$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/-RuVzEKKVLTZgXJ63HwCsn0qQNI.roa File: -RuVzEKKVLTZgXJ63HwCsn0qQNI.roa (raw, json) Hash identifier: 1r0k7LeBfm9wEaHt18z/bwgUVtoaPBz6myKJElZM1fM= Subject key identifier: F9:1B:95:CC:42:8A:54:B4:D9:81:72:7A:DC:7C:02:B2:7D:2A:40:D2 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 201D Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/-RuVzEKKVLTZgXJ63HwCsn0qQNI.roa Signing time: Tue 26 Aug 2025 04:55:25 +0000 ROA not before: Tue 26 Aug 2025 04:55:25 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4808 IP address blocks: 103.26.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 04:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8221 (0x201d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 04:55:25 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F91B95CC428A54B4D981727ADC7C02B27D2A40D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:70:c7:cb:f1:12:a8:8d:9c:79:a7:30:e5:dc: e9:39:e9:9b:d5:3b:d6:cf:13:36:0f:46:9f:d9:3c: e0:27:1f:c8:08:43:6c:3e:6f:d7:1e:f5:87:38:02: e7:61:b8:06:1d:c5:bd:fd:00:1b:50:6c:e2:86:b9: 95:21:7e:07:19:7e:0b:14:06:02:47:7c:4c:d3:5f: f4:c0:8d:46:7e:2e:9c:cb:53:11:e4:c1:4b:8a:82: e3:27:09:c4:c6:e4:ce:0a:4e:22:49:c0:e1:4a:0d: 68:7a:f2:d9:58:b4:ae:13:26:97:b9:95:88:b2:3d: 82:89:c2:6b:cf:37:f8:18:2d:b5:c4:1d:2f:03:d4: 2a:90:0d:41:4f:27:34:d9:92:10:ac:64:bd:7a:aa: f7:90:93:55:5e:53:fc:d0:75:b8:2d:e6:4f:67:48: e3:98:6a:e2:bf:e2:2a:5c:5a:c8:4c:d7:23:82:e7: 7f:17:60:f5:4d:0b:78:e7:04:95:09:40:45:f3:79: f0:f4:f7:a8:1a:94:d5:4e:97:bf:d5:7a:49:7e:c5: 21:dd:77:25:d3:81:56:b5:c2:a7:10:af:2d:ea:1b: be:2f:5d:1e:bf:de:3b:ec:11:b9:b1:8a:57:2b:19: 16:0a:f3:ba:98:2d:c4:1a:dc:49:e9:16:72:a0:93: d5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1B:95:CC:42:8A:54:B4:D9:81:72:7A:DC:7C:02:B2:7D:2A:40:D2 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/-RuVzEKKVLTZgXJ63HwCsn0qQNI.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.26.0.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:9a:bc:0f:b7:84:c6:d6:cc:7d:0e:2b:19:7f:42:ca:7c:a9: 32:d7:ba:5e:4b:d7:3c:b2:67:e9:01:ee:e0:46:1c:76:28:d1: d4:67:fb:92:23:9b:d8:1e:77:ce:fb:39:67:30:84:67:c1:c2: 7e:1d:09:c3:dc:c0:ac:f2:93:75:ac:35:3f:a7:67:b4:19:6a: a1:a8:c0:54:05:e2:05:6e:10:d6:91:b6:eb:7a:91:62:fd:36: 6c:54:15:38:b1:1a:31:68:43:25:28:82:65:e7:fc:a1:05:12: d5:40:9c:d5:a7:d5:c7:cc:ea:46:8b:27:f2:65:da:2b:c5:ea: e9:53:4f:a5:38:3b:76:a2:08:43:b9:8c:16:07:d4:f7:f7:68: 5f:f4:67:da:1c:25:a2:d2:dc:c4:1b:74:a9:83:5d:f7:7e:35: cd:be:df:f3:68:6f:89:7e:ef:c0:5c:a4:fb:53:b1:b2:5e:e1: 76:00:af:d8:77:7e:fb:0d:14:f1:65:e7:76:fe:47:6f:40:91: 12:71:89:e4:76:80:19:e3:c8:c9:8c:d9:3d:b8:de:4e:aa:cc: d6:85:da:af:a3:74:d3:76:80:c9:1b:fe:8c:f7:0f:3c:f1:03: 2c:70:46:15:d5:12:e0:ca:31:f0:56:d0:de:44:77:45:fd:84: 3b:13:f4:80 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIB0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NDU1MjVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEY5MUI5NUNDNDI4QTU0 QjREOTgxNzI3QURDN0MwMkIyN0QyQTQwRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIcMfL8RKojZx5pzDl3Ok56ZvVO9bPEzYPRp/ZPOAnH8gIQ2w+ b9ce9Yc4AudhuAYdxb39ABtQbOKGuZUhfgcZfgsUBgJHfEzTX/TAjUZ+LpzLUxHk wUuKguMnCcTG5M4KTiJJwOFKDWh68tlYtK4TJpe5lYiyPYKJwmvPN/gYLbXEHS8D 1CqQDUFPJzTZkhCsZL16qveQk1VeU/zQdbgt5k9nSOOYauK/4ipcWshM1yOC538X YPVNC3jnBJUJQEXzefD096galNVOl7/Vekl+xSHddyXTgVa1wqcQry3qG74vXR6/ 3jvsEbmxilcrGRYK87qYLcQa3EnpFnKgk9W9AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU+RuVzEKKVLTZgXJ63HwCsn0qQNIwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxLy1SdVZ6RUtLVkxUWmdY SjYzSHdDc24wcVFOSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnGgAwDQYJKoZIhvcNAQELBQADggEBADyavA+3hMbWzH0OKxl/Qsp8qTLXul5L 1zyyZ+kB7uBGHHYo0dRn+5Ijm9ged877OWcwhGfBwn4dCcPcwKzyk3WsNT+nZ7QZ aqGowFQF4gVuENaRtut6kWL9NmxUFTixGjFoQyUogmXn/KEFEtVAnNWn1cfM6kaL J/Jl2ivF6ulTT6U4O3aiCEO5jBYH1Pf3aF/0Z9ocJaLS3MQbdKmDXfd+Nc2+3/No b4l+78BcpPtTsbJe4XYAr9h3fvsNFPFl53b+R29AkRJxieR2gBnjyMmM2T243k6q zNaF2q+jdNN2gMkb/oz3DzzxAyxwRhXVEuDKMfBW0N5Ed0X9hDsT9IA= -----END CERTIFICATE-----Generated at Sun Sep 7 03:31:32 2025 by rpki-client