$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/m0WhzNrI3uXXOlE0K-KdPs5gvOc.roa File: m0WhzNrI3uXXOlE0K-KdPs5gvOc.roa (raw, json) Hash identifier: 4z217hTHBmLm+dU7l6JpzhYdAzjhKVk+okt6tCwL48s= Subject key identifier: 9B:45:A1:CC:DA:C8:DE:E5:D7:3A:51:34:2B:E2:9D:3E:CE:60:BC:E7 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1AA2 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/m0WhzNrI3uXXOlE0K-KdPs5gvOc.roa Signing time: Sat 13 Sep 2025 03:07:26 +0000 ROA not before: Sat 13 Sep 2025 03:07:26 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 2914 IP address blocks: 180.223.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Oct 2025 13:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6818 (0x1aa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:26 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=9B45A1CCDAC8DEE5D73A51342BE29D3ECE60BCE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0b:06:4e:05:0a:27:fc:61:73:63:97:e4:8d: f5:29:5d:d7:2c:69:11:96:90:04:1f:2c:4d:1f:36: 8c:c8:ad:69:97:2f:26:0a:4a:0a:06:a6:e0:38:af: 2a:1c:46:9d:47:19:87:93:36:75:f6:c1:d1:ee:b0: ec:b3:52:17:3f:8d:7b:62:cc:f9:08:ac:1f:46:d2: d6:82:21:f6:d5:92:25:c1:3d:9e:3f:e5:23:da:6b: 81:47:01:a7:ad:2a:52:cd:d0:03:3c:51:f2:43:41: 9c:88:dd:13:e9:04:ac:07:e1:7d:d3:51:f6:c4:9a: df:db:71:aa:5c:e5:87:b4:96:01:15:bf:54:02:ac: de:69:2d:06:be:c7:1e:37:b8:6a:ed:4c:45:3b:97: af:90:39:94:e1:9a:24:03:4d:1e:b9:2b:17:16:ba: e1:ab:1a:ed:be:d5:41:96:c0:7e:a2:8b:1c:e7:a6: 6f:7e:02:32:7d:91:09:2a:d1:84:6f:d2:8c:01:28: 84:81:6a:d7:28:ac:97:cd:a0:41:89:5c:f8:07:f7: f8:2c:e6:2d:d2:58:13:bf:82:35:4f:c5:65:36:1e: 65:8b:38:af:ea:6e:4b:12:f4:dc:fa:90:ea:da:a1: c5:24:f4:be:e1:6b:77:7c:5b:ea:16:40:d3:85:fe: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:45:A1:CC:DA:C8:DE:E5:D7:3A:51:34:2B:E2:9D:3E:CE:60:BC:E7 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/m0WhzNrI3uXXOlE0K-KdPs5gvOc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.195.0/24 Signature Algorithm: sha256WithRSAEncryption a6:a9:40:c2:20:c1:1e:7e:85:b2:f1:3f:7e:04:f9:fa:97:ca: 74:79:d5:88:ba:97:2c:3d:61:b5:f7:59:0d:81:c3:b0:e2:39: 1d:47:e4:36:f0:b8:b3:1a:e3:2c:a3:1a:e4:f0:5c:92:b6:bb: 09:d5:a3:fc:da:2e:7f:b5:b7:d8:cd:35:4b:bf:47:72:1a:18: dd:3a:77:9e:9f:a9:8b:26:a1:12:9e:28:e6:d6:f0:0f:b8:76: ac:7b:36:2b:1a:e2:0c:c0:2a:9a:ff:e1:cf:40:9e:f4:2f:aa: 3a:11:fc:06:e8:37:3a:89:c1:1c:e6:51:d6:4b:ac:69:91:a5: 9c:96:5b:b9:83:bd:8c:d5:da:67:0d:37:0c:be:43:57:d9:70: 70:03:85:09:9f:53:32:4d:aa:a6:fe:33:42:ba:ad:b7:e2:ba: e4:f7:47:64:82:8e:9c:5b:2a:9f:79:fc:4e:67:d7:ad:0c:46: 03:29:4e:b0:0c:4f:6f:97:9b:08:9c:b2:f4:92:cb:3b:48:d4: 33:76:af:60:df:07:76:14:c1:28:3d:85:5e:98:06:74:cc:b5: d6:0a:6a:e7:86:39:06:e5:cc:d8:46:13:af:cb:03:21:3e:69: 18:a9:f5:ec:29:ff:5f:f3:6b:a4:b4:fc:6e:03:2c:11:44:ed: 67:81:a6:be -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGqIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDlCNDVBMUNDREFDOERF RTVENzNBNTEzNDJCRTI5RDNFQ0U2MEJDRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaCwZOBQon/GFzY5fkjfUpXdcsaRGWkAQfLE0fNozIrWmXLyYK SgoGpuA4ryocRp1HGYeTNnX2wdHusOyzUhc/jXtizPkIrB9G0taCIfbVkiXBPZ4/ 5SPaa4FHAaetKlLN0AM8UfJDQZyI3RPpBKwH4X3TUfbEmt/bcapc5Ye0lgEVv1QC rN5pLQa+xx43uGrtTEU7l6+QOZThmiQDTR65KxcWuuGrGu2+1UGWwH6iixznpm9+ AjJ9kQkq0YRv0owBKISBatcorJfNoEGJXPgH9/gs5i3SWBO/gjVPxWU2HmWLOK/q bksS9Nz6kOraocUk9L7ha3d8W+oWQNOF/kKxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUm0WhzNrI3uXXOlE0K+KdPs5gvOcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvbTBXaHpOckkzdVhY T2xFMEstS2RQczVndk9jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfwzANBgkqhkiG9w0BAQsFAAOCAQEApqlAwiDBHn6FsvE/fgT5+pfKdHnV iLqXLD1htfdZDYHDsOI5HUfkNvC4sxrjLKMa5PBckra7CdWj/Nouf7W32M01S79H choY3Tp3np+piyahEp4o5tbwD7h2rHs2KxriDMAqmv/hz0Ce9C+qOhH8Bug3OonB HOZR1kusaZGlnJZbuYO9jNXaZw03DL5DV9lwcAOFCZ9TMk2qpv4zQrqtt+K65PdH ZIKOnFsqn3n8TmfXrQxGAylOsAxPb5ebCJyy9JLLO0jUM3avYN8HdhTBKD2FXpgG dMy11gpq54Y5BuXM2EYTr8sDIT5pGKn17Cn/X/NrpLT8bgMsEUTtZ4Gmvg== -----END CERTIFICATE-----Generated at Wed Oct 8 11:55:16 2025 by rpki-client