$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/vo4fS_Uwog5fKImPMv1nBxw1Dig.roa File: vo4fS_Uwog5fKImPMv1nBxw1Dig.roa (raw, json) Hash identifier: DUaNU6TX1BwsNfCaFHkV/KZv/t5Em0uZwX8a26w8AFI= Subject key identifier: BE:8E:1F:4B:F5:30:A2:0E:5F:28:89:8F:32:FD:67:07:1C:35:0E:28 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A96 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/vo4fS_Uwog5fKImPMv1nBxw1Dig.roa Signing time: Sat 13 Sep 2025 03:07:23 +0000 ROA not before: Sat 13 Sep 2025 03:07:23 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 398704 IP address blocks: 180.223.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6806 (0x1a96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:23 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BE8E1F4BF530A20E5F28898F32FD67071C350E28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9a:35:79:4c:e9:93:86:35:9c:68:33:c8:94: 5d:8a:c2:f2:60:66:36:98:11:2d:ab:48:d6:1a:0a: 2c:19:d2:ac:dc:df:a2:2a:f6:87:9d:45:a1:cc:7c: 35:7c:1a:9a:2e:28:0a:ce:0e:49:fe:e9:13:4b:f3: fb:b0:3f:66:f0:0e:7f:41:68:a2:a3:60:b6:e1:e7: b2:eb:ba:6e:18:33:cd:d3:b4:f7:f1:b0:f4:ad:4d: 3c:8f:4c:49:1b:48:4c:86:85:06:30:34:7c:ca:8e: 5b:45:59:98:84:30:52:60:e0:cf:8f:17:c5:01:f0: 77:ea:fc:e9:6d:22:00:91:22:64:05:40:ac:7a:12: e7:8f:0b:fe:47:69:23:57:a0:d5:2c:80:88:fa:d4: 0b:71:84:78:48:89:be:b4:9f:83:55:69:09:7e:a1: 15:63:d6:79:28:69:4e:47:3e:5e:0e:64:db:02:61: de:33:db:fc:08:b9:c9:fb:40:5a:ac:e1:96:74:68: 38:2d:6e:e2:a1:07:fb:c1:4d:19:4d:89:39:9b:38: 0e:09:14:8b:04:6f:f1:60:e2:3a:47:92:cb:89:75: 74:fe:52:8e:8c:02:ea:0c:9d:fe:b9:d5:06:e0:47: 20:a3:bc:3e:5e:c1:10:30:f3:a7:0c:1e:dd:56:65: 8b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8E:1F:4B:F5:30:A2:0E:5F:28:89:8F:32:FD:67:07:1C:35:0E:28 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/vo4fS_Uwog5fKImPMv1nBxw1Dig.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.96.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:a8:79:8d:d5:02:64:0a:f4:78:ac:07:8f:5a:cc:20:0e:54: ee:21:db:63:0b:d5:95:38:3b:52:27:1f:08:0e:70:86:f9:b1: f9:8e:27:57:8d:b2:b7:09:e4:18:a0:50:08:d8:6a:ca:e1:c6: 25:5e:11:87:ba:69:51:03:17:8f:09:55:fe:74:8d:57:22:4d: 1c:d8:9f:34:04:ed:55:06:3f:04:dc:90:59:c3:83:8d:a3:6a: d3:8c:54:5c:c2:e5:c3:46:b7:59:b2:98:5a:fb:96:fe:45:f0: e9:3f:0a:49:37:d4:67:e9:b0:f9:91:ca:c5:12:3f:e2:11:0e: 44:40:2e:4d:36:b6:40:6a:f9:12:81:4a:8e:60:df:92:bc:0d: 0b:2b:f9:0a:07:56:84:2a:f4:1e:b3:c3:51:93:26:2f:f9:2e: 3c:9f:3d:ae:3a:91:8e:d5:97:ed:be:a9:0f:29:3c:0f:7a:14: a9:8a:8c:2c:b5:9d:72:ce:08:0d:e1:a1:b9:2d:f4:6a:76:3f: 03:c1:28:eb:9e:49:0f:c3:ad:97:46:d8:78:78:a4:f4:b0:56: 11:18:11:a4:4d:7f:f4:92:00:e5:86:2a:cb:af:42:aa:d2:43: 29:ff:9b:4f:76:f8:ec:99:01:01:54:0a:af:da:6c:1d:98:ec: 25:62:dd:46 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGpYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJFOEUxRjRCRjUzMEEy MEU1RjI4ODk4RjMyRkQ2NzA3MUMzNTBFMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClmjV5TOmThjWcaDPIlF2KwvJgZjaYES2rSNYaCiwZ0qzc36Iq 9oedRaHMfDV8GpouKArODkn+6RNL8/uwP2bwDn9BaKKjYLbh57Lrum4YM83TtPfx sPStTTyPTEkbSEyGhQYwNHzKjltFWZiEMFJg4M+PF8UB8Hfq/OltIgCRImQFQKx6 EuePC/5HaSNXoNUsgIj61AtxhHhIib60n4NVaQl+oRVj1nkoaU5HPl4OZNsCYd4z 2/wIucn7QFqs4ZZ0aDgtbuKhB/vBTRlNiTmbOA4JFIsEb/Fg4jpHksuJdXT+Uo6M AuoMnf651QbgRyCjvD5ewRAw86cMHt1WZYtjAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUvo4fS/Uwog5fKImPMv1nBxw1DigwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvdm80ZlNfVXdvZzVm S0ltUE12MW5CeHcxRGlnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTfYDANBgkqhkiG9w0BAQsFAAOCAQEAGqh5jdUCZAr0eKwHj1rMIA5U7iHb YwvVlTg7UicfCA5whvmx+Y4nV42ytwnkGKBQCNhqyuHGJV4Rh7ppUQMXjwlV/nSN VyJNHNifNATtVQY/BNyQWcODjaNq04xUXMLlw0a3WbKYWvuW/kXw6T8KSTfUZ+mw +ZHKxRI/4hEOREAuTTa2QGr5EoFKjmDfkrwNCyv5CgdWhCr0HrPDUZMmL/kuPJ89 rjqRjtWX7b6pDyk8D3oUqYqMLLWdcs4IDeGhuS30anY/A8Eo655JD8Otl0bYeHik 9LBWERgRpE1/9JIA5YYqy69CqtJDKf+bT3b47JkBAVQKr9psHZjsJWLdRg== -----END CERTIFICATE-----Generated at Thu Sep 18 02:51:28 2025 by rpki-client