$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/uL-0JsbFKVZTfPqbbOBF0d5KOYc.roa File: uL-0JsbFKVZTfPqbbOBF0d5KOYc.roa (raw, json) Hash identifier: DyAfJtJDhxRp1bdG9iq6G/06rT36thBYM5tZ4HJOBno= Subject key identifier: B8:BF:B4:26:C6:C5:29:56:53:7C:FA:9B:6C:E0:45:D1:DE:4A:39:87 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A64 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/uL-0JsbFKVZTfPqbbOBF0d5KOYc.roa Signing time: Sat 13 Sep 2025 03:07:13 +0000 ROA not before: Sat 13 Sep 2025 03:07:13 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 2914 IP address blocks: 180.223.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 Oct 2025 13:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6756 (0x1a64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:13 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=B8BFB426C6C52956537CFA9B6CE045D1DE4A3987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:51:af:a4:29:3b:7e:2e:9b:c0:e1:b3:52:75: fc:aa:6c:21:06:13:fd:56:d6:f4:0e:9f:e8:63:7c: 5f:fd:8b:23:69:17:9a:e8:11:01:52:e0:87:ae:25: 04:85:ce:5a:54:8b:ef:f1:84:cd:c4:cb:ef:dd:1a: 95:3d:03:ca:3d:c3:7c:7a:88:05:e2:05:ed:d5:52: 33:80:35:4a:49:20:5f:8d:f3:03:a3:79:bc:d8:3e: cb:4e:d5:fb:c9:08:0d:69:e0:86:d6:9b:c1:b8:7b: 85:c0:26:85:ed:5f:c6:88:a8:43:c2:e8:60:92:34: d4:58:ff:9e:86:42:cd:d4:d3:eb:15:63:68:74:2c: 86:8f:63:3b:ba:0b:70:84:c2:43:d2:61:3e:7d:7f: 92:f9:3f:4f:11:f9:db:30:1c:48:4d:06:f8:18:f7: 4e:f5:78:ac:2c:3e:41:f0:1e:9e:ca:59:72:3a:c2: f9:54:e5:55:19:25:c4:52:69:e0:db:4f:c0:66:3c: 62:6c:a9:42:14:69:be:0e:dd:d8:8b:b0:8a:8d:e0: 32:bf:59:3f:01:c9:fa:2b:3a:db:ae:3e:6b:40:10: bc:6c:7e:07:f0:79:ff:cb:0c:ce:b8:11:a5:db:57: c5:d0:cf:2b:9f:3a:a1:4f:30:9a:f0:2e:80:56:c7: af:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:BF:B4:26:C6:C5:29:56:53:7C:FA:9B:6C:E0:45:D1:DE:4A:39:87 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/uL-0JsbFKVZTfPqbbOBF0d5KOYc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.196.0/24 Signature Algorithm: sha256WithRSAEncryption 03:81:ff:d1:1e:25:da:14:09:bb:c8:62:1b:d3:9a:a0:f3:93: 1c:0d:17:4f:2c:0d:a9:9c:a5:aa:44:11:75:2d:d7:19:7a:b2: 26:b3:d7:88:ef:dc:80:8a:80:c7:13:96:c0:f5:32:5c:5c:64: 68:63:33:fc:d9:aa:9a:45:77:f1:dc:a0:a6:5c:59:03:fe:4a: fe:8e:75:c3:2d:fd:fe:91:b6:51:d5:ac:f0:55:4a:7d:9d:78: 58:99:0c:34:9f:bf:c1:92:5f:7b:04:f4:ae:95:75:d2:1f:1f: e7:a9:83:bd:bc:10:d5:47:75:e4:9d:90:77:c8:90:28:12:19: c4:80:d6:a4:ef:d8:b3:ec:2a:e8:7c:fb:42:9b:03:7f:6b:e2: 7c:8a:ad:3f:00:6d:63:93:27:e8:31:1b:b6:22:37:bb:6f:71: 92:b6:08:0a:dd:71:70:40:2f:4e:b0:41:42:e0:30:66:28:02: 91:3e:1b:11:ef:05:79:3d:76:af:8c:9b:92:22:23:e6:30:27: fc:83:d4:ce:3c:ef:61:8c:c8:60:02:e6:0d:e6:0b:64:38:d9: 04:aa:1a:fc:90:a8:cc:05:85:6c:53:d6:ff:21:fe:14:84:9d: 85:3d:fe:af:71:1f:ea:9b:89:4c:9b:25:fc:d5:4f:4e:3a:31: 84:e5:4a:0c -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEI4QkZCNDI2QzZDNTI5 NTY1MzdDRkE5QjZDRTA0NUQxREU0QTM5ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnUa+kKTt+LpvA4bNSdfyqbCEGE/1W1vQOn+hjfF/9iyNpF5ro EQFS4IeuJQSFzlpUi+/xhM3Ey+/dGpU9A8o9w3x6iAXiBe3VUjOANUpJIF+N8wOj ebzYPstO1fvJCA1p4IbWm8G4e4XAJoXtX8aIqEPC6GCSNNRY/56GQs3U0+sVY2h0 LIaPYzu6C3CEwkPSYT59f5L5P08R+dswHEhNBvgY9071eKwsPkHwHp7KWXI6wvlU 5VUZJcRSaeDbT8BmPGJsqUIUab4O3diLsIqN4DK/WT8ByforOtuuPmtAELxsfgfw ef/LDM64EaXbV8XQzyufOqFPMJrwLoBWx6+BAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUuL+0JsbFKVZTfPqbbOBF0d5KOYcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvdUwtMEpzYkZLVlpU ZlBxYmJPQkYwZDVLT1ljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfxDANBgkqhkiG9w0BAQsFAAOCAQEAA4H/0R4l2hQJu8hiG9OaoPOTHA0X TywNqZylqkQRdS3XGXqyJrPXiO/cgIqAxxOWwPUyXFxkaGMz/NmqmkV38dygplxZ A/5K/o51wy39/pG2UdWs8FVKfZ14WJkMNJ+/wZJfewT0rpV10h8f56mDvbwQ1Ud1 5J2Qd8iQKBIZxIDWpO/Ys+wq6Hz7QpsDf2vifIqtPwBtY5Mn6DEbtiI3u29xkrYI Ct1xcEAvTrBBQuAwZigCkT4bEe8FeT12r4ybkiIj5jAn/IPUzjzvYYzIYALmDeYL ZDjZBKoa/JCozAWFbFPW/yH+FISdhT3+r3Ef6puJTJsl/NVPTjoxhOVKDA== -----END CERTIFICATE-----Generated at Wed Oct 8 11:54:33 2025 by rpki-client