$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/187/CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa File: CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa (raw, json) Hash identifier: 2hSUzzrrHhoV+leHgGGXhH0H0eP//nQX8tn6HCyCUeA= Subject key identifier: 09:D6:12:3D:AA:93:8C:70:D0:AA:81:59:27:9B:E6:3E:44:0D:A5:8F Certificate issuer: /CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361 Certificate serial: 1CFF Authority key identifier: 2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa Signing time: Sat 13 Sep 2025 03:03:54 +0000 ROA not before: Sat 13 Sep 2025 03:03:54 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 398704 IP address blocks: 219.72.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 03:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7423 (0x1cff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E8C1DE19474035CBEA678054B6D94F5AFA53361 Validity Not Before: Sep 13 03:03:54 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=09D6123DAA938C70D0AA8159279BE63E440DA58F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6d:f0:3b:fa:09:ab:25:4f:ff:70:50:50:0b: 79:c5:08:2a:06:33:f2:7c:5d:eb:ed:26:30:77:d7: 9e:ff:04:70:dc:e7:48:52:b2:56:17:0e:a7:f4:a6: 83:4c:ae:d2:bf:df:04:9f:ea:75:3b:55:95:18:e9: ec:89:b3:74:56:bc:1b:ff:3f:ab:cb:b8:6b:fc:58: 4f:54:15:17:91:c9:5c:9a:18:7f:d0:ef:58:3a:6e: f2:82:50:17:10:1e:0d:5e:fd:53:92:03:a4:04:33: 8e:43:d3:32:b7:40:c7:57:38:4f:32:f5:48:89:b7: 81:d3:a6:cc:4b:50:ff:88:44:2f:f6:96:1b:75:8c: 78:b8:ce:64:fb:23:1f:89:01:68:9b:f2:da:d3:9e: 8b:58:d6:3b:75:50:32:9b:aa:9e:46:6d:1a:33:af: 0b:05:77:ac:f6:8c:36:67:48:c9:7d:9a:6d:59:61: 8b:30:7c:22:1d:58:13:f8:3c:d0:70:97:45:6f:3b: 86:61:a8:d5:94:dd:c5:70:51:fb:66:f2:70:fd:b1: 57:0d:25:bf:2b:6d:16:34:0b:35:03:84:0d:2c:a8: 97:ec:97:b5:47:ef:8a:bf:db:ce:04:90:0a:f6:7a: 38:f9:85:26:57:31:4e:b1:3b:4a:0c:a1:1e:62:66: 39:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D6:12:3D:AA:93:8C:70:D0:AA:81:59:27:9B:E6:3E:44:0D:A5:8F X509v3 Authority Key Identifier: keyid:2E:8C:1D:E1:94:74:03:5C:BE:A6:78:05:4B:6D:94:F5:AF:A5:33:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/Lowd4ZR0A1y-pngFS22U9a-lM2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Lowd4ZR0A1y-pngFS22U9a-lM2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/187/CdYSPaqTjHDQqoFZJ5vmPkQNpY8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.72.160.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:c8:97:b8:1f:d5:cb:29:86:36:12:53:d8:1a:59:7b:2e:4e: 43:b6:b4:14:66:5f:ba:e5:ce:5d:fc:f3:ad:68:07:d4:61:13: a4:f8:9e:2b:ad:30:8b:df:06:07:65:f8:5e:ee:54:ca:15:36: cc:34:cb:dc:03:ca:ae:d1:95:c7:ea:c9:2d:57:7b:9d:25:04: 1a:b1:b9:ee:53:a3:ed:b0:0a:e3:01:6f:48:23:2f:8e:9f:b0: 6b:52:27:de:48:55:2f:5c:7f:4a:08:92:36:04:dd:15:cb:2d: aa:1a:d6:c8:ad:11:c6:4b:67:a7:40:b6:86:a5:b7:64:5c:85: 9c:96:9c:d8:7f:4e:81:14:50:27:e7:b0:f6:74:37:9a:7f:75: b9:b9:c9:d3:98:ca:9d:7c:46:b9:5a:5b:64:ee:6d:3f:0f:ad: 40:39:c3:a7:12:57:36:46:da:47:37:11:3f:d5:bf:36:5b:e8: f7:50:98:ec:5b:8e:2c:0e:e6:0d:9a:37:0b:bc:26:e2:e3:24: 5f:d5:87:b3:00:3f:4b:84:f0:52:09:10:85:af:9c:89:b8:82: d5:ac:82:14:9c:80:8c:14:32:46:52:e5:c3:96:82:de:b7:82: 7e:63:f1:60:65:cb:d4:45:5f:d2:12:b4:26:c9:08:b2:06:bf: d6:4f:15:fc -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHP8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkU4 QzFERTE5NDc0MDM1Q0JFQTY3ODA1NEI2RDk0RjVBRkE1MzM2MTAeFw0yNTA5MTMw MzAzNTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDA5RDYxMjNEQUE5MzhD NzBEMEFBODE1OTI3OUJFNjNFNDQwREE1OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqbfA7+gmrJU//cFBQC3nFCCoGM/J8XevtJjB3157/BHDc50hS slYXDqf0poNMrtK/3wSf6nU7VZUY6eyJs3RWvBv/P6vLuGv8WE9UFReRyVyaGH/Q 71g6bvKCUBcQHg1e/VOSA6QEM45D0zK3QMdXOE8y9UiJt4HTpsxLUP+IRC/2lht1 jHi4zmT7Ix+JAWib8trTnotY1jt1UDKbqp5GbRozrwsFd6z2jDZnSMl9mm1ZYYsw fCIdWBP4PNBwl0VvO4ZhqNWU3cVwUftm8nD9sVcNJb8rbRY0CzUDhA0sqJfsl7VH 74q/284EkAr2ejj5hSZXMU6xO0oMoR5iZjn7AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUCdYSPaqTjHDQqoFZJ5vmPkQNpY8wHwYDVR0jBBgwFoAULowd4ZR0A1y+pngF S22U9a+lM2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTg3 L0xvd2Q0WlIwQTF5LXBuZ0ZTMjJVOWEtbE0yRS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTG93ZDRaUjBBMXktcG5nRlMyMlU5YS1sTTJFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTg3L0NkWVNQYXFUakhEUXFv RlpKNXZtUGtRTnBZOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADbSKAwDQYJKoZIhvcNAQELBQADggEBABrIl7gf1csphjYSU9gaWXsuTkO2tBRm X7rlzl38861oB9RhE6T4niutMIvfBgdl+F7uVMoVNsw0y9wDyq7RlcfqyS1Xe50l BBqxue5To+2wCuMBb0gjL46fsGtSJ95IVS9cf0oIkjYE3RXLLaoa1sitEcZLZ6dA toalt2RchZyWnNh/ToEUUCfnsPZ0N5p/dbm5ydOYyp18RrlaW2TubT8PrUA5w6cS VzZG2kc3ET/VvzZb6PdQmOxbjiwO5g2aNwu8JuLjJF/Vh7MAP0uE8FIJEIWvnIm4 gtWsghScgIwUMkZS5cOWgt63gn5j8WBly9RFX9IStCbJCLIGv9ZPFfw= -----END CERTIFICATE-----Generated at Thu Sep 18 02:52:44 2025 by rpki-client