$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/v7GEc1xoeYJZX_h7mw222yTEhNc.roa File: v7GEc1xoeYJZX_h7mw222yTEhNc.roa (raw, json) Hash identifier: eZf/JMHK7MQVZWU5U1xWmqzrnr4ThE04rLYs0VE/dWA= Subject key identifier: BF:B1:84:73:5C:68:79:82:59:5F:F8:7B:9B:0D:B6:DB:24:C4:84:D7 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A60 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/v7GEc1xoeYJZX_h7mw222yTEhNc.roa Signing time: Sat 13 Sep 2025 03:07:12 +0000 ROA not before: Sat 13 Sep 2025 03:07:12 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 10103 IP address blocks: 180.223.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 09:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6752 (0x1a60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:12 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BFB184735C687982595FF87B9B0DB6DB24C484D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:10:6e:4d:3c:1e:e1:5b:6d:f4:cd:8a:00: c1:4b:1d:b9:ba:65:d3:3e:c7:3e:80:9f:e1:e3:d2: 76:c4:3d:59:07:07:4e:22:16:8e:bf:65:37:5a:6e: 71:04:b2:56:06:48:19:86:6a:20:93:f5:81:1b:0c: 6f:8d:03:65:d5:93:b7:5a:3a:2d:67:58:31:28:35: f1:4e:0c:d5:52:d0:5c:ae:86:3f:20:ae:d1:df:e2: 64:99:a3:12:0b:9c:c3:32:ee:6e:88:8a:e9:a0:8c: 4a:05:e9:68:b9:a1:c3:02:1b:a2:0f:79:c0:2c:38: e2:7d:93:db:51:84:23:65:57:d8:d7:bc:ed:a9:7b: c9:e4:7c:39:9c:c8:75:39:7c:71:f5:6d:47:4d:48: cf:a3:ed:61:d5:0a:58:3b:4b:5f:55:f6:ce:b4:17: 15:07:53:56:3c:8f:1e:f3:17:67:d0:ee:fb:13:74: c9:ff:29:0c:4c:ee:88:d7:aa:c1:19:a7:a3:97:bb: 25:01:c1:dd:26:ec:6d:12:e7:9e:2f:fc:a5:89:89: 6b:db:1b:55:54:5d:a7:4f:39:b1:5d:84:27:06:4c: 27:19:4b:ee:4a:a9:a7:26:f1:af:5c:9f:38:c4:d8: 92:2d:8f:c9:d0:7c:3d:8b:81:60:88:22:3a:30:08: 8d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B1:84:73:5C:68:79:82:59:5F:F8:7B:9B:0D:B6:DB:24:C4:84:D7 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/v7GEc1xoeYJZX_h7mw222yTEhNc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.204.0/22 Signature Algorithm: sha256WithRSAEncryption 58:a8:a3:5f:d1:b7:ce:99:76:96:c4:f6:56:4f:e6:02:26:d7: 8e:ab:8d:3c:41:19:eb:bf:0b:b9:ac:aa:82:72:f8:89:71:a1: 1d:55:de:1b:01:5a:10:cb:4c:a8:02:78:d2:d9:45:61:40:f9: 9f:9c:6a:95:87:21:85:d9:e7:63:25:13:bb:ba:75:8f:40:80: 15:61:10:ae:5b:d2:da:66:81:86:e7:34:f5:04:e1:06:c8:29: fe:10:50:2f:47:ef:5e:8c:ca:e5:82:c2:57:63:ca:af:da:15: 53:14:ea:d5:82:56:34:5f:94:da:f3:26:84:9a:9c:d5:88:4d: 30:86:60:44:2e:5a:99:a7:54:3e:65:ff:39:f9:f6:e8:ba:a4: 0b:3d:a9:a8:32:44:7c:38:3c:29:32:7d:46:c2:c2:ea:54:06: 6e:a1:27:61:8a:68:a3:2e:ca:8a:bf:f4:e7:1c:44:93:6e:fb: c1:58:a3:16:55:ac:97:e7:59:19:4a:35:eb:22:97:8c:c0:14: b0:d7:3e:87:5a:65:a3:50:38:2e:0f:5e:71:d2:64:00:af:6a: ed:a5:a2:95:51:44:8c:7a:b4:b9:b4:cf:e7:d3:f3:97:78:5e: e8:87:9e:9b:2e:49:ef:31:6e:b1:28:ae:bc:74:d7:5f:48:85: ae:cc:bf:17 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJGQjE4NDczNUM2ODc5 ODI1OTVGRjg3QjlCMERCNkRCMjRDNDg0RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLORBuTTwe4Vtt9M2KAMFLHbm6ZdM+xz6An+Hj0nbEPVkHB04i Fo6/ZTdabnEEslYGSBmGaiCT9YEbDG+NA2XVk7daOi1nWDEoNfFODNVS0Fyuhj8g rtHf4mSZoxILnMMy7m6IiumgjEoF6Wi5ocMCG6IPecAsOOJ9k9tRhCNlV9jXvO2p e8nkfDmcyHU5fHH1bUdNSM+j7WHVClg7S19V9s60FxUHU1Y8jx7zF2fQ7vsTdMn/ KQxM7ojXqsEZp6OXuyUBwd0m7G0S554v/KWJiWvbG1VUXadPObFdhCcGTCcZS+5K qacm8a9cnzjE2JItj8nQfD2LgWCIIjowCI0TAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUv7GEc1xoeYJZX/h7mw222yTEhNcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvdjdHRWMxeG9lWUpa WF9oN213MjIyeVRFaE5jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArTfzDANBgkqhkiG9w0BAQsFAAOCAQEAWKijX9G3zpl2lsT2Vk/mAibXjquN PEEZ678LuayqgnL4iXGhHVXeGwFaEMtMqAJ40tlFYUD5n5xqlYchhdnnYyUTu7p1 j0CAFWEQrlvS2maBhuc09QThBsgp/hBQL0fvXozK5YLCV2PKr9oVUxTq1YJWNF+U 2vMmhJqc1YhNMIZgRC5amadUPmX/Ofn26LqkCz2pqDJEfDg8KTJ9RsLC6lQGbqEn YYpooy7Kir/05xxEk277wVijFlWsl+dZGUo16yKXjMAUsNc+h1plo1A4Lg9ecdJk AK9q7aWilVFEjHq0ubTP59Pzl3he6Ieemy5J7zFusSiuvHTXX0iFrsy/Fw== -----END CERTIFICATE-----Generated at Tue Sep 16 06:34:17 2025 by rpki-client