$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/Tg1mYnFaz8os8C8jkG1gWH9lqlw.roa File: Tg1mYnFaz8os8C8jkG1gWH9lqlw.roa (raw, json) Hash identifier: /UvCMsEIe4t/kIPhmiIDE9Qdg0bfzi5KNwBIYjZCFBg= Subject key identifier: 4E:0D:66:62:71:5A:CF:CA:2C:F0:2F:23:90:6D:60:58:7F:65:AA:5C Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 1075 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/Tg1mYnFaz8os8C8jkG1gWH9lqlw.roa Signing time: Thu 20 Feb 2025 05:06:52 +0000 ROA not before: Thu 20 Feb 2025 05:06:52 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 62387 IP address blocks: 101.232.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4213 (0x1075) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Feb 20 05:06:52 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=4E0D6662715ACFCA2CF02F23906D60587F65AA5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ce:5d:40:b0:cc:68:3e:ac:77:4f:59:5c:12: c5:bf:08:da:a9:e3:e2:77:7e:f6:78:c9:0f:03:9a: 73:76:3c:ea:bd:b3:8a:2b:9a:03:ce:da:79:e9:d6: 31:2d:6e:4c:51:0a:55:2c:dc:74:ab:98:30:32:68: 7a:6a:49:35:1f:d6:5b:21:2f:56:87:50:3c:83:1c: de:63:05:90:7f:29:9f:99:a1:ca:e6:cc:95:7e:17: 23:e1:a9:82:05:98:fd:6e:de:ac:1b:f5:18:0f:e1: c7:6b:fa:49:a0:20:60:7d:37:ed:9f:31:11:ad:4c: d1:9c:4b:51:6e:58:8b:10:d5:89:bd:d8:0e:d3:cc: 5f:72:ad:ed:7a:63:6e:dc:9d:a3:7b:09:6c:e7:71: 06:94:19:bc:52:40:cf:5a:3e:7b:fd:61:f7:82:40: e9:8f:44:f8:45:67:69:43:10:4d:1d:31:26:5d:0e: 7d:11:78:d5:f7:44:5e:a9:f2:0d:9c:ba:f1:93:ab: 27:32:58:b9:25:96:7c:31:9b:f2:58:26:bf:78:50: 97:3a:5f:a1:8b:88:3d:47:a2:65:88:6f:b7:00:b0: 91:21:7b:5e:10:81:07:ca:56:a5:59:8e:17:f1:b0: a4:4d:de:50:62:50:bc:58:ba:40:14:50:b6:10:46: 03:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0D:66:62:71:5A:CF:CA:2C:F0:2F:23:90:6D:60:58:7F:65:AA:5C X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/Tg1mYnFaz8os8C8jkG1gWH9lqlw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.36.0/22 Signature Algorithm: sha256WithRSAEncryption 80:f1:35:a7:8d:ed:e5:30:ae:ba:a2:fb:36:36:ba:a7:b3:46: 9d:33:3c:a4:f2:36:20:28:58:de:27:8c:f5:df:28:44:fe:d3: c7:38:eb:5d:31:84:a3:da:34:ac:f2:d3:34:04:8d:20:d0:e1: 12:35:2d:97:cc:e7:36:53:c8:d4:0a:2e:69:f8:a4:f2:98:5a: b8:27:11:7c:87:d3:0d:d2:09:49:71:9a:4c:5c:40:02:d0:d5: 34:bd:a4:44:14:0a:29:48:09:59:48:90:04:15:cb:ee:36:8d: fa:99:10:69:af:55:f2:2c:f2:7d:8b:16:fd:ac:17:47:fd:80: f6:c2:87:ed:60:15:4f:6b:57:43:10:81:07:3f:ce:30:a9:81: 7b:29:1f:ed:4d:ad:b9:b1:a1:79:24:fa:31:97:51:33:f0:4a: 35:52:72:9d:bd:db:52:bc:12:2b:10:3d:6d:6a:cb:f6:94:75: 4c:d7:8e:2d:a9:55:24:63:c1:18:dd:32:03:3c:64:2e:bf:00: b3:0b:21:53:f8:8b:f9:60:2e:4e:8c:6f:36:23:a1:83:8c:77: 77:97:c3:c4:73:6e:aa:04:3e:c3:d2:74:ec:f4:0f:a1:de:22: ae:60:27:00:36:a8:eb:17:a7:26:6c:41:0c:10:a8:f8:0d:72: f5:7e:0c:7b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTAyMjAw NTA2NTJaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDRFMEQ2NjYyNzE1QUNG Q0EyQ0YwMkYyMzkwNkQ2MDU4N0Y2NUFBNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSzl1AsMxoPqx3T1lcEsW/CNqp4+J3fvZ4yQ8DmnN2POq9s4or mgPO2nnp1jEtbkxRClUs3HSrmDAyaHpqSTUf1lshL1aHUDyDHN5jBZB/KZ+Zocrm zJV+FyPhqYIFmP1u3qwb9RgP4cdr+kmgIGB9N+2fMRGtTNGcS1FuWIsQ1Ym92A7T zF9yre16Y27cnaN7CWzncQaUGbxSQM9aPnv9YfeCQOmPRPhFZ2lDEE0dMSZdDn0R eNX3RF6p8g2cuvGTqycyWLkllnwxm/JYJr94UJc6X6GLiD1HomWIb7cAsJEhe14Q gQfKVqVZjhfxsKRN3lBiULxYukAUULYQRgOtAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUTg1mYnFaz8os8C8jkG1gWH9lqlwwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL1RnMW1ZbkZhejhvczhD OGprRzFnV0g5bHFsdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6CQwDQYJKoZIhvcNAQELBQADggEBAIDxNaeN7eUwrrqi+zY2uqezRp0zPKTy NiAoWN4njPXfKET+08c4610xhKPaNKzy0zQEjSDQ4RI1LZfM5zZTyNQKLmn4pPKY WrgnEXyH0w3SCUlxmkxcQALQ1TS9pEQUCilICVlIkAQVy+42jfqZEGmvVfIs8n2L Fv2sF0f9gPbCh+1gFU9rV0MQgQc/zjCpgXspH+1NrbmxoXkk+jGXUTPwSjVScp29 21K8EisQPW1qy/aUdUzXji2pVSRjwRjdMgM8ZC6/ALMLIVP4i/lgLk6MbzYjoYOM d3eXw8RzbqoEPsPSdOz0D6HeIq5gJwA2qOsXpyZsQQwQqPgNcvV+DHs= -----END CERTIFICATE-----Generated at Fri Apr 4 18:40:11 2025 by rpki-client