$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2841/lQv1L5H7e15Afwrj8SlDQEeuAec.roa File: lQv1L5H7e15Afwrj8SlDQEeuAec.roa (raw, json) Hash identifier: Eb+4Juseia0TMUqYlMyEoxAG4Bn8TE8uGFfsHK/GATI= Subject key identifier: 95:0B:F5:2F:91:FB:7B:5E:40:7F:0A:E3:F1:29:43:40:47:AE:01:E7 Certificate issuer: /CN=51A5666D323BF842F6044CE71059773E2271B013 Certificate serial: 203F Authority key identifier: 51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/lQv1L5H7e15Afwrj8SlDQEeuAec.roa Signing time: Sat 06 Sep 2025 08:04:51 +0000 ROA not before: Sat 06 Sep 2025 08:04:51 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 137571 IP address blocks: 103.126.101.0/24 maxlen: 24 103.126.102.0/24 maxlen: 24 103.126.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 20:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8255 (0x203f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51A5666D323BF842F6044CE71059773E2271B013 Validity Not Before: Sep 6 08:04:51 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=950BF52F91FB7B5E407F0AE3F129434047AE01E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:33:fb:ab:03:16:06:a9:cc:f4:e6:fe:74: 1a:18:52:08:20:db:a1:42:b7:67:cc:af:2f:c6:b1: ae:7d:95:8c:18:c4:1c:78:36:4a:3a:c0:7a:25:35: 19:ad:25:8c:90:69:3a:75:ff:9b:67:67:58:35:87: 6a:02:81:71:ee:76:d9:6c:33:15:ab:40:6f:61:08: 77:ba:29:b7:36:81:e8:fe:40:3a:ba:4d:b2:b9:b7: f7:19:a8:57:55:0b:d8:cf:51:58:a9:1e:cd:cd:d8: 1a:84:1e:1b:1c:84:04:93:28:18:2f:f4:57:e9:f8: 12:d0:c9:59:10:67:c4:ee:35:e8:4c:ab:d6:05:5a: b2:67:b4:71:36:99:c7:c2:96:84:65:21:94:92:e1: 22:0e:42:a2:00:5c:33:a0:3f:50:80:6e:4d:92:3a: 67:44:04:6b:d9:63:80:fc:84:0a:7a:ee:6b:1d:35: de:19:d7:c3:bd:6d:9e:5e:0a:48:15:b5:4b:c2:d5: f1:f2:62:67:53:c6:8e:e1:18:e6:23:66:0f:0a:10: f3:d9:c4:21:7e:87:e5:26:ab:56:e3:91:7b:5e:50: d5:ba:7f:ee:70:12:b1:4b:ed:aa:82:ac:9d:66:d5: 1f:d3:5a:65:c0:f8:a2:02:8c:86:93:41:d8:d6:88: ca:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0B:F5:2F:91:FB:7B:5E:40:7F:0A:E3:F1:29:43:40:47:AE:01:E7 X509v3 Authority Key Identifier: keyid:51:A5:66:6D:32:3B:F8:42:F6:04:4C:E7:10:59:77:3E:22:71:B0:13 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/UaVmbTI7-EL2BEznEFl3PiJxsBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/UaVmbTI7-EL2BEznEFl3PiJxsBM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2841/lQv1L5H7e15Afwrj8SlDQEeuAec.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.101.0-103.126.103.255 Signature Algorithm: sha256WithRSAEncryption 4b:d9:b1:76:4a:7a:77:58:c4:cb:6c:47:66:10:42:99:83:00: ec:e4:6e:e8:60:26:f7:21:d0:0b:3b:90:87:0c:4e:28:c8:b7: 40:c5:68:a4:55:58:45:32:9a:11:a7:3e:bc:16:79:26:99:96: ce:f7:02:d2:24:d5:04:ce:f8:d4:8e:c7:9f:61:0e:e1:fb:cf: 75:ac:38:e2:3f:6a:16:75:d4:67:84:82:34:2c:b1:5e:08:4b: fc:43:eb:e3:4c:17:94:28:7f:a4:d2:e2:58:92:97:80:d0:fe: 8b:ab:0a:93:12:25:c8:51:82:b5:c1:45:8d:83:6e:36:8d:c7: 04:1c:4e:76:5f:82:a0:6c:82:b4:6c:72:95:b5:18:80:54:af: 1f:d4:40:05:20:52:8a:e6:99:1d:d5:7b:c8:7e:77:03:d7:f4: 33:be:d1:66:6d:7b:8b:7f:99:fb:be:44:fd:06:f0:b2:7f:13: d2:72:5e:36:9d:f3:a0:03:a8:b6:38:20:b8:6a:a4:1d:80:9f: 12:74:f7:27:64:27:23:4b:3b:a3:72:45:ea:44:67:48:73:b6: 79:41:89:de:ce:c6:d3:52:e1:1a:f7:44:9e:39:29:0a:5c:3d: 14:c7:4b:16:85:65:f3:c1:4b:23:87:f8:90:73:03:03:25:28: f3:b7:3d:6c -----BEGIN CERTIFICATE----- MIIE3zCCA8egAwIBAgICID8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTFB NTY2NkQzMjNCRjg0MkY2MDQ0Q0U3MTA1OTc3M0UyMjcxQjAxMzAeFw0yNTA5MDYw ODA0NTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk1MEJGNTJGOTFGQjdC NUU0MDdGMEFFM0YxMjk0MzQwNDdBRTAxRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtRzP7qwMWBqnM9Ob+dBoYUggg26FCt2fMry/Gsa59lYwYxBx4 Nko6wHolNRmtJYyQaTp1/5tnZ1g1h2oCgXHudtlsMxWrQG9hCHe6Kbc2gej+QDq6 TbK5t/cZqFdVC9jPUVipHs3N2BqEHhschASTKBgv9Ffp+BLQyVkQZ8TuNehMq9YF WrJntHE2mcfCloRlIZSS4SIOQqIAXDOgP1CAbk2SOmdEBGvZY4D8hAp67msdNd4Z 18O9bZ5eCkgVtUvC1fHyYmdTxo7hGOYjZg8KEPPZxCF+h+Umq1bjkXteUNW6f+5w ErFL7aqCrJ1m1R/TWmXA+KICjIaTQdjWiMrrAgMBAAGjggH7MIIB9zAdBgNVHQ4E FgQUlQv1L5H7e15Afwrj8SlDQEeuAecwHwYDVR0jBBgwFoAUUaVmbTI7+EL2BEzn EFl3PiJxsBMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjg0 MS9VYVZtYlRJNy1FTDJCRXpuRUZsM1BpSnhzQk0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1VhVm1iVEk3LUVMMkJFem5FRmwzUGlKeHNCTS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI4NDEvbFF2MUw1SDdlMTVB ZndyajhTbERRRWV1QWVjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEw DjAMAwQAZ35lAwQDZ35gMA0GCSqGSIb3DQEBCwUAA4IBAQBL2bF2Snp3WMTLbEdm EEKZgwDs5G7oYCb3IdALO5CHDE4oyLdAxWikVVhFMpoRpz68FnkmmZbO9wLSJNUE zvjUjsefYQ7h+891rDjiP2oWddRnhII0LLFeCEv8Q+vjTBeUKH+k0uJYkpeA0P6L qwqTEiXIUYK1wUWNg242jccEHE52X4KgbIK0bHKVtRiAVK8f1EAFIFKK5pkd1XvI fncD1/QzvtFmbXuLf5n7vkT9BvCyfxPScl42nfOgA6i2OCC4aqQdgJ8SdPcnZCcj SzujckXqRGdIc7Z5QYnezsbTUuEa90SeOSkKXD0Ux0sWhWXzwUsjh/iQcwMDJSjz tz1s -----END CERTIFICATE-----Generated at Sun Sep 7 19:37:02 2025 by rpki-client