$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/0WXvTCFcHAcR6wEa7PzgYKemWEs.roa File: 0WXvTCFcHAcR6wEa7PzgYKemWEs.roa (raw, json) Hash identifier: AFt8YkrqOq818fMMORl+/Jqm6wKSjBBOBi5PM5XA1bU= Subject key identifier: D1:65:EF:4C:21:5C:1C:07:11:EB:01:1A:EC:FC:E0:60:A7:A6:58:4B Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2016 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/0WXvTCFcHAcR6wEa7PzgYKemWEs.roa Signing time: Tue 26 Aug 2025 04:55:23 +0000 ROA not before: Tue 26 Aug 2025 04:55:23 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23724 IP address blocks: 103.26.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8214 (0x2016) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 04:55:23 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D165EF4C215C1C0711EB011AECFCE060A7A6584B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:1e:2c:fa:47:2b:14:9e:3a:fa:e9:e6:14: ed:08:23:66:c8:a3:d2:4d:8f:40:6c:cb:bf:47:ec: b0:76:86:ee:fa:07:b0:2a:a7:9d:47:c3:e9:87:a2: 99:26:b1:91:b5:4a:b2:5f:48:9f:7c:f0:2e:8e:4b: d0:4a:31:c5:11:30:df:9c:84:22:8d:ef:ad:80:29: bb:64:db:5c:42:59:6a:97:57:de:ce:02:8c:de:10: 64:af:f9:10:ed:51:ff:54:97:eb:7f:8e:db:91:9b: 13:74:2d:e5:08:79:15:03:36:ca:0e:33:27:7a:73: 9e:2c:8d:3f:3f:c1:17:75:a2:8e:4e:56:72:0e:a0: 96:a0:85:90:7c:a8:49:70:00:9c:45:d6:00:16:71: 43:c9:1f:fb:44:6d:6e:78:43:56:eb:fb:18:c5:48: bd:d4:1d:f3:ae:94:dc:b0:9b:c0:d5:12:25:0a:7e: 91:4e:92:f5:b1:35:a6:18:2e:94:29:fc:45:43:ea: 8d:48:5c:a2:50:f4:40:f2:81:4a:c5:2a:18:77:7a: c4:b6:83:99:f4:a3:a0:bd:ae:a7:e9:cd:d4:55:75: ab:3a:88:f0:3e:19:b9:a1:33:b9:e7:63:22:7c:7f: af:dc:1c:5a:4a:12:d0:3d:5c:1c:dc:0b:96:16:92: f2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:65:EF:4C:21:5C:1C:07:11:EB:01:1A:EC:FC:E0:60:A7:A6:58:4B X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/0WXvTCFcHAcR6wEa7PzgYKemWEs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.26.0.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:36:77:32:7e:66:3a:09:a7:ba:8b:cf:42:a9:3f:2d:b6:fc: 00:a0:f6:ce:88:c4:2b:bd:91:c8:86:4c:28:f5:a7:49:fe:2b: 5b:9c:92:0f:14:0d:b5:b3:a7:a5:39:3e:99:21:45:cb:0d:69: 9b:3a:41:0f:af:e3:80:c8:e4:8e:bc:78:8b:3f:74:da:66:f6: 9f:e0:f9:3f:7e:33:20:cf:b2:ed:a4:5e:6e:2b:94:5d:03:b9: 61:c9:24:15:95:4b:5f:87:eb:dc:89:ee:c0:6e:10:f7:48:87: d6:ea:a0:d5:7d:35:5b:cb:77:a8:99:28:2d:e7:de:96:a5:51: 6f:be:7e:ab:91:2e:82:73:b8:82:fc:fb:e4:99:e5:53:a8:8e: ca:73:32:e6:a7:b3:b7:4d:4a:80:7d:e4:69:f5:aa:32:09:89: cf:8c:dc:7f:f6:20:49:41:cf:f7:f6:69:f7:d1:2d:16:bc:4c: 7f:60:de:f4:22:c8:d8:57:b2:b1:b6:5c:1d:87:1f:73:79:fb: 64:7f:95:30:c5:3b:84:e2:0f:4d:9c:fc:c6:00:6a:70:07:a9: fd:7b:84:3a:a1:13:1b:ee:0c:4f:84:ab:44:9a:1c:8a:34:60: c2:73:8a:16:f7:75:46:f2:c6:f5:6e:f3:c0:3e:d8:6e:1e:ad: 75:51:5c:af -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIBYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NDU1MjNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQxNjVFRjRDMjE1QzFD MDcxMUVCMDExQUVDRkNFMDYwQTdBNjU4NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwWx4s+kcrFJ46+unmFO0II2bIo9JNj0Bsy79H7LB2hu76B7Aq p51Hw+mHopkmsZG1SrJfSJ988C6OS9BKMcURMN+chCKN762AKbtk21xCWWqXV97O AozeEGSv+RDtUf9Ul+t/jtuRmxN0LeUIeRUDNsoOMyd6c54sjT8/wRd1oo5OVnIO oJaghZB8qElwAJxF1gAWcUPJH/tEbW54Q1br+xjFSL3UHfOulNywm8DVEiUKfpFO kvWxNaYYLpQp/EVD6o1IXKJQ9EDygUrFKhh3esS2g5n0o6C9rqfpzdRVdas6iPA+ GbmhM7nnYyJ8f6/cHFpKEtA9XBzcC5YWkvKbAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU0WXvTCFcHAcR6wEa7PzgYKemWEswHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxLzBXWHZUQ0ZjSEFjUjZ3 RWE3UHpnWUtlbVdFcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnGgAwDQYJKoZIhvcNAQELBQADggEBAE02dzJ+ZjoJp7qLz0KpPy22/ACg9s6I xCu9kciGTCj1p0n+K1uckg8UDbWzp6U5PpkhRcsNaZs6QQ+v44DI5I68eIs/dNpm 9p/g+T9+MyDPsu2kXm4rlF0DuWHJJBWVS1+H69yJ7sBuEPdIh9bqoNV9NVvLd6iZ KC3n3palUW++fquRLoJzuIL8++SZ5VOojspzMuans7dNSoB95Gn1qjIJic+M3H/2 IElBz/f2affRLRa8TH9g3vQiyNhXsrG2XB2HH3N5+2R/lTDFO4TiD02c/MYAanAH qf17hDqhExvuDE+Eq0SaHIo0YMJzihb3dUbyxvVu88A+2G4erXVRXK8= -----END CERTIFICATE-----Generated at Mon Sep 8 02:35:27 2025 by rpki-client