$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/FLciB_IjhBJBNsV0T7bAh9tj5AE.roa File: FLciB_IjhBJBNsV0T7bAh9tj5AE.roa (raw, json) Hash identifier: j7EFxEaaYMWWn/nZ+E1rXXVW3xhwoxzKzbcRjR7qfis= Subject key identifier: 14:B7:22:07:F2:23:84:12:41:36:C5:74:4F:B6:C0:87:DB:63:E4:01 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1873 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/FLciB_IjhBJBNsV0T7bAh9tj5AE.roa Signing time: Fri 17 Jan 2025 01:25:05 +0000 ROA not before: Fri 17 Jan 2025 01:25:05 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 13444 IP address blocks: 103.221.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6259 (0x1873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:25:05 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=14B72207F22384124136C5744FB6C087DB63E401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b8:79:57:54:f7:9f:d9:88:6e:dd:e8:bc:26: 21:8d:03:68:fc:6d:72:5e:eb:2e:f9:77:08:d1:c8: a3:56:76:88:cb:45:15:ba:64:7d:17:46:c7:63:fc: 4d:3b:ef:50:2e:46:b5:c3:8a:81:38:c1:56:2a:0e: 3f:ab:76:23:1d:32:6d:83:77:03:bc:2d:6c:0b:d4: 78:eb:10:fe:a9:88:c4:41:78:32:63:34:9b:76:aa: 20:6a:02:c3:99:34:c3:65:91:87:64:46:8e:99:81: 55:8e:c2:18:78:c4:87:d7:38:21:c3:7a:67:4b:2b: 1f:8c:52:3d:12:0e:6e:b2:8f:8a:12:67:5b:38:90: 06:28:3a:0e:0d:77:3f:f7:3b:63:31:b3:5d:f8:c5: a7:2b:b8:89:00:52:b0:f0:9d:9a:b7:e4:21:be:4d: ab:fc:33:d3:15:ec:bd:1e:40:86:5a:16:93:4d:47: 47:25:77:be:3d:34:be:0d:a0:69:3a:cc:d8:9e:ca: da:14:f8:0a:dd:99:1d:0e:4c:b9:58:6b:f3:52:5e: b3:98:8b:f9:0b:1f:7e:97:64:22:06:79:cc:da:4f: c3:22:f0:95:36:7b:fa:ac:af:89:ef:42:fc:fc:86: dd:cc:0a:10:56:70:55:9e:92:ab:2d:e3:24:94:ff: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B7:22:07:F2:23:84:12:41:36:C5:74:4F:B6:C0:87:DB:63:E4:01 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/FLciB_IjhBJBNsV0T7bAh9tj5AE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.23.0/24 Signature Algorithm: sha256WithRSAEncryption ca:48:32:e9:10:53:12:86:5b:01:03:4e:ab:bb:74:c0:7f:33: 78:78:69:2c:82:d7:29:0b:6c:a8:1c:a7:02:13:b9:54:1b:8e: e0:d0:dd:93:98:fd:42:65:26:31:2a:4e:83:d9:7f:6d:28:ef: 86:3e:eb:f5:6c:ac:4f:ff:7d:1a:38:24:30:fc:c3:f6:65:fc: 4b:1d:3b:bd:60:33:4b:ef:9e:cf:c5:c3:44:91:ae:94:5b:2d: 66:8a:2a:f4:0b:09:f5:98:76:74:28:c7:8e:41:7a:a4:cf:7b: a0:64:b2:16:ba:d1:5a:dc:e4:d5:df:91:4f:fb:dd:62:f4:6e: 1c:0a:da:de:23:67:52:2d:52:10:39:96:08:4b:b9:e9:c3:86: 89:d5:60:df:1e:67:50:8d:5a:a3:b5:58:0b:ff:f4:bc:27:2f: 41:9a:5b:94:47:64:d7:23:32:a5:2c:91:6e:7e:9e:93:1b:bd: bc:3c:c3:d8:71:29:9d:78:ae:2a:06:49:8c:03:13:a6:2f:84: eb:6a:0f:fc:18:59:55:95:b3:77:c8:d1:07:d1:e9:79:bf:69: 6a:09:09:e2:17:ee:07:d3:2c:4a:95:75:22:c9:2e:a8:39:15: f8:d8:a6:1a:98:f0:f8:94:02:6f:05:7d:8b:e8:84:2b:05:b4: 52:7b:61:59 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI1MDVaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDE0QjcyMjA3RjIyMzg0 MTI0MTM2QzU3NDRGQjZDMDg3REI2M0U0MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmuHlXVPef2Yhu3ei8JiGNA2j8bXJe6y75dwjRyKNWdojLRRW6 ZH0XRsdj/E0771AuRrXDioE4wVYqDj+rdiMdMm2DdwO8LWwL1HjrEP6piMRBeDJj NJt2qiBqAsOZNMNlkYdkRo6ZgVWOwhh4xIfXOCHDemdLKx+MUj0SDm6yj4oSZ1s4 kAYoOg4Ndz/3O2Mxs134xacruIkAUrDwnZq35CG+Tav8M9MV7L0eQIZaFpNNR0cl d749NL4NoGk6zNieytoU+ArdmR0OTLlYa/NSXrOYi/kLH36XZCIGeczaT8Mi8JU2 e/qsr4nvQvz8ht3MChBWcFWekqst4ySU/2wZAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUFLciB/IjhBJBNsV0T7bAh9tj5AEwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L0ZMY2lCX0lqaEJKQk5z VjBUN2JBaDl0ajVBRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3RcwDQYJKoZIhvcNAQELBQADggEBAMpIMukQUxKGWwEDTqu7dMB/M3h4aSyC 1ykLbKgcpwITuVQbjuDQ3ZOY/UJlJjEqToPZf20o74Y+6/VsrE//fRo4JDD8w/Zl /EsdO71gM0vvns/Fw0SRrpRbLWaKKvQLCfWYdnQox45BeqTPe6Bksha60Vrc5NXf kU/73WL0bhwK2t4jZ1ItUhA5lghLuenDhonVYN8eZ1CNWqO1WAv/9LwnL0GaW5RH ZNcjMqUskW5+npMbvbw8w9hxKZ14rioGSYwDE6YvhOtqD/wYWVWVs3fI0QfR6Xm/ aWoJCeIX7gfTLEqVdSLJLqg5FfjYphqY8PiUAm8FfYvohCsFtFJ7YVk= -----END CERTIFICATE-----Generated at Fri Apr 4 18:44:49 2025 by rpki-client