$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/MLs94S19HjijJrGMxTXmGXpwf2c.roa File: MLs94S19HjijJrGMxTXmGXpwf2c.roa (raw, json) Hash identifier: d5+fWdgYmylDt6jB2gCg0ZgE3aMRQhCk/rdzyWlR8tg= Subject key identifier: 30:BB:3D:E1:2D:7D:1E:38:A3:26:B1:8C:C5:35:E6:19:7A:70:7F:67 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A6C Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/MLs94S19HjijJrGMxTXmGXpwf2c.roa Signing time: Sat 13 Sep 2025 03:07:14 +0000 ROA not before: Sat 13 Sep 2025 03:07:14 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 2914 IP address blocks: 180.223.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Oct 2025 13:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6764 (0x1a6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:14 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=30BB3DE12D7D1E38A326B18CC535E6197A707F67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9d:56:ff:35:62:22:4d:55:95:b8:b3:2c:32: 06:5a:9e:79:51:a5:12:0b:3b:b9:d7:00:75:31:c1: 63:c7:33:aa:05:fd:52:24:e3:9a:bf:aa:88:71:b8: 61:90:34:e5:17:75:10:60:7e:e6:cb:47:9b:97:6b: 79:34:96:eb:12:5b:85:99:9d:12:c3:52:46:2a:d4: 00:10:63:5d:75:59:18:b0:c5:74:4d:49:c0:79:87: fd:3d:1b:f6:2a:e7:28:3f:cd:42:67:43:17:42:f2: 60:86:55:53:e4:11:86:a9:9a:b0:88:5e:82:cc:cd: 94:64:25:72:f1:73:ba:e9:67:5e:f1:a1:d6:f1:01: a0:e3:36:4e:d4:0f:b7:99:80:54:68:31:81:d8:cb: be:d8:fa:5e:89:1e:1c:03:a9:41:06:68:39:f9:a5: ef:52:e9:0b:e7:9e:b4:dc:32:56:19:e2:b5:50:08: b4:63:41:4a:f6:d0:12:9b:ab:11:5e:ca:42:c7:94: d5:e6:31:1d:8b:bf:1b:b1:64:4b:ae:ad:71:91:4c: 43:03:20:e5:b3:25:80:cd:01:9c:c6:8e:c8:72:fa: a4:03:ab:e4:50:f8:6b:73:12:7f:c8:0d:b6:51:20: f3:94:15:f4:21:c5:46:da:8d:7c:0c:4d:c0:44:5d: d5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:BB:3D:E1:2D:7D:1E:38:A3:26:B1:8C:C5:35:E6:19:7A:70:7F:67 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/MLs94S19HjijJrGMxTXmGXpwf2c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.193.0/24 Signature Algorithm: sha256WithRSAEncryption b8:f5:2b:e0:2b:6e:83:67:b1:eb:74:de:a9:8a:63:94:e2:c0: cd:b8:60:be:cd:e0:7b:08:6d:fa:a9:01:a3:17:84:80:32:78: 5f:c1:5f:4a:98:bc:fc:62:83:89:b8:e9:e6:5a:be:d0:05:95: 2b:0e:f4:7b:96:3b:c9:7e:e0:92:03:33:83:12:c2:60:59:df: d1:09:c3:36:6a:13:60:97:0b:ca:88:5e:08:83:be:41:99:6b: c4:91:9a:8d:41:1d:38:88:29:ea:66:6a:0f:ea:01:cf:7a:4c: 7e:ca:16:15:dc:2f:ea:0a:4d:b8:3f:ff:71:47:cc:6f:df:2e: 51:06:7a:03:e1:3a:1b:44:c2:db:a5:5b:e8:37:e2:c5:43:77: f8:f9:cd:7f:25:b9:27:30:45:2e:a2:ff:3e:45:3d:b1:cf:ff: 10:66:74:8e:86:44:32:95:f6:5d:da:fa:17:ca:2b:35:1e:cd: e1:af:1d:d6:a5:23:88:9b:19:60:7d:f7:5f:4b:a3:00:15:bb: 6d:b6:45:68:a8:1e:30:a5:ac:56:26:80:2f:0d:95:f7:47:8b: 83:fb:5d:3f:1c:31:61:8c:5f:18:ed:c4:90:5a:f4:98:1e:09: 5b:74:ca:d5:4c:58:6c:a8:6a:93:cd:25:af:29:c7:25:d1:0e: df:5f:5e:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDMwQkIzREUxMkQ3RDFF MzhBMzI2QjE4Q0M1MzVFNjE5N0E3MDdGNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCnVb/NWIiTVWVuLMsMgZannlRpRILO7nXAHUxwWPHM6oF/VIk 45q/qohxuGGQNOUXdRBgfubLR5uXa3k0lusSW4WZnRLDUkYq1AAQY111WRiwxXRN ScB5h/09G/Yq5yg/zUJnQxdC8mCGVVPkEYapmrCIXoLMzZRkJXLxc7rpZ17xodbx AaDjNk7UD7eZgFRoMYHYy77Y+l6JHhwDqUEGaDn5pe9S6QvnnrTcMlYZ4rVQCLRj QUr20BKbqxFeykLHlNXmMR2LvxuxZEuurXGRTEMDIOWzJYDNAZzGjshy+qQDq+RQ +GtzEn/IDbZRIPOUFfQhxUbajXwMTcBEXdW/AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUMLs94S19HjijJrGMxTXmGXpwf2cwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvTUxzOTRTMTlIamlq SnJHTXhUWG1HWHB3ZjJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfwTANBgkqhkiG9w0BAQsFAAOCAQEAuPUr4Ctug2ex63TeqYpjlOLAzbhg vs3gewht+qkBoxeEgDJ4X8FfSpi8/GKDibjp5lq+0AWVKw70e5Y7yX7gkgMzgxLC YFnf0QnDNmoTYJcLyoheCIO+QZlrxJGajUEdOIgp6mZqD+oBz3pMfsoWFdwv6gpN uD//cUfMb98uUQZ6A+E6G0TC26Vb6DfixUN3+PnNfyW5JzBFLqL/PkU9sc//EGZ0 joZEMpX2Xdr6F8orNR7N4a8d1qUjiJsZYH33X0ujABW7bbZFaKgeMKWsViaALw2V 90eLg/tdPxwxYYxfGO3EkFr0mB4JW3TK1UxYbKhqk80lrynHJdEO319e8Q== -----END CERTIFICATE-----Generated at Wed Oct 8 11:54:26 2025 by rpki-client