$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/L4j5af_9WT5rGqHXGyWw5bEEhjs.roa File: L4j5af_9WT5rGqHXGyWw5bEEhjs.roa (raw, json) Hash identifier: r/78+05+yVSZ9H5kpLb3BM+he8uvNmXr4k+PpuMvTBU= Subject key identifier: 2F:88:F9:69:FF:FD:59:3E:6B:1A:A1:D7:1B:25:B0:E5:B1:04:86:3B Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A69 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/L4j5af_9WT5rGqHXGyWw5bEEhjs.roa Signing time: Sat 13 Sep 2025 03:07:14 +0000 ROA not before: Sat 13 Sep 2025 03:07:14 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 7018 IP address blocks: 180.223.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 18:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6761 (0x1a69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:14 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2F88F969FFFD593E6B1AA1D71B25B0E5B104863B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:01:36:ca:22:f0:64:66:79:29:2a:32:b9:99: 43:80:86:2a:d6:df:c0:4b:fe:ef:60:15:65:cd:a2: cd:6d:d3:ec:2e:2d:aa:4d:c7:1b:b3:66:20:ea:20: 15:54:e0:9e:b8:e0:34:b8:97:d5:8b:87:c6:9d:77: 9c:95:e9:d8:10:67:19:69:7a:b8:66:e3:8f:5d:38: 9c:1f:7a:4a:e9:74:fc:d0:8d:2a:c9:d7:1e:7a:24: 6f:30:9c:d4:c5:14:7f:15:fc:02:8b:19:38:3a:e6: a3:ba:4f:8e:22:23:c7:3b:73:4e:05:45:ee:4e:e0: 79:c5:b8:d2:ee:fc:17:0b:c2:22:dd:44:1b:ba:2b: 40:58:be:83:e6:e3:0e:b1:36:9c:92:aa:75:b3:e5: 43:48:29:66:28:6c:e5:29:86:00:b0:51:b4:a1:85: a0:b7:21:7f:9b:8d:77:f7:29:72:a0:7e:d0:4d:31: c4:62:6a:3b:6d:1c:b7:33:d1:f1:41:5c:bc:d2:ad: fe:81:72:0e:85:d1:7e:ec:e2:80:f4:93:fa:a8:1f: 88:88:66:42:f7:c4:fd:d5:20:20:18:b9:aa:c2:ab: df:ca:ea:ca:3c:01:0d:60:37:67:dd:83:a2:22:cc: 7a:6e:3a:fc:61:55:0a:2e:19:b5:d7:9b:40:2e:60: ab:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:88:F9:69:FF:FD:59:3E:6B:1A:A1:D7:1B:25:B0:E5:B1:04:86:3B X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/L4j5af_9WT5rGqHXGyWw5bEEhjs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.232.0/21 Signature Algorithm: sha256WithRSAEncryption 6a:c7:86:ee:2c:02:28:a0:09:cc:a6:71:81:30:0a:02:ae:7c: 12:4f:df:58:7e:5b:09:f3:06:db:2d:b0:06:12:dd:e2:42:e7: 05:af:e2:2a:ad:d9:e9:ab:17:49:fd:d0:f6:96:6a:8a:36:ce: 13:cd:d9:39:bb:7b:71:fa:84:33:21:7d:65:43:e4:a0:de:18: 62:29:3c:bc:78:61:95:0e:27:34:ba:72:84:33:2b:86:0d:8e: 77:f9:b4:02:a8:18:85:1c:25:aa:5b:b0:ac:71:56:e0:43:ca: f0:ec:3e:b4:a4:e2:38:c8:22:37:91:64:ba:94:ae:64:26:32: e4:27:07:d3:12:ce:c4:04:9b:9e:c4:57:d5:be:8a:a1:fe:06: ba:47:c2:ef:78:6b:5b:39:73:e7:b4:ea:cf:26:85:8b:28:53: 9d:12:24:41:ce:3c:72:2d:5c:c6:59:1d:91:9d:57:b1:f1:0e: ad:ad:7b:be:53:a4:0f:fd:77:8b:19:bb:46:ff:11:1f:50:af: 16:7a:57:c4:30:19:dd:e9:ce:04:31:c0:06:3d:0b:13:bc:ca: 44:c3:b5:b7:bd:c8:82:4c:bc:e7:16:f6:a7:f9:c6:b9:97:1e: 62:9c:92:0e:d1:1c:1e:d4:9d:ad:39:9f:45:69:a4:f6:7b:60: 1e:ae:d2:57 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDJGODhGOTY5RkZGRDU5 M0U2QjFBQTFENzFCMjVCMEU1QjEwNDg2M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWATbKIvBkZnkpKjK5mUOAhirW38BL/u9gFWXNos1t0+wuLapN xxuzZiDqIBVU4J644DS4l9WLh8add5yV6dgQZxlperhm449dOJwfekrpdPzQjSrJ 1x56JG8wnNTFFH8V/AKLGTg65qO6T44iI8c7c04FRe5O4HnFuNLu/BcLwiLdRBu6 K0BYvoPm4w6xNpySqnWz5UNIKWYobOUphgCwUbShhaC3IX+bjXf3KXKgftBNMcRi ajttHLcz0fFBXLzSrf6Bcg6F0X7s4oD0k/qoH4iIZkL3xP3VICAYuarCq9/K6so8 AQ1gN2fdg6IizHpuOvxhVQouGbXXm0AuYKurAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUL4j5af/9WT5rGqHXGyWw5bEEhjswHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvTDRqNWFmXzlXVDVy R3FIWEd5V3c1YkVFaGpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA7Tf6DANBgkqhkiG9w0BAQsFAAOCAQEAaseG7iwCKKAJzKZxgTAKAq58Ek/f WH5bCfMG2y2wBhLd4kLnBa/iKq3Z6asXSf3Q9pZqijbOE83ZObt7cfqEMyF9ZUPk oN4YYik8vHhhlQ4nNLpyhDMrhg2Od/m0AqgYhRwlqluwrHFW4EPK8Ow+tKTiOMgi N5FkupSuZCYy5CcH0xLOxASbnsRX1b6Kof4GukfC73hrWzlz57TqzyaFiyhTnRIk Qc48ci1cxlkdkZ1XsfEOra17vlOkD/13ixm7Rv8RH1CvFnpXxDAZ3enOBDHABj0L E7zKRMO1t73Igky85xb2p/nGuZceYpySDtEcHtSdrTmfRWmk9ntgHq7SVw== -----END CERTIFICATE-----Generated at Sun Oct 19 16:05:32 2025 by rpki-client