$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/410/sqdLTk1ERFOZW2V0IoEtm1FO_4c.roa File: sqdLTk1ERFOZW2V0IoEtm1FO_4c.roa (raw, json) Hash identifier: UUHUKHG63jW1/E2jy9yHw/oHOIKfusksh0acXj8djiI= Subject key identifier: B2:A7:4B:4E:4D:44:44:53:99:5B:65:74:22:81:2D:9B:51:4E:FF:87 Certificate issuer: /CN=DEB86EAADEE1C17ECE2A7FF6388526F7A9260D47 Certificate serial: 0EDE Authority key identifier: DE:B8:6E:AA:DE:E1:C1:7E:CE:2A:7F:F6:38:85:26:F7:A9:26:0D:47 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3rhuqt7hwX7OKn_2OIUm96kmDUc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/sqdLTk1ERFOZW2V0IoEtm1FO_4c.roa Signing time: Fri 21 Mar 2025 03:28:55 +0000 ROA not before: Fri 21 Mar 2025 03:28:55 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 4134 IP address blocks: 113.31.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/3rhuqt7hwX7OKn_2OIUm96kmDUc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/3rhuqt7hwX7OKn_2OIUm96kmDUc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3rhuqt7hwX7OKn_2OIUm96kmDUc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3806 (0xede) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEB86EAADEE1C17ECE2A7FF6388526F7A9260D47 Validity Not Before: Mar 21 03:28:55 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=B2A74B4E4D444453995B657422812D9B514EFF87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e6:46:6a:cb:3b:42:ad:28:36:f7:e0:58:07: da:3b:e3:1a:60:d2:6c:54:d2:48:4c:14:74:5d:63: 42:b0:53:1a:ed:db:1d:1c:d2:45:54:14:00:b7:89: d7:fc:91:e8:1b:b5:62:db:04:53:19:6c:73:bc:7b: 1d:10:03:b4:31:27:d9:f0:cc:a8:41:56:75:80:89: 08:bb:31:46:bd:e4:3c:98:ab:66:cb:13:3a:98:e9: 3b:c3:b6:16:b7:42:d8:c2:e3:2d:a5:fc:dc:74:84: 9f:83:56:f6:81:42:8e:f7:c3:ea:79:7d:6b:55:a5: ac:9f:95:40:02:6a:cc:67:11:eb:51:56:5f:77:1e: 2c:9a:44:78:b5:29:bb:35:dd:7c:49:30:7d:71:09: fd:95:41:fa:48:b6:ec:30:34:d5:75:31:0f:bd:46: 35:95:06:fc:29:06:4b:cc:2c:8c:3e:ea:fc:5d:aa: ca:55:8f:eb:ba:15:c8:84:52:68:a9:78:1a:29:53: 6f:3e:29:bd:1f:ac:6e:23:a8:a7:e8:57:5c:f9:16: 9e:83:23:b7:3b:40:f9:98:da:29:52:03:a1:86:55: 1f:2e:7f:a6:fd:53:a7:70:f7:7c:e1:d1:1d:90:23: 54:d3:56:9f:5f:5c:46:07:4f:f6:14:3e:ef:39:ef: 99:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:A7:4B:4E:4D:44:44:53:99:5B:65:74:22:81:2D:9B:51:4E:FF:87 X509v3 Authority Key Identifier: keyid:DE:B8:6E:AA:DE:E1:C1:7E:CE:2A:7F:F6:38:85:26:F7:A9:26:0D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/3rhuqt7hwX7OKn_2OIUm96kmDUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3rhuqt7hwX7OKn_2OIUm96kmDUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/410/sqdLTk1ERFOZW2V0IoEtm1FO_4c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.80.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:14:78:f4:f4:c9:74:93:33:91:3e:b4:16:b3:3d:54:5f:24: 82:33:ad:da:a7:b3:ad:25:74:a7:a8:38:65:9d:94:67:59:13: 40:27:75:fa:0f:8f:bd:8d:f4:43:6d:32:61:1c:44:ab:1b:45: f0:15:12:36:55:1b:8e:c0:3d:62:98:7a:6d:3e:f1:a4:23:23: 55:95:ac:58:eb:7e:b5:48:5f:c1:03:f8:59:fe:6e:24:20:0b: 1b:b0:39:8e:b7:f8:1c:d7:d3:4b:7a:a9:6c:7a:a7:2b:5d:1f: 00:5e:cc:c5:67:58:51:17:a0:af:38:85:db:9a:ee:9e:dc:63: ce:a3:7b:5d:8d:d1:10:c2:4f:4d:05:28:6e:71:4c:09:e4:91: 76:43:79:76:e0:cd:34:43:20:b5:d3:05:7e:8c:37:04:13:95: a3:d2:1f:41:9f:80:23:4b:e6:6f:eb:04:a7:4c:54:51:e2:37: 5d:9d:9f:41:f6:ae:52:fb:6c:54:90:4d:d9:cc:a5:b8:03:8b: f7:5f:4a:3e:ba:a2:58:69:04:1a:b9:9b:a4:bf:93:7a:d8:5b: 64:a0:05:61:f1:75:96:52:63:4f:63:5c:03:02:74:90:d3:47: e6:d6:f3:93:ec:a3:ca:a9:c8:d9:8e:08:52:3e:89:61:83:95: a3:ce:8a:bc -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVC ODZFQUFERUUxQzE3RUNFMkE3RkY2Mzg4NTI2RjdBOTI2MEQ0NzAeFw0yNTAzMjEw MzI4NTVaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEIyQTc0QjRFNEQ0NDQ0 NTM5OTVCNjU3NDIyODEyRDlCNTE0RUZGODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm5kZqyztCrSg29+BYB9o74xpg0mxU0khMFHRdY0KwUxrt2x0c 0kVUFAC3idf8kegbtWLbBFMZbHO8ex0QA7QxJ9nwzKhBVnWAiQi7MUa95DyYq2bL EzqY6TvDtha3QtjC4y2l/Nx0hJ+DVvaBQo73w+p5fWtVpayflUACasxnEetRVl93 HiyaRHi1Kbs13XxJMH1xCf2VQfpItuwwNNV1MQ+9RjWVBvwpBkvMLIw+6vxdqspV j+u6FciEUmipeBopU28+Kb0frG4jqKfoV1z5Fp6DI7c7QPmY2ilSA6GGVR8uf6b9 U6dw93zh0R2QI1TTVp9fXEYHT/YUPu8575k7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUsqdLTk1ERFOZW2V0IoEtm1FO/4cwHwYDVR0jBBgwFoAU3rhuqt7hwX7OKn/2 OIUm96kmDUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEw LzNyaHVxdDdod1g3T0tuXzJPSVVtOTZrbURVYy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvM3JodXF0N2h3WDdPS25fMk9JVW05NmttRFVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEwL3NxZExUazFFUkZPWlcy VjBJb0V0bTFGT180Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BANxH1AwDQYJKoZIhvcNAQELBQADggEBAI8UePT0yXSTM5E+tBazPVRfJIIzrdqn s60ldKeoOGWdlGdZE0AndfoPj72N9ENtMmEcRKsbRfAVEjZVG47APWKYem0+8aQj I1WVrFjrfrVIX8ED+Fn+biQgCxuwOY63+BzX00t6qWx6pytdHwBezMVnWFEXoK84 hdua7p7cY86je12N0RDCT00FKG5xTAnkkXZDeXbgzTRDILXTBX6MNwQTlaPSH0Gf gCNL5m/rBKdMVFHiN12dn0H2rlL7bFSQTdnMpbgDi/dfSj66olhpBBq5m6S/k3rY W2SgBWHxdZZSY09jXAMCdJDTR+bW85Pso8qpyNmOCFI+iWGDlaPOirw= -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:57 2025 by rpki-client