$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/EtgRH0CW7H_3T8VzfRA74VAC9rU.roa File: EtgRH0CW7H_3T8VzfRA74VAC9rU.roa (raw, json) Hash identifier: g0qR5oI3IGoFzwTdmP+Dqqgxu4q3upIXq/ZhObzqa2A= Subject key identifier: 12:D8:11:1F:40:96:EC:7F:F7:4F:C5:73:7D:10:3B:E1:50:02:F6:B5 Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Certificate serial: 0778 Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/EtgRH0CW7H_3T8VzfRA74VAC9rU.roa Signing time: Tue 08 Jul 2025 08:45:13 +0000 ROA not before: Tue 08 Jul 2025 08:45:13 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146762 IP address blocks: 114.111.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 13:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Validity Not Before: Jul 8 08:45:13 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=12D8111F4096EC7FF74FC5737D103BE15002F6B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:75:d1:f3:b4:20:56:e6:7c:f2:a9:50:d2:c0: bd:b4:c8:3a:bc:86:70:7b:6e:28:72:99:09:34:22: e7:64:0a:81:52:6a:e6:ab:3e:77:44:cf:9d:96:a6: 5d:6d:17:bf:38:07:48:97:6b:94:6d:96:38:88:9e: 87:e2:7f:d4:f2:18:68:cf:28:d3:20:19:cb:5d:24: 4d:e3:89:c6:0e:9b:11:0a:8a:5d:cd:0f:d3:20:79: 73:45:a2:3b:9c:7e:82:9b:f6:dc:dc:9c:9a:59:ad: 9f:f2:9e:a6:91:92:1f:41:12:04:22:bd:7a:9c:83: 66:8b:4f:e0:28:a6:31:2a:c7:18:43:03:3c:eb:b2: 24:1c:ae:ec:a7:82:f0:90:9d:ae:4c:b3:60:59:71: 32:9e:3f:fc:86:76:36:e2:f9:93:e5:33:97:2f:82: 61:97:8b:61:d8:d5:84:2a:72:2f:d0:fc:5f:bf:8a: cc:1a:d7:a8:0e:fb:04:4d:8d:48:18:73:43:3d:f7: 74:0d:77:d5:f5:1f:3c:68:2d:9e:d2:ea:22:2e:3d: b8:d1:a6:e5:78:1b:bf:bc:56:54:c3:38:08:c1:6c: 5e:6d:4a:a9:17:79:dd:95:89:31:8c:dd:d8:38:7e: a3:07:46:3a:4c:d0:d2:ad:ed:e0:3d:a7:7a:f5:27: 42:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D8:11:1F:40:96:EC:7F:F7:4F:C5:73:7D:10:3B:E1:50:02:F6:B5 X509v3 Authority Key Identifier: keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/EtgRH0CW7H_3T8VzfRA74VAC9rU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.111.176.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:9d:5f:44:6a:72:a2:7b:c9:ce:b3:37:e5:eb:ba:cb:77:bd: 48:e5:30:2d:8b:dd:08:01:e3:3f:12:df:47:9a:c0:ba:e8:74: 66:f3:28:bd:b2:6a:86:8e:3c:e5:7c:a6:bf:e2:50:e5:72:1d: f1:a6:05:2b:af:3d:cd:05:93:14:8f:8f:7b:3d:aa:51:a1:ba: b4:0f:c6:b6:99:b3:02:14:c0:70:52:86:c6:c0:8b:c0:1b:eb: a6:54:1e:ca:9e:31:f0:5d:d6:cc:74:a0:57:05:09:0d:29:b2: 2d:b9:97:7f:2f:d8:39:7e:a8:32:22:5d:14:dc:18:4d:f4:6e: 0e:1f:66:01:ca:0f:b7:1e:49:dd:53:a2:8b:63:68:0c:13:ba: 79:8a:47:06:4e:8f:ca:07:a8:71:75:e5:63:c5:2f:28:d5:49: a6:1e:aa:47:b6:06:6b:fb:66:1a:51:76:95:8b:d7:d3:44:5d: 07:f4:6b:3a:2e:a8:2e:b8:06:7e:af:37:8a:42:02:c8:56:a0: ac:8e:35:68:8a:5f:0c:25:67:d9:2e:9f:3b:85:1d:e0:a3:7d: e1:10:e7:90:ef:04:58:83:81:0b:06:b8:9e:a0:63:61:98:71: a2:42:14:c0:52:63:c6:40:9e:c6:19:40:a6:43:15:59:a7:ed: 6f:8b:3f:73 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJD NkQ5QTlGNEEyMjZBNjFGNUZBMUE5MTYzOTQxRDRCMzVCQTM1QjAeFw0yNTA3MDgw ODQ1MTNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDEyRDgxMTFGNDA5NkVD N0ZGNzRGQzU3MzdEMTAzQkUxNTAwMkY2QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDddHztCBW5nzyqVDSwL20yDq8hnB7bihymQk0IudkCoFSauar PndEz52Wpl1tF784B0iXa5RtljiInofif9TyGGjPKNMgGctdJE3jicYOmxEKil3N D9MgeXNFojucfoKb9tzcnJpZrZ/ynqaRkh9BEgQivXqcg2aLT+AopjEqxxhDAzzr siQcruyngvCQna5Ms2BZcTKeP/yGdjbi+ZPlM5cvgmGXi2HY1YQqci/Q/F+/iswa 16gO+wRNjUgYc0M993QNd9X1HzxoLZ7S6iIuPbjRpuV4G7+8VlTDOAjBbF5tSqkX ed2ViTGM3dg4fqMHRjpM0NKt7eA9p3r1J0LlAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUEtgRH0CW7H/3T8VzfRA74VAC9rUwHwYDVR0jBBgwFoAUG8bZqfSiJqYfX6Gp FjlB1LNbo1swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz NC9HOGJacWZTaUpxWWZYNkdwRmpsQjFMTmJvMXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0c4YlpxZlNpSnFZZlg2R3BGamxCMUxOYm8xcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzQvRXRnUkgwQ1c3SF8z VDhWemZSQTc0VkFDOXJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHJvsDANBgkqhkiG9w0BAQsFAAOCAQEAHp1fRGpyonvJzrM35eu6y3e9SOUw LYvdCAHjPxLfR5rAuuh0ZvMovbJqho485Xymv+JQ5XId8aYFK689zQWTFI+Pez2q UaG6tA/GtpmzAhTAcFKGxsCLwBvrplQeyp4x8F3WzHSgVwUJDSmyLbmXfy/YOX6o MiJdFNwYTfRuDh9mAcoPtx5J3VOii2NoDBO6eYpHBk6PygeocXXlY8UvKNVJph6q R7YGa/tmGlF2lYvX00RdB/RrOi6oLrgGfq83ikICyFagrI41aIpfDCVn2S6fO4Ud 4KN94RDnkO8EWIOBCwa4nqBjYZhxokIUwFJjxkCexhlApkMVWaftb4s/cw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:57:59 2025 by rpki-client