$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/e-gpGquko8FVzOKBcX50YAYeg-4.roa File: e-gpGquko8FVzOKBcX50YAYeg-4.roa (raw, json) Hash identifier: NjuJxlwm/1NGKOrcG6oZ3tftMQ/Gs3D9OgRfo6nSZW4= Subject key identifier: 7B:E8:29:1A:AB:A4:A3:C1:55:CC:E2:81:71:7E:74:60:06:1E:83:EE Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A5E Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/e-gpGquko8FVzOKBcX50YAYeg-4.roa Signing time: Sat 13 Sep 2025 03:07:11 +0000 ROA not before: Sat 13 Sep 2025 03:07:11 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 7018 IP address blocks: 180.223.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 18:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6750 (0x1a5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:11 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7BE8291AABA4A3C155CCE281717E7460061E83EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:61:ab:01:56:3a:9d:d8:d1:cd:06:66:8a:f3: a4:52:e6:9b:59:07:80:81:41:b1:c5:1c:32:b7:0e: c1:47:f9:d8:e8:7f:62:32:e5:0e:58:bd:97:b1:21: 02:c8:4f:5f:4d:5e:56:03:ed:5e:13:07:cc:20:a5: fa:c3:39:fc:98:4b:e8:5f:78:db:4e:98:4e:b9:8b: bc:12:56:10:d6:20:9a:1c:2c:30:94:51:d3:64:bb: a1:8a:e4:22:8d:39:9a:fe:3d:52:3d:47:e6:89:d5: c4:87:66:32:36:13:bb:d0:e2:13:7c:f5:7a:7b:c4: 46:a7:f7:ec:c3:ad:65:57:cb:b6:10:02:02:32:ed: fa:4f:5f:e5:3e:e6:ad:b8:1b:52:c6:eb:7a:b1:21: 64:6b:2b:68:08:87:75:b9:0f:9c:bb:f6:26:78:de: 94:da:b0:e5:ee:46:30:09:37:30:c5:c4:90:36:1e: c0:d5:0c:55:a2:75:c4:91:6f:70:78:d9:71:66:10: 02:50:22:07:d6:b1:50:80:49:f7:17:9f:04:fd:01: 57:55:ae:ca:0d:45:23:1e:f3:d3:bb:45:91:18:b5: 56:cd:7a:7e:b0:ac:ad:76:95:0d:3f:ee:31:70:ae: 0f:57:62:9c:d6:47:7e:4c:b7:e1:bc:8e:52:2b:ab: 98:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E8:29:1A:AB:A4:A3:C1:55:CC:E2:81:71:7E:74:60:06:1E:83:EE X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/e-gpGquko8FVzOKBcX50YAYeg-4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.72.0/21 Signature Algorithm: sha256WithRSAEncryption 90:d4:e3:b4:ec:5e:1f:5d:49:99:41:3c:e1:1d:d1:e1:f7:94: 9b:29:47:59:cd:b3:f9:4c:0f:ae:35:1d:11:6a:d1:26:76:36: 07:41:d4:7a:20:3d:6e:81:eb:99:88:58:2f:87:37:72:78:db: 87:70:b3:3f:40:1b:b6:6b:67:50:2c:70:20:42:11:b8:cb:d8: 37:66:77:dc:b6:28:24:26:97:80:d7:6f:d4:4d:90:55:c9:04: 39:32:ef:67:b4:95:d5:e1:03:48:13:6f:f5:47:4c:ef:65:3c: 8c:0d:15:21:d4:1c:ba:95:2e:12:aa:2d:76:b9:15:f1:85:f7: 82:dc:31:2b:8c:41:e5:08:3f:ff:11:eb:e6:3c:cf:7a:f0:ed: a9:63:a6:a4:fe:3b:f3:ac:e9:5c:61:35:76:0b:25:4b:da:da: ec:9d:8c:61:9c:3c:10:bf:af:ab:82:53:21:40:a8:f2:e7:f4: 91:04:c0:6f:9f:36:36:8c:12:e0:4b:b9:4b:72:15:94:26:c8: 8e:61:91:81:a5:82:22:dd:f9:46:2a:90:4c:b6:eb:a1:66:15: e0:29:7b:f3:2a:a4:97:35:b4:7a:ba:f6:c2:57:6d:23:c8:3c: a6:7a:b5:78:d7:0d:dc:9c:e8:29:20:e1:ca:ca:87:44:b2:f9: b2:d8:54:b7 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdCRTgyOTFBQUJBNEEz QzE1NUNDRTI4MTcxN0U3NDYwMDYxRTgzRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6YasBVjqd2NHNBmaK86RS5ptZB4CBQbHFHDK3DsFH+djof2Iy 5Q5YvZexIQLIT19NXlYD7V4TB8wgpfrDOfyYS+hfeNtOmE65i7wSVhDWIJocLDCU UdNku6GK5CKNOZr+PVI9R+aJ1cSHZjI2E7vQ4hN89Xp7xEan9+zDrWVXy7YQAgIy 7fpPX+U+5q24G1LG63qxIWRrK2gIh3W5D5y79iZ43pTasOXuRjAJNzDFxJA2HsDV DFWidcSRb3B42XFmEAJQIgfWsVCASfcXnwT9AVdVrsoNRSMe89O7RZEYtVbNen6w rK12lQ0/7jFwrg9XYpzWR35Mt+G8jlIrq5iZAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUe+gpGquko8FVzOKBcX50YAYeg+4wHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvZS1ncEdxdWtvOEZW ek9LQmNYNTBZQVllZy00LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA7TfSDANBgkqhkiG9w0BAQsFAAOCAQEAkNTjtOxeH11JmUE84R3R4feUmylH Wc2z+UwPrjUdEWrRJnY2B0HUeiA9boHrmYhYL4c3cnjbh3CzP0AbtmtnUCxwIEIR uMvYN2Z33LYoJCaXgNdv1E2QVckEOTLvZ7SV1eEDSBNv9UdM72U8jA0VIdQcupUu EqotdrkV8YX3gtwxK4xB5Qg//xHr5jzPevDtqWOmpP4786zpXGE1dgslS9ra7J2M YZw8EL+vq4JTIUCo8uf0kQTAb582NowS4Eu5S3IVlCbIjmGRgaWCIt35RiqQTLbr oWYV4Cl78yqklzW0err2wldtI8g8pnq1eNcN3JzoKSDhysqHRLL5sthUtw== -----END CERTIFICATE-----Generated at Sun Oct 19 16:11:45 2025 by rpki-client