$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3164/WTi5A5T4oYjpNn2dVvGbh1qURZA.roa File: WTi5A5T4oYjpNn2dVvGbh1qURZA.roa (raw, json) Hash identifier: i3CoRJ27WF0wHLzvYeShD+7iCy/Ov8mMgyrdZRrzN38= Subject key identifier: 59:38:B9:03:94:F8:A1:88:E9:36:7D:9D:56:F1:9B:87:5A:94:45:90 Certificate issuer: /CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Certificate serial: 06 Authority key identifier: 80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/WTi5A5T4oYjpNn2dVvGbh1qURZA.roa Signing time: Mon 26 May 2025 07:47:41 +0000 ROA not before: Mon 26 May 2025 07:47:41 +0000 ROA not after: Tue 26 May 2026 07:10:29 +0000 asID: 152320 IP address blocks: 103.219.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Validity Not Before: May 26 07:47:41 2025 GMT Not After : May 26 07:10:29 2026 GMT Subject: CN=5938B90394F8A188E9367D9D56F19B875A944590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:37:04:fa:6b:bc:d0:52:cf:8b:d5:08:f3:fb: 49:c6:01:1b:7c:38:80:29:e5:c9:92:66:0a:ef:ec: 48:70:87:ac:51:6e:dd:11:8a:fd:35:b0:d8:21:e9: a1:b3:d2:f7:0a:ab:24:65:cb:c0:01:b9:95:e8:51: 96:05:79:80:ee:90:27:f9:84:7c:c3:31:a6:b4:0f: 49:b2:2b:5c:5d:40:1c:33:25:12:c7:bb:77:1a:06: f4:3d:31:b7:45:af:23:a0:6e:47:90:4b:87:f1:cd: a0:30:48:ea:76:ce:e2:75:4b:23:db:69:c0:fc:6f: 47:29:c7:c2:65:27:30:6c:bc:fb:58:80:f5:f8:92: d6:45:e2:14:4e:b5:69:6a:b7:86:52:56:5c:df:74: bb:19:85:e2:d3:68:89:1f:60:08:f7:a2:19:ac:51: ad:16:4a:21:50:01:30:4e:fb:7a:f6:39:24:01:89: 84:fc:10:58:c8:cc:d0:60:2d:ac:69:f2:e2:6f:28: ef:3c:dd:8a:3a:ed:aa:23:2c:5a:41:35:7f:ee:f3: 87:62:e3:4e:7a:ad:dd:a0:56:a4:ec:17:be:71:a7: 7e:80:34:75:1b:38:c3:17:78:35:18:63:16:3b:85: 2e:21:06:7b:ce:3c:a5:93:2d:b8:04:97:1f:45:dc: 98:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:38:B9:03:94:F8:A1:88:E9:36:7D:9D:56:F1:9B:87:5A:94:45:90 X509v3 Authority Key Identifier: keyid:80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/WTi5A5T4oYjpNn2dVvGbh1qURZA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.219.84.0/22 Signature Algorithm: sha256WithRSAEncryption a9:3b:2e:e6:df:e6:a3:d4:4c:c2:df:2d:e8:8b:fb:9d:d2:36: 96:9a:62:a7:d2:47:5e:d3:44:90:5a:fc:56:5e:46:82:0b:b5: 1a:97:06:69:cc:11:43:ee:ac:81:92:3b:24:c9:76:52:fd:d7: ba:a3:25:35:df:af:9d:3c:aa:c2:12:2c:d9:69:a0:14:db:68: df:a6:c1:9a:21:0d:ca:af:10:9d:20:bf:c5:83:cc:50:c0:7e: 7a:aa:59:07:66:2b:1c:96:27:64:72:9c:3b:22:e4:83:84:d6: 0c:42:b7:89:f9:2b:d3:b5:2c:79:44:2e:37:ac:2c:8f:3e:4e: 4b:6b:15:2a:3b:b2:b5:1b:89:67:d8:b8:75:8e:35:91:5d:a9: 7d:93:7e:6e:47:41:40:b4:d1:6b:d8:65:ab:db:d8:21:6f:1d: 8c:03:d5:5b:9f:87:77:7d:a9:15:a5:b0:64:dc:06:77:93:d0: f3:1b:6c:58:60:4a:a8:49:ec:01:44:c6:5f:a5:4f:27:a7:25: 18:93:9e:fe:5c:9a:ca:82:76:2e:2b:f6:23:61:3c:2a:be:b0: 6a:e2:1a:4a:74:13:4e:59:52:ef:86:56:fb:03:9d:7f:8b:9c: 77:e9:95:f9:97:f4:63:7d:75:1a:eb:a0:c2:e0:75:b2:e9:61: 98:e2:01:c0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4MEJE MDI4RDc2QkIzRDU1RTY2NDE2OUE5QUYwREYyQTk4Qzc1MDU1MB4XDTI1MDUyNjA3 NDc0MVoXDTI2MDUyNjA3MTAyOVowMzExMC8GA1UEAxMoNTkzOEI5MDM5NEY4QTE4 OEU5MzY3RDlENTZGMTlCODc1QTk0NDU5MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALA3BPprvNBSz4vVCPP7ScYBG3w4gCnlyZJmCu/sSHCHrFFu3RGK /TWw2CHpobPS9wqrJGXLwAG5lehRlgV5gO6QJ/mEfMMxprQPSbIrXF1AHDMlEse7 dxoG9D0xt0WvI6BuR5BLh/HNoDBI6nbO4nVLI9tpwPxvRynHwmUnMGy8+1iA9fiS 1kXiFE61aWq3hlJWXN90uxmF4tNoiR9gCPeiGaxRrRZKIVABME77evY5JAGJhPwQ WMjM0GAtrGny4m8o7zzdijrtqiMsWkE1f+7zh2LjTnqt3aBWpOwXvnGnfoA0dRs4 wxd4NRhjFjuFLiEGe848pZMtuASXH0XcmB8CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRZOLkDlPihiOk2fZ1W8ZuHWpRFkDAfBgNVHSMEGDAWgBSAvQKNdrs9VeZkFpqa 8N8qmMdQVTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMTY0 L2dMMENqWGE3UFZYbVpCYWFtdkRmS3BqSFVGVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZ0wwQ2pYYTdQVlhtWkJhYW12RGZLcGpIVUZVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2NC9XVGk1QTVUNG9ZanBO bjJkVnZHYmgxcVVSWkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ9tUMA0GCSqGSIb3DQEBCwUAA4IBAQCpOy7m3+aj1EzC3y3oi/ud0jaWmmKn 0kde00SQWvxWXkaCC7UalwZpzBFD7qyBkjskyXZS/de6oyU136+dPKrCEizZaaAU 22jfpsGaIQ3KrxCdIL/Fg8xQwH56qlkHZisclidkcpw7IuSDhNYMQreJ+SvTtSx5 RC43rCyPPk5LaxUqO7K1G4ln2Lh1jjWRXal9k35uR0FAtNFr2GWr29ghbx2MA9Vb n4d3fakVpbBk3AZ3k9DzG2xYYEqoSewBRMZfpU8npyUYk57+XJrKgnYuK/YjYTwq vrBq4hpKdBNOWVLvhlb7A51/i5x36ZX5l/RjfXUa66DC4HWy6WGY4gHA -----END CERTIFICATE-----Generated at Wed Jun 4 02:10:27 2025 by rpki-client