$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/SNPK8LzBegX4fwXiSroLDsyJwko.roa File: SNPK8LzBegX4fwXiSroLDsyJwko.roa (raw, json) Hash identifier: eWnkM/pBfpEwJHZlz6csiwaagMG+lr+O4TCiKxQe4Nw= Subject key identifier: 48:D3:CA:F0:BC:C1:7A:05:F8:7F:05:E2:4A:BA:0B:0E:CC:89:C2:4A Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 1286 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/SNPK8LzBegX4fwXiSroLDsyJwko.roa Signing time: Thu 22 May 2025 16:50:48 +0000 ROA not before: Thu 22 May 2025 16:50:48 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4742 (0x1286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: May 22 16:50:48 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=48D3CAF0BCC17A05F87F05E24ABA0B0ECC89C24A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:af:bf:88:bc:12:b0:92:a6:ae:25:1c:9e: ff:30:be:46:c7:0c:02:42:11:e3:63:48:46:20:13: e6:88:7c:d5:c8:58:d7:80:07:04:82:8d:d1:b0:d3: 1d:b8:e7:a9:cf:e3:a8:c5:2f:a9:7c:db:b4:49:b3: 98:86:e1:0f:d7:65:42:a0:b1:01:c7:e5:8c:69:16: 29:9c:7b:96:7c:d7:94:b8:b8:51:5f:b1:3f:68:5d: 19:fa:15:f0:7e:87:1b:06:27:ce:1b:ce:30:59:67: 53:99:00:63:c2:82:a3:3a:88:45:66:85:83:d8:20: cc:09:fd:70:4c:fb:a5:aa:56:d4:51:36:45:d2:ce: dc:3e:a8:fe:94:78:63:94:05:2f:d0:bd:74:5c:26: e3:ba:2b:47:d1:46:90:d3:e6:ee:f7:fd:2f:29:2f: c5:64:e3:e1:5c:dc:b4:44:01:df:e3:5e:07:ac:62: 9a:c5:09:15:50:22:c6:da:00:38:9c:60:03:3d:6d: 0f:de:a6:99:49:a3:ac:22:76:b7:d5:bc:c9:48:94: 73:ca:70:96:3b:fd:c4:2b:7e:5b:1f:a6:6c:0d:30: 31:6a:03:59:dd:3e:b1:82:0b:e6:f5:35:31:b5:d9: 68:f3:cd:1d:eb:47:61:16:0f:c8:07:b1:df:6c:21: 4c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D3:CA:F0:BC:C1:7A:05:F8:7F:05:E2:4A:BA:0B:0E:CC:89:C2:4A X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/SNPK8LzBegX4fwXiSroLDsyJwko.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.112.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:44:3b:16:b4:87:66:7c:68:ae:24:c8:93:d8:ed:e0:ac:da: 68:5c:b8:0f:8f:da:1a:7b:08:53:df:7e:33:f0:10:b7:20:1e: 41:2d:03:15:16:7f:ca:87:30:ff:40:f8:02:d7:6a:b2:9e:41: b1:54:cd:57:a1:7f:20:d9:d2:f5:03:64:2e:60:1b:59:55:e2: cb:c0:77:32:99:f2:4a:32:2d:af:1d:64:c3:2a:52:37:af:b7: aa:0f:ce:e8:ed:7c:94:7d:ea:ef:e0:8d:d4:53:d1:8f:db:c2: fb:14:ba:8f:8e:29:66:91:32:a0:87:69:21:cd:e1:17:0a:fc: cd:4a:73:6d:d5:c2:79:fe:dc:4e:51:a8:3b:ec:f5:ab:d2:e4: 29:57:0c:e6:b8:08:c3:75:ba:ed:30:bd:e4:1b:43:f8:ca:64: 8e:18:8b:0e:91:36:81:5b:fa:b6:84:b5:39:59:57:8b:06:4e: ae:ae:17:04:24:f5:93:cc:f1:ef:c1:80:d3:f0:67:cd:a3:e5: cf:72:5a:d3:56:8f:23:57:ec:d6:ab:b4:f2:55:b0:33:b8:d4: 77:cc:80:b5:24:92:1f:88:fe:05:c7:b8:e5:03:6c:d9:ce:93: f1:22:f4:7e:8c:6b:cc:90:b2:a4:3f:65:e0:da:8c:63:3b:16: 64:fc:40:33 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA1MjIx NjUwNDhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ4RDNDQUYwQkNDMTdB MDVGODdGMDVFMjRBQkEwQjBFQ0M4OUMyNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDea+/iLwSsJKmriUcnv8wvkbHDAJCEeNjSEYgE+aIfNXIWNeA BwSCjdGw0x2456nP46jFL6l827RJs5iG4Q/XZUKgsQHH5YxpFimce5Z815S4uFFf sT9oXRn6FfB+hxsGJ84bzjBZZ1OZAGPCgqM6iEVmhYPYIMwJ/XBM+6WqVtRRNkXS ztw+qP6UeGOUBS/QvXRcJuO6K0fRRpDT5u73/S8pL8Vk4+Fc3LREAd/jXgesYprF CRVQIsbaADicYAM9bQ/epplJo6widrfVvMlIlHPKcJY7/cQrflsfpmwNMDFqA1nd PrGCC+b1NTG12WjzzR3rR2EWD8gHsd9sIUx1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSNPK8LzBegX4fwXiSroLDsyJwkowHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL1NOUEs4THpCZWdYNGZ3 WGlTcm9MRHN5Sndrby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6HAwDQYJKoZIhvcNAQELBQADggEBAH9EOxa0h2Z8aK4kyJPY7eCs2mhcuA+P 2hp7CFPffjPwELcgHkEtAxUWf8qHMP9A+ALXarKeQbFUzVehfyDZ0vUDZC5gG1lV 4svAdzKZ8koyLa8dZMMqUjevt6oPzujtfJR96u/gjdRT0Y/bwvsUuo+OKWaRMqCH aSHN4RcK/M1Kc23Vwnn+3E5RqDvs9avS5ClXDOa4CMN1uu0wveQbQ/jKZI4Yiw6R NoFb+raEtTlZV4sGTq6uFwQk9ZPM8e/BgNPwZ82j5c9yWtNWjyNX7NartPJVsDO4 1HfMgLUkkh+I/gXHuOUDbNnOk/Ei9H6Ma8yQsqQ/ZeDajGM7FmT8QDM= -----END CERTIFICATE-----Generated at Wed Jun 4 01:30:38 2025 by rpki-client