$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/c6N-Z9uGeUn_QxuxhbyCUvngXH8.roa File: c6N-Z9uGeUn_QxuxhbyCUvngXH8.roa (raw, json) Hash identifier: J3iZ2p0jdR7jIGhFZNyjnSPXX2nkEkazIQ6VLSihx8o= Subject key identifier: 73:A3:7E:67:DB:86:79:49:FF:43:1B:B1:85:BC:82:52:F9:E0:5C:7F Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1905 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/c6N-Z9uGeUn_QxuxhbyCUvngXH8.roa Signing time: Fri 17 Jan 2025 01:25:57 +0000 ROA not before: Fri 17 Jan 2025 01:25:57 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 139259 IP address blocks: 103.221.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6405 (0x1905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:25:57 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=73A37E67DB867949FF431BB185BC8252F9E05C7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:41:7a:e6:b0:31:b8:7f:f1:cf:ac:29:31: 26:1c:75:7d:7c:3a:4a:7c:ba:bd:0c:fe:98:1b:06: 9f:a9:9e:78:2a:92:df:e8:de:56:3f:56:3b:23:26: 22:5b:56:01:08:28:42:db:3b:a5:e0:94:42:39:42: d6:0b:6b:96:a2:c2:5c:35:56:f8:36:bc:6c:37:be: 04:95:13:2f:b2:8d:9d:1c:10:db:dd:3a:65:1d:9e: 1f:d4:38:72:68:6c:da:81:1c:a8:66:63:19:6c:08: ca:13:a3:59:f0:7b:64:5f:62:4b:d1:34:be:c1:7d: f8:0c:b8:14:85:e5:35:68:00:2e:fe:bc:b9:7a:54: 6a:40:9a:43:1f:17:ac:eb:a0:e5:f6:b0:dc:53:de: a8:fa:6c:67:fa:5d:25:f8:53:7f:c7:3b:3f:c6:7e: 4d:9e:a1:f8:46:a1:b4:b8:79:f7:88:87:60:26:39: f6:45:26:5d:4d:b6:8f:a3:8c:c0:38:ea:50:07:22: 19:88:81:a1:14:36:a2:4f:f6:df:35:51:6d:7a:8b: dd:88:4c:53:ba:f5:b8:51:c1:f9:f4:fe:6e:13:1e: cf:cb:7b:66:5e:bb:29:fa:27:87:42:f3:5b:f8:e9: f5:86:69:6a:43:e9:1e:24:1b:91:0b:3f:33:c3:23: e2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A3:7E:67:DB:86:79:49:FF:43:1B:B1:85:BC:82:52:F9:E0:5C:7F X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/c6N-Z9uGeUn_QxuxhbyCUvngXH8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.221.92.0/24 Signature Algorithm: sha256WithRSAEncryption 37:77:9d:84:aa:37:fd:2e:f0:da:04:e1:95:9b:27:26:cd:e0: b2:ac:41:70:08:37:4f:80:c9:73:2c:06:79:e4:6f:a7:4e:89: 59:d3:eb:c2:79:ff:72:4b:79:85:4d:da:e9:97:50:63:57:9a: 9b:4f:e6:23:ab:86:cc:c7:9c:5f:10:7f:bc:e1:64:55:c4:67: 9e:96:49:52:f9:64:43:55:da:41:14:8d:b5:20:8e:c9:c6:0c: 67:6b:04:39:d0:db:2c:80:b6:46:94:bc:39:e7:03:57:e3:30: b9:ec:02:3c:bc:58:f9:80:5c:64:93:73:a4:ec:60:42:ac:28: 5b:34:25:99:67:35:8c:23:bc:87:b4:cb:02:d8:fc:fc:51:28: ce:be:05:55:87:32:c0:20:19:c7:90:e8:86:9b:0f:0c:57:c1: f8:8e:31:8a:09:9e:53:de:5b:f2:d0:9e:e8:bf:a6:c9:00:3f: e4:53:65:a8:b0:07:89:c5:69:80:3d:e4:68:79:4e:b1:fa:dd: 6b:30:30:96:41:96:0a:51:c6:75:1c:84:87:f0:80:57:93:d4: 08:eb:d0:43:36:eb:29:a9:30:84:55:dd:d7:74:3f:22:d8:ab: 14:28:88:27:a8:0a:84:4f:00:ad:62:de:e6:13:db:1e:bd:a2: 59:40:e9:f0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI1NTdaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDczQTM3RTY3REI4Njc5 NDlGRjQzMUJCMTg1QkM4MjUyRjlFMDVDN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvSEF65rAxuH/xz6wpMSYcdX18Okp8ur0M/pgbBp+pnngqkt/o 3lY/VjsjJiJbVgEIKELbO6XglEI5QtYLa5aiwlw1Vvg2vGw3vgSVEy+yjZ0cENvd OmUdnh/UOHJobNqBHKhmYxlsCMoTo1nwe2RfYkvRNL7BffgMuBSF5TVoAC7+vLl6 VGpAmkMfF6zroOX2sNxT3qj6bGf6XSX4U3/HOz/Gfk2eofhGobS4efeIh2AmOfZF Jl1Nto+jjMA46lAHIhmIgaEUNqJP9t81UW16i92ITFO69bhRwfn0/m4THs/Le2Ze uyn6J4dC81v46fWGaWpD6R4kG5ELPzPDI+K1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUc6N+Z9uGeUn/QxuxhbyCUvngXH8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2M2Ti1aOXVHZVVuX1F4 dXhoYnlDVXZuZ1hIOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn3VwwDQYJKoZIhvcNAQELBQADggEBADd3nYSqN/0u8NoE4ZWbJybN4LKsQXAI N0+AyXMsBnnkb6dOiVnT68J5/3JLeYVN2umXUGNXmptP5iOrhszHnF8Qf7zhZFXE Z56WSVL5ZENV2kEUjbUgjsnGDGdrBDnQ2yyAtkaUvDnnA1fjMLnsAjy8WPmAXGST c6TsYEKsKFs0JZlnNYwjvIe0ywLY/PxRKM6+BVWHMsAgGceQ6IabDwxXwfiOMYoJ nlPeW/LQnui/pskAP+RTZaiwB4nFaYA95Gh5TrH63WswMJZBlgpRxnUchIfwgFeT 1Ajr0EM26ympMIRV3dd0PyLYqxQoiCeoCoRPAK1i3uYT2x69ollA6fA= -----END CERTIFICATE-----Generated at Fri Apr 4 18:44:17 2025 by rpki-client