$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/4zYhwzKtPO24VmBKnBMbLcfUubQ.roa File: 4zYhwzKtPO24VmBKnBMbLcfUubQ.roa (raw, json) Hash identifier: ASMG37KNKcRiT+NFG3aHqq5FWzRUS2/RQrcmkNlZmJY= Subject key identifier: E3:36:21:C3:32:AD:3C:ED:B8:56:60:4A:9C:13:1B:2D:C7:D4:B9:B4 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 073A Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/4zYhwzKtPO24VmBKnBMbLcfUubQ.roa Signing time: Wed 27 Aug 2025 06:59:39 +0000 ROA not before: Wed 27 Aug 2025 06:59:39 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 151277 IP address blocks: 160.30.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 01:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1850 (0x73a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Aug 27 06:59:39 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E33621C332AD3CEDB856604A9C131B2DC7D4B9B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f4:ee:ee:84:cd:a1:92:c5:91:5a:fb:c0:56: 6a:e9:a3:b3:28:c5:af:db:da:fd:10:b0:74:b0:62: 4d:f5:3e:7f:dd:90:91:b0:86:7b:78:82:14:ab:cb: c7:9d:73:24:ba:cb:33:2c:af:66:05:c1:60:97:8e: 05:36:64:18:dc:66:35:43:c2:0a:29:33:7d:c4:a9: 53:f3:16:36:f0:88:ea:89:15:8b:36:54:ea:bc:e0: 26:69:59:cd:75:b3:ec:f5:ea:14:85:a2:6f:f0:19: 97:c8:a2:ae:d4:3d:df:ef:c5:3b:3c:83:32:98:4c: 04:9b:cc:48:cd:83:5d:20:c6:7d:6f:06:71:46:32: 2e:bd:88:12:e2:77:d5:88:45:f4:6f:ea:fa:cc:8c: 5a:b6:d9:78:5d:13:3b:06:f4:40:13:e9:80:8b:16: 5f:98:86:eb:c3:6e:70:0f:32:f1:4e:7c:de:61:d2: 90:26:2f:3b:6c:d2:cf:55:e7:7f:93:fc:27:b8:b5: 81:cd:23:79:69:90:0d:11:3d:90:a3:d6:aa:e4:93: 86:0d:c7:de:38:ef:15:14:d2:79:61:9e:54:5f:4c: a2:29:0f:5c:ed:33:ff:ea:4b:1b:7a:2a:e9:5e:8b: 3e:84:02:e6:e2:92:ba:ae:4d:bb:15:03:55:87:69: f1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:36:21:C3:32:AD:3C:ED:B8:56:60:4A:9C:13:1B:2D:C7:D4:B9:B4 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/4zYhwzKtPO24VmBKnBMbLcfUubQ.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.151.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:5e:b2:76:9e:fa:b7:29:e8:ba:74:6d:c2:2b:6a:90:7b:99: d4:1e:2f:f3:4d:c4:ed:0b:fd:e9:05:bb:af:c7:97:d9:0d:28: 4a:f1:59:b5:87:11:2c:62:9d:2a:de:c3:17:17:78:37:b2:a4: 92:cc:a7:67:0d:fb:60:c7:a3:6c:f7:fb:d6:6e:65:65:bf:20: 04:6f:a9:bb:8a:7b:1d:65:bd:7a:fc:f1:ea:c7:f4:f6:32:03: 00:71:f6:cc:77:3a:e0:a1:d8:bd:e2:5d:13:e7:23:54:f1:38: f2:e0:38:bb:fd:23:f1:55:a5:ca:d5:b4:68:91:49:96:07:59: 29:53:3d:4e:9d:ab:bc:27:f4:f5:39:5e:34:cf:f4:c1:b4:26: f4:bd:cb:85:ee:7a:19:7f:ca:25:87:db:85:f0:22:24:7a:ed: 99:24:93:18:fb:a7:25:41:ea:f3:1f:a7:23:de:66:6c:f6:c2: 6a:2e:57:ce:57:b5:ab:d8:e2:95:29:4e:5e:1d:8c:3c:79:c1: 4a:65:14:94:09:6d:20:f2:ec:18:d0:5e:bf:9e:e1:d3:4e:70: e8:db:8e:f1:76:96:11:8c:20:a6:6c:36:c8:71:d0:03:9c:db: 21:2a:2d:78:c1:40:83:13:a0:eb:42:bd:dd:e2:53:7c:61:d4: fe:67:4e:9e -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBzowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNTA4Mjcw NjU5MzlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEUzMzYyMUMzMzJBRDND RURCODU2NjA0QTlDMTMxQjJEQzdENEI5QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC39O7uhM2hksWRWvvAVmrpo7Moxa/b2v0QsHSwYk31Pn/dkJGw hnt4ghSry8edcyS6yzMsr2YFwWCXjgU2ZBjcZjVDwgopM33EqVPzFjbwiOqJFYs2 VOq84CZpWc11s+z16hSFom/wGZfIoq7UPd/vxTs8gzKYTASbzEjNg10gxn1vBnFG Mi69iBLid9WIRfRv6vrMjFq22XhdEzsG9EAT6YCLFl+YhuvDbnAPMvFOfN5h0pAm Lzts0s9V53+T/Ce4tYHNI3lpkA0RPZCj1qrkk4YNx9447xUU0nlhnlRfTKIpD1zt M//qSxt6Kuleiz6EAubikrquTbsVA1WHafGRAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU4zYhwzKtPO24VmBKnBMbLcfUubQwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvNHpZaHd6S3RQTzI0 Vm1CS25CTWJMY2ZVdWJRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKAelzANBgkqhkiG9w0BAQsFAAOCAQEATF6ydp76tynounRtwitqkHuZ1B4v 803E7Qv96QW7r8eX2Q0oSvFZtYcRLGKdKt7DFxd4N7KkksynZw37YMejbPf71m5l Zb8gBG+pu4p7HWW9evzx6sf09jIDAHH2zHc64KHYveJdE+cjVPE48uA4u/0j8VWl ytW0aJFJlgdZKVM9Tp2rvCf09TleNM/0wbQm9L3Lhe56GX/KJYfbhfAiJHrtmSST GPunJUHq8x+nI95mbPbCai5Xzle1q9jilSlOXh2MPHnBSmUUlAltIPLsGNBev57h 005w6NuO8XaWEYwgpmw2yHHQA5zbISoteMFAgxOg60K93eJTfGHU/mdOng== -----END CERTIFICATE-----Generated at Mon Sep 8 01:31:34 2025 by rpki-client