$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/fDcinh_ph94lxUysL4-TFY7zpq8.roa File: fDcinh_ph94lxUysL4-TFY7zpq8.roa (raw, json) Hash identifier: fB1h79S8XU4JymxAD6r/P888N+TJEpYUc5EHHbN1758= Subject key identifier: 7C:37:22:9E:1F:E9:87:DE:25:C5:4C:AC:2F:8F:93:15:8E:F3:A6:AF Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A89 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/fDcinh_ph94lxUysL4-TFY7zpq8.roa Signing time: Sat 13 Sep 2025 03:07:21 +0000 ROA not before: Sat 13 Sep 2025 03:07:21 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4766 IP address blocks: 180.223.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 18:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6793 (0x1a89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:21 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=7C37229E1FE987DE25C54CAC2F8F93158EF3A6AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:25:0d:4d:6f:75:27:16:64:be:8e:6b:55:a2: b1:22:f2:ed:b0:7a:c4:22:66:58:d4:7d:fc:9b:64: 1b:f0:3c:a9:ea:5c:c3:8a:27:2e:94:9d:20:ad:86: 8a:ba:0e:06:e8:dd:0a:98:c6:3c:cb:6c:39:01:dc: 93:0d:54:31:6d:33:71:25:30:d3:2d:3b:4e:d5:0f: cc:38:0b:c8:04:7d:0a:59:6a:1c:f3:fe:9b:04:5a: ba:bd:02:2a:fa:12:5d:f3:83:9e:a9:96:87:1d:1e: ec:a0:10:70:f8:28:3e:e4:c8:b0:72:5e:32:06:b8: e8:7b:bc:0e:2f:3d:06:74:86:5d:1c:a1:7d:56:3c: 1c:ac:d8:0b:eb:52:86:b0:e8:87:89:ce:41:1a:0b: 86:42:87:a3:77:2e:b7:aa:d7:08:8b:5e:ea:43:13: f3:fb:37:3d:86:d5:a1:8a:23:ae:81:42:68:11:4d: c0:39:13:d9:e3:1e:2a:37:95:e0:f9:72:2a:ff:36: 1b:b2:c4:a0:11:90:dc:05:a1:22:e4:a1:cd:69:59: 25:77:0a:f6:f2:1b:41:df:b0:3e:42:4d:8f:b5:4f: 58:f7:04:a2:ab:b9:36:78:92:d9:d1:e1:32:e4:e1: d5:fa:b2:f6:e3:b5:8b:44:65:f1:4b:f9:0c:76:bd: e8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:37:22:9E:1F:E9:87:DE:25:C5:4C:AC:2F:8F:93:15:8E:F3:A6:AF X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/fDcinh_ph94lxUysL4-TFY7zpq8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.124.0/22 Signature Algorithm: sha256WithRSAEncryption 92:cb:8f:11:1e:bc:8a:d8:de:9c:90:c4:0b:80:b0:ef:49:e4: ab:58:b1:e6:a9:38:5c:26:a8:da:81:66:23:07:ad:71:2b:8e: 71:10:79:38:82:cb:f9:97:ff:19:67:6e:f1:75:48:a8:6e:1e: 7f:a7:73:b3:57:cb:f2:3a:b3:ab:b7:5f:5c:29:f5:64:dc:3f: d4:6a:84:2c:c0:56:6d:d2:48:97:bf:0e:16:5c:35:72:b7:80: 7f:7f:6c:2b:23:24:f2:af:ac:d2:44:69:40:d3:30:90:58:01: ba:ed:f8:c5:4c:93:47:45:44:ba:11:a9:8e:97:2a:dd:c4:72: 40:bc:18:f7:63:14:90:25:4b:f4:10:33:58:c6:21:f5:9a:46: f9:99:55:4d:97:41:ef:14:cd:ac:93:8b:5a:34:36:45:e4:7c: f3:b9:b7:07:f4:da:d1:69:fc:e4:7c:94:a2:6c:5c:6e:30:bb: 3f:81:79:4a:dd:3f:c5:e4:8f:eb:02:8a:66:fe:8b:f3:df:4d: 54:98:83:44:8c:66:3f:49:37:6b:41:00:f5:34:b3:f4:a1:8a: 77:96:7b:d4:b5:6c:09:9e:b5:d3:e8:48:df:6d:15:c4:de:b6: 18:78:6e:18:0e:ed:f9:7c:1f:9c:99:2b:08:ba:c1:72:04:ee: 7e:10:6a:b3 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDdDMzcyMjlFMUZFOTg3 REUyNUM1NENBQzJGOEY5MzE1OEVGM0E2QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5JQ1Nb3UnFmS+jmtVorEi8u2wesQiZljUffybZBvwPKnqXMOK Jy6UnSCthoq6Dgbo3QqYxjzLbDkB3JMNVDFtM3ElMNMtO07VD8w4C8gEfQpZahzz /psEWrq9Air6El3zg56plocdHuygEHD4KD7kyLByXjIGuOh7vA4vPQZ0hl0coX1W PBys2AvrUoaw6IeJzkEaC4ZCh6N3Lreq1wiLXupDE/P7Nz2G1aGKI66BQmgRTcA5 E9njHio3leD5cir/NhuyxKARkNwFoSLkoc1pWSV3CvbyG0HfsD5CTY+1T1j3BKKr uTZ4ktnR4TLk4dX6svbjtYtEZfFL+Qx2vejfAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUfDcinh/ph94lxUysL4+TFY7zpq8wHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvZkRjaW5oX3BoOTRs eFV5c0w0LVRGWTd6cHE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArTffDANBgkqhkiG9w0BAQsFAAOCAQEAksuPER68itjenJDEC4Cw70nkq1ix 5qk4XCao2oFmIwetcSuOcRB5OILL+Zf/GWdu8XVIqG4ef6dzs1fL8jqzq7dfXCn1 ZNw/1GqELMBWbdJIl78OFlw1creAf39sKyMk8q+s0kRpQNMwkFgBuu34xUyTR0VE uhGpjpcq3cRyQLwY92MUkCVL9BAzWMYh9ZpG+ZlVTZdB7xTNrJOLWjQ2ReR887m3 B/Ta0Wn85HyUomxcbjC7P4F5St0/xeSP6wKKZv6L899NVJiDRIxmP0k3a0EA9TSz 9KGKd5Z71LVsCZ610+hI320VxN62GHhuGA7t+XwfnJkrCLrBcgTufhBqsw== -----END CERTIFICATE-----Generated at Sun Oct 19 16:11:43 2025 by rpki-client