$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3078/xTsMFlUlOMO2C8VqlyNX8l42Be4.roa File: xTsMFlUlOMO2C8VqlyNX8l42Be4.roa (raw, json) Hash identifier: cqITgeF+cqV0+Gy/WP4HA7/9+srd7y1yQ5hpxQPafqo= Subject key identifier: C5:3B:0C:16:55:25:38:C3:B6:0B:C5:6A:97:23:57:F2:5E:36:05:EE Certificate issuer: /CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Certificate serial: 41 Authority key identifier: F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/xTsMFlUlOMO2C8VqlyNX8l42Be4.roa Signing time: Sat 17 May 2025 03:42:32 +0000 ROA not before: Sat 17 May 2025 03:42:32 +0000 ROA not after: Sun 10 May 2026 04:51:55 +0000 asID: 151270 IP address blocks: 110.40.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F702935F02FC1B81297D1FFB4C78CE0BA1D43785 Validity Not Before: May 17 03:42:32 2025 GMT Not After : May 10 04:51:55 2026 GMT Subject: CN=C53B0C16552538C3B60BC56A972357F25E3605EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ad:d6:41:55:9a:59:27:0a:06:b1:3b:93:f5: 33:18:fe:15:74:31:30:3f:db:6c:fd:20:23:99:a5: c9:a4:30:5e:39:6b:fd:15:9d:14:6a:62:64:8f:91: 61:3b:26:0b:67:cd:6d:c1:04:7f:bd:cd:77:5e:20: 7a:07:18:51:72:4f:ab:b7:ea:24:9d:3f:81:3f:31: 27:0a:41:05:55:ae:c0:32:cd:62:d9:98:85:dc:59: da:8b:50:69:16:1a:ef:32:84:15:ae:42:65:25:ec: b8:1c:49:67:2b:7d:03:20:56:fb:03:34:82:97:e1: 0e:12:11:a9:ab:5c:62:80:df:8b:e2:5b:36:0d:6c: c5:3e:43:a1:ee:1a:a5:8d:9b:e4:d1:22:39:7e:d5: 95:0e:34:04:05:a1:28:06:a7:15:52:61:c6:2b:f2: 4a:49:b4:da:0b:9a:e4:0a:97:c1:19:54:da:1d:38: 23:4a:39:6e:ca:01:c9:06:82:81:28:e9:63:9e:b1: 82:69:d4:03:a2:d7:05:a3:50:16:f3:fd:52:b1:64: 31:b1:fc:ca:60:73:43:9e:09:ec:a3:ec:93:e9:46: 20:32:5d:f5:5e:d3:34:12:49:69:5e:f1:52:bd:37: 9f:71:71:0f:49:d5:cd:b4:0d:8c:ef:dd:45:97:e1: 30:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3B:0C:16:55:25:38:C3:B6:0B:C5:6A:97:23:57:F2:5E:36:05:EE X509v3 Authority Key Identifier: keyid:F7:02:93:5F:02:FC:1B:81:29:7D:1F:FB:4C:78:CE:0B:A1:D4:37:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/9wKTXwL8G4EpfR_7THjOC6HUN4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/9wKTXwL8G4EpfR_7THjOC6HUN4U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3078/xTsMFlUlOMO2C8VqlyNX8l42Be4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.40.83.0/24 Signature Algorithm: sha256WithRSAEncryption 99:5d:fe:74:e7:fc:28:38:e3:09:b8:39:7d:8e:62:b8:ea:be: df:cb:f7:64:ce:39:64:fa:a8:49:3f:de:65:e3:45:87:0c:46: e5:f1:bd:fe:7c:09:2d:6f:38:f1:d7:c0:f4:44:9e:ec:ae:5d: 20:88:7f:2a:60:e3:6d:be:be:97:71:5a:1d:0d:32:b5:24:ec: d1:fa:4a:f9:57:fe:c7:1c:51:3e:04:a4:db:50:64:2a:fa:db: ce:09:28:0c:c0:50:f6:9b:16:cf:cb:0c:7d:f3:dd:d6:d7:80: ea:e0:3f:f3:7c:0f:4b:fc:11:d3:24:d0:a9:0c:15:c9:55:ad: 3e:98:54:23:e8:43:97:a4:cd:24:9b:d7:a3:f2:35:04:e0:02: 95:31:6e:ac:cc:4e:ee:e7:69:b7:a7:18:03:7c:fb:89:0a:7c: fa:2e:ca:35:ad:71:fa:2b:5a:3d:ba:85:33:47:62:f1:06:0f: 41:0e:1b:d7:06:dd:08:a8:63:30:8d:82:81:95:89:1f:c5:9b: 68:dd:60:93:2a:f3:65:a2:88:c0:7f:50:37:67:db:77:c2:66: de:9c:5e:2a:dd:d8:59:62:a2:3f:cb:29:6c:ca:d2:6d:50:3e: e1:70:16:db:3d:7e:19:e1:e7:98:38:39:92:2b:1f:d7:2b:e5: 2b:80:30:5e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNzAy OTM1RjAyRkMxQjgxMjk3RDFGRkI0Qzc4Q0UwQkExRDQzNzg1MB4XDTI1MDUxNzAz NDIzMloXDTI2MDUxMDA0NTE1NVowMzExMC8GA1UEAxMoQzUzQjBDMTY1NTI1MzhD M0I2MEJDNTZBOTcyMzU3RjI1RTM2MDVFRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK6t1kFVmlknCgaxO5P1Mxj+FXQxMD/bbP0gI5mlyaQwXjlr/RWd FGpiZI+RYTsmC2fNbcEEf73Nd14gegcYUXJPq7fqJJ0/gT8xJwpBBVWuwDLNYtmY hdxZ2otQaRYa7zKEFa5CZSXsuBxJZyt9AyBW+wM0gpfhDhIRqatcYoDfi+JbNg1s xT5Doe4apY2b5NEiOX7VlQ40BAWhKAanFVJhxivySkm02gua5AqXwRlU2h04I0o5 bsoByQaCgSjpY56xgmnUA6LXBaNQFvP9UrFkMbH8ymBzQ54J7KPsk+lGIDJd9V7T NBJJaV7xUr03n3FxD0nVzbQNjO/dRZfhMMMCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTFOwwWVSU4w7YLxWqXI1fyXjYF7jAfBgNVHSMEGDAWgBT3ApNfAvwbgSl9H/tM eM4LodQ3hTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMDc4 Lzl3S1RYd0w4RzRFcGZSXzdUSGpPQzZIVU40VS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOXdLVFh3TDhHNEVwZlJfN1RIak9DNkhVTjRVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA3OC94VHNNRmxVbE9NTzJD OFZxbHlOWDhsNDJCZTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbihTMA0GCSqGSIb3DQEBCwUAA4IBAQCZXf505/woOOMJuDl9jmK46r7fy/dk zjlk+qhJP95l40WHDEbl8b3+fAktbzjx18D0RJ7srl0giH8qYONtvr6XcVodDTK1 JOzR+kr5V/7HHFE+BKTbUGQq+tvOCSgMwFD2mxbPywx9893W14Dq4D/zfA9L/BHT JNCpDBXJVa0+mFQj6EOXpM0km9ej8jUE4AKVMW6szE7u52m3pxgDfPuJCnz6Lso1 rXH6K1o9uoUzR2LxBg9BDhvXBt0IqGMwjYKBlYkfxZto3WCTKvNloojAf1A3Z9t3 wmbenF4q3dhZYqI/yylsytJtUD7hcBbbPX4Z4eeYODmSKx/XK+UrgDBe -----END CERTIFICATE-----Generated at Wed Jun 4 01:17:51 2025 by rpki-client