$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3168/M7Yoo7vS0g74dllE5jwaeJ8GkI8.roa File: M7Yoo7vS0g74dllE5jwaeJ8GkI8.roa (raw, json) Hash identifier: 0dPkxQQKUEzWy8So4dP//PRsJgFZGxnW9RSLGUN8yLE= Subject key identifier: 33:B6:28:A3:BB:D2:D2:0E:F8:76:59:44:E6:3C:1A:78:9F:06:90:8F Certificate issuer: /CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094 Certificate serial: 142E Authority key identifier: 24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/M7Yoo7vS0g74dllE5jwaeJ8GkI8.roa Signing time: Mon 26 May 2025 23:39:25 +0000 ROA not before: Mon 26 May 2025 23:39:25 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 146806 IP address blocks: 103.79.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5166 (0x142e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=240987F40A6030CDFA33DED1EEE7CF4DC7C30094 Validity Not Before: May 26 23:39:25 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=33B628A3BBD2D20EF8765944E63C1A789F06908F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ae:9e:11:ed:8d:50:c5:ef:21:4b:ce:a5:9a: e5:6a:11:6b:d3:35:08:06:69:28:ba:9f:25:d7:1c: 95:36:47:a5:20:eb:03:a6:58:98:72:aa:d7:fa:53: 2b:15:2a:46:3d:08:9a:0a:91:5a:98:e8:42:35:f5: 18:a9:fb:f5:5b:a9:d7:a3:a3:2e:8a:a4:bc:b9:34: fa:f1:8a:70:80:16:ab:a4:8a:88:ed:71:ab:51:dc: 00:47:b6:17:2a:d1:0b:3a:85:02:7f:2f:51:c6:eb: 1d:69:be:28:37:78:4f:df:a4:fa:82:55:2e:bf:85: 51:d8:11:a6:59:8f:19:3c:bb:13:3f:77:0f:27:9d: 91:55:93:f5:28:8f:71:d7:80:25:0c:e1:07:dc:e9: 68:7a:f9:f6:ec:80:4b:5e:79:ba:9f:cb:89:0f:1f: d7:dd:c2:38:9b:13:2e:77:e2:58:13:fc:3c:03:b3: c1:9b:ce:ae:29:e6:5d:30:c8:97:85:f6:e0:05:13: 86:d6:2a:0e:0e:8b:b9:ee:3e:05:09:7d:db:88:23: c0:e0:41:2b:0f:08:fa:af:b0:a8:49:3e:3d:7d:fa: f1:21:1d:5c:48:b0:3c:c3:58:ae:1d:1e:1a:4c:0f: a9:6f:d5:84:ce:92:6d:7b:d9:cc:bc:39:fe:fb:45: 23:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B6:28:A3:BB:D2:D2:0E:F8:76:59:44:E6:3C:1A:78:9F:06:90:8F X509v3 Authority Key Identifier: keyid:24:09:87:F4:0A:60:30:CD:FA:33:DE:D1:EE:E7:CF:4D:C7:C3:00:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/JAmH9ApgMM36M97R7ufPTcfDAJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/JAmH9ApgMM36M97R7ufPTcfDAJQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3168/M7Yoo7vS0g74dllE5jwaeJ8GkI8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.79.228.0/24 Signature Algorithm: sha256WithRSAEncryption 46:2c:df:f4:1d:fa:a9:cb:ab:ae:9a:dc:ce:2f:c3:78:1d:f5: c9:87:19:8c:91:4c:a4:5e:94:de:d2:58:98:d4:8d:d7:93:93: 6a:f9:80:aa:8b:ff:4c:a7:91:1b:6e:03:89:4a:83:84:fb:aa: 8b:6a:5c:cf:ff:d7:85:c1:3e:fe:f7:7d:1e:7e:8c:a7:f6:29: 61:31:65:5f:ee:9c:e5:c7:3c:5e:e5:ee:68:9a:1c:d2:87:2e: a7:fc:21:7f:cd:d1:f9:5e:8b:fc:dc:e9:26:4e:0c:70:c5:1d: 54:82:c1:5e:30:63:8a:a0:2e:76:e5:bd:ef:39:20:c2:4d:37: c0:f9:f8:81:8a:9a:6a:6f:e0:90:d7:26:f7:59:bd:3f:71:cc: 0d:ca:95:c9:e9:7d:48:d5:18:99:d8:04:b5:4d:57:ce:11:1e: 9a:6e:db:de:cf:54:52:a7:1c:8e:21:80:68:49:1a:85:7d:f1: 88:d8:a2:07:b6:8f:17:ce:79:cc:4d:cb:47:38:cd:b4:36:c1: af:a8:ad:c0:b1:1e:80:09:c9:36:aa:35:d7:51:fd:1a:73:1c: 18:25:76:02:b3:cb:49:48:e0:7e:2d:bf:5a:14:e6:87:4e:92: bc:25:37:f9:d6:b6:b7:94:08:33:8d:f0:30:fc:6b:89:55:2c: 5e:31:82:10 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjQw OTg3RjQwQTYwMzBDREZBMzNERUQxRUVFN0NGNERDN0MzMDA5NDAeFw0yNTA1MjYy MzM5MjVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDMzQjYyOEEzQkJEMkQy MEVGODc2NTk0NEU2M0MxQTc4OUYwNjkwOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdrp4R7Y1Qxe8hS86lmuVqEWvTNQgGaSi6nyXXHJU2R6Ug6wOm WJhyqtf6UysVKkY9CJoKkVqY6EI19Rip+/Vbqdejoy6KpLy5NPrxinCAFqukiojt catR3ABHthcq0Qs6hQJ/L1HG6x1pvig3eE/fpPqCVS6/hVHYEaZZjxk8uxM/dw8n nZFVk/Uoj3HXgCUM4Qfc6Wh6+fbsgEteebqfy4kPH9fdwjibEy534lgT/DwDs8Gb zq4p5l0wyJeF9uAFE4bWKg4Oi7nuPgUJfduII8DgQSsPCPqvsKhJPj19+vEhHVxI sDzDWK4dHhpMD6lv1YTOkm172cy8Of77RSMLAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUM7Yoo7vS0g74dllE5jwaeJ8GkI8wHwYDVR0jBBgwFoAUJAmH9ApgMM36M97R 7ufPTcfDAJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 OC9KQW1IOUFwZ01NMzZNOTdSN3VmUFRjZkRBSlEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0pBbUg5QXBnTU0zNk05N1I3dWZQVGNmREFKUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjgvTTdZb283dlMwZzc0 ZGxsRTVqd2FlSjhHa0k4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGdP5DANBgkqhkiG9w0BAQsFAAOCAQEARizf9B36qcurrprczi/DeB31yYcZ jJFMpF6U3tJYmNSN15OTavmAqov/TKeRG24DiUqDhPuqi2pcz//XhcE+/vd9Hn6M p/YpYTFlX+6c5cc8XuXuaJoc0ocup/whf83R+V6L/NzpJk4McMUdVILBXjBjiqAu duW97zkgwk03wPn4gYqaam/gkNcm91m9P3HMDcqVyel9SNUYmdgEtU1XzhEemm7b 3s9UUqccjiGAaEkahX3xiNiiB7aPF855zE3LRzjNtDbBr6itwLEegAnJNqo111H9 GnMcGCV2ArPLSUjgfi2/WhTmh06SvCU3+da2t5QIM43wMPxriVUsXjGCEA== -----END CERTIFICATE-----Generated at Wed Jun 4 01:22:56 2025 by rpki-client