$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3171/gLNsQnsavu_2wqWF7jUTd6YOwM8.roa File: gLNsQnsavu_2wqWF7jUTd6YOwM8.roa (raw, json) Hash identifier: obdZ03e8dsiCI2QSyYweMEW3MzzPmJguRt0UKO1FAMY= Subject key identifier: 80:B3:6C:42:7B:1A:BE:EF:F6:C2:A5:85:EE:35:13:77:A6:0E:C0:CF Certificate issuer: /CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Certificate serial: 15D6 Authority key identifier: 02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/gLNsQnsavu_2wqWF7jUTd6YOwM8.roa Signing time: Sat 13 Sep 2025 03:03:56 +0000 ROA not before: Sat 13 Sep 2025 03:03:56 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 137443 IP address blocks: 103.218.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5590 (0x15d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02FB05DE3C544A9F1C344A63EB5F6CFDD3481156 Validity Not Before: Sep 13 03:03:56 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=80B36C427B1ABEEFF6C2A585EE351377A60EC0CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:7f:31:1f:a4:4b:24:cc:2f:ab:f1:6d:9c: 1c:f6:b2:1b:57:35:d8:28:6d:c3:60:34:34:2c:a8: 26:76:ac:85:39:01:dd:82:bf:fc:de:e4:92:48:b6: 56:9f:56:aa:9e:1f:6f:c7:c3:56:66:bb:dd:ee:2f: 41:c2:e3:64:fa:73:ee:b8:21:35:a8:e4:a2:66:4a: 64:3c:bc:a4:b6:42:80:5c:c8:b5:5b:64:41:40:cb: bf:62:26:94:94:21:67:94:db:c0:ff:bd:22:26:f7: ff:74:4e:54:84:30:fa:3b:2a:89:49:f9:83:9e:3d: 1d:f0:95:84:1f:15:34:94:cf:fa:ed:2d:19:f2:d8: ab:67:f0:84:95:2d:73:ae:d9:7a:35:9f:da:67:c5: 3f:88:d2:d3:81:af:72:fc:f2:92:00:34:99:ee:c1: 0d:95:16:22:f8:ed:f1:30:a5:f9:62:0e:f8:c3:43: 49:1f:34:c4:c7:2e:a0:25:a4:61:0a:70:85:9b:e4: 58:b8:ba:6f:60:f4:2a:be:1e:7b:f2:09:3e:bc:64: bd:49:1f:50:2a:59:3f:30:f1:1a:e4:20:22:80:e3: af:0f:43:01:c3:d0:5c:4e:27:c2:6a:b5:b4:01:f4: fa:46:c3:d2:2b:5b:4d:11:12:44:f8:c8:4e:4d:aa: 89:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B3:6C:42:7B:1A:BE:EF:F6:C2:A5:85:EE:35:13:77:A6:0E:C0:CF X509v3 Authority Key Identifier: keyid:02:FB:05:DE:3C:54:4A:9F:1C:34:4A:63:EB:5F:6C:FD:D3:48:11:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/AvsF3jxUSp8cNEpj619s_dNIEVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/AvsF3jxUSp8cNEpj619s_dNIEVY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3171/gLNsQnsavu_2wqWF7jUTd6YOwM8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.218.93.0/24 Signature Algorithm: sha256WithRSAEncryption 40:05:00:12:51:5a:cf:11:51:6d:0b:dd:77:26:65:f1:3e:f9: e8:d6:a9:58:03:b9:f1:c6:06:56:fc:63:52:73:f0:c5:52:ae: 9a:42:30:df:b6:de:60:79:c3:29:7a:86:eb:4f:20:3d:d8:93: 79:7d:ec:71:96:dc:0c:64:07:40:44:67:71:58:3f:41:78:60: ca:ea:08:b3:65:dd:e4:2f:67:a0:64:c0:0c:0a:1c:c9:31:b9: 2d:62:ad:59:a4:30:4f:bf:bd:15:61:c3:e8:77:ad:e6:11:8c: ed:b4:40:27:50:a7:03:88:5e:74:21:7d:e7:40:a5:2e:fb:0e: c1:6b:b2:a9:e0:fc:6b:26:b2:c2:e2:b3:21:44:36:b1:4f:18: 1e:83:09:6b:5c:bf:75:c4:52:23:7c:c1:c8:a0:42:af:0a:e0: 98:2f:13:e2:33:7a:e4:ad:13:ea:db:4d:aa:44:2d:57:b0:e9: a8:c3:e9:2d:48:a7:e8:37:0c:4a:4a:95:25:e3:8f:21:7e:fe: 35:26:65:b4:68:5b:16:c8:ca:f2:ac:b7:18:a6:f1:43:ae:85: 2a:53:a5:b2:d4:f8:fd:16:97:d5:51:c7:ac:0d:d2:0c:d9:f9: fe:1f:87:7d:dc:d3:ea:d2:c9:2a:cf:01:7f:65:50:39:49:69: 6e:4a:c4:b8 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDJG QjA1REUzQzU0NEE5RjFDMzQ0QTYzRUI1RjZDRkREMzQ4MTE1NjAeFw0yNTA5MTMw MzAzNTZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDgwQjM2QzQyN0IxQUJF RUZGNkMyQTU4NUVFMzUxMzc3QTYwRUMwQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5un8xH6RLJMwvq/FtnBz2shtXNdgobcNgNDQsqCZ2rIU5Ad2C v/ze5JJItlafVqqeH2/Hw1Zmu93uL0HC42T6c+64ITWo5KJmSmQ8vKS2QoBcyLVb ZEFAy79iJpSUIWeU28D/vSIm9/90TlSEMPo7KolJ+YOePR3wlYQfFTSUz/rtLRny 2Ktn8ISVLXOu2Xo1n9pnxT+I0tOBr3L88pIANJnuwQ2VFiL47fEwpfliDvjDQ0kf NMTHLqAlpGEKcIWb5Fi4um9g9Cq+HnvyCT68ZL1JH1AqWT8w8RrkICKA468PQwHD 0FxOJ8JqtbQB9PpGw9IrW00REkT4yE5NqomnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUgLNsQnsavu/2wqWF7jUTd6YOwM8wHwYDVR0jBBgwFoAUAvsF3jxUSp8cNEpj 619s/dNIEVYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE3 MS9BdnNGM2p4VVNwOGNORXBqNjE5c19kTklFVlkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0F2c0YzanhVU3A4Y05FcGo2MTlzX2ROSUVWWS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNzEvZ0xOc1Fuc2F2dV8y d3FXRjdqVVRkNllPd004LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfaXTANBgkqhkiG9w0BAQsFAAOCAQEAQAUAElFazxFRbQvddyZl8T756Nap WAO58cYGVvxjUnPwxVKumkIw37beYHnDKXqG608gPdiTeX3scZbcDGQHQERncVg/ QXhgyuoIs2Xd5C9noGTADAocyTG5LWKtWaQwT7+9FWHD6Het5hGM7bRAJ1CnA4he dCF950ClLvsOwWuyqeD8ayaywuKzIUQ2sU8YHoMJa1y/dcRSI3zByKBCrwrgmC8T 4jN65K0T6ttNqkQtV7DpqMPpLUin6DcMSkqVJeOPIX7+NSZltGhbFsjK8qy3GKbx Q66FKlOlstT4/RaX1VHHrA3SDNn5/h+HfdzT6tLJKs8Bf2VQOUlpbkrEuA== -----END CERTIFICATE-----Generated at Tue Sep 16 01:41:37 2025 by rpki-client