$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/ayWUQb6ouuTSXlLVcguVZYiFgjw.roa File: ayWUQb6ouuTSXlLVcguVZYiFgjw.roa (raw, json) Hash identifier: 4Ti89GZjF2y1LeJgGdOslaGPyjlrex6q7w3hEikiXQ0= Subject key identifier: 6B:25:94:41:BE:A8:BA:E4:D2:5E:52:D5:72:0B:95:65:88:85:82:3C Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 18E0 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/ayWUQb6ouuTSXlLVcguVZYiFgjw.roa Signing time: Fri 17 Jan 2025 01:25:44 +0000 ROA not before: Fri 17 Jan 2025 01:25:44 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 13444 IP address blocks: 103.221.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6368 (0x18e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:25:44 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=6B259441BEA8BAE4D25E52D5720B95658885823C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c9:7c:27:6c:a5:bb:c8:33:78:e2:68:fe:5b: ae:06:4b:c5:94:fb:dc:ea:37:4d:22:f0:69:74:9a: ec:f5:62:ff:c9:f7:09:ca:e7:60:91:3b:d3:98:e2: 70:98:b8:db:6e:dd:a7:1d:6f:95:bd:e2:e5:11:2c: 8d:cd:04:72:59:0c:16:cf:f0:1d:d6:bd:ed:ec:63: 82:cf:3f:bc:a0:51:fc:7c:81:a0:54:e6:28:1a:67: b3:40:d0:76:2a:52:8d:91:27:30:4e:9e:20:93:a3: dd:ab:ff:de:12:c0:03:eb:54:ab:91:45:e3:ba:94: d7:70:c7:cd:76:6a:50:cb:67:65:bd:1b:d9:6d:85: c9:f6:6e:22:78:aa:93:2f:8a:18:3d:0b:a8:e7:06: d7:1e:ab:d8:44:6c:44:b5:e7:6e:83:7b:ad:ea:f3: d0:e8:17:59:b6:cb:99:27:bc:5f:59:9d:a5:ac:16: b6:30:38:67:7b:63:65:ea:b1:ab:0c:bb:f8:c7:7b: c7:3f:0c:c8:39:a2:76:b3:ec:0b:51:98:e5:5f:8d: 2b:03:00:8c:24:d3:e6:1a:db:f2:61:a9:fe:9f:ce: f6:a6:0e:9f:5c:b7:34:96:70:11:17:a0:cb:92:93: 3e:84:5e:27:4c:8e:65:1c:1d:a8:3b:3d:33:7e:88: 87:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:25:94:41:BE:A8:BA:E4:D2:5E:52:D5:72:0B:95:65:88:85:82:3C X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/ayWUQb6ouuTSXlLVcguVZYiFgjw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.31.0/24 Signature Algorithm: sha256WithRSAEncryption d8:45:2b:88:e2:8a:2e:9d:fe:e6:15:b4:e6:af:72:17:53:09: a0:9b:2a:76:04:32:b7:5e:d6:3f:21:db:bc:1e:eb:f7:24:28: c2:40:25:ac:1f:ec:98:ff:b8:e9:a3:81:cb:39:a5:f9:2c:bd: 9b:be:9d:38:ba:9d:a1:23:38:c9:32:ef:69:86:f6:0a:d3:4a: 3d:b3:dc:f9:ce:62:95:c7:5c:fc:e0:03:fd:41:ca:fd:4e:bf: b4:69:ad:17:f2:ff:cd:a0:7e:16:a0:74:e1:d8:19:b7:20:78: a3:b2:80:71:6c:ab:44:5d:32:d8:6e:c0:47:1a:2a:76:a8:ab: ee:c5:e9:79:f0:fa:89:cd:5d:b7:6d:50:0d:d7:02:3a:df:2c: b4:16:5c:3a:80:84:aa:d9:68:2f:b3:54:bd:12:7e:0d:81:c2: 79:35:d4:ff:ad:87:4a:26:f2:81:0d:82:13:99:7f:86:76:b3: ff:e0:c2:d3:eb:62:e1:9c:14:22:a8:9d:d6:b1:90:b6:5e:50: 5a:7d:58:20:c4:2e:ad:f2:36:67:1f:e3:79:48:23:88:08:f9: cc:b0:a3:05:ef:01:12:9a:e7:6d:64:2f:df:87:ac:79:77:6c: 1d:4c:5b:1c:06:9a:12:d7:cd:fd:e8:62:11:b3:8c:c5:ff:4a: a7:eb:8f:d3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGOAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI1NDRaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDZCMjU5NDQxQkVBOEJB RTREMjVFNTJENTcyMEI5NTY1ODg4NTgyM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2yXwnbKW7yDN44mj+W64GS8WU+9zqN00i8Gl0muz1Yv/J9wnK 52CRO9OY4nCYuNtu3acdb5W94uURLI3NBHJZDBbP8B3Wve3sY4LPP7ygUfx8gaBU 5igaZ7NA0HYqUo2RJzBOniCTo92r/94SwAPrVKuRReO6lNdwx812alDLZ2W9G9lt hcn2biJ4qpMvihg9C6jnBtceq9hEbES1526De63q89DoF1m2y5knvF9ZnaWsFrYw OGd7Y2XqsasMu/jHe8c/DMg5onaz7AtRmOVfjSsDAIwk0+Ya2/Jhqf6fzvamDp9c tzSWcBEXoMuSkz6EXidMjmUcHag7PTN+iIfhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUayWUQb6ouuTSXlLVcguVZYiFgjwwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2F5V1VRYjZvdXVUU1hs TFZjZ3VWWllpRmdqdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3R8wDQYJKoZIhvcNAQELBQADggEBANhFK4jiii6d/uYVtOavchdTCaCbKnYE Mrde1j8h27we6/ckKMJAJawf7Jj/uOmjgcs5pfksvZu+nTi6naEjOMky72mG9grT Sj2z3PnOYpXHXPzgA/1Byv1Ov7RprRfy/82gfhagdOHYGbcgeKOygHFsq0RdMthu wEcaKnaoq+7F6Xnw+onNXbdtUA3XAjrfLLQWXDqAhKrZaC+zVL0Sfg2Bwnk11P+t h0om8oENghOZf4Z2s//gwtPrYuGcFCKondaxkLZeUFp9WCDELq3yNmcf43lII4gI +cywowXvARKa521kL9+HrHl3bB1MWxwGmhLXzf3oYhGzjMX/Sqfrj9M= -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:49 2025 by rpki-client