$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1411/aqB4POYyMdAWG6SV-Q2VPPT5Zuw.roa File: aqB4POYyMdAWG6SV-Q2VPPT5Zuw.roa (raw, json) Hash identifier: eywfenig7mEMv2nt+jAecwKHtyZkB/lgMMhScqxfMX8= Subject key identifier: 6A:A0:78:3C:E6:32:31:D0:16:1B:A4:95:F9:0D:95:3C:F4:F9:66:EC Certificate issuer: /CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Certificate serial: 24F5 Authority key identifier: 49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/aqB4POYyMdAWG6SV-Q2VPPT5Zuw.roa Signing time: Sat 13 Sep 2025 03:08:52 +0000 ROA not before: Sat 13 Sep 2025 03:08:52 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 209242 IP address blocks: 103.244.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 01:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9461 (0x24f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4911CB6D544B3B6905532964C8E1A472BDCBC267 Validity Not Before: Sep 13 03:08:52 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=6AA0783CE63231D0161BA495F90D953CF4F966EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:93:ed:61:10:5c:37:72:c0:e3:c0:af:53:3a: 3c:00:1c:59:b0:e0:1d:76:3d:6c:b8:40:f1:e7:56: dc:30:31:10:0c:06:d3:37:ee:97:ac:63:6d:37:45: f4:9b:e4:91:82:6b:19:d6:d1:a0:6a:03:06:71:1d: 63:f9:14:33:a5:f1:0b:ce:14:e2:63:ba:25:ae:ed: ef:ff:2f:93:d5:20:3b:cd:9c:7d:a3:72:ed:4b:40: c5:34:a2:8d:3e:e8:f9:ca:34:8f:3b:b1:91:2d:14: c8:79:6a:31:03:a0:77:d9:63:33:b3:68:71:f0:d0: 88:c3:b5:27:89:56:f7:45:1e:6f:f0:de:bd:c6:9d: 04:a1:48:fe:5a:c9:3c:2c:7b:77:df:14:c3:a4:d1: ec:99:23:a8:9a:31:7f:3b:e2:a5:e0:b2:98:3b:37: 7b:12:3f:14:d8:fd:35:db:e3:6f:22:2b:69:70:17: e9:e9:c5:90:22:d1:3a:86:8e:3b:69:ff:10:cf:ff: 9e:36:e2:ba:d8:d1:a7:91:86:b5:ad:e8:de:97:83: fb:5b:54:59:a8:f2:71:6d:89:4f:80:a7:fd:6b:8c: f5:d8:06:38:83:24:86:0e:28:f8:56:df:6a:0c:91: e8:fd:0f:77:59:53:b5:1d:fc:fc:67:64:84:bb:68: 7a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A0:78:3C:E6:32:31:D0:16:1B:A4:95:F9:0D:95:3C:F4:F9:66:EC X509v3 Authority Key Identifier: keyid:49:11:CB:6D:54:4B:3B:69:05:53:29:64:C8:E1:A4:72:BD:CB:C2:67 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/SRHLbVRLO2kFUylkyOGkcr3Lwmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/SRHLbVRLO2kFUylkyOGkcr3Lwmc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1411/aqB4POYyMdAWG6SV-Q2VPPT5Zuw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.244.118.0/24 Signature Algorithm: sha256WithRSAEncryption b1:b9:eb:d8:1b:9c:97:f0:b0:c3:2f:9c:6f:bc:62:5b:e1:29: d7:03:39:06:f2:39:0b:2d:18:f8:80:9a:ca:2a:49:24:ba:d8: 8e:c2:a0:e5:be:34:57:d5:ce:a9:79:c0:92:31:d3:32:73:ba: 4e:96:85:c6:6a:dd:bb:2f:eb:76:a8:7f:a1:7d:17:ff:44:33: a8:5c:67:84:ac:94:47:8e:b2:00:ae:01:29:09:8c:a9:59:d1: 7e:0b:4d:e3:62:05:a7:4c:b1:d5:c4:fb:a7:b3:8c:15:2f:6a: 3d:ab:64:cb:34:39:c3:9a:bc:b2:ec:48:3a:48:e0:62:45:a9: 7b:fc:8e:37:86:1e:e9:c3:f9:7b:0e:cc:a7:a4:c4:e9:99:03: 81:32:b7:7d:35:fb:2e:48:81:86:f0:d0:08:0e:37:07:3e:dd: 4e:3b:cd:c5:5c:f0:81:75:b6:c3:b4:cf:65:91:8a:2e:44:3b: c2:72:89:96:d1:7d:08:02:64:4d:1c:eb:8f:96:6c:1b:ea:72: ec:fc:34:af:2e:d2:74:1e:ed:a6:38:6f:b5:3c:d3:eb:8f:76: 7d:ec:5e:c1:fb:52:76:64:d2:36:65:20:e5:c9:c5:fb:09:3a: f6:62:dc:1d:51:39:c8:1f:1d:78:16:ce:b4:f6:dc:f9:ed:a6: d6:13:cf:be -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICJPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkx MUNCNkQ1NDRCM0I2OTA1NTMyOTY0QzhFMUE0NzJCRENCQzI2NzAeFw0yNTA5MTMw MzA4NTJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDZBQTA3ODNDRTYzMjMx RDAxNjFCQTQ5NUY5MEQ5NTNDRjRGOTY2RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDk+1hEFw3csDjwK9TOjwAHFmw4B12PWy4QPHnVtwwMRAMBtM3 7pesY203RfSb5JGCaxnW0aBqAwZxHWP5FDOl8QvOFOJjuiWu7e//L5PVIDvNnH2j cu1LQMU0oo0+6PnKNI87sZEtFMh5ajEDoHfZYzOzaHHw0IjDtSeJVvdFHm/w3r3G nQShSP5ayTwse3ffFMOk0eyZI6iaMX874qXgspg7N3sSPxTY/TXb428iK2lwF+np xZAi0TqGjjtp/xDP/5424rrY0aeRhrWt6N6Xg/tbVFmo8nFtiU+Ap/1rjPXYBjiD JIYOKPhW32oMkej9D3dZU7Ud/PxnZIS7aHq5AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUaqB4POYyMdAWG6SV+Q2VPPT5ZuwwHwYDVR0jBBgwFoAUSRHLbVRLO2kFUylk yOGkcr3LwmcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQx MS9TUkhMYlZSTE8ya0ZVeWxreU9Ha2NyM0x3bWMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1NSSExiVlJMTzJrRlV5bGt5T0drY3IzTHdtYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MTEvYXFCNFBPWXlNZEFX RzZTVi1RMlZQUFQ1WnV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGf0djANBgkqhkiG9w0BAQsFAAOCAQEAsbnr2Bucl/Cwwy+cb7xiW+Ep1wM5 BvI5Cy0Y+ICayipJJLrYjsKg5b40V9XOqXnAkjHTMnO6TpaFxmrduy/rdqh/oX0X /0QzqFxnhKyUR46yAK4BKQmMqVnRfgtN42IFp0yx1cT7p7OMFS9qPatkyzQ5w5q8 suxIOkjgYkWpe/yON4Ye6cP5ew7Mp6TE6ZkDgTK3fTX7LkiBhvDQCA43Bz7dTjvN xVzwgXW2w7TPZZGKLkQ7wnKJltF9CAJkTRzrj5ZsG+py7Pw0ry7SdB7tpjhvtTzT 6492fexewftSdmTSNmUg5cnF+wk69mLcHVE5yB8deBbOtPbc+e2m1hPPvg== -----END CERTIFICATE-----Generated at Thu Sep 18 00:53:24 2025 by rpki-client