$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/Kwjs-P3D3YMnLUhcdu5MEX6cOsc.roa File: Kwjs-P3D3YMnLUhcdu5MEX6cOsc.roa (raw, json) Hash identifier: UiI4TlDWIpuezS4Dbm9cl3AgiERyEMt2p2UwXA9aY60= Subject key identifier: 2B:08:EC:F8:FD:C3:DD:83:27:2D:48:5C:76:EE:4C:11:7E:9C:3A:C7 Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Certificate serial: 0773 Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/Kwjs-P3D3YMnLUhcdu5MEX6cOsc.roa Signing time: Tue 08 Jul 2025 08:45:12 +0000 ROA not before: Tue 08 Jul 2025 08:45:12 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146762 IP address blocks: 114.111.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 13:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Validity Not Before: Jul 8 08:45:12 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=2B08ECF8FDC3DD83272D485C76EE4C117E9C3AC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:77:50:87:7d:75:9c:64:66:a2:ed:27:58:7b: 26:59:03:75:df:d4:3d:6d:9a:2b:9c:67:fa:30:8d: 37:d4:9c:0a:f8:82:43:d8:16:d5:38:4f:9c:4b:94: ab:f8:fe:eb:28:ab:b6:3a:25:c9:1f:b4:95:58:31: 5f:0a:7f:82:91:fa:67:b9:33:a6:8f:e4:23:31:f6: e7:de:43:f4:7e:9b:a6:22:f2:60:b1:78:be:3b:ff: fc:49:5a:e7:45:05:be:05:85:cc:c7:7d:cb:ce:2c: b2:8c:4a:cf:a1:05:70:0c:9a:e3:7a:f5:9e:5c:c8: 36:5f:b8:0a:2f:f9:f8:a7:85:2f:4e:ca:b9:05:73: 68:23:77:18:16:34:f9:77:cf:8c:c7:ac:e4:56:ff: 59:d7:04:5f:e3:3e:af:c8:90:93:ff:10:b9:d9:9b: db:34:1c:88:66:7d:53:08:18:03:bd:57:ee:bb:6c: 73:e2:d9:34:53:37:56:ac:95:6a:6d:86:24:b2:2d: 25:7c:f1:a3:3a:cd:40:6d:75:34:88:4c:4f:ee:fe: 42:94:6b:3c:a6:76:68:a1:b5:c6:5b:ee:d4:d9:10: 50:a1:a5:cf:28:0b:eb:76:f5:10:1f:a2:a5:5a:8f: dc:e2:96:6a:e5:ae:4d:80:05:c3:58:0f:0f:d9:ce: 61:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:08:EC:F8:FD:C3:DD:83:27:2D:48:5C:76:EE:4C:11:7E:9C:3A:C7 X509v3 Authority Key Identifier: keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/Kwjs-P3D3YMnLUhcdu5MEX6cOsc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.111.179.0/24 Signature Algorithm: sha256WithRSAEncryption 24:18:2c:69:7a:f7:ca:91:4b:f3:3d:1f:36:56:e2:cb:21:04: 07:e8:85:79:33:48:aa:13:32:b1:ee:d3:15:b5:68:3e:1b:8b: f1:c0:f9:df:b0:71:23:49:3c:29:57:d3:fa:61:ff:7c:26:02: bf:d1:b8:c9:4b:0c:68:b2:1c:56:49:7e:a4:73:82:e5:19:39: f6:8e:d8:0a:cc:46:33:94:61:36:a9:35:b6:98:8f:5b:dc:d1: a9:cc:fe:98:f5:e9:6b:6f:f1:54:cd:fb:ec:3c:4c:a2:69:8b: 31:af:c8:de:b1:75:d8:e4:3e:50:a6:9b:83:25:13:01:a4:fe: 3d:82:64:04:f4:03:f3:2b:fd:00:b5:f4:6e:32:67:8f:21:eb: b3:7d:9f:12:23:07:2f:b6:f0:22:85:62:a9:11:c2:33:48:65: f0:cd:9d:75:e8:45:78:7b:7b:9e:10:e4:b1:4d:bf:e2:4b:fa: 57:12:53:94:8f:52:be:0d:e0:34:c8:88:93:44:23:c2:09:15: 6e:87:4e:5a:8a:2c:a7:b2:d7:58:03:f1:d7:73:ac:ff:26:d9: e2:83:1f:c2:f9:6b:6d:bf:b4:ef:21:78:ec:77:4d:e0:94:a4: e2:8e:12:0f:0d:6c:77:4c:c5:9b:76:83:81:d5:9a:15:35:68: 2c:0d:1a:0d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJD NkQ5QTlGNEEyMjZBNjFGNUZBMUE5MTYzOTQxRDRCMzVCQTM1QjAeFw0yNTA3MDgw ODQ1MTJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDJCMDhFQ0Y4RkRDM0RE ODMyNzJENDg1Qzc2RUU0QzExN0U5QzNBQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCWd1CHfXWcZGai7SdYeyZZA3Xf1D1tmiucZ/owjTfUnAr4gkPY FtU4T5xLlKv4/usoq7Y6JckftJVYMV8Kf4KR+me5M6aP5CMx9ufeQ/R+m6Yi8mCx eL47//xJWudFBb4FhczHfcvOLLKMSs+hBXAMmuN69Z5cyDZfuAov+finhS9OyrkF c2gjdxgWNPl3z4zHrORW/1nXBF/jPq/IkJP/ELnZm9s0HIhmfVMIGAO9V+67bHPi 2TRTN1aslWpthiSyLSV88aM6zUBtdTSITE/u/kKUazymdmihtcZb7tTZEFChpc8o C+t29RAfoqVaj9zilmrlrk2ABcNYDw/ZzmFvAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUKwjs+P3D3YMnLUhcdu5MEX6cOscwHwYDVR0jBBgwFoAUG8bZqfSiJqYfX6Gp FjlB1LNbo1swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz NC9HOGJacWZTaUpxWWZYNkdwRmpsQjFMTmJvMXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0c4YlpxZlNpSnFZZlg2R3BGamxCMUxOYm8xcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzQvS3dqcy1QM0QzWU1u TFVoY2R1NU1FWDZjT3NjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHJvszANBgkqhkiG9w0BAQsFAAOCAQEAJBgsaXr3ypFL8z0fNlbiyyEEB+iF eTNIqhMyse7TFbVoPhuL8cD537BxI0k8KVfT+mH/fCYCv9G4yUsMaLIcVkl+pHOC 5Rk59o7YCsxGM5RhNqk1tpiPW9zRqcz+mPXpa2/xVM377DxMommLMa/I3rF12OQ+ UKabgyUTAaT+PYJkBPQD8yv9ALX0bjJnjyHrs32fEiMHL7bwIoViqRHCM0hl8M2d dehFeHt7nhDksU2/4kv6VxJTlI9Svg3gNMiIk0QjwgkVbodOWoosp7LXWAPx13Os /ybZ4oMfwvlrbb+07yF47HdN4JSk4o4SDw1sd0zFm3aDgdWaFTVoLA0aDQ== -----END CERTIFICATE-----Generated at Sun Jul 20 12:55:36 2025 by rpki-client