$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3078/gj993irYQE_6FWjD3XsHKHYqJVk.roa File: gj993irYQE_6FWjD3XsHKHYqJVk.roa (raw, json) Hash identifier: C1msZscUMVAzYMl6TL/TF2vHrGZWP7nRXPRmS7m3VGg= Subject key identifier: 82:3F:7D:DE:2A:D8:40:4F:FA:15:68:C3:DD:7B:07:28:76:2A:25:59 Certificate issuer: /CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Certificate serial: 45 Authority key identifier: F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/gj993irYQE_6FWjD3XsHKHYqJVk.roa Signing time: Sat 17 May 2025 03:42:33 +0000 ROA not before: Sat 17 May 2025 03:42:33 +0000 ROA not after: Sun 10 May 2026 04:51:55 +0000 asID: 151270 IP address blocks: 110.40.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Validity Not Before: May 17 03:42:33 2025 GMT Not After : May 10 04:51:55 2026 GMT Subject: CN=823F7DDE2AD8404FFA1568C3DD7B0728762A2559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:79:cf:0a:81:61:c1:39:2d:ae:d6:f4:b6:b2: 94:5a:04:94:86:7d:40:ce:21:71:99:61:88:42:78: 32:63:ca:8e:6b:0b:c1:91:25:67:6b:c8:35:80:6a: 51:c9:9d:ca:4b:8c:a1:31:eb:67:aa:56:4c:50:f9: fd:6c:9c:7f:dd:da:8d:5d:17:dd:d4:e2:84:5b:be: 23:7a:53:81:23:1f:bd:46:7c:d2:c3:25:9f:7f:6b: 72:7c:44:89:95:4b:30:e3:12:48:53:a7:b4:ac:0a: a6:20:76:27:af:a6:32:20:3b:eb:28:b7:cd:16:38: 21:4b:a2:34:9a:46:38:b1:d5:c4:c6:dd:df:36:a1: 3f:03:d4:fd:b4:ea:17:da:96:02:4d:48:04:96:08: 43:b1:ff:02:3c:de:c9:48:45:81:e1:b0:9f:5d:61: 31:e9:35:b6:9d:d6:0e:6e:2c:b0:15:86:18:0d:83: ca:02:c5:ea:b5:26:b8:9a:bf:23:ed:09:6c:4b:8f: 1a:bc:84:ab:25:ff:98:bc:cd:31:8b:1b:94:68:23: 53:d3:82:b9:98:4b:e6:62:d3:54:43:d9:fb:30:aa: 12:7b:3d:0f:ad:1c:63:da:4b:30:82:05:9c:ad:a6: 4f:ec:78:db:5c:c1:00:76:60:a1:3b:ba:26:aa:3d: cd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3F:7D:DE:2A:D8:40:4F:FA:15:68:C3:DD:7B:07:28:76:2A:25:59 X509v3 Authority Key Identifier: keyid:F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/gj993irYQE_6FWjD3XsHKHYqJVk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.40.68.0/24 Signature Algorithm: sha256WithRSAEncryption 07:2e:c1:7e:2e:6b:97:e9:75:2c:82:d0:0d:c0:02:6a:b3:26: e5:50:ca:e9:18:b4:87:fa:c4:57:66:f5:8f:8b:c8:60:52:56: aa:21:24:79:1c:62:c7:84:ee:77:72:ab:f2:30:2f:08:1f:d5: 4f:9e:49:b0:3f:b4:69:85:97:86:fd:40:99:8b:03:9a:d5:86: 02:5c:ea:a2:1d:e3:52:9b:f0:b3:be:35:7e:5c:df:aa:9d:7a: 70:6c:48:59:43:2e:0e:f0:92:22:2c:62:01:31:4c:a9:39:aa: 6f:0b:c4:e8:a0:9f:2b:c8:65:c1:85:65:10:ba:74:8a:49:bf: 37:9f:41:8e:e1:1c:77:07:dd:52:73:c8:c2:be:7c:d6:28:e3: f3:61:c8:ca:c3:16:25:d3:75:9e:ce:0e:03:dc:76:10:3f:de: 37:03:76:83:e8:03:d2:e6:e4:27:5f:75:92:50:1d:b9:c5:de: 9b:cf:64:14:07:2f:ce:f3:8b:d8:da:0c:2e:a0:27:69:9f:71: 8a:70:c4:21:c8:5e:48:5a:26:a9:50:6e:04:66:4f:bc:02:7f: d7:06:51:e2:38:dd:f3:6a:ca:83:d7:89:99:30:dc:cb:75:d1: ae:b8:75:02:39:12:53:3a:39:06:18:27:c3:b5:b9:39:ac:8b: e0:85:30:5a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNzAy OTM1RjAyRkMxQjgxMjk3RDFGRkI0Qzc4Q0UwQkExRDQzNzg1MB4XDTI1MDUxNzAz NDIzM1oXDTI2MDUxMDA0NTE1NVowMzExMC8GA1UEAxMoODIzRjdEREUyQUQ4NDA0 RkZBMTU2OEMzREQ3QjA3Mjg3NjJBMjU1OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALd5zwqBYcE5La7W9LaylFoElIZ9QM4hcZlhiEJ4MmPKjmsLwZEl Z2vINYBqUcmdykuMoTHrZ6pWTFD5/Wycf93ajV0X3dTihFu+I3pTgSMfvUZ80sMl n39rcnxEiZVLMOMSSFOntKwKpiB2J6+mMiA76yi3zRY4IUuiNJpGOLHVxMbd3zah PwPU/bTqF9qWAk1IBJYIQ7H/AjzeyUhFgeGwn11hMek1tp3WDm4ssBWGGA2DygLF 6rUmuJq/I+0JbEuPGryEqyX/mLzNMYsblGgjU9OCuZhL5mLTVEPZ+zCqEns9D60c Y9pLMIIFnK2mT+x421zBAHZgoTu6Jqo9zXcCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSCP33eKthAT/oVaMPdewcodiolWTAfBgNVHSMEGDAWgBT3ApNfAvwbgSl9H/tM eM4LodQ3hTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDc4 Lzl3S1RYd0w4RzRFcGZSXzdUSGpPQzZIVU40VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXdLVFh3TDhHNEVwZlJfN1RIak9DNkhVTjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3OC9najk5M2lyWVFFXzZG V2pEM1hzSEtIWXFKVmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbihEMA0GCSqGSIb3DQEBCwUAA4IBAQAHLsF+LmuX6XUsgtANwAJqsyblUMrp GLSH+sRXZvWPi8hgUlaqISR5HGLHhO53cqvyMC8IH9VPnkmwP7RphZeG/UCZiwOa 1YYCXOqiHeNSm/CzvjV+XN+qnXpwbEhZQy4O8JIiLGIBMUypOapvC8TooJ8ryGXB hWUQunSKSb83n0GO4Rx3B91Sc8jCvnzWKOPzYcjKwxYl03Wezg4D3HYQP943A3aD 6APS5uQnX3WSUB25xd6bz2QUBy/O84vY2gwuoCdpn3GKcMQhyF5IWiapUG4EZk+8 An/XBlHiON3zasqD14mZMNzLddGuuHUCORJTOjkGGCfDtbk5rIvghTBa -----END CERTIFICATE-----Generated at Wed Jun 4 03:02:32 2025 by rpki-client