$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3134/wT_FguQFk15QfkZ4ASXJuEypJ68.roa File: wT_FguQFk15QfkZ4ASXJuEypJ68.roa (raw, json) Hash identifier: NTrLnkfSG/rPk8YngYTzeDFWT14vpnpFNvlPz4xk2CM= Subject key identifier: C1:3F:C5:82:E4:05:93:5E:50:7E:46:78:01:25:C9:B8:4C:A9:27:AF Certificate issuer: /CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Certificate serial: 0779 Authority key identifier: 1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/wT_FguQFk15QfkZ4ASXJuEypJ68.roa Signing time: Tue 08 Jul 2025 08:45:14 +0000 ROA not before: Tue 08 Jul 2025 08:45:13 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146762 IP address blocks: 114.111.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 13:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC6D9A9F4A226A61F5FA1A9163941D4B35BA35B Validity Not Before: Jul 8 08:45:13 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=C13FC582E405935E507E46780125C9B84CA927AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3b:59:3e:56:11:ca:b5:b6:59:5d:4d:1c:f8: ef:a6:f4:91:31:bb:4b:a5:27:8f:c8:59:0e:5a:b4: 9b:70:be:41:8f:a0:1b:9d:f7:46:f1:35:47:dc:92: ca:59:c1:47:e8:52:68:06:96:23:28:36:61:d5:29: 80:82:e6:3a:2b:d8:7d:d9:4f:65:c6:f8:ec:83:83: 40:c3:99:d5:c6:38:80:53:1d:74:d1:85:20:df:c6: b1:aa:89:ce:24:51:74:f3:5e:8b:8c:e6:f3:62:04: 47:b1:82:ff:87:e0:d7:b7:54:f3:29:2e:e1:9b:d6: c4:39:23:60:7d:03:b6:27:1f:fa:ff:b8:74:8f:f1: 5d:76:72:1f:ba:33:20:3b:3c:9a:a8:e2:55:6b:ce: 0c:42:18:a7:77:dd:27:99:bb:77:4a:9c:dd:4b:27: 3d:1d:29:b1:40:36:55:ee:2e:2a:e5:b4:59:77:92: ad:74:a3:03:15:cf:db:48:eb:39:68:99:2f:fa:3e: 2d:82:5b:ca:d6:c1:d8:26:23:ec:34:aa:9b:fc:5c: 8c:35:83:c5:ef:05:ef:82:0c:cb:f2:5f:b3:99:ef: b8:d7:5f:38:c2:ee:77:5b:78:a5:aa:70:47:17:4a: 28:49:ab:cd:af:37:25:38:42:75:f7:c1:9e:84:9d: 46:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:3F:C5:82:E4:05:93:5E:50:7E:46:78:01:25:C9:B8:4C:A9:27:AF X509v3 Authority Key Identifier: keyid:1B:C6:D9:A9:F4:A2:26:A6:1F:5F:A1:A9:16:39:41:D4:B3:5B:A3:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/G8bZqfSiJqYfX6GpFjlB1LNbo1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/G8bZqfSiJqYfX6GpFjlB1LNbo1s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3134/wT_FguQFk15QfkZ4ASXJuEypJ68.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.111.188.0/24 Signature Algorithm: sha256WithRSAEncryption 83:d5:b5:f1:b3:ba:25:2e:6c:36:51:32:df:5a:84:66:16:c5: 32:5c:27:a1:d0:a3:94:3b:c3:e0:c7:33:8f:78:29:ec:72:00: 2a:98:90:88:57:f8:34:50:e3:65:c3:be:0b:03:4c:49:97:42: 7f:4a:ee:32:f3:e0:f2:5e:e1:33:22:45:8b:6e:81:32:11:c3: 34:d7:4a:6f:0d:31:48:e5:22:d8:79:e8:eb:e2:f9:a8:b4:26: 82:1d:6f:ff:d5:ca:9e:b1:4b:08:cf:ec:ad:a4:e9:ab:db:c5: ac:fd:e0:6a:54:6e:dc:1d:88:57:cd:aa:ff:13:51:b6:2c:ea: be:48:81:0c:66:7b:b9:6d:0d:52:0d:d1:83:09:6e:81:56:bf: 7e:da:c6:bc:7d:a5:8d:84:a9:0c:9b:73:47:ec:b8:71:34:9d: 70:ac:6e:b6:0b:df:ba:25:e8:f3:1f:3e:18:d3:3e:9d:40:07: 20:61:05:3c:be:e4:96:7f:27:70:ec:da:6c:b3:5e:2f:85:0c: 36:ed:ba:39:42:ba:9c:93:39:ad:ad:2e:5a:91:a7:2b:33:04: a8:1a:de:bc:54:f6:98:02:e2:3a:51:b0:b7:b2:88:63:6a:8d: 4b:3a:5a:f0:00:50:01:fe:d7:14:68:8c:b8:51:f3:de:ba:28: 7d:6b:21:30 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUJD NkQ5QTlGNEEyMjZBNjFGNUZBMUE5MTYzOTQxRDRCMzVCQTM1QjAeFw0yNTA3MDgw ODQ1MTNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEMxM0ZDNTgyRTQwNTkz NUU1MDdFNDY3ODAxMjVDOUI4NENBOTI3QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1O1k+VhHKtbZZXU0c+O+m9JExu0ulJ4/IWQ5atJtwvkGPoBud 90bxNUfckspZwUfoUmgGliMoNmHVKYCC5jor2H3ZT2XG+OyDg0DDmdXGOIBTHXTR hSDfxrGqic4kUXTzXouM5vNiBEexgv+H4Ne3VPMpLuGb1sQ5I2B9A7YnH/r/uHSP 8V12ch+6MyA7PJqo4lVrzgxCGKd33SeZu3dKnN1LJz0dKbFANlXuLirltFl3kq10 owMVz9tI6zlomS/6Pi2CW8rWwdgmI+w0qpv8XIw1g8XvBe+CDMvyX7OZ77jXXzjC 7ndbeKWqcEcXSihJq82vNyU4QnX3wZ6EnUZZAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUwT/FguQFk15QfkZ4ASXJuEypJ68wHwYDVR0jBBgwFoAUG8bZqfSiJqYfX6Gp FjlB1LNbo1swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz NC9HOGJacWZTaUpxWWZYNkdwRmpsQjFMTmJvMXMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0c4YlpxZlNpSnFZZlg2R3BGamxCMUxOYm8xcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzQvd1RfRmd1UUZrMTVR ZmtaNEFTWEp1RXlwSjY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHJvvDANBgkqhkiG9w0BAQsFAAOCAQEAg9W18bO6JS5sNlEy31qEZhbFMlwn odCjlDvD4Mczj3gp7HIAKpiQiFf4NFDjZcO+CwNMSZdCf0ruMvPg8l7hMyJFi26B MhHDNNdKbw0xSOUi2Hno6+L5qLQmgh1v/9XKnrFLCM/sraTpq9vFrP3galRu3B2I V82q/xNRtizqvkiBDGZ7uW0NUg3RgwlugVa/ftrGvH2ljYSpDJtzR+y4cTSdcKxu tgvfuiXo8x8+GNM+nUAHIGEFPL7kln8ncOzabLNeL4UMNu26OUK6nJM5ra0uWpGn KzMEqBrevFT2mALiOlGwt7KIY2qNSzpa8ABQAf7XFGiMuFHz3roofWshMA== -----END CERTIFICATE-----Generated at Sun Jul 20 12:47:35 2025 by rpki-client