$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/64/pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa File: pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa (raw, json) Hash identifier: VQI1jAs2W0S0lWYH2aeurU8HN6osLbzDnzztG7Iqt1U= Subject key identifier: A4:22:18:98:45:14:7F:8C:06:C9:52:13:F9:86:0B:DC:45:B3:85:81 Certificate issuer: /CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Certificate serial: 10 Authority key identifier: 5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa Signing time: Mon 26 May 2025 00:56:39 +0000 ROA not before: Mon 26 May 2025 00:56:39 +0000 ROA not after: Tue 26 May 2026 00:40:26 +0000 asID: 23724 IP address blocks: 211.100.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 01:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Validity Not Before: May 26 00:56:39 2025 GMT Not After : May 26 00:40:26 2026 GMT Subject: CN=A422189845147F8C06C95213F9860BDC45B38581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b1:1f:72:ff:78:bd:42:58:69:68:3d:da:a1: 9c:c5:06:cc:61:c2:98:ca:01:98:69:b7:7d:4f:9c: a6:c4:9d:1d:2d:12:c8:cf:21:92:cc:a4:53:69:22: f7:7f:ae:19:23:82:c0:77:ce:08:9b:a1:75:dc:71: 74:6f:a2:40:1c:df:20:0b:24:4f:ae:a5:3a:a5:dd: 7f:d2:14:80:11:b4:c2:79:95:33:4f:fe:fd:9d:87: 97:ef:41:d9:29:d3:da:77:8a:1b:83:2e:f7:02:87: e5:ce:08:44:fc:c5:6b:cc:55:27:1a:f7:28:40:a3: f0:75:f6:cc:bf:38:84:53:8d:d9:ae:f2:89:f7:4f: a4:08:70:c1:fd:cd:c7:6b:8b:82:43:15:9a:19:77: 43:a2:ce:11:d2:a6:6b:62:e4:1f:cb:68:48:1a:54: 87:c4:6f:ca:79:1e:d3:63:c6:8b:22:6c:bf:cf:3f: 35:e1:b3:f7:98:2f:9d:e3:ef:91:ea:a1:fd:e5:6a: 77:1f:1c:63:2d:4c:ee:43:59:ba:82:52:af:67:3b: 83:61:d9:f6:65:ce:01:50:8b:dd:3f:35:2f:10:3c: 7f:34:27:dd:35:6b:6c:01:8f:53:5b:04:cb:05:0e: fc:1e:49:66:c1:44:cf:31:cf:dd:8a:ee:4a:e0:d6: 2d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:22:18:98:45:14:7F:8C:06:C9:52:13:F9:86:0B:DC:45:B3:85:81 X509v3 Authority Key Identifier: keyid:5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/pCIYmEUUf4wGyVIT-YYL3EWzhYE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.100.64.0/19 Signature Algorithm: sha256WithRSAEncryption c5:ab:ea:82:9a:bc:90:0b:01:fc:e8:54:0d:cd:39:76:b1:c4: c0:ac:9d:8e:94:cd:f7:ad:aa:5e:2b:a9:4e:bb:eb:e4:a0:f6: d2:1e:8f:59:6a:41:c1:66:ac:dd:9b:fa:07:f3:b2:9e:6e:08: e5:13:44:9d:89:8f:bf:49:92:e8:13:0e:6b:e5:c0:fa:ec:7a: a2:52:df:e9:10:e3:95:7a:b4:a0:c9:21:03:a7:71:88:db:82: d2:ca:ae:c3:8f:d6:d6:c0:8c:ef:27:6e:df:15:96:1f:33:a8: 5f:5c:87:de:36:0a:59:0f:a2:2d:36:c6:fe:1a:08:39:35:77: 7e:55:84:1e:be:fd:a6:fe:89:25:0e:4a:33:05:ef:ff:1f:56: 38:7e:fe:aa:e6:1e:2b:c2:9d:bc:76:60:6d:c8:bd:78:d8:9d: c7:6e:3f:00:92:7d:17:42:b9:85:20:77:26:97:bd:ed:21:ca: 6e:72:2b:fb:53:1f:fb:5b:3b:44:e8:4e:f6:72:33:c6:e1:c3: 73:07:d7:dc:5a:6a:83:b5:63:6c:1d:55:b0:5b:00:66:61:12: 71:c1:0a:e8:41:66:74:95:68:01:9a:7b:ea:c0:90:e0:a8:78: 55:c0:16:f2:c3:fd:a1:c1:7e:ad:ef:3b:14:ff:20:97:f0:7d: c3:f9:71:78 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RUI4 QzU3RDcyRjc5NDZERDdCMjQyMDU5OTI4OEVDQTE1M0NCNzA5MB4XDTI1MDUyNjAw NTYzOVoXDTI2MDUyNjAwNDAyNlowMzExMC8GA1UEAxMoQTQyMjE4OTg0NTE0N0Y4 QzA2Qzk1MjEzRjk4NjBCREM0NUIzODU4MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALSxH3L/eL1CWGloPdqhnMUGzGHCmMoBmGm3fU+cpsSdHS0SyM8h ksykU2ki93+uGSOCwHfOCJuhddxxdG+iQBzfIAskT66lOqXdf9IUgBG0wnmVM0/+ /Z2Hl+9B2SnT2neKG4Mu9wKH5c4IRPzFa8xVJxr3KECj8HX2zL84hFON2a7yifdP pAhwwf3Nx2uLgkMVmhl3Q6LOEdKma2LkH8toSBpUh8Rvynke02PGiyJsv88/NeGz 95gvnePvkeqh/eVqdx8cYy1M7kNZuoJSr2c7g2HZ9mXOAVCL3T81LxA8fzQn3TVr bAGPU1sEywUO/B5JZsFEzzHP3YruSuDWLbsCAwEAAaOCAe8wggHrMB0GA1UdDgQW BBSkIhiYRRR/jAbJUhP5hgvcRbOFgTAfBgNVHSMEGDAWgBReuMV9cveUbdeyQgWZ KI7KFTy3CTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NC9Y cmpGZlhMM2xHM1hza0lGbVNpT3loVTh0d2suY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL1hyakZmWEwzbEczWHNrSUZtU2lPeWhVOHR3ay5jZXIwDgYDVR0PAQH/BAQD AgeAMIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzY0L3BDSVltRVVVZjR3R3lWSVQt WVlMM0VXemhZRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5j bi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXT ZEAwDQYJKoZIhvcNAQELBQADggEBAMWr6oKavJALAfzoVA3NOXaxxMCsnY6Uzfet ql4rqU676+Sg9tIej1lqQcFmrN2b+gfzsp5uCOUTRJ2Jj79JkugTDmvlwPrseqJS 3+kQ45V6tKDJIQOncYjbgtLKrsOP1tbAjO8nbt8Vlh8zqF9ch942ClkPoi02xv4a CDk1d35VhB6+/ab+iSUOSjMF7/8fVjh+/qrmHivCnbx2YG3IvXjYncduPwCSfRdC uYUgdyaXve0hym5yK/tTH/tbO0ToTvZyM8bhw3MH19xaaoO1Y2wdVbBbAGZhEnHB CuhBZnSVaAGae+rAkOCoeFXAFvLD/aHBfq3vOxT/IJfwfcP5cXg= -----END CERTIFICATE-----Generated at Wed Jun 4 00:57:31 2025 by rpki-client