$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/PtAehugq5lD9RVX3ZK2aJNsiluM.roa File: PtAehugq5lD9RVX3ZK2aJNsiluM.roa (raw, json) Hash identifier: 7VRjxLz3lfWi2zs2o/15Yl3s6g7su7kpNo0o0dMgvcI= Subject key identifier: 3E:D0:1E:86:E8:2A:E6:50:FD:45:55:F7:64:AD:9A:24:DB:22:96:E3 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 07FB Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/PtAehugq5lD9RVX3ZK2aJNsiluM.roa Signing time: Fri 23 May 2025 07:07:19 +0000 ROA not before: Fri 23 May 2025 07:07:19 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 56046 IP address blocks: 223.160.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:07:19 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=3ED01E86E82AE650FD4555F764AD9A24DB2296E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d7:a1:47:63:c4:4d:3f:b0:22:e9:26:11:f0: 14:b2:54:89:54:f0:a1:48:8c:7b:7a:6b:51:91:65: 9d:f8:bc:6d:c0:4e:22:ea:48:1f:40:cd:31:ab:06: dd:d9:80:a6:b4:6a:6b:19:b8:23:33:b8:74:63:ad: 84:6b:70:44:7c:84:6b:4f:2b:e6:86:df:33:06:7d: 36:fd:b1:cb:06:b4:1d:36:6f:98:e5:c3:ed:f5:9e: 70:ff:7f:56:e1:10:3c:4e:6f:13:a6:71:21:76:4a: 57:c7:7a:f0:41:60:b3:25:01:49:84:92:62:40:59: 07:0a:b3:3d:12:bf:25:b6:cb:19:c4:21:b0:3b:22: 8d:c3:a6:4d:b8:dc:f2:b4:27:8c:2d:30:65:b3:3b: ce:1a:ee:7b:c1:bd:42:6b:d3:b7:1a:9e:7c:d7:81: 5a:74:a0:da:5b:5a:9d:43:26:72:37:f5:73:59:b7: 62:6a:9f:e9:4c:27:92:06:88:77:d7:04:23:2c:7c: 5c:2d:a1:35:78:b7:65:e8:ae:52:a2:ba:ef:df:30: 06:09:1f:e3:07:61:17:0b:b8:90:53:e8:64:7e:f6: 64:03:bc:6c:55:f9:ac:53:1a:a2:83:70:24:d1:f4: 1c:00:45:d5:9d:9d:f3:ed:39:be:08:67:30:dc:75: e2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D0:1E:86:E8:2A:E6:50:FD:45:55:F7:64:AD:9A:24:DB:22:96:E3 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/PtAehugq5lD9RVX3ZK2aJNsiluM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.160.2.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:8c:e6:8d:2f:8b:a9:09:7b:aa:19:46:36:57:fd:41:51:84: fb:94:f5:1b:3f:c9:e3:0a:9b:f4:b6:1a:96:1f:d6:a2:3e:a3: 52:f9:88:0c:0d:45:c0:a8:e4:77:19:f8:c9:45:80:21:89:c6: 46:70:97:aa:16:d5:c0:63:52:8e:46:a7:4a:d4:44:d3:76:7b: 3e:74:7d:1e:4c:f4:34:c1:52:56:fb:6e:90:5f:48:13:a0:06: 06:ab:92:7a:41:78:14:24:94:a5:f6:7b:44:dd:29:8c:56:9f: 8c:93:83:bf:1b:0c:af:7c:9e:58:39:ef:86:09:8e:df:98:94: 5f:02:64:b5:ae:e6:cd:c9:f7:ff:ed:d0:03:c1:e9:b2:61:21: 15:2e:c2:ab:33:38:e9:5a:48:fd:6d:70:82:ac:19:0c:83:68: cb:56:0b:aa:22:b5:55:63:27:46:8c:7b:28:eb:05:d3:ba:0f: 98:57:93:1e:27:22:1f:da:3a:b6:e1:64:2d:02:b8:b8:b1:b5: ff:ea:82:d5:b1:fd:77:d3:9e:ec:0e:f0:72:73:86:5a:2b:d6: b6:45:61:d9:c1:65:a4:3f:ed:38:a5:eb:52:d1:38:c5:c0:4b: 11:35:e0:32:ff:6b:0a:f5:48:f6:ce:16:ab:bc:ed:b3:0c:1f: 57:52:ef:8c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICB/swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzA3MTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDNFRDAxRTg2RTgyQUU2 NTBGRDQ1NTVGNzY0QUQ5QTI0REIyMjk2RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr16FHY8RNP7Ai6SYR8BSyVIlU8KFIjHt6a1GRZZ34vG3ATiLq SB9AzTGrBt3ZgKa0amsZuCMzuHRjrYRrcER8hGtPK+aG3zMGfTb9scsGtB02b5jl w+31nnD/f1bhEDxObxOmcSF2SlfHevBBYLMlAUmEkmJAWQcKsz0SvyW2yxnEIbA7 Io3Dpk243PK0J4wtMGWzO84a7nvBvUJr07cannzXgVp0oNpbWp1DJnI39XNZt2Jq n+lMJ5IGiHfXBCMsfFwtoTV4t2XorlKiuu/fMAYJH+MHYRcLuJBT6GR+9mQDvGxV +axTGqKDcCTR9BwARdWdnfPtOb4IZzDcdeI7AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUPtAehugq5lD9RVX3ZK2aJNsiluMwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9QdEFlaHVncTVsRDlSVlgz WksyYUpOc2lsdU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB 36ACMA0GCSqGSIb3DQEBCwUAA4IBAQCLjOaNL4upCXuqGUY2V/1BUYT7lPUbP8nj Cpv0thqWH9aiPqNS+YgMDUXAqOR3GfjJRYAhicZGcJeqFtXAY1KORqdK1ETTdns+ dH0eTPQ0wVJW+26QX0gToAYGq5J6QXgUJJSl9ntE3SmMVp+Mk4O/GwyvfJ5YOe+G CY7fmJRfAmS1rubNyff/7dADwemyYSEVLsKrMzjpWkj9bXCCrBkMg2jLVguqIrVV YydGjHso6wXTug+YV5MeJyIf2jq24WQtAri4sbX/6oLVsf13057sDvByc4ZaK9a2 RWHZwWWkP+04petS0TjFwEsRNeAy/2sK9Uj2zharvO2zDB9XUu+M -----END CERTIFICATE-----Generated at Wed Jun 4 01:12:16 2025 by rpki-client