$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/tehs2kFpzS6AyyXlp0Gua5K_gcA.roa File: tehs2kFpzS6AyyXlp0Gua5K_gcA.roa (raw, json) Hash identifier: 18GTxoLdGYSKG3lJb4YB9Vc7NbBjL9qaR8NH9nfga4o= Subject key identifier: B5:E8:6C:DA:41:69:CD:2E:80:CB:25:E5:A7:41:AE:6B:92:BF:81:C0 Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 180F Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/tehs2kFpzS6AyyXlp0Gua5K_gcA.roa Signing time: Fri 17 Jan 2025 01:24:31 +0000 ROA not before: Fri 17 Jan 2025 01:24:31 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 139259 IP address blocks: 45.252.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 20:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6159 (0x180f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Jan 17 01:24:31 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=B5E86CDA4169CD2E80CB25E5A741AE6B92BF81C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:f9:ba:a8:3f:6c:2c:c8:d8:83:7c:f3:48: e4:ec:e9:fb:25:4a:3b:a4:b4:ce:23:39:51:3a:0d: b4:1c:81:76:6d:77:19:ed:8d:c9:57:51:ca:d7:55: b4:c4:65:27:ac:b1:17:00:a2:40:ad:1a:4d:24:9a: 62:53:bd:a2:91:f3:cb:bb:41:74:2d:f1:dd:9d:d1: 69:dd:6e:1f:61:bc:e0:93:9e:12:de:e9:e2:ac:44: 00:89:92:0d:73:6e:c2:9c:0e:ff:d4:23:bc:ce:8b: 47:87:65:d1:32:24:c9:b7:bd:28:2e:93:ce:c7:ed: 6d:26:54:eb:da:17:92:07:67:be:b6:c0:7b:00:e3: 15:c8:83:33:5f:6d:0a:67:c6:ce:93:c5:70:f2:dc: dd:1b:cd:b1:a8:4f:c6:7f:30:10:f2:90:a5:33:45: c5:7b:6e:f9:3e:64:55:42:b2:21:9b:89:a3:76:76: 4c:c4:90:48:be:ca:8e:24:65:ff:3b:89:4b:fe:63: 68:05:4e:71:27:e9:56:48:89:3b:2f:fa:b9:c7:c5: 69:54:79:f9:ca:03:29:d4:b7:0e:a4:52:47:ae:d2: a8:36:e3:b6:21:d9:26:39:fb:d9:11:f2:bd:ba:9c: 4f:58:3e:3a:51:b5:1b:96:6a:b4:f1:fd:45:5c:db: c3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E8:6C:DA:41:69:CD:2E:80:CB:25:E5:A7:41:AE:6B:92:BF:81:C0 X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/tehs2kFpzS6AyyXlp0Gua5K_gcA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.252.12.0/22 Signature Algorithm: sha256WithRSAEncryption 70:7f:bf:90:d7:b2:09:be:b1:54:16:24:00:35:88:b0:08:45: 7e:15:9f:b3:af:42:cd:e3:a8:c4:76:4c:5d:10:41:e1:48:8d: ac:89:49:f2:63:56:e2:0d:49:a2:32:44:80:bc:01:34:08:bc: c6:6e:64:92:ce:c6:d8:38:a5:71:2c:0b:37:6a:ab:0e:7b:5e: 1f:fa:4e:fe:ac:c6:fe:25:3d:91:d9:7d:b0:8f:93:b1:e6:f4: 5f:de:f0:05:ce:9d:d5:2e:6e:53:3c:cc:cf:dc:e7:7a:8c:38: 9f:83:1c:fe:b5:76:fa:7a:53:7c:0b:a3:18:4c:f8:8c:1c:9e: 01:15:2a:eb:8a:cb:24:07:85:4f:df:0d:46:df:11:62:6c:58: c4:68:43:f1:4b:83:9f:23:6c:a7:f0:ee:8c:5d:fc:ae:4a:a5: 2f:04:93:dc:46:ac:5e:94:f0:bf:c7:6e:cd:f6:6f:06:a0:23: 2b:4d:08:c6:81:71:b2:25:59:81:7a:22:b3:6e:3c:43:40:ab: 29:1a:7f:fd:06:a0:a4:05:f4:36:4a:ab:aa:47:36:1b:09:66: 8b:e1:da:c6:c9:93:62:b6:fd:a0:97:45:23:6e:af:0a:12:4b: df:83:eb:de:8a:6a:1f:33:6b:43:9a:08:b9:52:06:93:2d:e2: 48:38:0d:61 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGA8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTAxMTcw MTI0MzFaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEI1RTg2Q0RBNDE2OUNE MkU4MENCMjVFNUE3NDFBRTZCOTJCRjgxQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDACPm6qD9sLMjYg3zzSOTs6fslSjuktM4jOVE6DbQcgXZtdxnt jclXUcrXVbTEZSessRcAokCtGk0kmmJTvaKR88u7QXQt8d2d0Wndbh9hvOCTnhLe 6eKsRACJkg1zbsKcDv/UI7zOi0eHZdEyJMm3vSguk87H7W0mVOvaF5IHZ762wHsA 4xXIgzNfbQpnxs6TxXDy3N0bzbGoT8Z/MBDykKUzRcV7bvk+ZFVCsiGbiaN2dkzE kEi+yo4kZf87iUv+Y2gFTnEn6VZIiTsv+rnHxWlUefnKAynUtw6kUkeu0qg247Yh 2SY5+9kR8r26nE9YPjpRtRuWarTx/UVc28P/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUtehs2kFpzS6AyyXlp0Gua5K/gcAwHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L3RlaHMya0ZwelM2QXl5 WGxwMEd1YTVLX2djQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAIt/AwwDQYJKoZIhvcNAQELBQADggEBAHB/v5DXsgm+sVQWJAA1iLAIRX4Vn7Ov Qs3jqMR2TF0QQeFIjayJSfJjVuINSaIyRIC8ATQIvMZuZJLOxtg4pXEsCzdqqw57 Xh/6Tv6sxv4lPZHZfbCPk7Hm9F/e8AXOndUublM8zM/c53qMOJ+DHP61dvp6U3wL oxhM+IwcngEVKuuKyyQHhU/fDUbfEWJsWMRoQ/FLg58jbKfw7oxd/K5KpS8Ek9xG rF6U8L/Hbs32bwagIytNCMaBcbIlWYF6IrNuPENAqykaf/0GoKQF9DZKq6pHNhsJ Zovh2sbJk2K2/aCXRSNurwoSS9+D696Kah8za0OaCLlSBpMt4kg4DWE= -----END CERTIFICATE-----Generated at Fri Apr 4 18:40:29 2025 by rpki-client