$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3272/GOre_cFGATpcDQN4Ro4cvnUtpEA.roa File: GOre_cFGATpcDQN4Ro4cvnUtpEA.roa (raw, json) Hash identifier: dnfkh83L/O70YscfEWsfQ1zpqGgHDk4Pbxi04PBb1FA= Subject key identifier: 18:EA:DE:FD:C1:46:01:3A:5C:0D:03:78:46:8E:1C:BE:75:2D:A4:40 Certificate issuer: /CN=FD341E841C183777F8F91DF4FCDA0BB9EFA061BF Certificate serial: 06F5 Authority key identifier: FD:34:1E:84:1C:18:37:77:F8:F9:1D:F4:FC:DA:0B:B9:EF:A0:61:BF Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_TQehBwYN3f4-R30_NoLue-gYb8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/GOre_cFGATpcDQN4Ro4cvnUtpEA.roa Signing time: Fri 21 Mar 2025 03:28:22 +0000 ROA not before: Fri 21 Mar 2025 03:28:22 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 146806 IP address blocks: 157.66.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/_TQehBwYN3f4-R30_NoLue-gYb8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/_TQehBwYN3f4-R30_NoLue-gYb8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_TQehBwYN3f4-R30_NoLue-gYb8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD341E841C183777F8F91DF4FCDA0BB9EFA061BF Validity Not Before: Mar 21 03:28:22 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=18EADEFDC146013A5C0D0378468E1CBE752DA440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:35:64:dd:d8:bb:c2:6c:92:81:f7:d2:36: 5b:80:c6:e1:51:77:37:fb:19:b5:1c:8a:ff:f0:8e: ce:10:cb:0b:a1:7d:1c:f6:12:11:fb:e9:a2:9a:fd: 81:ec:47:1b:f9:33:3b:31:da:e6:c1:a4:27:c0:80: a6:7b:2e:fa:b3:5d:8a:4e:0b:92:c8:df:28:7b:ba: 99:7c:e9:2d:10:0c:73:a9:6a:d3:ca:f4:8e:05:81: 8a:6e:cf:19:1f:c1:45:ad:d6:2f:97:b7:24:22:b4: 6e:4c:da:74:6b:c1:a9:5b:de:67:96:be:52:2e:2e: b7:20:41:2e:8f:90:bd:c3:92:fa:18:85:d8:cd:fd: cd:a9:09:90:15:c9:30:9c:e3:74:4c:4f:4c:34:2e: 49:f1:34:0a:cd:a1:59:6d:14:d4:bb:c2:07:d6:9f: f5:96:bf:23:81:1f:ff:a9:7f:48:86:fd:04:57:14: 63:15:42:96:b9:35:06:d7:c4:6a:17:db:34:5c:a5: 92:be:43:87:a9:1f:0e:13:68:4a:e7:48:86:ec:ad: d5:4b:1f:bb:b5:c9:b8:79:b2:7a:ab:02:ff:07:54: 7a:e3:9c:7c:ee:1d:91:c0:43:fc:56:ff:87:97:32: 88:28:31:55:38:98:16:07:a6:8b:b5:a7:c3:19:ed: 6f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EA:DE:FD:C1:46:01:3A:5C:0D:03:78:46:8E:1C:BE:75:2D:A4:40 X509v3 Authority Key Identifier: keyid:FD:34:1E:84:1C:18:37:77:F8:F9:1D:F4:FC:DA:0B:B9:EF:A0:61:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/_TQehBwYN3f4-R30_NoLue-gYb8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_TQehBwYN3f4-R30_NoLue-gYb8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3272/GOre_cFGATpcDQN4Ro4cvnUtpEA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.66.43.0/24 Signature Algorithm: sha256WithRSAEncryption 97:25:89:c9:10:81:ba:c2:cb:86:2c:a9:3b:fe:18:c2:1c:06: 08:d8:c6:38:1e:72:47:5e:80:fc:21:1f:d0:e5:c1:e0:f9:95: 20:a0:31:52:80:e9:a5:cd:85:fc:6c:76:10:a1:c8:86:a3:6e: 03:41:76:de:b4:0a:55:6f:a5:85:0b:21:1b:3f:3a:e3:46:df: 25:87:9b:29:08:16:dd:ed:c2:36:7c:a2:b0:95:14:da:7f:9b: 55:3b:d2:b4:75:2b:26:6f:1f:fa:15:3b:12:58:94:f1:65:01: 75:18:ce:ac:04:25:ac:aa:c6:9d:62:1c:80:da:3b:65:2a:08: 44:d7:76:8d:68:3d:27:01:55:a6:56:24:0e:d8:e6:27:bb:9e: 9e:32:96:ee:e6:7f:66:f5:b3:6e:2f:f4:22:e8:67:bc:fe:87: 48:76:33:c0:6e:e7:dc:e8:80:bb:64:34:a3:1c:80:94:51:7f: 43:f3:6e:01:cc:fa:fc:fc:10:65:23:56:ce:a6:94:18:66:db: 76:66:d0:71:49:b3:88:bc:30:b7:3a:3d:b2:02:3d:a0:8d:a7: af:b5:be:3e:32:30:b9:db:df:f0:0b:72:5a:b4:72:02:46:79: 05:bb:60:40:8c:1b:ea:03:0b:fb:1e:eb:11:17:f1:1c:14:4f: 7e:5f:0a:2e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkQz NDFFODQxQzE4Mzc3N0Y4RjkxREY0RkNEQTBCQjlFRkEwNjFCRjAeFw0yNTAzMjEw MzI4MjJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDE4RUFERUZEQzE0NjAx M0E1QzBEMDM3ODQ2OEUxQ0JFNzUyREE0NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6hTVk3di7wmySgffSNluAxuFRdzf7GbUciv/wjs4QywuhfRz2 EhH76aKa/YHsRxv5Mzsx2ubBpCfAgKZ7LvqzXYpOC5LI3yh7upl86S0QDHOpatPK 9I4FgYpuzxkfwUWt1i+XtyQitG5M2nRrwalb3meWvlIuLrcgQS6PkL3DkvoYhdjN /c2pCZAVyTCc43RMT0w0LknxNArNoVltFNS7wgfWn/WWvyOBH/+pf0iG/QRXFGMV Qpa5NQbXxGoX2zRcpZK+Q4epHw4TaErnSIbsrdVLH7u1ybh5snqrAv8HVHrjnHzu HZHAQ/xW/4eXMogoMVU4mBYHpou1p8MZ7W8DAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUGOre/cFGATpcDQN4Ro4cvnUtpEAwHwYDVR0jBBgwFoAU/TQehBwYN3f4+R30 /NoLue+gYb8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI3 Mi9fVFFlaEJ3WU4zZjQtUjMwX05vTHVlLWdZYjguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL19UUWVoQndZTjNmNC1SMzBfTm9MdWUtZ1liOC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNzIvR09yZV9jRkdBVHBj RFFONFJvNGN2blV0cEVBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ1CKzANBgkqhkiG9w0BAQsFAAOCAQEAlyWJyRCBusLLhiypO/4YwhwGCNjG OB5yR16A/CEf0OXB4PmVIKAxUoDppc2F/Gx2EKHIhqNuA0F23rQKVW+lhQshGz86 40bfJYebKQgW3e3CNnyisJUU2n+bVTvStHUrJm8f+hU7EliU8WUBdRjOrAQlrKrG nWIcgNo7ZSoIRNd2jWg9JwFVplYkDtjmJ7uenjKW7uZ/ZvWzbi/0IuhnvP6HSHYz wG7n3OiAu2Q0oxyAlFF/Q/NuAcz6/PwQZSNWzqaUGGbbdmbQcUmziLwwtzo9sgI9 oI2nr7W+PjIwudvf8AtyWrRyAkZ5BbtgQIwb6gML+x7rERfxHBRPfl8KLg== -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:14 2025 by rpki-client