$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1375/7rjrvR7t1kwDsuU6ql7O_RYJUpg.roa File: 7rjrvR7t1kwDsuU6ql7O_RYJUpg.roa (raw, json) Hash identifier: PRS/WaIeY/npttmGhULQ+aQehhZu64V2nmOYOUJzpnc= Subject key identifier: EE:B8:EB:BD:1E:ED:D6:4C:03:B2:E5:3A:AA:5E:CE:FD:16:09:52:98 Certificate issuer: /CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Certificate serial: 204A Authority key identifier: 3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/7rjrvR7t1kwDsuU6ql7O_RYJUpg.roa Signing time: Sat 06 Sep 2025 08:03:28 +0000 ROA not before: Sat 06 Sep 2025 08:03:28 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 31972 IP address blocks: 45.115.228.0/22 maxlen: 24 45.127.216.0/22 maxlen: 24 103.56.8.0/22 maxlen: 24 103.196.204.0/22 maxlen: 24 103.207.48.0/22 maxlen: 24 210.16.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 22:43:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8266 (0x204a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ABA8B425232BE58968396DE32A8EB5A05EEA658 Validity Not Before: Sep 6 08:03:28 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EEB8EBBD1EEDD64C03B2E53AAA5ECEFD16095298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:12:72:cc:6f:1f:4b:5c:05:83:5a:0c:fa:53: 88:50:6b:37:6c:f6:4d:d7:27:b6:9e:74:06:90:79: c9:35:0e:f6:4c:df:28:ac:1c:44:1c:a8:83:10:68: d9:15:72:0e:7f:27:cd:4e:93:59:48:27:ea:eb:c4: c1:35:a0:2a:fc:ac:ad:4e:56:25:98:8e:8a:ec:89: 6a:df:c7:7a:90:72:99:80:4f:09:32:8b:93:8c:4b: af:7a:5b:c4:e7:2a:1f:f1:80:6e:a2:98:6f:fd:88: 9e:9b:5c:44:a5:6a:bc:de:e1:8d:d4:81:e6:39:66: 60:fa:b4:3f:4d:48:f7:e0:a6:d9:91:57:0a:94:af: d3:92:a3:42:95:89:d5:4c:e7:ca:ab:b8:c4:44:3b: ff:ed:c5:ec:be:31:7a:d1:ab:2a:98:24:86:4c:60: f0:d6:ad:98:48:90:a4:6e:01:43:74:08:c5:07:86: 45:2d:c5:3f:66:13:bc:24:b8:26:c7:3b:3c:1e:64: c2:97:73:de:3a:41:04:05:e8:98:e0:a1:bc:32:03: 1b:53:01:f8:d8:ff:8f:86:2a:31:5d:92:c4:2b:2a: 09:08:3a:62:74:67:fd:44:27:20:09:41:8f:9f:63: 58:37:b7:0d:dc:6c:b7:de:e0:b2:f8:db:46:67:64: dc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B8:EB:BD:1E:ED:D6:4C:03:B2:E5:3A:AA:5E:CE:FD:16:09:52:98 X509v3 Authority Key Identifier: keyid:3A:BA:8B:42:52:32:BE:58:96:83:96:DE:32:A8:EB:5A:05:EE:A6:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/OrqLQlIyvliWg5beMqjrWgXuplg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OrqLQlIyvliWg5beMqjrWgXuplg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1375/7rjrvR7t1kwDsuU6ql7O_RYJUpg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.115.228.0/22 45.127.216.0/22 103.56.8.0/22 103.196.204.0/22 103.207.48.0/22 210.16.104.0/22 Signature Algorithm: sha256WithRSAEncryption 28:ef:a9:c5:4f:4d:6c:5f:3d:a4:6b:a8:b5:40:e8:ec:66:f3: 4d:0b:9e:4f:3b:62:15:92:d9:0e:9f:bf:7d:5e:18:d7:51:1e: 99:9e:80:a6:07:b2:61:a8:e8:f6:d6:85:12:43:27:ed:d2:2b: 52:ba:39:6a:ec:a0:33:5e:26:ef:cc:f6:70:43:33:7c:d5:1b: d7:b1:21:21:e8:0b:e2:66:13:95:e5:ba:94:7d:a1:7a:f2:89: 0c:75:7e:3b:e4:03:9d:ac:df:64:71:0d:dd:e7:e3:70:bd:2b: 65:89:86:5c:17:88:f2:c7:fc:24:b6:22:1e:af:2c:78:b9:62: 26:ae:bf:c5:fe:0b:e3:f4:93:3e:26:ba:1c:96:1d:f8:a2:67: ca:59:a0:dd:f7:ab:d8:d3:b6:41:87:3d:99:33:ac:51:6b:ae: 71:c5:02:cf:05:1e:5a:ec:89:f2:c8:4c:5f:c8:ef:62:56:87: 02:85:b5:08:49:50:dc:1f:09:89:60:7b:f6:9e:b5:1e:d0:f2: 3b:d2:b4:d0:60:66:52:d0:f1:b5:64:12:54:93:e0:59:66:2c: 3f:5f:fe:a2:26:8e:cb:e5:9b:83:60:34:6e:ed:f7:54:00:e7: f7:96:27:fc:f0:c9:ad:e0:8d:21:89:96:1d:9d:a8:65:e6:58: f5:81:50:15 -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgICIEowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FC QThCNDI1MjMyQkU1ODk2ODM5NkRFMzJBOEVCNUEwNUVFQTY1ODAeFw0yNTA5MDYw ODAzMjhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVFQjhFQkJEMUVFREQ2 NEMwM0IyRTUzQUFBNUVDRUZEMTYwOTUyOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6EnLMbx9LXAWDWgz6U4hQazds9k3XJ7aedAaQeck1DvZM3yis HEQcqIMQaNkVcg5/J81Ok1lIJ+rrxME1oCr8rK1OViWYjorsiWrfx3qQcpmATwky i5OMS696W8TnKh/xgG6imG/9iJ6bXESlarze4Y3UgeY5ZmD6tD9NSPfgptmRVwqU r9OSo0KVidVM58qruMREO//txey+MXrRqyqYJIZMYPDWrZhIkKRuAUN0CMUHhkUt xT9mE7wkuCbHOzweZMKXc946QQQF6JjgobwyAxtTAfjY/4+GKjFdksQrKgkIOmJ0 Z/1EJyAJQY+fY1g3tw3cbLfe4LL420ZnZNylAgMBAAGjggIRMIICDTAdBgNVHQ4E FgQU7rjrvR7t1kwDsuU6ql7O/RYJUpgwHwYDVR0jBBgwFoAUOrqLQlIyvliWg5be MqjrWgXuplgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 NS9PcnFMUWxJeXZsaVdnNWJlTXFqcldnWHVwbGcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09ycUxRbEl5dmxpV2c1YmVNcWpyV2dYdXBsZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEzNzUvN3JqcnZSN3Qxa3dE c3VVNnFsN09fUllKVXBnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEw JAMEAi1z5AMEAi1/2AMEAmc4CAMEAmfEzAMEAmfPMAMEAtIQaDANBgkqhkiG9w0B AQsFAAOCAQEAKO+pxU9NbF89pGuotUDo7GbzTQueTztiFZLZDp+/fV4Y11EemZ6A pgeyYajo9taFEkMn7dIrUro5auygM14m78z2cEMzfNUb17EhIegL4mYTleW6lH2h evKJDHV+O+QDnazfZHEN3efjcL0rZYmGXBeI8sf8JLYiHq8seLliJq6/xf4L4/ST Pia6HJYd+KJnylmg3fer2NO2QYc9mTOsUWuuccUCzwUeWuyJ8shMX8jvYlaHAoW1 CElQ3B8JiWB79p61HtDyO9K00GBmUtDxtWQSVJPgWWYsP1/+oiaOy+Wbg2A0bu33 VADn95Yn/PDJreCNIYmWHZ2oZeZY9YFQFQ== -----END CERTIFICATE-----Generated at Wed Oct 29 21:01:53 2025 by rpki-client