$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/501/0Pa8B9OTzebFcDsK7TByNvRuyuM.roa File: 0Pa8B9OTzebFcDsK7TByNvRuyuM.roa (raw, json) Hash identifier: CDEpvov+8+ivynyAB/Wv2dIMde2hkJ6w7DL/oLbeoUE= Subject key identifier: D0:F6:BC:07:D3:93:CD:E6:C5:70:3B:0A:ED:30:72:36:F4:6E:CA:E3 Certificate issuer: /CN=C572F996D9799F68FB3D559D895D0AF83B53C579 Certificate serial: 0D Authority key identifier: C5:72:F9:96:D9:79:9F:68:FB:3D:55:9D:89:5D:0A:F8:3B:53:C5:79 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xXL5ltl5n2j7PVWdiV0K-DtTxXk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/501/0Pa8B9OTzebFcDsK7TByNvRuyuM.roa Signing time: Wed 28 May 2025 06:35:43 +0000 ROA not before: Wed 28 May 2025 06:35:43 +0000 ROA not after: Tue 26 May 2026 10:30:48 +0000 asID: 4859 IP address blocks: 103.15.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/501/xXL5ltl5n2j7PVWdiV0K-DtTxXk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/501/xXL5ltl5n2j7PVWdiV0K-DtTxXk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xXL5ltl5n2j7PVWdiV0K-DtTxXk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C572F996D9799F68FB3D559D895D0AF83B53C579 Validity Not Before: May 28 06:35:43 2025 GMT Not After : May 26 10:30:48 2026 GMT Subject: CN=D0F6BC07D393CDE6C5703B0AED307236F46ECAE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:49:bc:20:75:a7:c9:9e:8b:59:48:37:b3:5d: 12:9d:23:d4:ac:07:08:9d:ae:37:57:69:53:d6:0d: 6f:73:64:7e:e7:eb:f1:1d:08:92:e1:7c:af:47:3e: 76:df:e6:f3:f6:d7:31:71:ce:30:84:4e:dd:a1:cd: c3:ae:d0:d0:22:25:77:48:66:89:f6:fc:5e:d8:0d: a1:36:30:54:74:21:72:23:b5:35:89:34:0a:e1:ab: c2:6a:12:8c:57:22:93:14:b6:74:79:a9:26:8e:d0: 09:a5:68:49:32:0c:ae:54:84:be:a2:a2:38:bb:53: 03:39:ce:2a:23:03:ca:35:f0:ab:3e:a5:d6:c4:b3: a4:56:b4:07:e1:27:3a:2b:10:87:84:76:3e:83:99: 80:91:66:82:dc:86:d5:2a:5f:1e:22:2e:b8:5a:a3: 1c:15:f0:3e:2d:f4:1d:ad:5e:48:80:8e:8e:98:5b: f0:6c:35:5a:4c:3c:c1:2e:af:54:f7:40:fc:c6:db: c1:3d:4b:e1:3c:c8:d6:80:f4:90:5e:09:2d:2a:33: 6c:50:c1:40:9e:17:7a:69:a8:ea:91:43:38:12:f1: 53:ac:2c:50:d2:09:08:43:1a:fc:7e:a5:bf:26:6d: e4:d6:ef:14:c3:8d:2b:f9:3e:5c:63:42:26:75:37: 69:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F6:BC:07:D3:93:CD:E6:C5:70:3B:0A:ED:30:72:36:F4:6E:CA:E3 X509v3 Authority Key Identifier: keyid:C5:72:F9:96:D9:79:9F:68:FB:3D:55:9D:89:5D:0A:F8:3B:53:C5:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/501/xXL5ltl5n2j7PVWdiV0K-DtTxXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xXL5ltl5n2j7PVWdiV0K-DtTxXk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/501/0Pa8B9OTzebFcDsK7TByNvRuyuM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.15.4.0/22 Signature Algorithm: sha256WithRSAEncryption 05:34:93:56:c3:0b:b1:32:78:06:5a:e0:e2:fa:10:72:49:96: f9:dc:ca:05:cd:e0:89:48:f0:6c:77:b4:7d:d6:6b:98:69:22: 88:15:65:8c:3b:3b:b5:cc:ab:3b:42:49:b0:64:a8:0f:29:a4: 99:d4:d1:dd:be:48:40:54:af:c7:08:2d:87:6a:54:98:1f:98: 57:fa:5f:84:57:55:61:5d:d9:c9:74:2d:9c:80:81:4a:1d:2a: fa:1d:16:bb:b5:d2:8c:d2:fd:28:a8:9f:fb:fd:48:71:ad:40: d8:8c:29:ed:65:3b:93:6b:35:a8:d7:48:04:4f:80:a7:c9:32: c8:7f:38:03:49:57:94:0f:73:90:8a:70:7e:92:3d:3c:56:ca: 08:d0:d9:d7:d5:97:cd:89:a7:d2:7b:c0:a9:0b:f6:a8:26:d4: 98:4c:92:2f:12:ba:31:13:03:65:f3:c1:44:63:80:3b:c3:7c: b8:20:b4:6c:90:08:49:bb:f1:fa:ff:8d:d9:c9:e3:21:0e:7b: be:78:c7:ae:f6:72:f2:35:75:e6:6c:f1:fd:85:df:d9:d5:17: ac:36:30:ec:e2:77:f7:39:80:fd:48:d4:96:97:50:82:2b:43: 2a:8d:b7:a1:f8:f8:a3:21:22:cd:1a:40:e3:90:d5:55:9a:a8: 55:45:6b:91 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNTcy Rjk5NkQ5Nzk5RjY4RkIzRDU1OUQ4OTVEMEFGODNCNTNDNTc5MB4XDTI1MDUyODA2 MzU0M1oXDTI2MDUyNjEwMzA0OFowMzExMC8GA1UEAxMoRDBGNkJDMDdEMzkzQ0RF NkM1NzAzQjBBRUQzMDcyMzZGNDZFQ0FFMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN9JvCB1p8mei1lIN7NdEp0j1KwHCJ2uN1dpU9YNb3Nkfufr8R0I kuF8r0c+dt/m8/bXMXHOMIRO3aHNw67Q0CIld0hmifb8XtgNoTYwVHQhciO1NYk0 CuGrwmoSjFcikxS2dHmpJo7QCaVoSTIMrlSEvqKiOLtTAznOKiMDyjXwqz6l1sSz pFa0B+EnOisQh4R2PoOZgJFmgtyG1SpfHiIuuFqjHBXwPi30Ha1eSICOjphb8Gw1 Wkw8wS6vVPdA/MbbwT1L4TzI1oD0kF4JLSozbFDBQJ4Xemmo6pFDOBLxU6wsUNIJ CEMa/H6lvyZt5NbvFMONK/k+XGNCJnU3aRsCAwEAAaOCAfEwggHtMB0GA1UdDgQW BBTQ9rwH05PN5sVwOwrtMHI29G7K4zAfBgNVHSMEGDAWgBTFcvmW2XmfaPs9VZ2J XQr4O1PFeTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81MDEv eFhMNWx0bDVuMmo3UFZXZGlWMEstRHRUeFhrLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC94WEw1bHRsNW4yajdQVldkaVYwSy1EdFR4WGsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81MDEvMFBhOEI5T1R6ZWJGY0Rz SzdUQnlOdlJ1eXVNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmcPBDANBgkqhkiG9w0BAQsFAAOCAQEABTSTVsMLsTJ4Blrg4voQckmW+dzKBc3g iUjwbHe0fdZrmGkiiBVljDs7tcyrO0JJsGSoDymkmdTR3b5IQFSvxwgth2pUmB+Y V/pfhFdVYV3ZyXQtnICBSh0q+h0Wu7XSjNL9KKif+/1Ica1A2Iwp7WU7k2s1qNdI BE+Ap8kyyH84A0lXlA9zkIpwfpI9PFbKCNDZ19WXzYmn0nvAqQv2qCbUmEySLxK6 MRMDZfPBRGOAO8N8uCC0bJAISbvx+v+N2cnjIQ57vnjHrvZy8jV15mzx/YXf2dUX rDYw7OJ39zmA/UjUlpdQgitDKo23ofj4oyEizRpA45DVVZqoVUVrkQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:54:28 2025 by rpki-client