$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/3SmeNISwnw6rbSuHnY4gmvkD660.roa File: 3SmeNISwnw6rbSuHnY4gmvkD660.roa (raw, json) Hash identifier: UEqjko8Y0cFU87wxpBQCJlq5PsxgB8nGsaEKEYzfX04= Subject key identifier: DD:29:9E:34:84:B0:9F:0E:AB:6D:2B:87:9D:8E:20:9A:F9:03:EB:AD Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 187B Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3SmeNISwnw6rbSuHnY4gmvkD660.roa Signing time: Fri 17 Jan 2025 01:25:07 +0000 ROA not before: Fri 17 Jan 2025 01:25:07 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 13444 IP address blocks: 103.221.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6267 (0x187b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:25:07 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=DD299E3484B09F0EAB6D2B879D8E209AF903EBAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e7:44:89:ba:ba:48:d8:3c:20:8c:0c:09:8c: a4:7b:e2:64:c6:35:af:1a:a3:b9:ea:fe:b8:fc:6c: f9:e3:fd:1f:bb:af:45:ba:a1:bf:5a:35:62:3e:56: f9:ea:fc:fd:07:5b:36:09:80:63:8a:81:c1:ee:3d: e9:b5:6b:18:02:2b:43:45:8b:1b:b9:f3:eb:93:3d: d8:e7:04:99:27:25:e9:cc:2b:b4:85:75:b5:77:df: 43:67:a4:aa:0b:6f:ef:33:98:c4:34:70:43:5b:59: e8:3f:6d:bd:a0:b9:b4:69:6b:7c:0c:f2:98:db:b7: 13:b2:9b:57:f6:2e:8e:14:25:75:9a:ac:5d:a6:88: 9d:cd:13:8d:58:60:6b:26:c9:7a:60:82:04:ac:24: 94:38:12:ba:be:81:0a:73:cf:ff:49:a3:f1:25:7b: f7:90:ad:59:1a:bb:64:74:69:35:f3:e5:70:93:1f: d8:a6:48:cb:bb:50:aa:2c:9f:ae:b6:99:5c:94:0d: c9:b0:3e:8d:3c:a0:4c:a5:fc:41:ae:82:4e:6f:69: 98:e5:15:b2:4a:72:30:57:e5:4f:d4:ff:66:00:66: 6b:cd:c7:ac:fe:f3:bd:08:57:cd:30:6b:c1:03:45: 3a:0b:f3:10:0a:6c:31:04:c8:61:59:d6:e7:e3:12: f2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:29:9E:34:84:B0:9F:0E:AB:6D:2B:87:9D:8E:20:9A:F9:03:EB:AD X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/3SmeNISwnw6rbSuHnY4gmvkD660.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.30.0/24 Signature Algorithm: sha256WithRSAEncryption da:bd:b6:e5:c7:e6:fc:b6:4e:fd:5c:1e:05:05:87:ae:c1:ee: 6a:35:08:ff:19:f9:c7:7d:9e:46:0b:3a:f8:6d:75:d2:dc:25: e0:24:69:a8:1d:ec:15:05:c6:1e:77:ca:07:e3:d7:28:46:e5: 74:48:35:ab:a1:87:cc:9e:28:98:d3:a3:22:ca:b3:23:eb:cb: 1f:91:d7:09:88:bc:6c:25:fd:58:c1:83:9f:4f:f3:7c:2d:dc: b9:ca:7a:21:d6:9d:12:06:07:58:22:73:41:76:95:43:db:69: 3d:96:11:3c:cc:80:84:6d:af:e2:a9:fd:49:8f:1b:4a:fc:dc: bf:7d:cf:07:aa:a5:04:e8:b9:5c:ba:41:73:10:96:3a:63:e2: 92:0e:ac:c7:0b:0b:ea:e9:ff:55:ae:cf:86:a4:72:16:55:2c: 04:9d:44:07:65:20:73:07:ac:22:7c:da:aa:e8:5a:e9:ad:3a: aa:0f:7a:7a:a6:ff:4b:c2:7e:48:ba:d8:c5:cc:a7:d6:59:a7: bd:05:c2:62:d3:16:34:aa:46:dd:24:58:0b:34:33:ce:b0:1c: b4:b4:5d:3d:42:01:c6:45:e4:94:f4:b7:56:cb:5c:fe:20:07: 2c:2f:c4:ed:41:53:3e:d8:44:ba:73:ba:c6:ba:bc:32:a9:82: b7:62:bf:b2 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI1MDdaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEREMjk5RTM0ODRCMDlG MEVBQjZEMkI4NzlEOEUyMDlBRjkwM0VCQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ50SJurpI2DwgjAwJjKR74mTGNa8ao7nq/rj8bPnj/R+7r0W6 ob9aNWI+Vvnq/P0HWzYJgGOKgcHuPem1axgCK0NFixu58+uTPdjnBJknJenMK7SF dbV330NnpKoLb+8zmMQ0cENbWeg/bb2gubRpa3wM8pjbtxOym1f2Lo4UJXWarF2m iJ3NE41YYGsmyXpgggSsJJQ4Erq+gQpzz/9Jo/Ele/eQrVkau2R0aTXz5XCTH9im SMu7UKosn662mVyUDcmwPo08oEyl/EGugk5vaZjlFbJKcjBX5U/U/2YAZmvNx6z+ 870IV80wa8EDRToL8xAKbDEEyGFZ1ufjEvLLAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU3SmeNISwnw6rbSuHnY4gmvkD660wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3LzNTbWVOSVN3bnc2cmJT dUhuWTRnbXZrRDY2MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3R4wDQYJKoZIhvcNAQELBQADggEBANq9tuXH5vy2Tv1cHgUFh67B7mo1CP8Z +cd9nkYLOvhtddLcJeAkaagd7BUFxh53ygfj1yhG5XRINauhh8yeKJjToyLKsyPr yx+R1wmIvGwl/VjBg59P83wt3LnKeiHWnRIGB1gic0F2lUPbaT2WETzMgIRtr+Kp /UmPG0r83L99zweqpQTouVy6QXMQljpj4pIOrMcLC+rp/1Wuz4akchZVLASdRAdl IHMHrCJ82qroWumtOqoPenqm/0vCfki62MXMp9ZZp70FwmLTFjSqRt0kWAs0M86w HLS0XT1CAcZF5JT0t1bLXP4gBywvxO1BUz7YRLpzusa6vDKpgrdiv7I= -----END CERTIFICATE-----Generated at Fri Apr 4 18:42:02 2025 by rpki-client