$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/Ruqevz2HoPo2l7toLKseEZNVS7M.roa File: Ruqevz2HoPo2l7toLKseEZNVS7M.roa (raw, json) Hash identifier: qRAPeAn30fNAI4hiHoM6dUALcVjDg+IPt68Q//QdUOM= Subject key identifier: 46:EA:9E:BF:3D:87:A0:FA:36:97:BB:68:2C:AB:1E:11:93:55:4B:B3 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 07F9 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/Ruqevz2HoPo2l7toLKseEZNVS7M.roa Signing time: Fri 23 May 2025 07:07:19 +0000 ROA not before: Fri 23 May 2025 07:07:19 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 56048 IP address blocks: 223.160.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:07:19 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=46EA9EBF3D87A0FA3697BB682CAB1E1193554BB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1f:c2:7b:47:c1:83:7b:a8:bb:f0:71:24:4a: 5d:ad:56:d2:df:cc:9d:68:19:ff:b8:f9:86:f3:20: b2:1c:a6:92:21:02:42:9f:d9:f4:28:1a:9b:48:97: 75:1e:fb:48:42:b9:08:09:f2:f2:55:be:d4:51:74: c3:b8:e5:21:52:67:b1:29:e9:0f:2b:5a:5e:70:80: 02:26:2e:b7:54:e8:5e:08:e2:9b:bd:78:54:87:9d: 4b:a9:79:74:4b:6d:29:32:0c:ed:b7:03:a0:3d:93: 98:fa:74:a3:c2:ff:9e:d3:c3:10:e4:96:eb:e2:7e: fd:a4:87:ae:3b:a0:de:73:38:e0:73:d0:8d:f5:8d: 76:61:57:3b:b3:ff:fb:f6:ab:dc:eb:c6:c7:20:f9: 96:69:e1:50:7f:9d:63:ef:36:87:26:53:65:05:3a: 70:3f:24:10:b4:f1:a8:03:ca:76:fb:9f:fd:ff:b0: ae:63:0a:40:d1:27:03:01:63:c7:84:c7:32:6b:4b: 18:53:24:4a:5a:ed:b0:5d:7f:73:b8:75:83:b2:3e: e6:ef:b0:4a:bc:2e:b7:25:f1:7e:8c:0a:d3:29:f8: 1f:21:6a:27:fb:47:d5:b7:aa:0a:ae:c9:77:74:e7: 35:93:21:f6:ed:d4:4e:96:ae:7e:8b:bb:1d:d0:4d: 66:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EA:9E:BF:3D:87:A0:FA:36:97:BB:68:2C:AB:1E:11:93:55:4B:B3 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/Ruqevz2HoPo2l7toLKseEZNVS7M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.160.8.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:f9:22:5e:80:92:52:59:a8:f7:66:29:85:96:4d:16:b7:f1: c5:b6:90:9e:69:d8:4a:8b:d2:af:2b:3e:44:26:68:d6:d1:75: 77:9b:4d:51:14:aa:8c:6c:13:f5:70:88:bd:3b:33:07:7b:d5: 50:5c:35:40:c2:49:a2:45:0b:4f:4d:94:f1:58:8e:0b:49:a7: 1a:c1:6a:30:2c:71:55:8e:bb:e5:3e:c7:16:f6:07:66:87:e9: f6:f6:d0:6a:46:0c:25:d1:8f:04:50:a9:57:5c:2b:cb:27:99: 0c:83:76:74:6c:40:ec:45:76:d5:20:3d:c0:9a:6f:da:0e:e0: 94:37:27:93:64:96:26:72:c3:28:3f:54:91:9e:1b:a0:3b:90: 25:0f:a2:cb:3f:61:ea:26:ee:01:f9:ce:4b:4d:bb:48:22:ca: 59:6c:93:af:cb:e4:66:1d:32:6e:be:89:58:91:f2:d7:64:db: fe:db:e7:50:1c:f9:3b:78:28:68:3a:d7:91:35:29:41:b5:d6: f8:6b:29:09:f9:60:e4:4c:fd:17:78:ab:f7:53:3e:b5:10:ca: 5e:a9:e4:52:2a:92:0b:5b:4c:15:98:9f:2e:ae:1a:69:a2:f0: 3a:12:6b:a6:bc:c5:f7:93:86:59:27:b0:1b:76:42:6b:86:0d: 4d:19:a5:dd -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzA3MTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ2RUE5RUJGM0Q4N0Ew RkEzNjk3QkI2ODJDQUIxRTExOTM1NTRCQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIH8J7R8GDe6i78HEkSl2tVtLfzJ1oGf+4+YbzILIcppIhAkKf 2fQoGptIl3Ue+0hCuQgJ8vJVvtRRdMO45SFSZ7Ep6Q8rWl5wgAImLrdU6F4I4pu9 eFSHnUupeXRLbSkyDO23A6A9k5j6dKPC/57TwxDkluvifv2kh647oN5zOOBz0I31 jXZhVzuz//v2q9zrxscg+ZZp4VB/nWPvNocmU2UFOnA/JBC08agDynb7n/3/sK5j CkDRJwMBY8eExzJrSxhTJEpa7bBdf3O4dYOyPubvsEq8Lrcl8X6MCtMp+B8haif7 R9W3qgquyXd05zWTIfbt1E6Wrn6Lux3QTWavAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQURuqevz2HoPo2l7toLKseEZNVS7MwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9SdXFldnoySG9QbzJsN3Rv TEtzZUVaTlZTN00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB 36AIMA0GCSqGSIb3DQEBCwUAA4IBAQAc+SJegJJSWaj3ZimFlk0Wt/HFtpCeadhK i9KvKz5EJmjW0XV3m01RFKqMbBP1cIi9OzMHe9VQXDVAwkmiRQtPTZTxWI4LSaca wWowLHFVjrvlPscW9gdmh+n29tBqRgwl0Y8EUKlXXCvLJ5kMg3Z0bEDsRXbVID3A mm/aDuCUNyeTZJYmcsMoP1SRnhugO5AlD6LLP2HqJu4B+c5LTbtIIspZbJOvy+Rm HTJuvolYkfLXZNv+2+dQHPk7eChoOteRNSlBtdb4aykJ+WDkTP0XeKv3Uz61EMpe qeRSKpILW0wVmJ8urhppovA6EmumvMX3k4ZZJ7AbdkJrhg1NGaXd -----END CERTIFICATE-----Generated at Wed Jun 4 01:17:49 2025 by rpki-client