$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/623/UETfiKc2ZP4d0iljbM96Yfvu_S8.roa File: UETfiKc2ZP4d0iljbM96Yfvu_S8.roa (raw, json) Hash identifier: 7FEISGrg50R7Z/wqNTe5KMpNgeB60Oq4B7VoIFqsZ1g= Subject key identifier: 50:44:DF:88:A7:36:64:FE:1D:D2:29:63:6C:CF:7A:61:FB:EE:FD:2F Certificate issuer: /CN=DEBFC900EDC34F81DA4827F1F9F63D04E0E2F756 Certificate serial: 07FF Authority key identifier: DE:BF:C9:00:ED:C3:4F:81:DA:48:27:F1:F9:F6:3D:04:E0:E2:F7:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/UETfiKc2ZP4d0iljbM96Yfvu_S8.roa Signing time: Mon 26 May 2025 08:41:46 +0000 ROA not before: Mon 26 May 2025 08:41:46 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 58834 IP address blocks: 103.27.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 02:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEBFC900EDC34F81DA4827F1F9F63D04E0E2F756 Validity Not Before: May 26 08:41:46 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=5044DF88A73664FE1DD229636CCF7A61FBEEFD2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:93:0a:1a:9f:a2:14:0b:2d:c9:fe:7a:fe:08: df:87:a1:43:20:de:bf:73:34:d2:64:51:7d:77:2c: e2:de:85:47:cf:99:fc:74:9a:02:50:d5:58:c5:69: 6f:ee:fd:a6:e8:74:25:3e:3b:2f:bd:6b:2d:94:e2: 9c:41:20:4e:17:e1:d9:e8:a0:9f:99:b7:8d:e4:6e: 60:3d:9a:f0:9b:e0:c6:37:42:4b:86:1c:d3:05:d3: c3:bc:10:02:c7:ba:cd:7c:45:da:b5:83:bf:f4:f3: 74:bf:d4:9d:74:37:62:3b:ff:14:ca:22:d0:26:44: 59:13:6b:5c:dc:51:0e:0e:6c:c5:9c:24:cb:9e:a0: 6f:5e:d6:49:12:4a:3a:de:0e:3f:5b:3b:86:79:70: a7:d3:06:4b:76:95:a0:c8:b6:88:5b:78:51:b5:9d: 73:b1:cf:8c:b1:c3:b2:5c:5f:e7:bd:80:64:65:bc: e7:b7:9f:2f:2d:18:83:b7:12:44:e5:c1:f3:39:6c: 1f:5b:61:50:76:48:45:86:e2:6e:39:66:30:cd:35: 0b:15:10:2a:db:1b:22:a7:59:a3:b7:61:79:63:04: 21:7c:5e:a0:6f:a4:db:b6:ae:32:11:94:d7:fd:7f: b6:04:a9:de:c1:0f:81:fc:29:15:2f:f9:81:be:ca: 8c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:44:DF:88:A7:36:64:FE:1D:D2:29:63:6C:CF:7A:61:FB:EE:FD:2F X509v3 Authority Key Identifier: keyid:DE:BF:C9:00:ED:C3:4F:81:DA:48:27:F1:F9:F6:3D:04:E0:E2:F7:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/3r_JAO3DT4HaSCfx-fY9BODi91Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3r_JAO3DT4HaSCfx-fY9BODi91Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/623/UETfiKc2ZP4d0iljbM96Yfvu_S8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.27.24.0/22 Signature Algorithm: sha256WithRSAEncryption 12:85:98:6e:13:31:e6:5b:4a:50:c5:cc:e6:f8:42:db:93:dc: 13:36:6d:0e:f8:fd:66:e3:1e:a9:22:06:7e:b2:f9:6b:ef:5f: 7f:22:3e:0a:c2:70:a5:62:b7:18:69:26:21:29:27:60:49:1d: 6e:4d:17:15:27:03:e1:6e:00:f5:97:3f:94:8f:f7:ad:eb:ac: 3b:b9:c2:fa:ae:a6:59:2c:bb:c4:d5:96:ec:44:79:ae:1c:e3: 3b:65:6e:48:b7:17:8f:98:00:5b:f6:32:08:32:11:18:cf:c7: 5f:45:0c:fb:70:6c:fb:74:ab:e4:62:b2:71:94:ed:37:e7:38: 9e:d4:83:6b:7e:cb:59:97:b0:cc:9a:39:76:91:58:4d:25:cc: 74:60:06:d1:09:39:cc:77:1a:80:8b:88:6d:c4:00:2d:2a:e3: 4e:28:70:60:38:47:7c:9c:6c:61:ac:ba:a4:16:1a:fc:c6:c7: 95:b8:6c:a4:ee:25:4a:98:c0:41:5f:67:46:5b:62:f3:36:02: 66:09:6b:02:ca:b6:a4:97:85:54:75:01:e7:36:5c:39:37:a7: 3b:87:1e:46:ea:2a:88:51:3c:9a:2b:35:d1:31:75:15:5e:ca: 1e:e4:f6:40:2e:e2:49:e4:54:ba:3b:72:74:5d:af:45:c3:7c: d2:c9:8d:34 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVC RkM5MDBFREMzNEY4MURBNDgyN0YxRjlGNjNEMDRFMEUyRjc1NjAeFw0yNTA1MjYw ODQxNDZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDUwNDRERjg4QTczNjY0 RkUxREQyMjk2MzZDQ0Y3QTYxRkJFRUZEMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+kwoan6IUCy3J/nr+CN+HoUMg3r9zNNJkUX13LOLehUfPmfx0 mgJQ1VjFaW/u/abodCU+Oy+9ay2U4pxBIE4X4dnooJ+Zt43kbmA9mvCb4MY3QkuG HNMF08O8EALHus18Rdq1g7/083S/1J10N2I7/xTKItAmRFkTa1zcUQ4ObMWcJMue oG9e1kkSSjreDj9bO4Z5cKfTBkt2laDItohbeFG1nXOxz4yxw7JcX+e9gGRlvOe3 ny8tGIO3EkTlwfM5bB9bYVB2SEWG4m45ZjDNNQsVECrbGyKnWaO3YXljBCF8XqBv pNu2rjIRlNf9f7YEqd7BD4H8KRUv+YG+yowTAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUUETfiKc2ZP4d0iljbM96Yfvu/S8wHwYDVR0jBBgwFoAU3r/JAO3DT4HaSCfx +fY9BODi91YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIz LzNyX0pBTzNEVDRIYVNDZngtZlk5Qk9EaTkxWS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvM3JfSkFPM0RUNEhhU0NmeC1mWTlCT0RpOTFZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIzL1VFVGZpS2MyWlA0ZDBp bGpiTTk2WWZ2dV9TOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnGxgwDQYJKoZIhvcNAQELBQADggEBABKFmG4TMeZbSlDFzOb4QtuT3BM2bQ74 /WbjHqkiBn6y+WvvX38iPgrCcKVitxhpJiEpJ2BJHW5NFxUnA+FuAPWXP5SP963r rDu5wvquplksu8TVluxEea4c4ztlbki3F4+YAFv2MggyERjPx19FDPtwbPt0q+Ri snGU7TfnOJ7Ug2t+y1mXsMyaOXaRWE0lzHRgBtEJOcx3GoCLiG3EAC0q404ocGA4 R3ycbGGsuqQWGvzGx5W4bKTuJUqYwEFfZ0ZbYvM2AmYJawLKtqSXhVR1Aec2XDk3 pzuHHkbqKohRPJorNdExdRVeyh7k9kAu4knkVLo7cnRdr0XDfNLJjTQ= -----END CERTIFICATE-----Generated at Wed Jun 4 01:09:32 2025 by rpki-client