$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3309/opPXc4txplr0wt_5kJDOZ84M9EY.roa File: opPXc4txplr0wt_5kJDOZ84M9EY.roa (raw, json) Hash identifier: GwP5I7j08elwBP9g/jlNI0QLid9QzN8J3x6Riv56pkU= Subject key identifier: A2:93:D7:73:8B:71:A6:5A:F4:C2:DF:F9:90:90:CE:67:CE:0C:F4:46 Certificate issuer: /CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Certificate serial: 0739 Authority key identifier: 71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/opPXc4txplr0wt_5kJDOZ84M9EY.roa Signing time: Wed 27 Aug 2025 06:59:39 +0000 ROA not before: Wed 27 Aug 2025 06:59:39 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 151277 IP address blocks: 160.30.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7113B196924B2850645E557FE1FFC4C0D02B1D19 Validity Not Before: Aug 27 06:59:39 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A293D7738B71A65AF4C2DFF99090CE67CE0CF446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:76:00:77:01:19:e3:71:61:fc:d7:cd:bc:75: ac:d0:67:4c:45:f9:47:4f:65:9f:b4:1e:55:3d:95: 1b:e7:e8:ae:18:b2:0d:0b:08:61:04:65:96:a6:8f: 4c:bd:a3:a3:f6:53:87:be:e5:76:9e:62:d3:ef:0c: 56:56:c7:ec:a2:95:0d:2d:1e:6d:a5:4b:d5:35:4d: 85:83:47:9a:3f:7f:9d:7f:a2:52:3f:d6:bf:dc:94: b0:ab:99:86:8b:ef:8c:44:86:7d:b4:fa:09:14:59: 21:17:57:08:3c:4b:75:9b:04:a5:0f:50:bb:3d:42: 9e:ba:f6:fa:3d:a2:c5:4c:5d:f1:5b:ba:f9:e4:f4: 15:b8:f2:ed:01:29:39:4c:07:81:48:55:37:25:5f: 53:5e:ee:cc:c2:f3:18:4b:a9:97:c8:9a:51:12:35: 23:49:96:fb:16:f3:d4:48:89:92:91:cc:bd:a6:df: fa:ac:84:8f:36:08:2d:f7:cd:96:d8:91:c3:af:0d: 6d:5f:72:f3:2d:c9:04:cd:ff:a0:3d:e1:fb:1b:a8: bb:ef:45:39:79:53:7d:16:d2:58:d5:f0:f2:e0:74: ed:79:af:47:c4:d9:7b:14:b9:19:e9:1c:68:6c:69: 0f:a1:28:93:df:75:fe:27:00:76:b9:50:82:62:84: 22:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:93:D7:73:8B:71:A6:5A:F4:C2:DF:F9:90:90:CE:67:CE:0C:F4:46 X509v3 Authority Key Identifier: keyid:71:13:B1:96:92:4B:28:50:64:5E:55:7F:E1:FF:C4:C0:D0:2B:1D:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/cROxlpJLKFBkXlV_4f_EwNArHRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/cROxlpJLKFBkXlV_4f_EwNArHRk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3309/opPXc4txplr0wt_5kJDOZ84M9EY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.150.0/23 Signature Algorithm: sha256WithRSAEncryption 97:3c:27:0b:d1:e2:77:8f:bd:cb:a4:93:68:b4:24:17:74:a3: 52:2a:45:20:31:64:4c:eb:1d:99:0e:f3:d7:07:70:c3:ba:4d: 64:6e:86:1c:ba:3e:fd:e2:0d:b6:d2:12:33:8f:a6:f9:43:ab: 59:f9:7e:c3:63:16:75:51:56:89:02:fc:93:d8:a9:d0:94:ca: 1a:08:c6:46:82:74:27:2b:5c:6f:0b:8d:c3:05:6a:01:3e:26: 36:04:3d:d2:f5:f0:8d:87:61:ce:fe:f5:f8:21:62:26:d4:18: 7d:e4:c2:06:e4:8f:b5:1a:49:19:91:a6:fc:86:ef:f2:a4:df: 0c:c7:76:7d:2f:2f:74:15:4d:de:73:f5:49:28:79:79:98:ea: c7:1c:77:9d:96:9e:71:21:2a:53:a8:52:e0:fd:6f:05:85:77: 36:fe:24:d9:84:45:02:85:19:63:b9:b5:b3:54:55:88:5b:48: b3:2b:f6:89:fd:35:d1:a5:21:41:45:c4:25:7e:ba:b5:7d:12: db:38:09:3c:f8:cd:94:9b:e9:01:fd:8d:7b:d5:80:6c:f4:e9: fa:31:ab:c1:74:e4:a7:e0:2e:1d:4b:a1:04:e9:8e:90:9f:e9: 7c:a0:38:c4:c0:fc:b8:1c:00:dd:55:c7:e2:1c:37:f3:e2:04: 8b:d2:9c:33 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzEx M0IxOTY5MjRCMjg1MDY0NUU1NTdGRTFGRkM0QzBEMDJCMUQxOTAeFw0yNTA4Mjcw NjU5MzlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEEyOTNENzczOEI3MUE2 NUFGNEMyREZGOTkwOTBDRTY3Q0UwQ0Y0NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+dgB3ARnjcWH81828dazQZ0xF+UdPZZ+0HlU9lRvn6K4Ysg0L CGEEZZamj0y9o6P2U4e+5XaeYtPvDFZWx+yilQ0tHm2lS9U1TYWDR5o/f51/olI/ 1r/clLCrmYaL74xEhn20+gkUWSEXVwg8S3WbBKUPULs9Qp669vo9osVMXfFbuvnk 9BW48u0BKTlMB4FIVTclX1Ne7szC8xhLqZfImlESNSNJlvsW89RIiZKRzL2m3/qs hI82CC33zZbYkcOvDW1fcvMtyQTN/6A94fsbqLvvRTl5U30W0ljV8PLgdO15r0fE 2XsUuRnpHGhsaQ+hKJPfdf4nAHa5UIJihCK1AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUopPXc4txplr0wt/5kJDOZ84M9EYwHwYDVR0jBBgwFoAUcROxlpJLKFBkXlV/ 4f/EwNArHRkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMw OS9jUk94bHBKTEtGQmtYbFZfNGZfRXdOQXJIUmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2NST3hscEpMS0ZCa1hsVl80Zl9Fd05BckhSay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMDkvb3BQWGM0dHhwbHIw d3RfNWtKRE9aODRNOUVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAaAeljANBgkqhkiG9w0BAQsFAAOCAQEAlzwnC9Hid4+9y6STaLQkF3SjUipF IDFkTOsdmQ7z1wdww7pNZG6GHLo+/eINttISM4+m+UOrWfl+w2MWdVFWiQL8k9ip 0JTKGgjGRoJ0JytcbwuNwwVqAT4mNgQ90vXwjYdhzv71+CFiJtQYfeTCBuSPtRpJ GZGm/Ibv8qTfDMd2fS8vdBVN3nP1SSh5eZjqxxx3nZaecSEqU6hS4P1vBYV3Nv4k 2YRFAoUZY7m1s1RViFtIsyv2if010aUhQUXEJX66tX0S2zgJPPjNlJvpAf2Ne9WA bPTp+jGrwXTkp+AuHUuhBOmOkJ/pfKA4xMD8uBwA3VXH4hw38+IEi9KcMw== -----END CERTIFICATE-----Generated at Mon Sep 8 01:25:23 2025 by rpki-client