$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/64/wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa File: wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa (raw, json) Hash identifier: zvKAVQ1/Ys9GSlKB3gUEGolh8vjjW8BwNg1SlqEWfKU= Subject key identifier: C0:B0:42:41:2D:4E:70:52:9F:E6:3C:1F:0A:B3:B6:46:E2:F2:2B:18 Certificate issuer: /CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Certificate serial: 11 Authority key identifier: 5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa Signing time: Mon 26 May 2025 00:56:39 +0000 ROA not before: Mon 26 May 2025 00:56:39 +0000 ROA not after: Tue 26 May 2026 00:40:26 +0000 asID: 23724 IP address blocks: 211.150.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 01:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EB8C57D72F7946DD7B2420599288ECA153CB709 Validity Not Before: May 26 00:56:39 2025 GMT Not After : May 26 00:40:26 2026 GMT Subject: CN=C0B042412D4E70529FE63C1F0AB3B646E2F22B18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:d7:28:70:b6:83:9a:5c:08:24:4f:20:01: 9d:71:0b:30:a3:c8:93:fc:2e:2d:4a:e8:fe:34:7f: bb:23:d2:8f:36:a3:ec:38:81:76:e3:a9:bc:8e:f2: a1:2c:d4:b1:3d:f7:5c:51:b2:a9:eb:4d:84:2a:05: 13:61:1f:18:7a:9b:57:a0:86:ed:ac:eb:ca:8a:b4: f8:50:53:5b:8f:99:a2:e5:af:40:1e:0a:f2:9c:57: 4a:a5:4d:9d:e7:aa:c4:78:24:d5:1c:76:42:2b:96: a4:bb:65:b7:46:c0:b4:56:90:3a:97:15:cb:2d:d3: 4c:7a:21:81:b4:21:8d:72:1b:41:9c:bf:2f:7e:ad: cf:da:17:3a:93:7f:c7:3f:32:17:51:0f:e1:5b:86: a7:f5:0a:6b:78:be:7a:59:19:59:04:5e:b0:cd:10: c1:fc:11:1e:ba:75:cc:50:d7:0d:72:4d:cc:10:c7: 0f:7e:4a:c8:7c:2a:9f:1a:08:10:b0:50:f4:63:16: 0a:14:17:60:9b:ca:e3:a4:32:a5:b6:2f:7e:8b:0a: 60:93:ad:22:ee:c1:46:70:6f:eb:a2:05:46:d1:8b: 51:b7:37:9b:5a:72:48:55:b8:48:1a:b9:76:9a:db: d3:66:6f:79:ac:ad:ee:ec:21:75:a2:67:04:24:2a: 89:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B0:42:41:2D:4E:70:52:9F:E6:3C:1F:0A:B3:B6:46:E2:F2:2B:18 X509v3 Authority Key Identifier: keyid:5E:B8:C5:7D:72:F7:94:6D:D7:B2:42:05:99:28:8E:CA:15:3C:B7:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/XrjFfXL3lG3XskIFmSiOyhU8twk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XrjFfXL3lG3XskIFmSiOyhU8twk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/64/wLBCQS1OcFKf5jwfCrO2RuLyKxg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.150.64.0/19 Signature Algorithm: sha256WithRSAEncryption 49:5e:7d:b3:25:6d:7a:05:8b:8b:43:25:17:75:df:be:63:f9: 57:63:ff:07:7c:1f:0d:0a:5f:05:83:0d:d2:1b:e3:e4:e8:ec: c1:f8:84:08:03:22:73:5e:26:ae:56:ea:1f:0d:66:31:1d:3e: 94:96:02:c1:d7:08:19:de:c0:7c:d0:d1:8a:d5:cc:aa:52:24: 9e:b9:e5:6b:6f:05:e0:3e:aa:d6:98:56:ea:d0:e9:d2:14:b1: 3b:52:48:86:03:5f:fc:b6:32:7f:80:d7:86:21:7d:8e:ab:84: f1:2f:3f:e0:6c:5a:b3:fb:35:79:12:76:52:b6:29:78:94:df: b8:b2:72:7a:d6:91:04:11:7e:ca:38:8e:35:13:46:6d:75:4b: 9d:d1:a5:f4:ab:2d:53:6c:66:e1:32:7c:e2:2e:f9:40:dc:5d: b2:6b:cd:33:7f:cf:ed:be:9a:1c:cc:0e:e8:47:d8:e4:69:c4: 83:d5:a6:c2:3b:c3:00:c1:8d:cb:7c:a9:fc:85:61:5f:eb:91: 21:c9:41:53:bb:3d:d7:15:e8:e4:bd:0f:ed:7e:3a:2c:ce:70: db:dd:8c:8e:77:53:19:96:94:8a:6f:8f:4d:a0:c2:09:f7:91: 87:b3:29:c9:0e:6d:fc:ee:25:e5:92:5f:be:c5:9d:82:d4:5d: 36:43:4a:1e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RUI4 QzU3RDcyRjc5NDZERDdCMjQyMDU5OTI4OEVDQTE1M0NCNzA5MB4XDTI1MDUyNjAw NTYzOVoXDTI2MDUyNjAwNDAyNlowMzExMC8GA1UEAxMoQzBCMDQyNDEyRDRFNzA1 MjlGRTYzQzFGMEFCM0I2NDZFMkYyMkIxODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMp01yhwtoOaXAgkTyABnXELMKPIk/wuLUro/jR/uyPSjzaj7DiB duOpvI7yoSzUsT33XFGyqetNhCoFE2EfGHqbV6CG7azryoq0+FBTW4+ZouWvQB4K 8pxXSqVNneeqxHgk1Rx2QiuWpLtlt0bAtFaQOpcVyy3TTHohgbQhjXIbQZy/L36t z9oXOpN/xz8yF1EP4VuGp/UKa3i+elkZWQResM0QwfwRHrp1zFDXDXJNzBDHD35K yHwqnxoIELBQ9GMWChQXYJvK46QypbYvfosKYJOtIu7BRnBv66IFRtGLUbc3m1py SFW4SBq5dprb02Zveayt7uwhdaJnBCQqiX8CAwEAAaOCAe8wggHrMB0GA1UdDgQW BBTAsEJBLU5wUp/mPB8Ks7ZG4vIrGDAfBgNVHSMEGDAWgBReuMV9cveUbdeyQgWZ KI7KFTy3CTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NC9Y cmpGZlhMM2xHM1hza0lGbVNpT3loVTh0d2suY3JsMGMGCCsGAQUFBwEBBFcwVTBT BggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0Qw MDAwL1hyakZmWEwzbEczWHNrSUZtU2lPeWhVOHR3ay5jZXIwDgYDVR0PAQH/BAQD AgeAMIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtp LmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzY0L3dMQkNRUzFPY0ZLZjVqd2ZD ck8yUnVMeUt4Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5pYy5j bi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXT lkAwDQYJKoZIhvcNAQELBQADggEBAElefbMlbXoFi4tDJRd1375j+Vdj/wd8Hw0K XwWDDdIb4+To7MH4hAgDInNeJq5W6h8NZjEdPpSWAsHXCBnewHzQ0YrVzKpSJJ65 5WtvBeA+qtaYVurQ6dIUsTtSSIYDX/y2Mn+A14YhfY6rhPEvP+BsWrP7NXkSdlK2 KXiU37iycnrWkQQRfso4jjUTRm11S53RpfSrLVNsZuEyfOIu+UDcXbJrzTN/z+2+ mhzMDuhH2ORpxIPVpsI7wwDBjct8qfyFYV/rkSHJQVO7PdcV6OS9D+1+OizOcNvd jI53UxmWlIpvj02gwgn3kYezKckObfzuJeWSX77FnYLUXTZDSh4= -----END CERTIFICATE-----Generated at Wed Jun 4 01:09:54 2025 by rpki-client