$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/767/JZSFwX11XDXwh3O-BnQ4DF71Too.roa File: JZSFwX11XDXwh3O-BnQ4DF71Too.roa (raw, json) Hash identifier: QsEZsRMb9zUm+1TKOBIyY+OUSV5ChHc/urzHS8HKYqo= Subject key identifier: 25:94:85:C1:7D:75:5C:35:F0:87:73:BE:06:74:38:0C:5E:F5:4E:8A Certificate issuer: /CN=FEE0C827CE296202006EB4ED2B6595DCE0E97C7B Certificate serial: 186B Authority key identifier: FE:E0:C8:27:CE:29:62:02:00:6E:B4:ED:2B:65:95:DC:E0:E9:7C:7B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/JZSFwX11XDXwh3O-BnQ4DF71Too.roa Signing time: Tue 20 May 2025 07:43:22 +0000 ROA not before: Tue 20 May 2025 07:43:22 +0000 ROA not after: Thu 09 Apr 2026 06:40:47 +0000 asID: 4808 IP address blocks: 103.43.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 01:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6251 (0x186b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FEE0C827CE296202006EB4ED2B6595DCE0E97C7B Validity Not Before: May 20 07:43:22 2025 GMT Not After : Apr 9 06:40:47 2026 GMT Subject: CN=259485C17D755C35F08773BE0674380C5EF54E8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c4:85:b6:20:dd:d0:1e:67:df:9a:a4:c9:b3: ca:8c:5d:57:af:5b:bb:43:91:3c:5c:96:e4:a7:90: a5:9d:d4:83:97:78:46:b3:24:e6:10:bf:67:8b:3a: ce:fe:82:80:00:09:0b:04:ab:2f:e4:65:2f:f2:22: 03:f7:c7:3c:70:a4:64:3a:a0:48:c7:66:0b:5c:c8: 15:c8:d2:26:db:60:0e:81:cb:0e:4a:8d:fd:7a:e0: 78:8f:2e:e3:6b:e4:61:e0:8f:9d:4b:d2:c1:b6:12: 90:ae:26:61:98:3d:f7:b5:4d:e5:ef:95:19:6c:2a: fd:45:b6:6e:4c:05:3d:e2:e4:54:98:2d:c8:78:43: 3b:83:fc:93:f5:37:ed:67:16:53:0e:4d:7f:18:05: 13:ca:bb:b6:38:8d:07:7a:8d:da:6f:f9:b7:cc:af: 6d:37:7f:06:8e:88:07:e6:a6:21:f1:f6:25:a1:7d: 3a:61:79:58:83:e3:66:ee:e8:b6:bf:83:f8:5b:eb: a0:97:9f:30:99:dd:61:9d:72:73:1c:f4:cc:50:9e: a1:9d:29:0d:e5:89:c4:f6:3f:7f:7b:25:81:c7:50: 32:61:62:f9:e7:c9:18:fb:be:93:24:e4:e6:c5:f3: 85:63:10:38:e4:5e:fc:d1:9b:fa:d2:b3:cd:bc:27: 90:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:94:85:C1:7D:75:5C:35:F0:87:73:BE:06:74:38:0C:5E:F5:4E:8A X509v3 Authority Key Identifier: keyid:FE:E0:C8:27:CE:29:62:02:00:6E:B4:ED:2B:65:95:DC:E0:E9:7C:7B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/_uDIJ84pYgIAbrTtK2WV3ODpfHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/_uDIJ84pYgIAbrTtK2WV3ODpfHs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/767/JZSFwX11XDXwh3O-BnQ4DF71Too.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.241.0/24 Signature Algorithm: sha256WithRSAEncryption 01:92:c5:4b:a4:71:86:5d:50:fa:ce:16:1f:04:d9:39:eb:42: 6c:bc:1d:61:cd:a4:b1:cd:b4:0b:9e:4d:a2:68:b7:14:6d:22: 39:c2:f6:0c:b0:6d:b8:d7:3d:c8:64:d9:ed:f2:de:05:f6:c5: 32:35:88:f4:14:33:b6:c6:bf:4e:ea:21:80:a7:63:cf:7f:c7: 39:82:ef:a6:4e:a7:f2:cc:20:e1:eb:8a:a1:7b:f5:06:c7:95: 39:33:8f:86:cc:3c:96:39:21:45:db:60:07:ed:76:31:ed:71: 57:09:44:45:5b:37:d6:e0:ae:4b:64:2b:11:08:f5:78:bb:6b: 97:3b:f9:e1:c0:0b:f7:fd:43:fc:d8:32:e8:6f:85:d8:dd:51: db:81:be:e7:5e:49:61:76:8c:6e:ae:67:1b:1b:66:74:6a:c2: f9:96:64:5f:bd:46:8e:7c:f0:8c:aa:b7:6d:83:62:17:7d:0d: 22:bf:e9:08:57:aa:7f:28:29:19:7d:e1:7c:74:2c:91:ec:f1: de:eb:1e:e9:3b:ec:64:5d:b7:75:56:e4:e3:ca:52:84:76:52: 96:d3:f4:b4:1a:c5:c8:8d:99:be:f4:d9:9a:0d:e7:74:1e:6f: a5:6b:84:8d:98:1c:22:17:20:31:81:83:23:19:9a:f5:6b:c2: f3:8e:89:b5 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICGGswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkVF MEM4MjdDRTI5NjIwMjAwNkVCNEVEMkI2NTk1RENFMEU5N0M3QjAeFw0yNTA1MjAw NzQzMjJaFw0yNjA0MDkwNjQwNDdaMDMxMTAvBgNVBAMTKDI1OTQ4NUMxN0Q3NTVD MzVGMDg3NzNCRTA2NzQzODBDNUVGNTRFOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqxIW2IN3QHmffmqTJs8qMXVevW7tDkTxcluSnkKWd1IOXeEaz JOYQv2eLOs7+goAACQsEqy/kZS/yIgP3xzxwpGQ6oEjHZgtcyBXI0ibbYA6Byw5K jf164HiPLuNr5GHgj51L0sG2EpCuJmGYPfe1TeXvlRlsKv1Ftm5MBT3i5FSYLch4 QzuD/JP1N+1nFlMOTX8YBRPKu7Y4jQd6jdpv+bfMr203fwaOiAfmpiHx9iWhfTph eViD42bu6La/g/hb66CXnzCZ3WGdcnMc9MxQnqGdKQ3licT2P397JYHHUDJhYvnn yRj7vpMk5ObF84VjEDjkXvzRm/rSs828J5BfAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUJZSFwX11XDXwh3O+BnQ4DF71ToowHwYDVR0jBBgwFoAU/uDIJ84pYgIAbrTt K2WV3ODpfHswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzY3 L191RElKODRwWWdJQWJyVHRLMldWM09EcGZIcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvX3VESUo4NHBZZ0lBYnJUdEsyV1YzT0RwZkhzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNzY3L0paU0Z3WDExWERYd2gz Ty1CblE0REY3MVRvby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnK/EwDQYJKoZIhvcNAQELBQADggEBAAGSxUukcYZdUPrOFh8E2TnrQmy8HWHN pLHNtAueTaJotxRtIjnC9gywbbjXPchk2e3y3gX2xTI1iPQUM7bGv07qIYCnY89/ xzmC76ZOp/LMIOHriqF79QbHlTkzj4bMPJY5IUXbYAftdjHtcVcJREVbN9bgrktk KxEI9Xi7a5c7+eHAC/f9Q/zYMuhvhdjdUduBvudeSWF2jG6uZxsbZnRqwvmWZF+9 Ro588Iyqt22DYhd9DSK/6QhXqn8oKRl94Xx0LJHs8d7rHuk77GRdt3VW5OPKUoR2 UpbT9LQaxciNmb702ZoN53Qeb6VrhI2YHCIXIDGBgyMZmvVrwvOOibU= -----END CERTIFICATE-----Generated at Wed Jun 4 00:47:51 2025 by rpki-client