$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3396/x7OS7_8T2MiGQoCgovK3XNX_N60.roa File: x7OS7_8T2MiGQoCgovK3XNX_N60.roa (raw, json) Hash identifier: UHgJn4apbq/7wYUqVwpc3LyEUozcrbpDkNNvfwCHElo= Subject key identifier: C7:B3:92:EF:FF:13:D8:C8:86:42:80:A0:A2:F2:B7:5C:D5:FF:37:AD Certificate issuer: /CN=B6C10D728A382431BAC1F14930D0FC1E075953A6 Certificate serial: 6D Authority key identifier: B6:C1:0D:72:8A:38:24:31:BA:C1:F1:49:30:D0:FC:1E:07:59:53:A6 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/tsENcoo4JDG6wfFJMND8HgdZU6Y.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/x7OS7_8T2MiGQoCgovK3XNX_N60.roa Signing time: Fri 17 Oct 2025 13:33:53 +0000 ROA not before: Fri 17 Oct 2025 13:33:53 +0000 ROA not after: Sat 26 Sep 2026 09:42:00 +0000 asID: 151261 IP address blocks: 103.213.144.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/tsENcoo4JDG6wfFJMND8HgdZU6Y.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/tsENcoo4JDG6wfFJMND8HgdZU6Y.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/tsENcoo4JDG6wfFJMND8HgdZU6Y.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 15:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6C10D728A382431BAC1F14930D0FC1E075953A6 Validity Not Before: Oct 17 13:33:53 2025 GMT Not After : Sep 26 09:42:00 2026 GMT Subject: CN=C7B392EFFF13D8C8864280A0A2F2B75CD5FF37AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d3:16:e5:d2:31:2c:2b:d2:1f:f0:8d:69:fd: b3:b5:8e:0b:81:17:27:ba:38:45:3f:9b:3d:a9:28: af:d9:bd:73:50:73:f7:ca:8c:42:f6:3a:18:e3:19: 6f:1b:22:93:7f:ed:00:01:5f:98:55:af:0c:af:be: b8:ac:22:04:21:5f:94:32:2a:e3:9c:92:c5:20:70: 26:55:45:37:07:d2:3e:ce:4b:3a:2f:29:29:ee:6a: dc:24:be:44:c4:77:83:23:70:77:c0:62:a3:3b:7d: c3:ee:88:b4:44:58:33:aa:b1:3b:f5:44:7a:8e:dd: db:8d:d6:25:6b:a6:ee:87:12:f8:a4:bb:f7:10:c3: 19:ea:ef:ec:32:a9:e0:68:81:b6:65:9d:17:f7:c9: 37:27:b3:bb:bf:8d:c1:47:75:77:1b:e5:88:e5:3e: 87:c8:95:15:cb:9a:03:a9:65:01:81:80:50:e8:3c: 83:4a:a0:74:bc:a9:7f:0f:81:ed:a6:50:86:5a:ef: 94:9c:79:d5:3c:bc:73:d9:fe:68:c0:54:8f:fe:95: a5:a5:09:dd:8e:62:eb:8d:a6:90:58:00:13:7d:f4: 13:22:25:4b:4a:cb:d2:dc:c8:69:10:37:63:d8:38: 23:10:91:a4:e3:9a:2a:28:50:51:0a:d0:5a:99:be: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B3:92:EF:FF:13:D8:C8:86:42:80:A0:A2:F2:B7:5C:D5:FF:37:AD X509v3 Authority Key Identifier: keyid:B6:C1:0D:72:8A:38:24:31:BA:C1:F1:49:30:D0:FC:1E:07:59:53:A6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/tsENcoo4JDG6wfFJMND8HgdZU6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/tsENcoo4JDG6wfFJMND8HgdZU6Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3396/x7OS7_8T2MiGQoCgovK3XNX_N60.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.213.144.0/23 Signature Algorithm: sha256WithRSAEncryption 57:ce:c9:b3:d6:dc:2d:09:42:3d:cf:d1:c6:c3:d9:09:d4:1e: 06:56:ac:f9:97:af:2e:2b:78:e1:dc:2a:49:d6:50:40:e3:ec: 60:00:d8:f5:8f:58:b8:23:15:98:da:eb:c9:74:30:91:44:f9: 10:b0:7e:ff:33:c8:f8:ea:cc:af:98:0e:f3:77:2e:6a:ea:d0: 20:13:74:91:8b:d0:2a:79:62:73:62:db:fc:ae:1c:77:7a:aa: f9:0e:b6:20:5a:ab:53:83:45:c1:2c:e3:f7:9e:d6:d2:26:7e: 17:e3:22:7a:81:02:d3:1e:d0:19:ed:51:bc:06:21:af:a0:3e: 2a:41:c4:09:4f:93:48:e8:cb:0e:64:41:13:e8:d9:4a:43:0c: 8d:e8:64:4b:b2:6b:7d:31:33:da:0f:7e:73:6e:c8:a5:69:2c: 8a:d5:f7:25:ea:b5:0b:84:bf:b6:42:a0:3f:ef:6e:05:29:e8: 97:ef:43:b5:80:8f:fc:67:de:20:d7:fc:4a:6f:88:c3:3e:5a: ac:d7:b5:60:e7:5f:31:01:48:26:b2:5a:02:c0:99:ad:a6:28: e4:eb:e1:c2:c1:3b:e3:73:db:19:cb:98:67:24:0d:b0:59:47: 2d:32:1b:57:0e:5e:68:ee:51:d3:cb:88:c1:5a:78:0d:16:31: 22:98:b1:a9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCNkMx MEQ3MjhBMzgyNDMxQkFDMUYxNDkzMEQwRkMxRTA3NTk1M0E2MB4XDTI1MTAxNzEz MzM1M1oXDTI2MDkyNjA5NDIwMFowMzExMC8GA1UEAxMoQzdCMzkyRUZGRjEzRDhD ODg2NDI4MEEwQTJGMkI3NUNENUZGMzdBRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN/TFuXSMSwr0h/wjWn9s7WOC4EXJ7o4RT+bPakor9m9c1Bz98qM QvY6GOMZbxsik3/tAAFfmFWvDK++uKwiBCFflDIq45ySxSBwJlVFNwfSPs5LOi8p Ke5q3CS+RMR3gyNwd8Biozt9w+6ItERYM6qxO/VEeo7d243WJWum7ocS+KS79xDD Gerv7DKp4GiBtmWdF/fJNyezu7+NwUd1dxvliOU+h8iVFcuaA6llAYGAUOg8g0qg dLypfw+B7aZQhlrvlJx51Ty8c9n+aMBUj/6VpaUJ3Y5i642mkFgAE330EyIlS0rL 0tzIaRA3Y9g4IxCRpOOaKihQUQrQWpm+gnECAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTHs5Lv/xPYyIZCgKCi8rdc1f83rTAfBgNVHSMEGDAWgBS2wQ1yijgkMbrB8Ukw 0PweB1lTpjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMzk2 L3RzRU5jb280SkRHNndmRkpNTkQ4SGdkWlU2WS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdHNFTmNvbzRKREc2d2ZGSk1ORDhIZ2RaVTZZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM5Ni94N09TN184VDJNaUdR b0Nnb3ZLM1hOWF9ONjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ9WQMA0GCSqGSIb3DQEBCwUAA4IBAQBXzsmz1twtCUI9z9HGw9kJ1B4GVqz5 l68uK3jh3CpJ1lBA4+xgANj1j1i4IxWY2uvJdDCRRPkQsH7/M8j46syvmA7zdy5q 6tAgE3SRi9AqeWJzYtv8rhx3eqr5DrYgWqtTg0XBLOP3ntbSJn4X4yJ6gQLTHtAZ 7VG8BiGvoD4qQcQJT5NI6MsOZEET6NlKQwyN6GRLsmt9MTPaD35zbsilaSyK1fcl 6rULhL+2QqA/724FKeiX70O1gI/8Z94g1/xKb4jDPlqs17Vg518xAUgmsloCwJmt pijk6+HCwTvjc9sZy5hnJA2wWUctMhtXDl5o7lHTy4jBWngNFjEimLGp -----END CERTIFICATE-----Generated at Tue Oct 21 13:18:00 2025 by rpki-client