$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/31g1o-c8lkWAajCmzKxqRRoqfKM.roa File: 31g1o-c8lkWAajCmzKxqRRoqfKM.roa (raw, json) Hash identifier: Xi+f4PNDP++slMDVZdTgf1DoayjlUc339Pj8f3qy3Lg= Subject key identifier: DF:58:35:A3:E7:3C:96:45:80:6A:30:A6:CC:AC:6A:45:1A:2A:7C:A3 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2027 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/31g1o-c8lkWAajCmzKxqRRoqfKM.roa Signing time: Tue 26 Aug 2025 05:09:51 +0000 ROA not before: Tue 26 Aug 2025 05:09:51 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23724 IP address blocks: 103.231.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8231 (0x2027) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:09:51 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=DF5835A3E73C9645806A30A6CCAC6A451A2A7CA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:26:c0:47:b5:ee:a5:e0:33:a9:16:97:ef:54: 59:b2:56:30:aa:a3:15:08:23:db:2c:e6:be:e5:81: f6:8e:ff:40:5d:0f:b3:63:e5:7d:64:70:61:66:07: f5:d7:b6:ef:9d:ed:05:d0:f6:35:54:b1:13:45:48: c4:82:cd:99:fb:dc:77:cc:39:b1:77:73:46:de:f6: 06:0e:db:09:01:be:2e:7e:b8:92:9c:c0:96:14:cc: 81:55:14:fe:93:2d:7e:50:7f:3b:83:70:95:c2:8e: bb:3f:9f:5f:6c:e0:7e:a7:7f:34:ba:56:4d:be:d7: db:a2:23:17:2e:aa:ed:f7:33:16:9c:bc:9e:2e:e0: 4a:c9:30:5f:19:6e:1e:31:64:c0:a1:5a:5f:d5:5b: 03:2e:22:9d:0c:cc:93:04:e0:ed:2a:b6:ed:7b:81: 6a:3e:c2:9e:f4:75:6d:54:13:3c:2e:29:99:4b:4d: 96:5e:1b:17:a8:54:0d:9e:74:ec:03:82:59:30:d0: 01:3b:97:9f:93:38:d6:92:d8:98:f0:bc:22:6a:7d: 49:73:99:67:9e:49:25:0e:51:24:75:72:bf:5f:f5: 9c:b1:3d:46:4c:f6:09:de:18:e3:b8:c0:a2:fe:48: 93:92:0d:37:70:9d:1a:63:ea:25:5a:70:72:78:09: a1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:58:35:A3:E7:3C:96:45:80:6A:30:A6:CC:AC:6A:45:1A:2A:7C:A3 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/31g1o-c8lkWAajCmzKxqRRoqfKM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.231.64.0/22 Signature Algorithm: sha256WithRSAEncryption c5:a7:1e:53:60:bf:c7:55:40:2b:57:06:4b:c5:49:e1:c8:6d: e0:aa:13:c3:fe:cb:e6:1b:a6:24:ba:3f:66:07:e0:6a:7f:ac: 6a:d9:5a:8c:a8:fd:04:3d:6c:d4:f4:7c:14:e7:a7:12:71:82: 6b:05:2a:4a:03:94:49:c8:34:6b:98:86:c1:3c:f1:99:fc:e9: 40:3e:d6:7c:75:d6:6b:2b:c1:59:8f:3b:b0:dd:46:85:22:5b: ef:7d:c8:b2:95:0b:7b:2b:f6:0b:b3:8a:cf:70:b7:df:0e:af: ad:a3:91:5c:00:90:ec:97:7f:03:9f:03:d5:3c:79:52:73:e0: 2a:b9:3c:ea:73:c0:0f:be:05:a8:96:10:ec:47:81:29:19:cb: d7:27:4e:29:04:82:6b:27:a2:30:67:a9:a5:54:cb:04:aa:b9: 60:df:c3:f7:8d:f6:c7:20:60:bd:a6:f1:74:e6:84:06:8c:11: 65:d6:67:d0:93:b4:60:6e:08:ab:11:2f:91:d3:e4:1c:f1:b7: 19:9b:7e:ff:a0:4e:92:8f:d5:cf:bd:ed:39:77:ea:ca:12:3e: 0d:7f:a0:77:71:2d:5c:ea:5c:5c:1c:86:05:fa:c3:99:d1:56: ee:95:1f:44:48:75:11:fa:9b:f2:b1:ed:6a:1b:33:78:12:98: 81:81:a3:c9 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICICcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTA5NTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKERGNTgzNUEzRTczQzk2 NDU4MDZBMzBBNkNDQUM2QTQ1MUEyQTdDQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnJsBHte6l4DOpFpfvVFmyVjCqoxUII9ss5r7lgfaO/0BdD7Nj 5X1kcGFmB/XXtu+d7QXQ9jVUsRNFSMSCzZn73HfMObF3c0be9gYO2wkBvi5+uJKc wJYUzIFVFP6TLX5QfzuDcJXCjrs/n19s4H6nfzS6Vk2+19uiIxcuqu33MxacvJ4u 4ErJMF8Zbh4xZMChWl/VWwMuIp0MzJME4O0qtu17gWo+wp70dW1UEzwuKZlLTZZe GxeoVA2edOwDglkw0AE7l5+TONaS2JjwvCJqfUlzmWeeSSUOUSR1cr9f9ZyxPUZM 9gneGOO4wKL+SJOSDTdwnRpj6iVacHJ4CaHDAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU31g1o+c8lkWAajCmzKxqRRoqfKMwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxLzMxZzFvLWM4bGtXQWFq Q216S3hxUlJvcWZLTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn50AwDQYJKoZIhvcNAQELBQADggEBAMWnHlNgv8dVQCtXBkvFSeHIbeCqE8P+ y+YbpiS6P2YH4Gp/rGrZWoyo/QQ9bNT0fBTnpxJxgmsFKkoDlEnINGuYhsE88Zn8 6UA+1nx11msrwVmPO7DdRoUiW+99yLKVC3sr9guzis9wt98Or62jkVwAkOyXfwOf A9U8eVJz4Cq5POpzwA++BaiWEOxHgSkZy9cnTikEgmsnojBnqaVUywSquWDfw/eN 9scgYL2m8XTmhAaMEWXWZ9CTtGBuCKsRL5HT5Bzxtxmbfv+gTpKP1c+97Tl36soS Pg1/oHdxLVzqXFwchgX6w5nRVu6VH0RIdRH6m/Kx7WobM3gSmIGBo8k= -----END CERTIFICATE-----Generated at Mon Sep 8 02:41:43 2025 by rpki-client