$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/Wg_PiX4he99YdJyVCFY196ZFi6M.roa File: Wg_PiX4he99YdJyVCFY196ZFi6M.roa (raw, json) Hash identifier: EXXZpBLRwb779FiYQx6IG+qopB4hoNsRvvvMyk5AG7c= Subject key identifier: 5A:0F:CF:89:7E:21:7B:DF:58:74:9C:95:08:56:35:F7:A6:45:8B:A3 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 0807 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/Wg_PiX4he99YdJyVCFY196ZFi6M.roa Signing time: Fri 23 May 2025 07:17:19 +0000 ROA not before: Fri 23 May 2025 07:17:19 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24400 IP address blocks: 223.160.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2055 (0x807) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:17:19 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=5A0FCF897E217BDF58749C95085635F7A6458BA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:41:8d:2b:32:f1:4e:06:75:bc:e2:01:24:07: 5a:0f:f4:68:d2:61:e5:f8:60:dd:84:b7:69:de:37: 3e:da:1b:5c:d8:ab:11:1a:f1:21:83:8e:2b:73:a9: 0f:77:97:ef:74:35:dd:50:29:82:d4:02:0d:d9:49: da:9c:c6:fc:1a:c8:6b:ed:28:25:45:5c:ff:b7:43: f0:0d:49:99:1b:f8:0e:e8:fe:91:7a:08:a4:d5:6b: 86:3c:49:f7:5a:b2:32:09:65:64:a9:e5:d3:2e:13: 03:a8:ba:90:6f:d4:f8:30:92:a7:0e:d1:06:cf:5e: e3:e8:82:ea:15:30:c2:4b:b8:85:29:48:68:24:d4: 08:d3:b7:bc:64:96:66:50:90:6a:00:77:42:e6:c9: 71:50:dc:af:2a:99:e2:47:63:50:4f:6c:9b:f9:6b: 80:c2:b8:9c:ae:75:01:73:74:b6:2b:4c:f2:29:75: 62:09:dd:5f:8a:89:5f:5d:a8:91:44:dc:fa:a5:30: 59:5b:22:f7:fb:05:99:a9:f1:a5:15:38:c8:37:2d: 99:61:b4:23:e0:a9:97:73:c8:1e:1f:74:ee:12:b0: ad:66:ac:f9:a1:a3:ee:56:e5:dd:b2:b2:7c:88:55: c7:2f:9e:1b:80:77:64:e5:1f:2d:32:f3:f0:fd:9e: 97:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0F:CF:89:7E:21:7B:DF:58:74:9C:95:08:56:35:F7:A6:45:8B:A3 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/Wg_PiX4he99YdJyVCFY196ZFi6M.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.160.206.0/23 Signature Algorithm: sha256WithRSAEncryption 10:f7:61:81:00:da:07:08:87:e0:64:1d:b3:75:d5:4c:21:f9: 54:f6:a7:8b:a4:d2:19:5b:e5:90:89:9b:96:55:74:77:f0:de: a4:8e:2a:ed:b1:02:63:7c:8f:31:2a:ee:64:8d:19:04:04:91: e3:c0:aa:a1:77:e6:69:56:53:9b:5b:15:c8:79:5c:d0:bf:5d: fe:9b:b0:4c:60:9b:41:a2:e3:b2:4b:bc:af:79:10:91:0b:b8: 82:ce:e5:1c:07:c2:e8:8c:19:0c:e9:b3:66:5e:24:4f:5b:c6: 97:47:74:ae:50:61:1a:4f:75:ce:74:7b:48:f2:30:5f:df:52: 03:f1:74:3f:ac:1b:04:6a:fa:a7:2a:61:36:38:6c:09:3b:63: 16:fe:d8:ba:47:b7:b2:91:5d:72:7a:4b:c5:a9:01:04:d8:93: ed:dc:27:6d:0e:74:95:84:c6:fd:de:f9:51:eb:b1:95:29:f3: ea:f5:ce:70:3e:2d:1e:1d:02:49:df:8c:be:31:04:25:33:34: 2a:c8:4d:8c:84:12:25:bd:3e:4d:2f:9f:43:1c:19:6c:2e:77: cf:73:0c:bd:0f:7b:cf:97:a2:8e:bd:9e:a5:47:52:71:11:88: f7:18:8a:5a:5f:10:a1:1d:fb:42:6f:a6:6d:e9:e3:e5:c0:f1: cd:62:c1:cc -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICCAcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzE3MTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDVBMEZDRjg5N0UyMTdC REY1ODc0OUM5NTA4NTYzNUY3QTY0NThCQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2QY0rMvFOBnW84gEkB1oP9GjSYeX4YN2Et2neNz7aG1zYqxEa 8SGDjitzqQ93l+90Nd1QKYLUAg3ZSdqcxvwayGvtKCVFXP+3Q/ANSZkb+A7o/pF6 CKTVa4Y8SfdasjIJZWSp5dMuEwOoupBv1PgwkqcO0QbPXuPoguoVMMJLuIUpSGgk 1AjTt7xklmZQkGoAd0LmyXFQ3K8qmeJHY1BPbJv5a4DCuJyudQFzdLYrTPIpdWIJ 3V+KiV9dqJFE3PqlMFlbIvf7BZmp8aUVOMg3LZlhtCPgqZdzyB4fdO4SsK1mrPmh o+5W5d2ysnyIVccvnhuAd2TlHy0y8/D9npcPAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUWg/PiX4he99YdJyVCFY196ZFi6MwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9XZ19QaVg0aGU5OVlkSnlW Q0ZZMTk2WkZpNk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB 36DOMA0GCSqGSIb3DQEBCwUAA4IBAQAQ92GBANoHCIfgZB2zddVMIflU9qeLpNIZ W+WQiZuWVXR38N6kjirtsQJjfI8xKu5kjRkEBJHjwKqhd+ZpVlObWxXIeVzQv13+ m7BMYJtBouOyS7yveRCRC7iCzuUcB8LojBkM6bNmXiRPW8aXR3SuUGEaT3XOdHtI 8jBf31ID8XQ/rBsEavqnKmE2OGwJO2MW/ti6R7eykV1yekvFqQEE2JPt3CdtDnSV hMb93vlR67GVKfPq9c5wPi0eHQJJ34y+MQQlMzQqyE2MhBIlvT5NL59DHBlsLnfP cwy9D3vPl6KOvZ6lR1JxEYj3GIpaXxChHftCb6Zt6ePlwPHNYsHM -----END CERTIFICATE-----Generated at Wed Jun 4 00:58:27 2025 by rpki-client