$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/uaaSZoTZCW8JzIr_jhYHCPRA63g.roa File: uaaSZoTZCW8JzIr_jhYHCPRA63g.roa (raw, json) Hash identifier: NcB8NI7FyUrHyrNnSSLjKzCAPuPUp2YxUUqJdIX/zBI= Subject key identifier: B9:A6:92:66:84:D9:09:6F:09:CC:8A:FF:8E:16:07:08:F4:40:EB:78 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1924 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/uaaSZoTZCW8JzIr_jhYHCPRA63g.roa Signing time: Mon 14 Jul 2025 11:52:35 +0000 ROA not before: Mon 14 Jul 2025 11:52:35 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 9304 IP address blocks: 180.223.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 23:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6436 (0x1924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Jul 14 11:52:35 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=B9A6926684D9096F09CC8AFF8E160708F440EB78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:1e:bf:9c:77:cf:2a:b3:1e:52:23:ae:3e: 08:7a:0b:3b:16:ec:b8:be:06:42:c0:02:ef:87:ed: 31:f6:e9:41:00:1b:02:20:bf:dc:ad:64:df:90:96: 99:0e:d4:59:f0:d3:c8:c3:6a:00:98:9c:16:b7:17: 8d:7c:34:c9:f0:05:c8:fb:17:34:0b:17:00:24:67: ed:03:09:66:ac:ab:a3:3d:cd:31:1b:a1:a9:81:98: 46:bc:8a:50:f2:70:f5:72:9f:3a:78:fe:ea:8b:80: 95:e8:1f:21:3d:85:30:a5:1c:8e:71:55:06:96:fd: b3:ee:bf:c5:73:00:03:54:64:dd:43:e6:26:02:fc: 2e:de:cb:18:74:ab:fe:ce:40:6c:fe:3c:e5:2e:14: 70:fc:82:33:f3:6d:2b:ba:bf:47:08:a0:ab:30:96: bf:e8:d7:cf:4d:1b:4d:b2:97:d7:38:0a:8e:8a:74: 09:7f:3d:9b:47:44:db:ac:3e:99:5b:fd:5f:ce:e2: 3e:f8:e1:d3:04:af:df:73:2e:98:43:07:6f:3b:66: e8:a3:4d:5d:53:02:78:72:9b:60:3d:2e:0b:17:0e: 6a:b6:5d:3e:36:3c:a7:e7:df:94:54:3f:84:b2:2c: 57:68:f8:48:70:c8:33:24:fe:66:04:68:3a:6a:88: c1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A6:92:66:84:D9:09:6F:09:CC:8A:FF:8E:16:07:08:F4:40:EB:78 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/uaaSZoTZCW8JzIr_jhYHCPRA63g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:2e:1d:87:54:a5:51:87:9e:93:77:8f:7d:2d:f8:c2:8c:ec: 97:a7:1e:e7:7f:33:30:53:20:8d:78:08:af:02:6a:5b:b0:7b: a9:e5:c5:54:59:40:0b:08:33:be:70:9a:c3:f0:38:85:b6:7e: d3:9c:6d:1a:81:cd:5f:f8:f4:73:e4:4a:c1:7a:ce:fe:d5:fd: 40:37:58:0a:50:26:e5:fa:60:b7:3b:af:c8:26:ce:14:65:29: 40:9c:79:56:ef:fd:ae:e5:0b:36:af:38:24:d0:c3:5a:21:dc: 3b:32:6e:d2:64:1d:46:b9:1b:a1:9a:66:f7:7e:db:3a:30:b7: 76:68:9b:28:fd:21:a0:f2:ce:22:aa:e1:57:c2:70:da:ef:e7: 0b:c8:3d:1d:71:77:38:ec:ad:6f:43:bf:e9:4e:f4:78:ad:5a: cd:67:bc:55:c4:a3:f8:6b:f3:e4:79:7c:19:e6:0e:cc:32:7b: 44:3e:92:98:d8:fe:25:1e:fe:a8:79:5d:97:81:2e:51:72:e1: 82:00:14:33:38:4d:01:fe:85:80:f3:5b:5f:21:17:51:d0:48: 02:75:db:b1:75:66:72:33:02:52:ee:31:b2:31:a1:0e:5b:41: ef:2e:61:ca:f2:39:8a:48:59:99:27:ec:89:ca:21:b4:ae:c5: 8e:c8:52:f1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGSQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA3MTQx MTUyMzVaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEI5QTY5MjY2ODREOTA5 NkYwOUNDOEFGRjhFMTYwNzA4RjQ0MEVCNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzPR6/nHfPKrMeUiOuPgh6CzsW7Li+BkLAAu+H7TH26UEAGwIg v9ytZN+QlpkO1Fnw08jDagCYnBa3F418NMnwBcj7FzQLFwAkZ+0DCWasq6M9zTEb oamBmEa8ilDycPVynzp4/uqLgJXoHyE9hTClHI5xVQaW/bPuv8VzAANUZN1D5iYC /C7eyxh0q/7OQGz+POUuFHD8gjPzbSu6v0cIoKswlr/o189NG02yl9c4Co6KdAl/ PZtHRNusPplb/V/O4j744dMEr99zLphDB287ZuijTV1TAnhym2A9LgsXDmq2XT42 PKfn35RUP4SyLFdo+EhwyDMk/mYEaDpqiMHLAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUuaaSZoTZCW8JzIr/jhYHCPRA63gwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvdWFhU1pvVFpDVzhK eklyX2poWUhDUFJBNjNnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBrTfwDANBgkqhkiG9w0BAQsFAAOCAQEALi4dh1SlUYeek3ePfS34wozsl6ce 538zMFMgjXgIrwJqW7B7qeXFVFlACwgzvnCaw/A4hbZ+05xtGoHNX/j0c+RKwXrO /tX9QDdYClAm5fpgtzuvyCbOFGUpQJx5Vu/9ruULNq84JNDDWiHcOzJu0mQdRrkb oZpm937bOjC3dmibKP0hoPLOIqrhV8Jw2u/nC8g9HXF3OOytb0O/6U70eK1azWe8 VcSj+Gvz5Hl8GeYOzDJ7RD6SmNj+JR7+qHldl4EuUXLhggAUMzhNAf6FgPNbXyEX UdBIAnXbsXVmcjMCUu4xsjGhDltB7y5hyvI5ikhZmSfsicohtK7FjshS8Q== -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:39 2025 by rpki-client