$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/n4fozrMi-Dt4JQysO_RziPDbMG8.roa File: n4fozrMi-Dt4JQysO_RziPDbMG8.roa (raw, json) Hash identifier: xM9YAxNqKKdpUdLvVqDL/4Cgp9GpWQqt/gvKyyKY24A= Subject key identifier: 9F:87:E8:CE:B3:22:F8:3B:78:25:0C:AC:3B:F4:73:88:F0:DB:30:6F Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1819 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/n4fozrMi-Dt4JQysO_RziPDbMG8.roa Signing time: Fri 17 Jan 2025 01:24:34 +0000 ROA not before: Fri 17 Jan 2025 01:24:34 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 139259 IP address blocks: 45.252.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6169 (0x1819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:24:34 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=9F87E8CEB322F83B78250CAC3BF47388F0DB306F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:25:e9:9c:0c:07:79:6b:03:dd:c0:f6:6e:c8: 87:1f:7e:05:c6:7a:f6:9a:42:b7:bd:f7:8b:56:8b: 6a:2e:1a:26:2b:98:a0:e2:63:c3:9d:13:11:16:90: 5d:d2:bc:ed:da:8d:9b:ab:6f:8c:4a:ca:54:c1:0c: 22:a3:99:66:d4:d6:1a:29:7d:15:50:99:c1:b6:03: 7c:a0:31:35:83:29:89:0d:b3:37:67:45:f5:ff:67: ef:b2:9e:1f:d5:cd:14:cf:15:c9:bc:d1:b5:86:21: 6c:53:be:30:d4:f1:3e:51:84:ed:54:a2:69:63:40: 48:6f:d6:eb:8f:81:18:a3:43:79:2b:89:8b:41:98: 3c:1f:f1:9f:d2:3c:16:01:ca:85:e6:1b:a0:39:c9: c7:1c:f0:0f:7f:bf:73:65:3f:1c:42:26:e8:86:f6: a6:7d:b3:6a:0d:32:35:f5:2b:09:19:65:d1:aa:10: f1:f5:62:ec:13:e0:ee:64:8c:0a:14:34:26:02:58: b8:a1:77:86:9a:b5:b8:fe:3c:af:9a:00:81:fa:ab: 24:b3:48:b5:7e:7e:42:0c:77:06:4c:da:5c:ea:a2: c2:3c:b8:19:33:e5:13:08:1b:f5:19:53:aa:b1:83: 9e:72:22:3b:e6:e5:19:7c:ab:9e:2a:62:23:20:38: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:87:E8:CE:B3:22:F8:3B:78:25:0C:AC:3B:F4:73:88:F0:DB:30:6F X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/n4fozrMi-Dt4JQysO_RziPDbMG8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.28.0/22 Signature Algorithm: sha256WithRSAEncryption bf:26:53:08:d9:72:9e:7c:46:a4:fe:31:6a:a5:fb:5a:b3:f7: fc:23:6a:dd:bf:5c:37:9d:6d:b6:46:2c:e3:fd:81:8b:92:43: 6c:39:86:3e:e6:40:ef:5e:37:d9:79:79:4c:4d:de:9c:1e:4b: 01:db:2a:ea:98:86:e5:af:66:79:61:f2:7b:ec:af:84:b3:37: 1b:c6:b6:84:ac:3f:05:da:9a:01:f8:07:7e:65:75:58:a8:a2: 7f:b9:18:40:9c:dc:d2:2e:de:e8:24:13:ac:c0:df:8e:ef:58: f9:99:6d:3d:15:92:64:65:30:4b:a8:df:dc:b1:56:03:4d:dd: f7:17:4b:fd:d8:fd:f3:34:7d:38:8c:e9:39:d3:d7:c7:55:25: 7e:0c:35:e0:0f:32:77:52:ec:db:6c:63:18:69:3e:66:87:d1: 1d:1f:67:1a:b9:43:28:2f:89:1d:45:7d:4d:7c:3b:b5:a4:60: 4e:fc:41:0f:14:c9:81:39:2a:3b:b3:02:ab:b3:65:62:97:db: 8f:9a:a0:31:78:75:69:b7:a0:74:e9:9b:20:db:87:b7:d8:25: 31:2f:af:a2:b8:b4:46:b4:80:c6:cb:ef:14:e3:de:c7:96:f6: c6:3d:38:b5:f2:9a:20:96:ab:48:56:9e:42:fe:23:ea:9e:75: d2:a8:e8:be -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI0MzRaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKDlGODdFOENFQjMyMkY4 M0I3ODI1MENBQzNCRjQ3Mzg4RjBEQjMwNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3JemcDAd5awPdwPZuyIcffgXGevaaQre994tWi2ouGiYrmKDi Y8OdExEWkF3SvO3ajZurb4xKylTBDCKjmWbU1hopfRVQmcG2A3ygMTWDKYkNszdn RfX/Z++ynh/VzRTPFcm80bWGIWxTvjDU8T5RhO1UomljQEhv1uuPgRijQ3kriYtB mDwf8Z/SPBYByoXmG6A5yccc8A9/v3NlPxxCJuiG9qZ9s2oNMjX1KwkZZdGqEPH1 YuwT4O5kjAoUNCYCWLihd4aatbj+PK+aAIH6qySzSLV+fkIMdwZM2lzqosI8uBkz 5RMIG/UZU6qxg55yIjvm5Rl8q54qYiMgOPdVAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUn4fozrMi+Dt4JQysO/RziPDbMG8wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L240Zm96ck1pLUR0NEpR eXNPX1J6aVBEYk1HOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/BwwDQYJKoZIhvcNAQELBQADggEBAL8mUwjZcp58RqT+MWql+1qz9/wjat2/ XDedbbZGLOP9gYuSQ2w5hj7mQO9eN9l5eUxN3pweSwHbKuqYhuWvZnlh8nvsr4Sz NxvGtoSsPwXamgH4B35ldVioon+5GECc3NIu3ugkE6zA347vWPmZbT0VkmRlMEuo 39yxVgNN3fcXS/3Y/fM0fTiM6TnT18dVJX4MNeAPMndS7NtsYxhpPmaH0R0fZxq5 QygviR1FfU18O7WkYE78QQ8UyYE5KjuzAquzZWKX24+aoDF4dWm3oHTpmyDbh7fY JTEvr6K4tEa0gMbL7xTj3seW9sY9OLXymiCWq0hWnkL+I+qeddKo6L4= -----END CERTIFICATE-----Generated at Fri Apr 4 18:36:31 2025 by rpki-client