$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/64/Fg1ErO9BHoKc_FII_rFTeLSw7po.roa File: Fg1ErO9BHoKc_FII_rFTeLSw7po.roa (raw, json) Hash identifier: bgExHcY9aLohokDPnLtJC0JNz4gv06ZKUqd8rHdr04s= Subject key identifier: 16:0D:44:AC:EF:41:1E:82:9C:FC:52:08:FE:B1:53:78:B4:B0:EE:9A Certificate issuer: /CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Certificate serial: 09 Authority key identifier: 5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/Fg1ErO9BHoKc_FII_rFTeLSw7po.roa Signing time: Mon 26 May 2025 00:46:38 +0000 ROA not before: Mon 26 May 2025 00:46:38 +0000 ROA not after: Tue 26 May 2026 00:40:26 +0000 asID: 9803 IP address blocks: 211.150.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 01:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Validity Not Before: May 26 00:46:38 2025 GMT Not After : May 26 00:40:26 2026 GMT Subject: CN=160D44ACEF411E829CFC5208FEB15378B4B0EE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:db:df:b5:30:29:7f:bf:d5:08:e5:bd:3b:68: 52:39:d3:cd:f2:3f:da:88:e6:7f:b1:32:b5:11:54: b9:b3:0a:ed:65:76:00:50:d2:2c:54:d8:fb:6f:6a: 60:03:f3:02:d5:16:ac:4e:b2:a8:88:f0:2f:b9:76: d6:19:67:ae:20:19:00:71:62:a3:2e:4c:aa:50:78: 1a:be:1d:1b:e3:69:c8:38:79:d1:79:52:f6:9b:54: 19:4b:f5:86:d8:52:21:57:47:94:b5:33:6b:ef:c3: d5:1e:2c:2d:38:e3:92:da:0c:a2:bf:c2:48:b4:17: 28:34:c1:00:66:74:8e:7c:ca:7d:95:23:52:c6:1f: fe:da:21:cd:2d:99:f1:0d:eb:4b:5a:93:da:0b:33: f4:f0:54:d9:f6:27:45:c2:04:4f:0a:88:40:be:42: cc:aa:95:b3:6a:cd:92:3b:a9:be:d8:bc:e6:9d:a7: e5:bf:84:dd:4e:79:c0:cc:d0:27:61:a9:f6:66:42: a6:e6:92:f7:84:40:70:da:85:bd:76:65:41:3a:99: 13:5f:66:f0:72:01:d5:17:d6:47:54:a5:a7:51:c3: e5:40:8d:d6:18:09:24:a0:88:9b:cf:0a:ec:26:d5: 54:47:6d:9d:15:9d:07:58:c5:d4:22:d9:db:64:4f: a9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0D:44:AC:EF:41:1E:82:9C:FC:52:08:FE:B1:53:78:B4:B0:EE:9A X509v3 Authority Key Identifier: keyid:5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/Fg1ErO9BHoKc_FII_rFTeLSw7po.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.150.124.0/23 Signature Algorithm: sha256WithRSAEncryption 16:34:d6:10:d3:b7:ab:5b:75:f3:d0:05:fb:b2:c4:19:df:c8: fd:ae:2e:b0:03:df:cc:68:84:6d:28:cc:59:43:85:b0:7d:b9: 31:82:9f:e8:4a:d2:f4:93:2a:1b:ad:58:c2:c6:8b:e6:78:4b: ae:06:4a:50:9e:22:77:0c:d7:b3:53:77:09:da:e3:ad:fa:0f: 90:3a:5d:39:14:84:ed:05:73:16:70:60:9c:85:0b:f1:f8:ae: 3b:7b:f0:09:20:a8:b8:40:de:5f:c5:58:60:de:ca:3f:26:c6: 08:a1:af:59:c9:63:01:57:5f:9e:e6:bf:ed:fa:0f:6e:c3:cd: 7e:61:07:4b:ee:8b:ba:34:6a:97:93:21:20:85:ae:3f:47:a0: 9c:cb:ad:fd:e3:ca:13:86:2c:40:63:e8:e1:49:76:50:56:06: 01:29:3f:86:23:55:e4:14:76:15:1d:3f:fb:e9:1a:dd:7e:32: 51:9d:1f:81:a3:25:4d:bd:e9:d5:64:f7:9b:d3:2f:f3:7d:0a: 9a:01:97:73:30:0e:8c:71:10:13:ff:c4:c2:99:63:a7:a1:ba: f4:e2:14:c2:d4:73:ea:f4:d1:cb:4d:a1:50:0f:e6:c1:24:1f: 9c:b1:32:76:92:91:80:7e:74:14:29:19:65:31:d4:1e:eb:dd: 44:75:f6:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RUI4 QzU3RDcyRjc5NDZERDdCMjQyMDU5OTI4OEVDQTE1M0NCNzA5MB4XDTI1MDUyNjAw NDYzOFoXDTI2MDUyNjAwNDAyNlowMzExMC8GA1UEAxMoMTYwRDQ0QUNFRjQxMUU4 MjlDRkM1MjA4RkVCMTUzNzhCNEIwRUU5QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKvb37UwKX+/1QjlvTtoUjnTzfI/2ojmf7EytRFUubMK7WV2AFDS LFTY+29qYAPzAtUWrE6yqIjwL7l21hlnriAZAHFioy5MqlB4Gr4dG+NpyDh50XlS 9ptUGUv1hthSIVdHlLUza+/D1R4sLTjjktoMor/CSLQXKDTBAGZ0jnzKfZUjUsYf /tohzS2Z8Q3rS1qT2gsz9PBU2fYnRcIETwqIQL5CzKqVs2rNkjupvti85p2n5b+E 3U55wMzQJ2Gp9mZCpuaS94RAcNqFvXZlQTqZE19m8HIB1RfWR1Slp1HD5UCN1hgJ JKCIm88K7CbVVEdtnRWdB1jF1CLZ22RPqWsCAwEAAaOCAe8wggHrMB0GA1UdDgQW BBQWDUSs70Eegpz8Ugj+sVN4tLDumjAfBgNVHSMEGDAWgBReuMV9cveUbdeyQgWZ KI7KFTy3CTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NC9Y cmpGZlhMM2xHM1hza0lGbVNpT3loVTh0d2suY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL1hyakZmWEwzbEczWHNrSUZtU2lPeWhVOHR3ay5jZXIwDgYDVR0PAQH/BAQD AgeAMIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzY0L0ZnMUVyTzlCSG9LY19GSUlf ckZUZUxTdzdwby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5j bi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT lnwwDQYJKoZIhvcNAQELBQADggEBABY01hDTt6tbdfPQBfuyxBnfyP2uLrAD38xo hG0ozFlDhbB9uTGCn+hK0vSTKhutWMLGi+Z4S64GSlCeIncM17NTdwna4636D5A6 XTkUhO0FcxZwYJyFC/H4rjt78AkgqLhA3l/FWGDeyj8mxgihr1nJYwFXX57mv+36 D27DzX5hB0vui7o0apeTISCFrj9HoJzLrf3jyhOGLEBj6OFJdlBWBgEpP4YjVeQU dhUdP/vpGt1+MlGdH4GjJU296dVk95vTL/N9CpoBl3MwDoxxEBP/xMKZY6ehuvTi FMLUc+r00ctNoVAP5sEkH5yxMnaSkYB+dBQpGWUx1B7r3UR19gE= -----END CERTIFICATE-----Generated at Wed Jun 4 00:52:01 2025 by rpki-client