$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3078/ioMIqlUxbM45pg2A6Cx4ERo5r0o.roa File: ioMIqlUxbM45pg2A6Cx4ERo5r0o.roa (raw, json) Hash identifier: tayjdSj4G+dfirzAgyfFpcNJRdkrmH6LGOc1gVI4RO8= Subject key identifier: 8A:83:08:AA:55:31:6C:CE:39:A6:0D:80:E8:2C:78:11:1A:39:AF:4A Certificate issuer: /CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Certificate serial: 2F Authority key identifier: F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/ioMIqlUxbM45pg2A6Cx4ERo5r0o.roa Signing time: Sat 17 May 2025 03:40:36 +0000 ROA not before: Sat 17 May 2025 03:40:36 +0000 ROA not after: Sun 10 May 2026 04:51:55 +0000 asID: 151270 IP address blocks: 110.40.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Validity Not Before: May 17 03:40:36 2025 GMT Not After : May 10 04:51:55 2026 GMT Subject: CN=8A8308AA55316CCE39A60D80E82C78111A39AF4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:90:f7:8b:f9:66:f1:05:6e:e4:24:03:27:f0: 18:8c:b0:c2:f8:1e:fe:10:80:31:72:85:18:1b:9a: fb:79:7a:05:db:32:19:1a:18:67:62:a8:00:b1:9f: 11:55:f1:64:19:d7:07:f9:4a:1f:6a:21:88:54:a4: 5c:f7:e5:3d:8a:39:4f:b1:b4:95:ce:94:dd:4c:bc: 2d:12:47:71:75:72:df:1f:c6:d1:21:70:de:49:fb: 18:bc:c6:71:be:06:5d:83:81:c0:57:0a:b5:5c:cf: 6a:67:91:f0:8d:2e:6a:75:e2:f7:5e:24:c8:f5:bb: d3:38:08:9f:08:c1:43:9b:d9:09:ef:77:5c:29:4c: de:0a:56:8c:0c:64:93:50:d6:27:0a:29:55:d7:d7: b2:a8:87:61:ad:a4:e0:26:3b:11:d3:26:bf:ff:ac: 9f:aa:fe:f8:71:df:d2:4d:a0:87:b1:4b:1e:35:02: 94:91:77:f9:3b:8c:86:64:75:08:4f:18:10:1a:a4: a1:81:94:fc:60:24:17:b7:8b:ce:8e:67:65:6a:b5: bb:a8:d5:bf:1a:cd:ff:ba:6e:e6:a8:a9:83:fc:b9: 89:8d:9c:59:5c:2f:95:b8:7a:58:8d:42:d4:9d:72: 8c:ef:58:9d:70:d3:a5:98:3d:9e:d8:eb:88:8f:77: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:83:08:AA:55:31:6C:CE:39:A6:0D:80:E8:2C:78:11:1A:39:AF:4A X509v3 Authority Key Identifier: keyid:F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/ioMIqlUxbM45pg2A6Cx4ERo5r0o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.40.59.0/24 Signature Algorithm: sha256WithRSAEncryption 40:09:2e:95:0f:51:39:d5:29:d7:30:63:68:9a:75:5d:59:6c: 94:c8:42:61:01:7f:30:ee:9a:c9:bd:6a:24:69:2c:a2:d3:ba: 54:1e:6f:8a:68:4a:f7:58:08:a3:8f:f2:55:bf:33:e1:8d:13: 2e:b8:31:f5:3a:4a:73:04:f8:15:3e:88:5c:55:84:4a:4e:03: 72:1e:95:21:6a:0c:03:e0:1d:dc:ff:f2:0f:22:35:d7:66:e1: f2:15:8f:3e:55:91:e0:1f:4b:a8:e3:41:e3:07:39:cc:89:3a: 26:41:9f:e2:d2:43:44:7a:7d:3c:1e:fd:19:8a:4e:78:c5:8b: a2:79:ce:09:20:a3:5a:b5:3a:f1:07:1e:3b:e1:6e:49:71:7a: 9b:93:52:03:a9:bc:e5:23:81:63:6c:3a:2e:ed:cb:03:8b:4a: 62:62:35:88:4a:8c:f9:8e:e9:c3:70:60:1b:97:2b:71:37:dd: 12:66:75:21:f6:4a:60:c0:6e:26:9e:57:27:40:1d:b9:fc:8c: 7d:a7:ba:f7:b0:75:11:ec:37:06:7f:a1:c8:84:68:ce:02:0f: 14:ab:8c:8c:c1:55:13:07:02:18:53:3f:b0:f3:98:81:81:d4: 3b:c5:d9:78:01:eb:83:df:34:dc:bb:ad:a4:e6:6d:94:1f:ac: fb:de:f4:c3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNzAy OTM1RjAyRkMxQjgxMjk3RDFGRkI0Qzc4Q0UwQkExRDQzNzg1MB4XDTI1MDUxNzAz NDAzNloXDTI2MDUxMDA0NTE1NVowMzExMC8GA1UEAxMoOEE4MzA4QUE1NTMxNkND RTM5QTYwRDgwRTgyQzc4MTExQTM5QUY0QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJyQ94v5ZvEFbuQkAyfwGIywwvge/hCAMXKFGBua+3l6BdsyGRoY Z2KoALGfEVXxZBnXB/lKH2ohiFSkXPflPYo5T7G0lc6U3Uy8LRJHcXVy3x/G0SFw 3kn7GLzGcb4GXYOBwFcKtVzPameR8I0uanXi914kyPW70zgInwjBQ5vZCe93XClM 3gpWjAxkk1DWJwopVdfXsqiHYa2k4CY7EdMmv/+sn6r++HHf0k2gh7FLHjUClJF3 +TuMhmR1CE8YEBqkoYGU/GAkF7eLzo5nZWq1u6jVvxrN/7pu5qipg/y5iY2cWVwv lbh6WI1C1J1yjO9YnXDTpZg9ntjriI93+SUCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSKgwiqVTFszjmmDYDoLHgRGjmvSjAfBgNVHSMEGDAWgBT3ApNfAvwbgSl9H/tM eM4LodQ3hTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDc4 Lzl3S1RYd0w4RzRFcGZSXzdUSGpPQzZIVU40VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXdLVFh3TDhHNEVwZlJfN1RIak9DNkhVTjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3OC9pb01JcWxVeGJNNDVw ZzJBNkN4NEVSbzVyMG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbig7MA0GCSqGSIb3DQEBCwUAA4IBAQBACS6VD1E51SnXMGNomnVdWWyUyEJh AX8w7prJvWokaSyi07pUHm+KaEr3WAijj/JVvzPhjRMuuDH1OkpzBPgVPohcVYRK TgNyHpUhagwD4B3c//IPIjXXZuHyFY8+VZHgH0uo40HjBznMiTomQZ/i0kNEen08 Hv0Zik54xYuiec4JIKNatTrxBx474W5JcXqbk1IDqbzlI4FjbDou7csDi0piYjWI Soz5junDcGAblytxN90SZnUh9kpgwG4mnlcnQB25/Ix9p7r3sHUR7DcGf6HIhGjO Ag8Uq4yMwVUTBwIYUz+w85iBgdQ7xdl4AeuD3zTcu62k5m2UH6z73vTD -----END CERTIFICATE-----Generated at Wed Jun 4 01:29:46 2025 by rpki-client