$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2508/-IRe54bpv1-TQux1UjZl7eXOe8k.roa File: -IRe54bpv1-TQux1UjZl7eXOe8k.roa (raw, json) Hash identifier: Wla7VV+qPSO8J9AN9n88AWkJuu/D49QzJW/C/8t30IQ= Subject key identifier: F8:84:5E:E7:86:E9:BF:5F:93:42:EC:75:52:36:65:ED:E5:CE:7B:C9 Certificate issuer: /CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C Certificate serial: 178A Authority key identifier: FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-IRe54bpv1-TQux1UjZl7eXOe8k.roa Signing time: Wed 16 Jul 2025 09:11:00 +0000 ROA not before: Wed 16 Jul 2025 09:11:00 +0000 ROA not after: Sat 27 Sep 2025 02:40:14 +0000 asID: 55991 IP address blocks: 103.44.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Jul 2025 18:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6026 (0x178a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB78391367C8AD97D1A9C21A353285AD5E688D1C Validity Not Before: Jul 16 09:11:00 2025 GMT Not After : Sep 27 02:40:14 2025 GMT Subject: CN=F8845EE786E9BF5F9342EC75523665EDE5CE7BC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0b:aa:91:17:bb:b1:4c:63:bd:d6:98:69:df: 1c:66:09:77:08:6c:8a:c8:47:29:15:9a:68:ac:64: 4b:74:26:73:16:d9:3a:b9:39:a2:52:0b:cc:d5:ed: c7:bf:f7:5c:07:51:51:c0:61:6e:25:a5:6e:68:df: 4d:da:9f:67:ae:f3:f5:22:9e:cc:84:fe:5a:d8:ac: 03:09:11:6c:43:5e:a1:6a:9b:f9:bd:e1:d6:ea:04: ba:9d:21:d3:92:f0:67:40:27:0d:28:bd:d8:56:56: a2:ef:bc:4e:20:e1:d5:43:5f:30:3e:e2:de:86:a7: e0:24:83:86:13:5a:7b:38:63:c2:5a:84:a5:83:be: dc:aa:eb:be:db:71:df:04:b6:31:32:a6:89:bc:5f: 32:06:e5:b3:f3:fa:31:76:6f:b7:5b:cc:30:2e:6c: c6:8f:d2:dd:8b:0d:a4:7e:04:ea:60:17:da:56:e1: 62:77:b6:e8:d1:cc:92:ad:34:cd:62:41:ef:ae:25: ee:0c:f0:2e:b6:a8:83:6d:4a:af:d2:31:cf:41:b0: 27:82:a5:0b:b1:cf:7a:0f:78:1b:b2:50:33:9a:2d: 61:27:03:b2:3c:8a:9a:7c:75:27:43:32:89:d1:0b: 67:35:fb:27:3d:24:4f:44:b7:14:a2:c0:80:d3:01: b4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:84:5E:E7:86:E9:BF:5F:93:42:EC:75:52:36:65:ED:E5:CE:7B:C9 X509v3 Authority Key Identifier: keyid:FB:78:39:13:67:C8:AD:97:D1:A9:C2:1A:35:32:85:AD:5E:68:8D:1C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-3g5E2fIrZfRqcIaNTKFrV5ojRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-3g5E2fIrZfRqcIaNTKFrV5ojRw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2508/-IRe54bpv1-TQux1UjZl7eXOe8k.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.44.144.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:1c:4b:41:97:7e:54:4d:a1:8d:71:dd:94:16:e8:28:89:1f: 07:93:ae:b5:f2:ee:90:25:07:f4:7e:b3:ff:61:b9:12:b2:41: 3f:bc:d3:0e:87:ff:21:36:ef:3e:f7:93:21:60:11:5d:76:1e: 10:0b:7e:71:51:9d:c8:1d:c8:e1:ff:26:70:d8:1e:1c:ca:49: 0f:ae:52:02:22:46:e2:1a:03:d7:73:62:5a:8f:b0:5e:66:a4: e3:69:84:07:be:e3:0f:2b:35:22:61:78:eb:af:07:fa:11:8d: 70:24:19:4b:27:a4:cf:9a:b9:85:dc:3c:19:27:87:be:c8:fd: 07:07:3e:11:c9:e2:60:95:25:b7:22:ad:28:87:7c:73:b1:67: 40:77:7d:46:61:99:8e:6e:73:83:5b:73:ab:11:10:40:5c:23: 8d:12:1a:82:cb:f1:52:27:03:76:1e:38:21:1c:a8:8b:33:8b: 66:a0:05:29:1f:3e:b7:30:d5:48:e8:5d:d8:f6:58:de:52:be: 42:15:35:0e:69:ab:18:5e:64:46:ad:21:37:ab:fa:17:3c:0c: cd:9c:7f:f6:f3:b2:80:5c:18:f2:28:54:25:3b:0d:ab:06:25: b8:7d:be:a5:66:29:4e:d6:4d:54:e9:8e:f3:eb:6e:e1:1c:a3: 7c:58:6e:c4 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICF4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkI3 ODM5MTM2N0M4QUQ5N0QxQTlDMjFBMzUzMjg1QUQ1RTY4OEQxQzAeFw0yNTA3MTYw OTExMDBaFw0yNTA5MjcwMjQwMTRaMDMxMTAvBgNVBAMTKEY4ODQ1RUU3ODZFOUJG NUY5MzQyRUM3NTUyMzY2NUVERTVDRTdCQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHC6qRF7uxTGO91php3xxmCXcIbIrIRykVmmisZEt0JnMW2Tq5 OaJSC8zV7ce/91wHUVHAYW4lpW5o303an2eu8/UinsyE/lrYrAMJEWxDXqFqm/m9 4dbqBLqdIdOS8GdAJw0ovdhWVqLvvE4g4dVDXzA+4t6Gp+Akg4YTWns4Y8JahKWD vtyq677bcd8EtjEypom8XzIG5bPz+jF2b7dbzDAubMaP0t2LDaR+BOpgF9pW4WJ3 tujRzJKtNM1iQe+uJe4M8C62qINtSq/SMc9BsCeCpQuxz3oPeBuyUDOaLWEnA7I8 ipp8dSdDMonRC2c1+yc9JE9EtxSiwIDTAbRlAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU+IRe54bpv1+TQux1UjZl7eXOe8kwHwYDVR0jBBgwFoAU+3g5E2fIrZfRqcIa NTKFrV5ojRwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjUw OC8tM2c1RTJmSXJaZlJxY0lhTlRLRnJWNW9qUncuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy0zZzVFMmZJclpmUnFjSWFOVEtGclY1b2pSdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1MDgvLUlSZTU0YnB2MS1U UXV4MVVqWmw3ZVhPZThrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcskDANBgkqhkiG9w0BAQsFAAOCAQEAixxLQZd+VE2hjXHdlBboKIkfB5Ou tfLukCUH9H6z/2G5ErJBP7zTDof/ITbvPveTIWARXXYeEAt+cVGdyB3I4f8mcNge HMpJD65SAiJG4hoD13NiWo+wXmak42mEB77jDys1ImF4668H+hGNcCQZSyekz5q5 hdw8GSeHvsj9Bwc+EcniYJUltyKtKId8c7FnQHd9RmGZjm5zg1tzqxEQQFwjjRIa gsvxUicDdh44IRyoizOLZqAFKR8+tzDVSOhd2PZY3lK+QhU1DmmrGF5kRq0hN6v6 FzwMzZx/9vOygFwY8ihUJTsNqwYluH2+pWYpTtZNVOmO8+tu4RyjfFhuxA== -----END CERTIFICATE-----Generated at Mon Jul 21 13:41:17 2025 by rpki-client