$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3194/sbu17e0QoVUI9W7RNg3UI95CtpM.roa File: sbu17e0QoVUI9W7RNg3UI95CtpM.roa (raw, json) Hash identifier: s9gRekXs+s24fDqiGJ+uhEWtDdujVoxBCQiLjYe1MCQ= Subject key identifier: B1:BB:B5:ED:ED:10:A1:55:08:F5:6E:D1:36:0D:D4:23:DE:42:B6:93 Certificate issuer: /CN=01BE335E6A4EFB954DBA7893846929A3A5F6867A Certificate serial: 13 Authority key identifier: 01:BE:33:5E:6A:4E:FB:95:4D:BA:78:93:84:69:29:A3:A5:F6:86:7A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/sbu17e0QoVUI9W7RNg3UI95CtpM.roa Signing time: Wed 22 Oct 2025 02:13:23 +0000 ROA not before: Wed 22 Oct 2025 02:13:23 +0000 ROA not after: Wed 21 Oct 2026 08:58:05 +0000 asID: 151261 IP address blocks: 103.45.129.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01BE335E6A4EFB954DBA7893846929A3A5F6867A Validity Not Before: Oct 22 02:13:23 2025 GMT Not After : Oct 21 08:58:05 2026 GMT Subject: CN=B1BBB5EDED10A15508F56ED1360DD423DE42B693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6e:bb:5e:cb:46:06:86:eb:24:54:30:86:f5: 63:68:ee:15:c2:9a:85:9a:54:ea:ca:12:1a:6f:5b: 07:7e:3e:16:a2:04:15:c7:52:80:66:25:de:d4:23: 1b:b2:b2:c9:4c:42:57:c9:87:fe:ce:a2:85:45:55: 21:45:d6:04:93:cf:6a:52:7f:e3:63:f0:b7:5c:72: 86:72:18:c5:98:cb:ba:ef:8e:0a:87:c8:bb:ee:43: 4c:ef:cb:ef:f5:1c:4a:97:c1:1e:de:79:67:10:10: 3a:5a:bf:81:f2:85:b8:36:6c:48:03:ab:57:1b:06: 9d:a5:c8:be:a8:46:fa:60:33:c1:c5:89:27:07:c5: ea:99:20:a7:fd:64:cd:0b:37:03:86:11:50:57:9d: 63:4a:38:5c:ca:f9:b8:46:c8:cb:98:49:96:f3:59: fe:02:2f:3e:09:48:a3:54:97:e3:d5:dd:04:6b:9c: 79:c2:ba:d7:4e:92:05:56:bb:77:4b:9f:10:7d:57: 7a:ae:26:b9:34:f6:89:e9:f9:3f:9b:ae:35:4c:9d: 21:69:ec:76:f0:e6:f5:6a:ed:f2:34:1a:a7:75:93: 02:74:61:0f:d5:9d:ca:a8:f3:4b:27:10:74:62:f7: a2:85:05:39:ce:e4:8b:bc:01:68:8a:a3:51:d2:fd: 97:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BB:B5:ED:ED:10:A1:55:08:F5:6E:D1:36:0D:D4:23:DE:42:B6:93 X509v3 Authority Key Identifier: keyid:01:BE:33:5E:6A:4E:FB:95:4D:BA:78:93:84:69:29:A3:A5:F6:86:7A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/Ab4zXmpO-5VNuniThGkpo6X2hno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Ab4zXmpO-5VNuniThGkpo6X2hno.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3194/sbu17e0QoVUI9W7RNg3UI95CtpM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.45.129.0/24 Signature Algorithm: sha256WithRSAEncryption 89:b9:b1:4a:f2:a8:fb:cb:36:1b:db:de:ff:22:8c:ab:46:6b: 4f:73:14:ab:23:65:26:5a:37:75:1e:0e:60:0c:e4:c8:32:8f: 7f:7b:48:de:27:14:a5:0b:0d:e1:b2:5a:ed:bf:35:19:a1:47: ac:d7:8f:43:10:45:3d:3d:b3:bd:42:d2:7f:b3:db:96:70:89: 2a:8e:0e:3f:37:98:24:1b:b4:da:cc:62:af:0f:77:c9:e7:9d: f6:2e:d1:7c:6e:6e:ee:b9:a4:82:cf:25:9f:a4:ba:ec:43:ba: ca:13:d0:3c:d1:4d:1e:a7:00:b1:4f:42:e9:e1:2a:6c:6c:b1: 70:2d:39:51:4e:35:fe:e9:2e:6d:5d:8c:a5:ff:e2:37:cd:23: a2:ec:78:f7:e2:ef:76:61:1c:e6:0e:44:70:a4:10:39:fa:43: 46:28:45:38:de:c5:03:f6:e4:9e:d9:2c:d9:06:39:91:9e:44: 5d:20:dc:59:43:f2:6c:69:8a:8a:9b:a9:4e:4a:9a:90:27:ef: 07:31:6c:ef:d4:e8:82:f6:27:b2:43:24:eb:0c:ff:72:e2:d7: e4:67:43:5b:c0:bf:53:46:d0:fb:34:7d:e6:76:30:64:de:19: c4:88:15:0d:37:96:31:2e:66:f7:79:f6:de:b6:63:f2:3e:4a: 0f:8c:a8:99 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwMUJF MzM1RTZBNEVGQjk1NERCQTc4OTM4NDY5MjlBM0E1RjY4NjdBMB4XDTI1MTAyMjAy MTMyM1oXDTI2MTAyMTA4NTgwNVowMzExMC8GA1UEAxMoQjFCQkI1RURFRDEwQTE1 NTA4RjU2RUQxMzYwREQ0MjNERTQyQjY5MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOFuu17LRgaG6yRUMIb1Y2juFcKahZpU6soSGm9bB34+FqIEFcdS gGYl3tQjG7KyyUxCV8mH/s6ihUVVIUXWBJPPalJ/42Pwt1xyhnIYxZjLuu+OCofI u+5DTO/L7/UcSpfBHt55ZxAQOlq/gfKFuDZsSAOrVxsGnaXIvqhG+mAzwcWJJwfF 6pkgp/1kzQs3A4YRUFedY0o4XMr5uEbIy5hJlvNZ/gIvPglIo1SX49XdBGucecK6 106SBVa7d0ufEH1Xeq4muTT2ien5P5uuNUydIWnsdvDm9Wrt8jQap3WTAnRhD9Wd yqjzSycQdGL3ooUFOc7ki7wBaIqjUdL9l6cCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSxu7Xt7RChVQj1btE2DdQj3kK2kzAfBgNVHSMEGDAWgBQBvjNeak77lU26eJOE aSmjpfaGejAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMTk0 L0FiNHpYbXBPLTVWTnVuaVRoR2twbzZYMmhuby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvQWI0elhtcE8tNVZOdW5pVGhHa3BvNlgyaG5vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE5NC9zYnUxN2UwUW9WVUk5 VzdSTmczVUk5NUN0cE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZy2BMA0GCSqGSIb3DQEBCwUAA4IBAQCJubFK8qj7yzYb297/IoyrRmtPcxSr I2UmWjd1Hg5gDOTIMo9/e0jeJxSlCw3hslrtvzUZoUes149DEEU9PbO9QtJ/s9uW cIkqjg4/N5gkG7TazGKvD3fJ5532LtF8bm7uuaSCzyWfpLrsQ7rKE9A80U0epwCx T0Lp4SpsbLFwLTlRTjX+6S5tXYyl/+I3zSOi7Hj34u92YRzmDkRwpBA5+kNGKEU4 3sUD9uSe2SzZBjmRnkRdINxZQ/JsaYqKm6lOSpqQJ+8HMWzv1OiC9ieyQyTrDP9y 4tfkZ0NbwL9TRtD7NH3mdjBk3hnEiBUNN5YxLmb3efbetmPyPkoPjKiZ -----END CERTIFICATE-----Generated at Sun Oct 26 04:51:56 2025 by rpki-client