$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/EqeVXnWXMFMMmnypnmSAGaVUC0o.roa File: EqeVXnWXMFMMmnypnmSAGaVUC0o.roa (raw, json) Hash identifier: 3H1Of9AkBt3LyD90+0s7laGD62SfHIB/xfEmt20jtxs= Subject key identifier: 12:A7:95:5E:75:97:30:53:0C:9A:7C:A9:9E:64:80:19:A5:54:0B:4A Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A87 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/EqeVXnWXMFMMmnypnmSAGaVUC0o.roa Signing time: Sat 13 Sep 2025 03:07:21 +0000 ROA not before: Sat 13 Sep 2025 03:07:21 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 10103 IP address blocks: 180.223.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 09:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6791 (0x1a87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:21 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=12A7955E759730530C9A7CA99E648019A5540B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:10:78:57:5f:16:d2:ca:90:33:e9:66:3a:95: 23:6e:18:22:00:e7:b2:e7:76:91:4e:5d:0d:16:fa: da:76:4c:4a:5a:e8:96:d5:d6:b3:f7:3d:5f:7b:26: 54:f9:95:aa:00:8e:b7:61:e1:aa:f1:5f:7a:48:3c: 50:b4:92:a6:4c:a5:3c:63:0b:d9:15:4a:c8:b0:f1: 00:6e:12:3b:bc:06:41:6a:02:e0:fd:21:45:84:7c: d8:ca:f9:65:e7:e1:bf:86:c9:95:23:c9:c3:ba:a2: 76:82:d3:b9:f5:e6:3e:cd:81:e1:c5:df:e2:13:6c: f8:70:82:ae:88:fe:6b:ee:5d:db:26:d1:53:d3:ec: f0:90:74:b9:ed:5d:66:af:cd:f0:9c:6b:0a:e3:b2: ec:9f:2d:fb:27:40:72:9a:fd:b7:ed:2d:00:98:5d: 67:cb:90:41:3a:23:e1:27:83:f3:c3:64:e7:11:1d: af:71:75:58:7f:ef:11:93:07:c4:68:94:3e:fd:af: e0:cc:f1:c3:12:21:be:bd:04:12:e2:7a:c5:59:e8: 28:2a:24:5a:8d:85:17:4b:e5:9e:d8:62:05:25:03: 9e:cc:31:c1:49:41:80:3b:75:85:ab:82:6a:93:29: 73:58:36:08:f2:0e:f1:64:71:61:84:f9:bb:7b:d5: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A7:95:5E:75:97:30:53:0C:9A:7C:A9:9E:64:80:19:A5:54:0B:4A X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/EqeVXnWXMFMMmnypnmSAGaVUC0o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.248.0/21 Signature Algorithm: sha256WithRSAEncryption 58:75:59:63:16:4a:84:c6:df:95:51:32:3a:64:46:3f:e0:24: 84:61:df:4c:33:53:10:ad:4e:90:60:b0:e1:5c:06:56:25:ab: 8c:4d:68:6f:8c:2f:62:20:e2:f6:99:42:36:70:b2:f8:56:28: d7:ae:93:70:86:6a:ba:fe:f3:70:d2:aa:2b:4f:8d:a7:ad:9b: c9:53:33:fc:9f:aa:bf:5a:5a:bf:1f:fa:04:51:a7:68:7f:56: 88:5f:ce:b8:fb:91:75:99:ce:28:1d:13:ec:52:e8:0a:89:fc: 4a:90:f4:5b:c6:48:89:8c:04:23:08:80:0c:10:32:76:ac:dd: 15:90:4d:08:a1:2d:0f:33:ec:b3:c6:0d:4e:00:66:44:b7:df: 1f:f4:00:ca:38:39:40:7a:cc:02:4f:f6:2f:15:6b:40:6e:86: 6e:5e:c8:d0:15:f8:ee:10:ca:9c:80:8f:2b:50:3a:ad:9c:bc: ee:bc:e2:95:70:c7:17:21:1d:e9:39:b0:39:3e:d9:c9:b4:b4: 84:93:e1:61:4b:a3:dc:71:4f:42:54:75:b0:ea:f5:01:bf:92: 43:77:1f:1c:70:e7:c0:85:8e:69:2c:37:79:7e:d4:f0:7b:96: 7b:0f:42:04:be:64:dc:87:29:b9:15:24:2a:e6:f4:dc:e3:7e: cf:d1:9d:32 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDEyQTc5NTVFNzU5NzMw NTMwQzlBN0NBOTlFNjQ4MDE5QTU1NDBCNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSEHhXXxbSypAz6WY6lSNuGCIA57LndpFOXQ0W+tp2TEpa6JbV 1rP3PV97JlT5laoAjrdh4arxX3pIPFC0kqZMpTxjC9kVSsiw8QBuEju8BkFqAuD9 IUWEfNjK+WXn4b+GyZUjycO6onaC07n15j7NgeHF3+ITbPhwgq6I/mvuXdsm0VPT 7PCQdLntXWavzfCcawrjsuyfLfsnQHKa/bftLQCYXWfLkEE6I+Eng/PDZOcRHa9x dVh/7xGTB8RolD79r+DM8cMSIb69BBLiesVZ6CgqJFqNhRdL5Z7YYgUlA57MMcFJ QYA7dYWrgmqTKXNYNgjyDvFkcWGE+bt71WmdAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUEqeVXnWXMFMMmnypnmSAGaVUC0owHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvRXFlVlhuV1hNRk1N bW55cG5tU0FHYVZVQzBvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA7Tf+DANBgkqhkiG9w0BAQsFAAOCAQEAWHVZYxZKhMbflVEyOmRGP+AkhGHf TDNTEK1OkGCw4VwGViWrjE1ob4wvYiDi9plCNnCy+FYo166TcIZquv7zcNKqK0+N p62byVMz/J+qv1pavx/6BFGnaH9WiF/OuPuRdZnOKB0T7FLoCon8SpD0W8ZIiYwE IwiADBAydqzdFZBNCKEtDzPss8YNTgBmRLffH/QAyjg5QHrMAk/2LxVrQG6Gbl7I 0BX47hDKnICPK1A6rZy87rzilXDHFyEd6TmwOT7ZybS0hJPhYUuj3HFPQlR1sOr1 Ab+SQ3cfHHDnwIWOaSw3eX7U8HuWew9CBL5k3IcpuRUkKub03ON+z9GdMg== -----END CERTIFICATE-----Generated at Tue Sep 16 06:31:30 2025 by rpki-client