$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/i5wd6c0g9vBwU91QMiswTvWPC7E.roa File: i5wd6c0g9vBwU91QMiswTvWPC7E.roa (raw, json) Hash identifier: waScIZi5Mwqt6ZYyw+6PgFzERAi1TWAyAMMtSDA3JoY= Subject key identifier: 8B:9C:1D:E9:CD:20:F6:F0:70:53:DD:50:32:2B:30:4E:F5:8F:0B:B1 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 0820 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/i5wd6c0g9vBwU91QMiswTvWPC7E.roa Signing time: Fri 23 May 2025 07:36:31 +0000 ROA not before: Fri 23 May 2025 07:36:31 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 9808 IP address blocks: 223.161.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: May 23 07:36:31 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=8B9C1DE9CD20F6F07053DD50322B304EF58F0BB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:b5:15:12:d2:5c:18:71:d7:2b:ba:b0:ac: aa:48:e9:94:a5:fb:bd:3a:bf:39:b3:86:7d:23:4f: 72:d5:c9:b8:5d:d1:1c:93:e0:c3:15:e1:cc:34:83: 7d:fe:46:be:87:27:b1:bb:2b:59:29:56:a3:75:b8: a0:9a:7f:41:10:f7:7b:1f:de:52:c0:84:2d:58:23: 89:86:00:61:4d:56:fe:80:f3:b9:a1:6a:59:6c:c7: e2:c3:8a:76:75:75:76:15:27:bc:ee:06:50:2d:08: 2c:f7:54:19:54:03:e8:db:9e:ad:73:80:40:71:61: ce:db:fb:6e:48:2f:ce:2c:fe:e1:cb:cd:bb:ed:14: e9:e8:ba:72:bc:ec:57:c1:ea:1e:fb:d0:29:d4:56: d2:9c:72:02:e9:42:b8:b9:49:9a:c8:d0:97:9d:95: 67:04:7c:66:46:1b:ea:9c:25:06:4e:7d:5b:8d:02: be:12:97:f5:53:6c:0e:bb:6c:8b:90:41:43:5d:c4: a1:4f:d4:22:79:83:5e:50:e2:87:69:ea:a6:f1:aa: 9e:f0:29:23:1c:29:4c:a4:99:4d:43:95:18:34:77: dc:e6:25:b5:71:b0:73:7f:3d:d1:16:3e:d1:7a:6b: 07:a0:7c:f9:fc:35:ff:88:7f:12:3b:1c:2d:4b:df: 3a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:9C:1D:E9:CD:20:F6:F0:70:53:DD:50:32:2B:30:4E:F5:8F:0B:B1 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/i5wd6c0g9vBwU91QMiswTvWPC7E.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.161.228.0/22 Signature Algorithm: sha256WithRSAEncryption 68:cf:96:89:bb:6f:1b:97:2c:fb:c7:d8:5a:fb:66:75:d6:bb: d9:e3:6b:e1:d4:ed:bf:e4:75:70:e2:55:b1:6e:9d:c7:0f:9b: c0:aa:43:f0:77:09:34:2a:ca:97:a3:a0:30:eb:63:9e:21:c2: 42:d4:2d:a9:d2:bc:61:31:f1:6f:75:4f:79:ea:f8:57:65:27: 9e:f1:bb:6a:bf:18:2f:bc:c5:61:a3:e3:b4:fb:61:1b:30:8d: d4:9f:c2:5b:19:33:7e:5d:5b:4f:cf:e8:6a:ff:8f:34:e7:7e: b6:30:7a:da:ee:21:23:f7:0d:57:b2:6b:0b:79:d9:70:5c:6d: 9b:3a:e6:ab:c9:68:dc:be:0b:e7:66:92:7d:a0:b6:b8:f2:8c: e1:08:da:19:98:b6:30:10:b3:33:47:db:2e:c0:07:f7:70:6e: c4:ac:ea:61:8a:49:08:a1:55:ae:23:22:8b:28:f8:31:a5:00: 88:16:4f:34:6c:15:fd:a8:1d:60:13:82:75:12:27:a5:57:11: fb:4c:dd:80:27:77:e9:9b:09:29:6b:70:6a:ce:67:cf:a3:d5: 13:4c:26:15:f8:bb:73:de:eb:e0:10:af:3e:15:81:23:45:8e: 6f:bb:d8:08:f4:39:63:96:c5:fe:2d:07:e6:5b:30:fb:e2:11: 09:6b:1f:21 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA1MjMw NzM2MzFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDhCOUMxREU5Q0QyMEY2 RjA3MDUzREQ1MDMyMkIzMDRFRjU4RjBCQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK+7UVEtJcGHHXK7qwrKpI6ZSl+706vzmzhn0jT3LVybhd0RyT 4MMV4cw0g33+Rr6HJ7G7K1kpVqN1uKCaf0EQ93sf3lLAhC1YI4mGAGFNVv6A87mh allsx+LDinZ1dXYVJ7zuBlAtCCz3VBlUA+jbnq1zgEBxYc7b+25IL84s/uHLzbvt FOnounK87FfB6h770CnUVtKccgLpQri5SZrI0JedlWcEfGZGG+qcJQZOfVuNAr4S l/VTbA67bIuQQUNdxKFP1CJ5g15Q4odp6qbxqp7wKSMcKUykmU1DlRg0d9zmJbVx sHN/PdEWPtF6awegfPn8Nf+IfxI7HC1L3zo1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUi5wd6c0g9vBwU91QMiswTvWPC7EwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9pNXdkNmMwZzl2QndVOTFR TWlzd1R2V1BDN0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC 36HkMA0GCSqGSIb3DQEBCwUAA4IBAQBoz5aJu28blyz7x9ha+2Z11rvZ42vh1O2/ 5HVw4lWxbp3HD5vAqkPwdwk0KsqXo6Aw62OeIcJC1C2p0rxhMfFvdU956vhXZSee 8btqvxgvvMVho+O0+2EbMI3Un8JbGTN+XVtPz+hq/4805362MHra7iEj9w1XsmsL edlwXG2bOuaryWjcvgvnZpJ9oLa48ozhCNoZmLYwELMzR9suwAf3cG7ErOphikkI oVWuIyKLKPgxpQCIFk80bBX9qB1gE4J1EielVxH7TN2AJ3fpmwkpa3BqzmfPo9UT TCYV+Ltz3uvgEK8+FYEjRY5vu9gI9DljlsX+LQfmWzD74hEJax8h -----END CERTIFICATE-----Generated at Wed Jun 4 00:57:27 2025 by rpki-client