$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/RwmLZtiTutqMlKAmsfUXcLyDB6A.roa File: RwmLZtiTutqMlKAmsfUXcLyDB6A.roa (raw, json) Hash identifier: tcOToBrcdeTUDP1trnAh8GQzj7NgsZ2nCTtKtaMLBZw= Subject key identifier: 47:09:8B:66:D8:93:BA:DA:8C:94:A0:26:B1:F5:17:70:BC:83:07:A0 Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 13BB Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/RwmLZtiTutqMlKAmsfUXcLyDB6A.roa Signing time: Wed 16 Jul 2025 09:05:06 +0000 ROA not before: Wed 16 Jul 2025 09:05:06 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Jul 2025 13:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5051 (0x13bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jul 16 09:05:06 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=47098B66D893BADA8C94A026B1F51770BC8307A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:90:6d:78:e1:de:93:ff:05:85:c7:d9:a8:b3: 84:fa:04:62:1a:00:c4:d6:6d:a6:c8:e9:c3:e0:64: b3:f8:01:df:ea:33:ca:bc:8b:78:91:e0:2f:a5:56: b7:6f:11:e5:65:da:ae:f5:e8:e0:92:2b:4b:f3:e4: 9a:7c:93:a5:bf:ff:92:76:13:50:45:28:59:05:1e: e3:ff:0d:81:8e:ef:e4:6b:55:3e:20:ed:7e:26:eb: 7d:1b:7d:9f:72:bc:c5:20:d7:3b:dc:2f:5b:6d:af: 91:9e:c9:35:d9:ff:f4:9a:26:a5:c1:12:74:43:63: 98:a9:3e:fc:7d:fa:c8:8e:b2:8a:12:8b:61:82:fe: 26:f5:73:1d:0c:4d:39:e4:a2:dc:96:bb:b3:a2:51: e4:f3:27:a2:fe:de:38:df:6b:ed:11:a0:2e:81:bd: 9a:1b:c7:17:e5:d5:63:08:0b:0d:7a:01:b8:38:42: 8d:e1:67:07:b0:97:86:c7:6e:16:5b:a7:74:f2:4c: 74:5d:72:07:04:3e:c3:bd:96:cc:5a:c5:68:08:82: 52:77:c5:56:50:7a:e8:b9:64:55:d3:2a:01:47:f9: c0:59:c9:a8:23:57:3c:d4:21:98:a0:52:68:ab:4b: 54:9a:0e:5e:ac:a8:5c:17:f3:45:bf:e3:0c:d5:f4: ce:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:09:8B:66:D8:93:BA:DA:8C:94:A0:26:B1:F5:17:70:BC:83:07:A0 X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/RwmLZtiTutqMlKAmsfUXcLyDB6A.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.60.0/22 Signature Algorithm: sha256WithRSAEncryption a2:e6:a2:82:c7:eb:6a:0c:98:db:6c:0c:d8:11:8f:8c:a2:8b: 1b:50:fe:10:15:fe:6f:33:fc:71:17:3d:49:d9:3e:92:c3:22: 62:1a:5f:61:75:08:02:98:a0:f8:e6:b6:f2:c7:e9:d5:9b:b6: 4a:23:78:b5:8d:94:89:ff:f3:55:ef:10:e6:6d:f7:57:1c:e4: 3e:71:09:02:1f:c7:39:bd:ad:6c:00:e6:ba:d5:84:00:ca:8c: a9:89:d1:8b:5f:64:21:43:c3:3d:e6:0c:70:c1:83:a3:67:68: 1c:6e:f1:7d:9d:47:71:ff:17:36:9d:fe:d4:a4:26:b5:1d:5a: ef:37:fb:53:ca:53:e1:6b:cf:b4:73:5f:5a:22:16:12:74:73: 79:a2:66:c7:ee:5b:e6:e0:04:6a:a6:c2:b2:d0:a4:92:97:9a: 0b:fd:92:5e:04:8e:ba:a1:0b:dd:3e:cb:69:78:1c:4d:16:bb: c0:14:59:51:3a:47:44:18:1f:ec:ca:58:79:95:40:91:0f:35: 64:68:41:51:4e:d5:0e:16:2c:fb:35:ff:f0:dc:18:a3:4f:03: e2:95:4f:5f:9e:fa:97:49:c2:84:4a:bd:61:66:05:49:34:ba: f3:76:93:c9:51:01:e2:20:ea:e1:cb:d2:a4:b3:b9:cd:78:80: 72:13:3c:5e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICE7swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA3MTYw OTA1MDZaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDQ3MDk4QjY2RDg5M0JB REE4Qzk0QTAyNkIxRjUxNzcwQkM4MzA3QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZkG144d6T/wWFx9mos4T6BGIaAMTWbabI6cPgZLP4Ad/qM8q8 i3iR4C+lVrdvEeVl2q716OCSK0vz5Jp8k6W//5J2E1BFKFkFHuP/DYGO7+RrVT4g 7X4m630bfZ9yvMUg1zvcL1ttr5GeyTXZ//SaJqXBEnRDY5ipPvx9+siOsooSi2GC /ib1cx0MTTnkotyWu7OiUeTzJ6L+3jjfa+0RoC6BvZobxxfl1WMICw16Abg4Qo3h Zwewl4bHbhZbp3TyTHRdcgcEPsO9lsxaxWgIglJ3xVZQeui5ZFXTKgFH+cBZyagj VzzUIZigUmirS1SaDl6sqFwX80W/4wzV9M5pAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQURwmLZtiTutqMlKAmsfUXcLyDB6AwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL1J3bUxadGlUdXRxTWxL QW1zZlVYY0x5REI2QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6DwwDQYJKoZIhvcNAQELBQADggEBAKLmooLH62oMmNtsDNgRj4yiixtQ/hAV /m8z/HEXPUnZPpLDImIaX2F1CAKYoPjmtvLH6dWbtkojeLWNlIn/81XvEOZt91cc 5D5xCQIfxzm9rWwA5rrVhADKjKmJ0YtfZCFDwz3mDHDBg6NnaBxu8X2dR3H/Fzad /tSkJrUdWu83+1PKU+Frz7RzX1oiFhJ0c3miZsfuW+bgBGqmwrLQpJKXmgv9kl4E jrqhC90+y2l4HE0Wu8AUWVE6R0QYH+zKWHmVQJEPNWRoQVFO1Q4WLPs1//DcGKNP A+KVT1+e+pdJwoRKvWFmBUk0uvN2k8lRAeIg6uHL0qSzuc14gHITPF4= -----END CERTIFICATE-----Generated at Sun Jul 20 12:52:30 2025 by rpki-client