjnQ6fKjebBzzhl0nw w7xnZaB0wVG0EKimSRO/BUt8drryT2DkXzMCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQkI/Elog/bk5CdCS9T1+u0pm7pRDAfBgNVHSMEGDAWgBT3ApNfAvwbgSl9H/tM eM4LodQ3hTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDc4 Lzl3S1RYd0w4RzRFcGZSXzdUSGpPQzZIVU40VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXdLVFh3TDhHNEVwZlJfN1RIak9DNkhVTjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3OC9KQ1B4SmFJUDI1T1Fu UWt2VTlmcnRLWnU2VVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbig5MA0GCSqGSIb3DQEBCwUAA4IBAQAL692YT9N0EVifs7AubkYAJShevG/a JqJ37xu1T86CPTJnobgj3lNiMtmsABrr1PV0hllXNK3Mrw5Cf3WoOH3xKEGfQe4y 16PIw0Q9vBq+SbnBZUGVpnVUYOFbSsya77R2InfsJ33APzk4xzKa0yBtJV+1T5+C Sh/t7/TMPKCpKHiGgAdTF/NWN6k+UMh4YEfLxyLd+hqxDfqSUB86ekjGXTVxnk4T Hn0thG4JIQotSyE11fNfE6o9ICk2/+sw6Go3gytUvSlFBQE2SsyTYAQU8BVUmeDs /TOs2IpOQNsbwRySsHEEq7LI0H8AEtHF1ifV7CFGfssRKTVdT4dZjBhH -----END CERTIFICATE-----Generated at Wed Jun 4 01:23:16 2025 by rpki-client