$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/jjLZxMsvc8L8Aget0jeSQZVF2-I.roa File: jjLZxMsvc8L8Aget0jeSQZVF2-I.roa (raw, json) Hash identifier: NMkD6LGhXycPERlesb111FZBG2NmnUMWYAEjkxpZdtk= Subject key identifier: 8E:32:D9:C4:CB:2F:73:C2:FC:02:07:AD:D2:37:92:41:95:45:DB:E2 Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 1112 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/jjLZxMsvc8L8Aget0jeSQZVF2-I.roa Signing time: Tue 18 Mar 2025 10:09:58 +0000 ROA not before: Tue 18 Mar 2025 10:09:58 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 62387 IP address blocks: 101.232.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4370 (0x1112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Mar 18 10:09:58 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=8E32D9C4CB2F73C2FC0207ADD23792419545DBE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8f:97:1b:e6:08:d2:c4:da:6c:12:22:36:19: 76:13:19:71:4c:e5:62:c6:0d:f3:05:f2:97:0e:c4: d4:8f:3d:d7:ef:23:f2:31:c1:82:25:c2:85:e1:04: f1:76:3e:a0:ee:07:45:54:f4:02:51:15:e1:f1:82: e4:6e:9c:75:e3:27:df:19:70:dd:ab:90:1d:da:b4: 1c:86:08:c4:ef:4e:96:3e:58:2f:f3:a0:ba:32:99: c4:73:1c:16:2f:ba:61:e7:30:bb:05:42:34:d9:22: a3:42:3a:6b:e2:03:57:5f:02:cb:ee:f6:a5:1a:26: 96:2d:1a:c7:f1:41:90:f2:6e:0d:f4:e2:6c:ab:5c: e7:3d:e4:b8:d8:f1:1b:79:5b:46:a6:e5:46:eb:86: 3e:15:98:36:85:63:d6:75:e5:e4:23:34:44:b2:e2: c9:9a:8a:89:38:97:64:3e:64:77:98:20:fb:2d:60: 97:18:9d:5a:5c:65:f6:ba:4c:83:40:f2:48:26:44: 35:e6:e0:1c:91:a1:8a:24:52:b0:28:91:49:25:76: 27:c0:7c:67:5d:f2:83:05:47:61:52:c6:6c:2e:11: 83:7f:b7:e7:36:8e:fc:6c:63:8a:bc:8c:d8:69:2c: 38:2e:ff:46:46:88:d3:7c:4a:b8:53:db:eb:6f:3c: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:32:D9:C4:CB:2F:73:C2:FC:02:07:AD:D2:37:92:41:95:45:DB:E2 X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/jjLZxMsvc8L8Aget0jeSQZVF2-I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.52.0/22 Signature Algorithm: sha256WithRSAEncryption bf:37:d5:e4:7a:43:84:0a:77:10:91:b9:02:44:67:da:28:fe: b6:ec:5a:d3:af:72:ec:28:21:e5:dd:92:69:df:0f:5c:3f:20: e5:1e:01:a6:6a:9b:97:16:b8:d2:96:2b:2d:4d:6b:e6:28:89: 84:47:24:f3:dd:73:19:95:49:43:1c:53:76:14:c7:55:c3:62: 56:ae:41:03:69:8f:20:1b:fd:2d:64:dd:b7:a8:df:11:32:95: a3:f8:7a:d6:59:88:b9:66:8a:8f:f1:2d:e0:ed:60:0b:a0:48: 9b:d5:28:a5:7a:56:fa:3f:2f:52:3f:59:58:f1:c0:32:97:f4: 20:be:41:c1:48:1e:ed:69:7d:42:0d:31:51:eb:28:2f:49:0b: c1:02:ed:4a:1b:55:b4:23:02:d5:3d:ae:00:05:04:7b:f6:3f: da:58:71:07:19:c2:6a:39:d5:ef:88:0e:ed:1c:be:f6:cc:52: a9:2c:40:79:cf:c0:8a:d5:92:3c:7d:dc:4e:c0:74:09:75:d3: ad:7d:97:c2:c2:6d:b7:ff:a9:9c:e9:ad:03:b0:fb:ef:2c:fc: c4:68:39:03:69:6b:33:7f:a5:95:2a:fa:07:a5:96:d9:d0:d6: 5a:8a:14:51:64:ae:62:41:57:2c:e7:20:35:a8:2e:2b:4d:d2: af:4f:1b:84 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICERIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTAzMTgx MDA5NThaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDhFMzJEOUM0Q0IyRjcz QzJGQzAyMDdBREQyMzc5MjQxOTU0NURCRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbj5cb5gjSxNpsEiI2GXYTGXFM5WLGDfMF8pcOxNSPPdfvI/Ix wYIlwoXhBPF2PqDuB0VU9AJRFeHxguRunHXjJ98ZcN2rkB3atByGCMTvTpY+WC/z oLoymcRzHBYvumHnMLsFQjTZIqNCOmviA1dfAsvu9qUaJpYtGsfxQZDybg304myr XOc95LjY8Rt5W0am5Ubrhj4VmDaFY9Z15eQjNESy4smaiok4l2Q+ZHeYIPstYJcY nVpcZfa6TINA8kgmRDXm4ByRoYokUrAokUkldifAfGdd8oMFR2FSxmwuEYN/t+c2 jvxsY4q8jNhpLDgu/0ZGiNN8SrhT2+tvPAL3AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUjjLZxMsvc8L8Aget0jeSQZVF2+IwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL2pqTFp4TXN2YzhMOEFn ZXQwamVTUVpWRjItSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6DQwDQYJKoZIhvcNAQELBQADggEBAL831eR6Q4QKdxCRuQJEZ9oo/rbsWtOv cuwoIeXdkmnfD1w/IOUeAaZqm5cWuNKWKy1Na+YoiYRHJPPdcxmVSUMcU3YUx1XD YlauQQNpjyAb/S1k3beo3xEylaP4etZZiLlmio/xLeDtYAugSJvVKKV6Vvo/L1I/ WVjxwDKX9CC+QcFIHu1pfUINMVHrKC9JC8EC7UobVbQjAtU9rgAFBHv2P9pYcQcZ wmo51e+IDu0cvvbMUqksQHnPwIrVkjx93E7AdAl10619l8LCbbf/qZzprQOw++8s /MRoOQNpazN/pZUq+gelltnQ1lqKFFFkrmJBVyznIDWoLitN0q9PG4Q= -----END CERTIFICATE-----Generated at Fri Apr 4 18:43:17 2025 by rpki-client