$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/fv6NnotV-c7a-bpKmiqeyx_wGvk.roa File: fv6NnotV-c7a-bpKmiqeyx_wGvk.roa (raw, json) Hash identifier: bxtH1WrtbHQax+xw/54TWuREbEUhMTjTalG9CCQ5sI0= Subject key identifier: 7E:FE:8D:9E:8B:55:F9:CE:DA:F9:BA:4A:9A:2A:9E:CB:1F:F0:1A:F9 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 18CC Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/fv6NnotV-c7a-bpKmiqeyx_wGvk.roa Signing time: Fri 17 Jan 2025 01:25:35 +0000 ROA not before: Fri 17 Jan 2025 01:25:35 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 17621 IP address blocks: 103.24.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6348 (0x18cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:25:35 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=7EFE8D9E8B55F9CEDAF9BA4A9A2A9ECB1FF01AF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:da:c4:28:64:bd:35:09:b0:5b:8a:93:b1:b4: f4:33:37:24:b5:55:4c:da:ab:96:3e:cb:ce:38:a7: 50:28:e3:80:ec:54:e6:22:05:48:a9:98:0c:d8:c8: f6:c8:76:b8:17:58:bb:a9:b2:7b:91:d5:5a:b1:64: 34:e1:86:b2:22:22:6a:57:fc:af:30:b3:b5:3e:3f: 8f:cd:74:29:11:9f:5a:39:52:e1:d7:b2:b6:04:6f: 94:14:63:16:9c:87:b6:54:c9:d8:ee:78:74:09:e6: 93:ad:10:1a:0c:a1:c8:2d:4b:e9:d7:2e:fb:05:fe: 8c:50:35:c8:c7:55:1d:c7:53:b8:4d:18:5d:69:3f: 41:91:bd:5f:13:ec:08:aa:1e:75:63:d7:55:63:7a: 80:7d:65:91:0c:b6:51:76:64:ae:6a:30:f5:17:85: ce:2d:85:dd:65:09:a7:88:20:74:a4:07:e1:d1:92: 63:6c:a5:b8:17:d1:bc:1a:07:91:25:98:36:fb:ea: b9:4f:b0:ae:57:6b:03:91:be:a7:36:d8:aa:77:0d: 0a:cc:d8:ab:b6:5f:54:a9:ed:a4:69:2e:88:dd:51: 5d:00:f9:66:b7:bb:64:96:bf:60:11:47:1a:bd:d4: d0:be:00:45:d3:54:36:40:b5:22:c7:e6:8f:0c:40: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FE:8D:9E:8B:55:F9:CE:DA:F9:BA:4A:9A:2A:9E:CB:1F:F0:1A:F9 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/fv6NnotV-c7a-bpKmiqeyx_wGvk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.24.118.0/23 Signature Algorithm: sha256WithRSAEncryption 26:e9:f9:a4:d8:d8:cc:cd:23:b1:1b:20:cb:75:af:09:f9:16: d4:dc:ca:32:f9:79:6e:88:0e:ff:d0:0c:6f:44:c3:80:ad:36: d9:2c:91:e5:fa:13:c5:1c:8e:55:9b:4a:44:3c:8f:6b:13:ca: e8:2a:0b:31:e9:14:28:aa:bf:84:40:61:79:bc:e9:53:14:4d: 52:a5:68:c7:b8:02:49:8c:4a:b8:e7:5e:6f:47:ce:3f:74:e7: 25:b7:64:1f:8a:c0:d4:b8:f9:f1:2b:69:0d:bd:7b:64:13:ea: fc:d2:fc:c3:d5:8b:a6:f2:20:d3:ad:47:a3:d1:2e:61:41:fc: e3:e8:9e:4a:d1:c6:4e:72:e1:ce:ab:59:e3:0a:28:4b:a0:d5: db:5e:9d:21:05:82:55:b7:3b:49:1e:b0:dd:63:58:b9:42:c4: 14:e6:5a:49:85:cb:82:80:8d:6c:5e:a4:a5:62:31:df:4a:08: 30:cb:cc:e7:44:6a:01:3e:aa:64:78:d1:3d:c1:42:e2:d1:20: ce:0a:ac:b7:4a:b0:be:10:f6:65:81:75:b0:0c:3e:07:f7:53: f4:54:73:f5:20:be:4d:97:46:6d:67:1c:ff:74:b0:cf:e9:e2: d7:e5:f1:1a:f4:d8:b9:76:e3:48:99:12:9b:45:5f:e1:d1:e6: 95:ff:ae:78 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI1MzVaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDdFRkU4RDlFOEI1NUY5 Q0VEQUY5QkE0QTlBMkE5RUNCMUZGMDFBRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH2sQoZL01CbBbipOxtPQzNyS1VUzaq5Y+y844p1Ao44DsVOYi BUipmAzYyPbIdrgXWLupsnuR1VqxZDThhrIiImpX/K8ws7U+P4/NdCkRn1o5UuHX srYEb5QUYxach7ZUydjueHQJ5pOtEBoMocgtS+nXLvsF/oxQNcjHVR3HU7hNGF1p P0GRvV8T7AiqHnVj11VjeoB9ZZEMtlF2ZK5qMPUXhc4thd1lCaeIIHSkB+HRkmNs pbgX0bwaB5ElmDb76rlPsK5XawORvqc22Kp3DQrM2Ku2X1Sp7aRpLojdUV0A+Wa3 u2SWv2ARRxq91NC+AEXTVDZAtSLH5o8MQKbrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUfv6NnotV+c7a+bpKmiqeyx/wGvkwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L2Z2Nk5ub3RWLWM3YS1i cEttaXFleXhfd0d2ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnGHYwDQYJKoZIhvcNAQELBQADggEBACbp+aTY2MzNI7EbIMt1rwn5FtTcyjL5 eW6IDv/QDG9Ew4CtNtkskeX6E8UcjlWbSkQ8j2sTyugqCzHpFCiqv4RAYXm86VMU TVKlaMe4AkmMSrjnXm9Hzj905yW3ZB+KwNS4+fEraQ29e2QT6vzS/MPVi6byINOt R6PRLmFB/OPonkrRxk5y4c6rWeMKKEug1dtenSEFglW3O0kesN1jWLlCxBTmWkmF y4KAjWxepKViMd9KCDDLzOdEagE+qmR40T3BQuLRIM4KrLdKsL4Q9mWBdbAMPgf3 U/RUc/Ugvk2XRm1nHP90sM/p4tfl8Rr02Ll240iZEptFX+HR5pX/rng= -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:05 2025 by rpki-client