$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2967/vp8DfdA-tb6Km8oao2wT7OAOtUM.roa File: vp8DfdA-tb6Km8oao2wT7OAOtUM.roa (raw, json) Hash identifier: NJN+XiAKtVaBe0z1AJl+hGrrZ5LR5dLTTad7qYBz5VA= Subject key identifier: BE:9F:03:7D:D0:3E:B5:BE:8A:9B:CA:1A:A3:6C:13:EC:E0:0E:B5:43 Certificate issuer: /CN=0AB6F528865292E198F98B68B72D98D130AF532E Certificate serial: 173F Authority key identifier: 0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/vp8DfdA-tb6Km8oao2wT7OAOtUM.roa Signing time: Sat 13 Sep 2025 03:04:24 +0000 ROA not before: Sat 13 Sep 2025 03:04:24 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 398704 IP address blocks: 103.150.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 03:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5951 (0x173f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AB6F528865292E198F98B68B72D98D130AF532E Validity Not Before: Sep 13 03:04:24 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BE9F037DD03EB5BE8A9BCA1AA36C13ECE00EB543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:11:c4:36:25:a5:5c:2a:8c:75:c2:d3:b7:93: 10:f3:15:53:ff:d6:d8:9e:ed:eb:46:6f:60:98:76: c5:0b:c6:8a:df:ed:f5:bc:71:54:af:a2:b1:36:5c: 64:ec:6e:aa:b4:37:41:da:69:d7:4c:b7:86:e9:97: 2b:2b:43:a3:64:80:fa:06:80:4b:75:30:20:2a:c1: bd:93:6d:58:c3:13:75:08:2a:cb:0a:22:4b:50:79: 50:5c:46:68:79:f6:c6:67:f4:44:cd:74:98:49:1d: eb:a2:c1:a4:4a:2f:a3:b7:a3:4c:15:61:61:b8:35: 10:1a:08:c1:53:4f:82:1d:0e:9a:d4:80:36:95:0d: 1a:d2:a7:bb:b4:d1:ea:67:b2:57:d4:62:f9:59:36: 7e:0d:18:80:66:f2:17:3d:18:8b:25:30:4c:fa:11: e9:6f:a5:0a:04:c5:ce:c5:db:90:7f:52:36:0a:c4: 06:16:f0:d2:05:58:b7:b6:9e:97:bd:f8:d4:2b:36: bb:af:d4:a3:ea:a8:49:6a:80:02:0f:bd:b3:a2:f1: e5:72:d3:9c:13:2f:0c:c4:11:b6:68:0b:cd:41:a3: bd:cf:2d:ce:99:14:3c:72:7b:11:72:42:86:80:73: 96:b8:7f:db:f2:b2:66:5a:3a:a9:5f:81:53:44:77: 7a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9F:03:7D:D0:3E:B5:BE:8A:9B:CA:1A:A3:6C:13:EC:E0:0E:B5:43 X509v3 Authority Key Identifier: keyid:0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/vp8DfdA-tb6Km8oao2wT7OAOtUM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.150.130.0/23 Signature Algorithm: sha256WithRSAEncryption 30:f3:d5:2a:d2:c4:bd:bb:a7:47:cc:73:56:3d:a8:ff:8a:19: e1:a4:62:10:6c:d6:5a:82:2e:8a:02:e0:aa:b8:cd:b8:15:3e: 48:78:c4:59:38:77:25:c6:a3:43:96:2c:cd:ea:ab:34:83:77: ad:c5:e2:f8:d3:0e:53:79:d5:8e:3c:76:4a:c6:41:15:39:86: 0c:b7:20:04:a4:2a:d4:77:df:db:73:81:7c:8a:f0:b1:ad:7f: fd:34:5b:a5:91:d8:61:52:66:7f:7d:3a:7e:54:93:dc:12:c8: f4:79:6d:21:65:39:84:67:34:0e:97:97:8e:5f:61:df:49:67: ee:f2:1c:1a:e5:a9:ee:ea:eb:74:99:04:90:82:58:45:92:86: 38:22:f3:c5:6f:cc:91:0b:b4:b2:8e:97:b5:d8:ca:42:41:9a: ea:e6:b8:97:1b:22:34:c8:38:b3:07:23:6e:27:6f:96:f8:b4: 63:be:51:84:3d:80:85:3c:2a:23:11:6d:ec:fa:ec:a6:13:a1: e0:c5:72:33:bc:d5:9a:43:77:63:e7:a1:9b:83:59:90:d4:bd: 3c:91:11:22:86:cf:43:54:e8:6b:4e:59:9b:40:b8:a7:50:66: 03:09:a9:b2:56:49:13:12:d6:c3:2e:1f:32:09:8a:8b:36:72: 39:80:20:d2 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFz8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEFC NkY1Mjg4NjUyOTJFMTk4Rjk4QjY4QjcyRDk4RDEzMEFGNTMyRTAeFw0yNTA5MTMw MzA0MjRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJFOUYwMzdERDAzRUI1 QkU4QTlCQ0ExQUEzNkMxM0VDRTAwRUI1NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsEcQ2JaVcKox1wtO3kxDzFVP/1tie7etGb2CYdsULxorf7fW8 cVSvorE2XGTsbqq0N0HaaddMt4bplysrQ6NkgPoGgEt1MCAqwb2TbVjDE3UIKssK IktQeVBcRmh59sZn9ETNdJhJHeuiwaRKL6O3o0wVYWG4NRAaCMFTT4IdDprUgDaV DRrSp7u00epnslfUYvlZNn4NGIBm8hc9GIslMEz6EelvpQoExc7F25B/UjYKxAYW 8NIFWLe2npe9+NQrNruv1KPqqElqgAIPvbOi8eVy05wTLwzEEbZoC81Bo73PLc6Z FDxyexFyQoaAc5a4f9vysmZaOqlfgVNEd3olAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUvp8DfdA+tb6Km8oao2wT7OAOtUMwHwYDVR0jBBgwFoAUCrb1KIZSkuGY+Yto ty2Y0TCvUy4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk2 Ny9DcmIxS0laU2t1R1ktWXRvdHkyWTBUQ3ZVeTQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0NyYjFLSVpTa3VHWS1ZdG90eTJZMFRDdlV5NC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5NjcvdnA4RGZkQS10YjZL bThvYW8yd1Q3T0FPdFVNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeWgjANBgkqhkiG9w0BAQsFAAOCAQEAMPPVKtLEvbunR8xzVj2o/4oZ4aRi EGzWWoIuigLgqrjNuBU+SHjEWTh3JcajQ5YszeqrNIN3rcXi+NMOU3nVjjx2SsZB FTmGDLcgBKQq1Hff23OBfIrwsa1//TRbpZHYYVJmf306flST3BLI9HltIWU5hGc0 DpeXjl9h30ln7vIcGuWp7urrdJkEkIJYRZKGOCLzxW/MkQu0so6XtdjKQkGa6ua4 lxsiNMg4swcjbidvlvi0Y75RhD2AhTwqIxFt7PrsphOh4MVyM7zVmkN3Y+ehm4NZ kNS9PJERIobPQ1Toa05Zm0C4p1BmAwmpslZJExLWwy4fMgmKizZyOYAg0g== -----END CERTIFICATE-----Generated at Thu Sep 18 02:52:42 2025 by rpki-client