$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/79TE-fYMgj2_NqIi6KXDSnJMobQ.roa File: 79TE-fYMgj2_NqIi6KXDSnJMobQ.roa (raw, json) Hash identifier: LdO8vdgUJnUtsoy4Qq4BJNbC6zGIOcAh1Ldl3hZxmZ0= Subject key identifier: EF:D4:C4:F9:F6:0C:82:3D:BF:36:A2:22:E8:A5:C3:4A:72:4C:A1:B4 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A85 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/79TE-fYMgj2_NqIi6KXDSnJMobQ.roa Signing time: Sat 13 Sep 2025 03:07:20 +0000 ROA not before: Sat 13 Sep 2025 03:07:20 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 10103 IP address blocks: 180.223.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 09:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6789 (0x1a85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:20 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EFD4C4F9F60C823DBF36A222E8A5C34A724CA1B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:11:0b:4a:11:7b:3d:39:7b:8c:91:a1:fe:61: 02:07:04:f6:2f:f6:8f:cc:e5:35:87:5e:58:e6:94: a4:46:aa:f4:6b:34:fb:ed:1a:59:4d:ae:3b:ba:8f: d4:ac:17:07:3f:8f:bd:61:18:13:76:19:67:05:ae: be:85:c7:8b:f5:80:bf:87:e7:5d:06:32:7b:33:0c: 36:cd:02:42:aa:3e:f3:c1:92:36:0f:03:f9:0c:35: 03:d2:5c:36:15:91:fe:2b:f1:f5:f8:87:9f:74:de: f7:74:18:26:cd:e7:9f:8c:07:b9:89:92:08:7d:80: b6:2b:06:98:56:f7:b2:2b:f2:07:61:8b:67:83:27: dc:3e:76:73:21:38:7e:04:45:46:cd:10:df:1a:cd: ff:b4:bb:d1:58:05:39:79:c7:d8:76:0e:1b:45:56: c0:07:7d:55:0c:41:d3:23:12:95:54:2e:c7:d0:59: e4:2d:25:a2:a1:81:ca:c2:af:03:fb:40:f8:7d:96: a2:76:b4:14:9c:2b:57:e9:6d:3e:aa:21:5f:e6:c0: 69:b2:b5:19:49:da:6f:eb:33:44:44:da:bb:2d:e0: 9c:97:22:20:67:19:fc:55:07:22:06:d2:e1:26:c9: e9:82:19:7c:93:23:8d:62:b1:ef:14:ed:0a:c8:47: 6a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D4:C4:F9:F6:0C:82:3D:BF:36:A2:22:E8:A5:C3:4A:72:4C:A1:B4 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/79TE-fYMgj2_NqIi6KXDSnJMobQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.120.0/22 Signature Algorithm: sha256WithRSAEncryption 06:85:07:7d:49:01:7e:5e:7c:46:c6:78:4c:67:e3:de:c5:1d: b4:0d:77:1d:6a:d6:19:92:1f:d1:f9:7e:33:0f:9a:d3:7e:35: 9f:a4:c1:c2:58:48:45:90:21:5b:f1:ea:be:b8:9e:dd:11:1b: ed:85:fb:5a:d1:58:ad:e5:ad:d1:3d:e4:c1:ec:17:b0:24:00: aa:6c:e6:4e:d7:f4:30:17:27:bf:dc:2e:bc:5c:82:10:87:23: f3:cb:e5:88:a0:15:80:75:dc:aa:31:1f:05:4c:91:22:7c:ee: 03:58:fa:62:27:c6:95:64:6f:a4:e9:70:c0:f6:79:b0:03:28: 57:b2:a4:1b:0b:59:5d:14:73:83:5c:3e:c1:b3:14:bb:d2:e9: 03:5e:e7:47:a1:3d:7e:82:7e:8a:b9:fe:89:0d:0e:33:72:10: 43:e3:27:ee:14:cf:1a:18:0c:47:94:02:f9:06:43:42:49:fd: 16:21:c7:f5:52:2d:21:59:37:40:c0:89:8a:de:1c:f3:f8:fd: 34:d7:80:33:7c:42:ec:ab:c8:20:e8:5b:e0:24:d1:df:ce:38: e3:2c:c7:3f:e6:89:9e:6c:f9:e7:ca:03:0e:5d:e6:26:37:b9: 65:e0:05:d8:7d:af:4c:36:22:59:ac:bb:aa:81:60:de:9e:63: 61:f1:c6:f9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVGRDRDNEY5RjYwQzgy M0RCRjM2QTIyMkU4QTVDMzRBNzI0Q0ExQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSEQtKEXs9OXuMkaH+YQIHBPYv9o/M5TWHXljmlKRGqvRrNPvt GllNrju6j9SsFwc/j71hGBN2GWcFrr6Fx4v1gL+H510GMnszDDbNAkKqPvPBkjYP A/kMNQPSXDYVkf4r8fX4h5903vd0GCbN55+MB7mJkgh9gLYrBphW97Ir8gdhi2eD J9w+dnMhOH4ERUbNEN8azf+0u9FYBTl5x9h2DhtFVsAHfVUMQdMjEpVULsfQWeQt JaKhgcrCrwP7QPh9lqJ2tBScK1fpbT6qIV/mwGmytRlJ2m/rM0RE2rst4JyXIiBn GfxVByIG0uEmyemCGXyTI41ise8U7QrIR2ptAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU79TE+fYMgj2/NqIi6KXDSnJMobQwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvNzlURS1mWU1najJf TnFJaTZLWERTbkpNb2JRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArTfeDANBgkqhkiG9w0BAQsFAAOCAQEABoUHfUkBfl58RsZ4TGfj3sUdtA13 HWrWGZIf0fl+Mw+a0341n6TBwlhIRZAhW/Hqvrie3REb7YX7WtFYreWt0T3kwewX sCQAqmzmTtf0MBcnv9wuvFyCEIcj88vliKAVgHXcqjEfBUyRInzuA1j6YifGlWRv pOlwwPZ5sAMoV7KkGwtZXRRzg1w+wbMUu9LpA17nR6E9foJ+irn+iQ0OM3IQQ+Mn 7hTPGhgMR5QC+QZDQkn9FiHH9VItIVk3QMCJit4c8/j9NNeAM3xC7KvIIOhb4CTR 38444yzHP+aJnmz558oDDl3mJje5ZeAF2H2vTDYiWay7qoFg3p5jYfHG+Q== -----END CERTIFICATE-----Generated at Tue Sep 16 06:31:23 2025 by rpki-client