$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2072/5O780YytFp2aIZUy2ebH7T6RP3k.roa File: 5O780YytFp2aIZUy2ebH7T6RP3k.roa (raw, json) Hash identifier: dZYfjDP7WydvmeUNL1iHjp+9Hb7wVZPSu7zNq9EkS4c= Subject key identifier: E4:EE:FC:D1:8C:AD:16:9D:9A:21:95:32:D9:E6:C7:ED:3E:91:3F:79 Certificate issuer: /CN=BCF4017A6E2915F26147D419E5F7A7D164D04984 Certificate serial: 206E Authority key identifier: BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/5O780YytFp2aIZUy2ebH7T6RP3k.roa Signing time: Sat 13 Sep 2025 03:03:20 +0000 ROA not before: Sat 13 Sep 2025 03:03:20 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 133199 IP address blocks: 103.67.173.0/24 maxlen: 24 103.67.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 01:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8302 (0x206e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCF4017A6E2915F26147D419E5F7A7D164D04984 Validity Not Before: Sep 13 03:03:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E4EEFCD18CAD169D9A219532D9E6C7ED3E913F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:92:7c:9a:d7:1e:4f:fa:13:b8:8c:e0:62:08: 46:f6:93:ab:15:0c:7c:52:bf:8d:8e:69:70:6b:63: 31:29:54:24:72:e5:06:96:1e:6a:5f:7d:93:bc:14: 53:2b:71:2c:72:37:83:5f:d3:ea:52:0f:06:fb:9d: 9d:60:19:cd:ef:05:d7:0f:80:bd:c0:d3:b2:5a:c9: 47:fd:f8:02:37:9e:2c:23:98:2d:d1:89:1e:b8:d2: b7:55:cf:4d:89:73:43:e3:63:5c:38:43:b3:67:80: 7d:3f:7f:50:64:21:87:c1:fb:02:0a:10:51:1c:f1: 28:dc:65:87:a4:ae:3c:75:ce:5c:11:a1:89:5f:cc: 87:71:f6:96:3b:68:7a:f2:41:94:d6:ae:d9:f0:54: 72:25:ba:8f:59:8d:21:85:05:97:74:ad:d3:cc:88: 40:c7:3d:2b:46:4c:c9:9e:19:ed:91:d5:30:44:7f: 2a:66:09:58:a0:dd:60:f0:2c:64:a5:5c:b7:9a:22: be:a0:e6:55:bf:64:56:fc:43:e4:b6:da:b3:86:19: b9:76:3f:81:ab:9d:b2:40:c9:33:1b:a4:47:a8:8c: 53:c5:9c:22:32:34:f0:fd:f3:13:04:89:a4:35:5b: c8:dc:ab:e1:c6:b2:46:e3:2c:f4:32:97:00:24:c9: 92:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EE:FC:D1:8C:AD:16:9D:9A:21:95:32:D9:E6:C7:ED:3E:91:3F:79 X509v3 Authority Key Identifier: keyid:BC:F4:01:7A:6E:29:15:F2:61:47:D4:19:E5:F7:A7:D1:64:D0:49:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/vPQBem4pFfJhR9QZ5fen0WTQSYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vPQBem4pFfJhR9QZ5fen0WTQSYQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2072/5O780YytFp2aIZUy2ebH7T6RP3k.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.67.173.0-103.67.174.255 Signature Algorithm: sha256WithRSAEncryption 71:ba:f5:8d:8f:2d:35:32:19:19:8d:14:c0:e3:81:d1:5e:2f: 52:e3:24:6d:97:8f:5d:18:a1:9c:70:44:1c:a5:72:10:ab:04: 7b:82:1a:08:3a:f2:db:ec:ab:6d:f6:d0:bd:a7:cc:5f:94:14: c4:42:db:33:99:8e:34:64:ec:51:d3:f0:1d:9d:03:25:2b:d8: a6:96:6b:e4:15:65:2f:d9:75:6f:2b:66:b6:a9:ae:ba:b9:e6: 9a:0c:9d:cd:f6:03:7a:c8:83:87:6e:89:d4:db:d9:3c:33:39: 48:bc:3f:ae:fc:8c:45:48:6f:fa:56:e8:00:65:31:37:86:54: 78:a1:e9:51:6b:b3:cf:95:8c:d8:51:1e:34:a6:ee:93:19:18: 75:a3:d2:be:9e:35:38:d6:db:39:9f:94:ec:30:38:be:37:a4: ef:93:a5:b0:22:5c:6b:e5:64:8e:2d:15:ff:95:67:1e:48:6a: 82:53:b0:47:47:28:5f:91:18:4e:a0:bc:7c:8f:b7:1e:ab:34: 2c:c7:2c:cc:43:ed:e8:d2:e2:93:04:e7:40:fb:fd:cd:a2:04: a7:6e:fc:37:13:ed:1a:5b:39:76:2d:f5:22:b6:44:97:10:26: 81:23:59:53:0e:4c:1f:54:38:b9:dd:74:d7:50:d0:29:9b:2b: 92:f8:a2:cd -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICIG4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkNG NDAxN0E2RTI5MTVGMjYxNDdENDE5RTVGN0E3RDE2NEQwNDk4NDAeFw0yNTA5MTMw MzAzMjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEU0RUVGQ0QxOENBRDE2 OUQ5QTIxOTUzMkQ5RTZDN0VEM0U5MTNGNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBknya1x5P+hO4jOBiCEb2k6sVDHxSv42OaXBrYzEpVCRy5QaW HmpffZO8FFMrcSxyN4Nf0+pSDwb7nZ1gGc3vBdcPgL3A07JayUf9+AI3niwjmC3R iR640rdVz02Jc0PjY1w4Q7NngH0/f1BkIYfB+wIKEFEc8SjcZYekrjx1zlwRoYlf zIdx9pY7aHryQZTWrtnwVHIluo9ZjSGFBZd0rdPMiEDHPStGTMmeGe2R1TBEfypm CVig3WDwLGSlXLeaIr6g5lW/ZFb8Q+S22rOGGbl2P4GrnbJAyTMbpEeojFPFnCIy NPD98xMEiaQ1W8jcq+HGskbjLPQylwAkyZKhAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQU5O780YytFp2aIZUy2ebH7T6RP3kwHwYDVR0jBBgwFoAUvPQBem4pFfJhR9QZ 5fen0WTQSYQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjA3 Mi92UFFCZW00cEZmSmhSOVFaNWZlbjBXVFFTWVEuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3ZQUUJlbTRwRmZKaFI5UVo1ZmVuMFdUUVNZUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwNzIvNU83ODBZeXRGcDJh SVpVeTJlYkg3VDZSUDNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEw DjAMAwQAZ0OtAwQAZ0OuMA0GCSqGSIb3DQEBCwUAA4IBAQBxuvWNjy01MhkZjRTA 44HRXi9S4yRtl49dGKGccEQcpXIQqwR7ghoIOvLb7Ktt9tC9p8xflBTEQtszmY40 ZOxR0/AdnQMlK9imlmvkFWUv2XVvK2a2qa66ueaaDJ3N9gN6yIOHbonU29k8MzlI vD+u/IxFSG/6VugAZTE3hlR4oelRa7PPlYzYUR40pu6TGRh1o9K+njU41ts5n5Ts MDi+N6Tvk6WwIlxr5WSOLRX/lWceSGqCU7BHRyhfkRhOoLx8j7ceqzQsxyzMQ+3o 0uKTBOdA+/3NogSnbvw3E+0aWzl2LfUitkSXECaBI1lTDkwfVDi53XTXUNApmyuS +KLN -----END CERTIFICATE-----Generated at Wed Sep 17 23:11:43 2025 by rpki-client