$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/bEYTVtV_m4saFZZqEteBjDVnoFM.roa File: bEYTVtV_m4saFZZqEteBjDVnoFM.roa (raw, json) Hash identifier: 0+xrDBDGUVVRb7a2DwapVaa2YTVgLsGFtPLe6S1rhYA= Subject key identifier: 6C:46:13:56:D5:7F:9B:8B:1A:15:96:6A:12:D7:81:8C:35:67:A0:53 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 0803 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/bEYTVtV_m4saFZZqEteBjDVnoFM.roa Signing time: Fri 23 May 2025 07:07:21 +0000 ROA not before: Fri 23 May 2025 07:07:21 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 9808 IP address blocks: 223.160.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:07:21 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=6C461356D57F9B8B1A15966A12D7818C3567A053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7f:14:4b:b5:f2:e1:da:10:bc:4f:c0:f4:bd: 34:90:93:c4:e0:c9:a6:53:43:08:82:72:f0:d8:4d: 60:8e:46:31:b2:8f:74:82:9d:86:39:7d:97:35:dd: ce:0f:5f:a7:45:2b:11:31:d9:ac:2d:0c:84:75:a1: fe:5c:d3:0f:51:81:07:55:39:21:0e:e7:34:e9:7e: c5:2b:8e:1e:1f:5b:99:7d:0e:41:2d:5b:38:6e:03: 91:76:66:2b:aa:e7:ec:05:e1:b8:43:40:ca:ff:28: 95:9c:1f:4d:ce:81:b1:cd:71:01:8c:9d:00:6f:49: 90:4f:0d:c5:ea:9f:9d:b1:27:ed:ad:f8:5a:ec:44: 28:46:5f:83:73:88:cd:21:f6:4b:0e:39:ba:2e:53: 28:e7:f2:03:53:0e:5f:d1:be:22:59:7e:94:36:0b: f7:6e:76:bb:82:03:13:a4:d1:bc:80:e8:56:b9:04: 4d:a4:2c:b7:a6:54:cc:14:fb:ab:1d:d0:3b:9b:9c: 89:d3:8a:d6:65:4a:c6:f5:69:94:bf:6e:7e:68:4e: 23:35:eb:5e:23:30:7f:77:c8:92:fc:d6:69:ba:33: 07:26:15:ce:d7:db:66:3c:52:a6:9e:94:0d:e9:66: 81:e7:74:d6:49:03:0b:0c:bb:6d:5c:b2:05:a0:cc: 28:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:46:13:56:D5:7F:9B:8B:1A:15:96:6A:12:D7:81:8C:35:67:A0:53 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/bEYTVtV_m4saFZZqEteBjDVnoFM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.160.6.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:e2:1d:db:a9:68:08:57:17:71:5b:fc:1b:92:45:e9:7a:d5: 27:a8:b7:dd:ea:13:c6:db:42:e0:ee:ea:0f:01:e9:7d:5e:dc: d3:53:67:2b:60:86:df:57:ff:be:43:57:00:42:ee:ed:22:31: 4d:ef:8d:c1:da:df:7f:87:79:5e:f3:0d:54:b1:60:7f:7e:c4: 08:98:5e:00:4e:d6:92:a5:20:0e:59:59:27:74:40:ea:00:f8: 3e:5f:dc:85:63:43:1d:4f:e1:0c:e4:37:a7:f5:b5:5c:6e:ce: f3:64:fe:d4:9d:8c:34:fd:b0:c9:8f:7f:b7:da:94:e4:1a:6b: 09:8d:25:04:d2:1f:e7:45:96:f4:92:97:00:de:e9:ac:7a:22: d7:56:12:41:53:c8:45:33:63:34:bb:f2:40:9e:f0:7c:ae:56: 19:d0:b4:21:fb:0f:c8:45:3a:79:cd:a3:bf:66:41:77:8a:af: 2d:e3:cf:28:ef:54:ed:fe:48:81:23:26:bb:c0:fc:66:49:61: a9:35:d1:0a:ea:0e:a7:9a:07:01:2f:20:43:1f:62:a5:7a:c6: 6a:f5:ec:d3:cd:59:6e:a2:1d:1e:89:ff:c9:6f:b7:ed:38:ad: 6c:2a:1a:a5:93:a6:a2:24:9e:b6:7c:3a:1b:c4:d7:21:5e:ba: f1:21:76:d2 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzA3MjFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDZDNDYxMzU2RDU3RjlC OEIxQTE1OTY2QTEyRDc4MThDMzU2N0EwNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyfxRLtfLh2hC8T8D0vTSQk8TgyaZTQwiCcvDYTWCORjGyj3SC nYY5fZc13c4PX6dFKxEx2awtDIR1of5c0w9RgQdVOSEO5zTpfsUrjh4fW5l9DkEt WzhuA5F2Ziuq5+wF4bhDQMr/KJWcH03OgbHNcQGMnQBvSZBPDcXqn52xJ+2t+Frs RChGX4NziM0h9ksOObouUyjn8gNTDl/RviJZfpQ2C/dudruCAxOk0byA6Fa5BE2k LLemVMwU+6sd0DubnInTitZlSsb1aZS/bn5oTiM1614jMH93yJL81mm6MwcmFc7X 22Y8UqaelA3pZoHndNZJAwsMu21csgWgzCiNAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUbEYTVtV/m4saFZZqEteBjDVnoFMwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9iRVlUVnRWX200c2FGWlpx RXRlQmpEVm5vRk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB 36AGMA0GCSqGSIb3DQEBCwUAA4IBAQA64h3bqWgIVxdxW/wbkkXpetUnqLfd6hPG 20Lg7uoPAel9XtzTU2crYIbfV/++Q1cAQu7tIjFN743B2t9/h3le8w1UsWB/fsQI mF4ATtaSpSAOWVkndEDqAPg+X9yFY0MdT+EM5Den9bVcbs7zZP7UnYw0/bDJj3+3 2pTkGmsJjSUE0h/nRZb0kpcA3umseiLXVhJBU8hFM2M0u/JAnvB8rlYZ0LQh+w/I RTp5zaO/ZkF3iq8t488o71Tt/kiBIya7wPxmSWGpNdEK6g6nmgcBLyBDH2KlesZq 9ezTzVluoh0eif/Jb7ftOK1sKhqlk6aiJJ62fDobxNchXrrxIXbS -----END CERTIFICATE-----Generated at Wed Jun 4 00:58:16 2025 by rpki-client