$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1023/mrsHKrTmE4mOslEo5lBsb9iRJlk.roa File: mrsHKrTmE4mOslEo5lBsb9iRJlk.roa (raw, json) Hash identifier: a/F6thmLhHVyrowSSbW9el8yqJWv7IOkNKEtetCNUq8= Subject key identifier: 9A:BB:07:2A:B4:E6:13:89:8E:B2:51:28:E6:50:6C:6F:D8:91:26:59 Certificate issuer: /CN=32D5EC15C5E564E470EC7B14CD47DE2D862ACE83 Certificate serial: 06CC Authority key identifier: 32:D5:EC:15:C5:E5:64:E4:70:EC:7B:14:CD:47:DE:2D:86:2A:CE:83 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MtXsFcXlZORw7HsUzUfeLYYqzoM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1023/mrsHKrTmE4mOslEo5lBsb9iRJlk.roa Signing time: Thu 23 Oct 2025 10:10:55 +0000 ROA not before: Thu 23 Oct 2025 10:10:55 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 132883 IP address blocks: 203.83.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1023/MtXsFcXlZORw7HsUzUfeLYYqzoM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1023/MtXsFcXlZORw7HsUzUfeLYYqzoM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MtXsFcXlZORw7HsUzUfeLYYqzoM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 21:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32D5EC15C5E564E470EC7B14CD47DE2D862ACE83 Validity Not Before: Oct 23 10:10:55 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=9ABB072AB4E613898EB25128E6506C6FD8912659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0d:29:55:64:3d:6d:1d:57:52:d2:60:ab:98: a0:ac:43:41:a7:75:61:99:75:2e:a5:3a:d9:e2:c4: 86:dc:26:23:c4:75:2d:52:e9:d7:2c:b8:72:f8:8b: 36:ec:d7:38:ab:ad:65:be:30:ea:f4:31:6b:0e:70: b8:0d:4d:20:6e:46:d2:39:44:c2:25:31:eb:51:f4: f7:a9:6b:66:ed:01:22:0a:a0:c2:4d:d1:46:f0:ed: bd:21:7a:10:cf:76:45:97:6c:b9:69:78:1a:4c:bc: 3e:39:0f:29:b9:65:52:2c:20:f2:61:3f:c8:52:b2: 21:6f:f8:17:f5:c2:cb:ca:e9:32:27:bc:a2:66:3a: 54:15:62:d1:16:8e:c1:fe:14:fe:f5:7a:5c:10:af: f3:cf:06:b0:9f:66:46:8c:b3:e5:b2:bb:15:f2:c2: 73:3b:18:5d:fe:5a:23:d4:a8:8b:82:ab:5b:ba:01: 9d:9c:d0:79:35:ef:29:15:97:05:04:6f:10:eb:bf: 91:a7:a7:d3:8a:88:8c:b7:39:fd:b7:24:71:a8:6f: a4:ef:bb:97:ed:6f:93:df:78:c3:45:75:52:f0:e3: 83:e8:81:1e:8a:b3:11:2d:29:5b:6e:de:b0:fa:20: 61:1a:d9:73:1d:ce:a7:eb:60:31:0d:3a:ca:06:7b: 37:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:BB:07:2A:B4:E6:13:89:8E:B2:51:28:E6:50:6C:6F:D8:91:26:59 X509v3 Authority Key Identifier: keyid:32:D5:EC:15:C5:E5:64:E4:70:EC:7B:14:CD:47:DE:2D:86:2A:CE:83 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1023/MtXsFcXlZORw7HsUzUfeLYYqzoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/MtXsFcXlZORw7HsUzUfeLYYqzoM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1023/mrsHKrTmE4mOslEo5lBsb9iRJlk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.83.11.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:48:48:43:d3:17:2c:65:7c:80:6e:aa:ee:f0:75:53:2a:28: 25:c1:ae:cc:41:a9:82:d7:42:bf:1c:48:1a:90:3b:65:71:95: 9c:74:ed:83:bb:1f:c6:90:bc:32:69:66:04:6c:49:40:c6:14: 43:8b:e5:40:47:cc:bb:95:a0:d8:15:ee:8f:e7:71:1e:14:b1: 5e:87:15:87:ed:52:c0:de:ea:05:5c:1b:f2:21:b0:b3:ba:d6: cf:d0:d8:24:2b:11:dc:01:a6:a8:84:80:58:77:3c:0a:de:24: c1:ba:63:5c:98:d8:04:52:bf:31:a9:84:9b:e0:b3:96:61:d4: 06:92:9d:ba:77:e9:8d:38:2c:a2:97:4d:35:13:22:90:c6:a1: 01:2d:e5:86:e0:2d:ac:dc:e2:88:8d:e4:91:fd:1c:38:aa:72: 73:a1:87:f7:a3:f8:15:56:6e:35:d9:94:dd:36:28:0c:d0:d6: dd:ef:b3:49:a9:17:95:cc:08:9b:8a:4f:a6:b7:bb:de:f3:65: bc:70:03:5d:15:33:9e:5a:92:43:49:b9:8e:d3:ce:d7:d0:69: 0f:c7:68:b9:57:ab:36:5f:a8:58:9f:b3:83:e6:cc:6c:08:36: c8:63:73:65:2c:90:13:06:34:11:1f:ad:04:be:f2:f4:3e:b3: 0a:d6:1e:46 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzJE NUVDMTVDNUU1NjRFNDcwRUM3QjE0Q0Q0N0RFMkQ4NjJBQ0U4MzAeFw0yNTEwMjMx MDEwNTVaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDlBQkIwNzJBQjRFNjEz ODk4RUIyNTEyOEU2NTA2QzZGRDg5MTI2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmDSlVZD1tHVdS0mCrmKCsQ0GndWGZdS6lOtnixIbcJiPEdS1S 6dcsuHL4izbs1zirrWW+MOr0MWsOcLgNTSBuRtI5RMIlMetR9Pepa2btASIKoMJN 0Ubw7b0hehDPdkWXbLlpeBpMvD45Dym5ZVIsIPJhP8hSsiFv+Bf1wsvK6TInvKJm OlQVYtEWjsH+FP71elwQr/PPBrCfZkaMs+WyuxXywnM7GF3+WiPUqIuCq1u6AZ2c 0Hk17ykVlwUEbxDrv5Gnp9OKiIy3Of23JHGob6Tvu5ftb5PfeMNFdVLw44PogR6K sxEtKVtu3rD6IGEa2XMdzqfrYDENOsoGezdnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUmrsHKrTmE4mOslEo5lBsb9iRJlkwHwYDVR0jBBgwFoAUMtXsFcXlZORw7HsU zUfeLYYqzoMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTAy My9NdFhzRmNYbFpPUnc3SHNVelVmZUxZWXF6b00uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL010WHNGY1hsWk9SdzdIc1V6VWZlTFlZcXpvTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwMjMvbXJzSEtyVG1FNG1P c2xFbzVsQnNiOWlSSmxrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMtTCzANBgkqhkiG9w0BAQsFAAOCAQEAKkhIQ9MXLGV8gG6q7vB1UyooJcGu zEGpgtdCvxxIGpA7ZXGVnHTtg7sfxpC8MmlmBGxJQMYUQ4vlQEfMu5Wg2BXuj+dx HhSxXocVh+1SwN7qBVwb8iGws7rWz9DYJCsR3AGmqISAWHc8Ct4kwbpjXJjYBFK/ MamEm+CzlmHUBpKdunfpjTgsopdNNRMikMahAS3lhuAtrNziiI3kkf0cOKpyc6GH 96P4FVZuNdmU3TYoDNDW3e+zSakXlcwIm4pPpre73vNlvHADXRUznlqSQ0m5jtPO 19BpD8douVerNl+oWJ+zg+bMbAg2yGNzZSyQEwY0ER+tBL7y9D6zCtYeRg== -----END CERTIFICATE-----Generated at Sun Oct 26 17:43:12 2025 by rpki-client