$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/uFzxHsDv6ZU6hKuTXmpz_VrgDAI.roa File: uFzxHsDv6ZU6hKuTXmpz_VrgDAI.roa (raw, json) Hash identifier: vwUMGmKtZDuRCagNDDOASG6zgLwsJqwky6CYwS1g05M= Subject key identifier: B8:5C:F1:1E:C0:EF:E9:95:3A:84:AB:93:5E:6A:73:FD:5A:E0:0C:02 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A93 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/uFzxHsDv6ZU6hKuTXmpz_VrgDAI.roa Signing time: Sat 13 Sep 2025 03:07:22 +0000 ROA not before: Sat 13 Sep 2025 03:07:22 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 2914 IP address blocks: 180.223.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Oct 2025 13:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6803 (0x1a93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:22 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=B85CF11EC0EFE9953A84AB935E6A73FD5AE00C02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:99:df:a7:74:db:4f:17:75:64:55:27:c4: 98:d2:24:de:9c:50:5c:d8:71:ab:13:97:d9:cc:81: 7e:52:43:52:f2:95:84:a3:e9:6e:ef:09:73:65:c3: c7:9e:ab:9b:dc:db:fc:12:87:b9:dc:cb:9e:47:b7: 6a:56:03:9f:22:80:8a:76:63:bd:b4:81:73:fc:c8: 06:8a:e3:02:8c:94:8f:e5:83:31:fc:8d:ae:a2:79: 21:c8:58:aa:8c:03:e3:7b:6e:b6:7d:28:5e:08:9c: b6:38:76:42:f1:c7:4d:70:ba:67:61:d5:0c:60:43: 54:00:a2:ea:8a:1d:28:70:c2:03:e6:7c:cb:85:69: f9:25:ad:d5:02:b5:13:78:0e:0f:83:52:da:ff:cd: 45:03:07:81:a3:ea:30:0c:cf:4e:84:b9:af:6b:34: e5:88:97:f1:7d:b7:7b:44:86:ea:6b:b6:28:3d:93: ce:bb:80:7b:a1:ed:02:af:ad:b6:9e:64:90:7c:01: 2f:b6:9c:0f:9d:a2:34:ac:17:e2:e0:56:46:72:6d: eb:5a:47:da:24:a8:95:3f:65:9d:b0:b8:13:d6:23: dc:9e:a0:e1:e6:48:ec:8c:94:37:b8:20:5e:8a:1d: 15:ec:e5:12:37:de:bb:44:3f:73:26:e6:fc:41:ba: 0a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5C:F1:1E:C0:EF:E9:95:3A:84:AB:93:5E:6A:73:FD:5A:E0:0C:02 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/uFzxHsDv6ZU6hKuTXmpz_VrgDAI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.204.0/24 Signature Algorithm: sha256WithRSAEncryption 81:d9:a2:ee:0d:af:f6:7d:ec:c4:6f:b5:b9:7c:db:8d:6b:75: 8a:b5:d6:9d:ea:08:1d:ba:a7:e8:7f:2c:e1:25:f0:cd:4c:db: 20:cf:2d:1d:03:cf:ba:52:b6:ea:1b:2c:94:27:c1:8d:7c:20: c0:f7:36:aa:33:65:01:02:98:82:8b:14:c3:c3:90:f0:d2:8d: ca:f5:2a:ef:98:5e:6e:b6:ea:df:fa:ef:b8:70:be:44:fa:72: 70:24:06:de:06:fa:f2:eb:a3:49:92:19:65:5f:e8:82:75:d5: f4:ea:9f:0b:9d:5f:05:49:7d:2b:d9:ba:0d:ad:85:ec:a0:e2: fc:1c:53:e8:d3:fe:e8:35:27:ea:9d:8a:3f:c2:fa:91:f1:90: 2c:fa:b1:d4:08:f8:3a:72:ff:12:c3:ff:3d:dc:39:4d:fb:3e: 99:13:86:be:10:94:65:dd:8d:d7:6f:a8:f1:3d:24:e9:ce:75: d6:f8:54:ec:d4:9f:bc:a1:1e:11:56:6f:47:72:50:2c:e7:db: 02:02:9d:2b:d8:4d:d7:50:64:11:8c:c1:9e:0e:bb:ba:f9:93: fe:46:40:bc:96:98:22:c7:0e:b4:43:9d:12:23:87:7f:05:9b: a0:54:7f:9d:9c:8a:7b:f1:02:5c:ba:46:75:30:d8:0a:f0:70: f8:86:5c:31 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGpMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEI4NUNGMTFFQzBFRkU5 OTUzQTg0QUI5MzVFNkE3M0ZENUFFMDBDMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtpZnfp3TbTxd1ZFUnxJjSJN6cUFzYcasTl9nMgX5SQ1LylYSj 6W7vCXNlw8eeq5vc2/wSh7ncy55Ht2pWA58igIp2Y720gXP8yAaK4wKMlI/lgzH8 ja6ieSHIWKqMA+N7brZ9KF4InLY4dkLxx01wumdh1QxgQ1QAouqKHShwwgPmfMuF afklrdUCtRN4Dg+DUtr/zUUDB4Gj6jAMz06Eua9rNOWIl/F9t3tEhuprtig9k867 gHuh7QKvrbaeZJB8AS+2nA+dojSsF+LgVkZybetaR9okqJU/ZZ2wuBPWI9yeoOHm SOyMlDe4IF6KHRXs5RI33rtEP3Mm5vxBugqDAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUuFzxHsDv6ZU6hKuTXmpz/VrgDAIwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvdUZ6eEhzRHY2WlU2 aEt1VFhtcHpfVnJnREFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfzDANBgkqhkiG9w0BAQsFAAOCAQEAgdmi7g2v9n3sxG+1uXzbjWt1irXW neoIHbqn6H8s4SXwzUzbIM8tHQPPulK26hsslCfBjXwgwPc2qjNlAQKYgosUw8OQ 8NKNyvUq75hebrbq3/rvuHC+RPpycCQG3gb68uujSZIZZV/ognXV9OqfC51fBUl9 K9m6Da2F7KDi/BxT6NP+6DUn6p2KP8L6kfGQLPqx1Aj4OnL/EsP/Pdw5Tfs+mROG vhCUZd2N12+o8T0k6c511vhU7NSfvKEeEVZvR3JQLOfbAgKdK9hN11BkEYzBng67 uvmT/kZAvJaYIscOtEOdEiOHfwWboFR/nZyKe/ECXLpGdTDYCvBw+IZcMQ== -----END CERTIFICATE-----Generated at Wed Oct 8 11:54:22 2025 by rpki-client