$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/6hEpQgdJ9wORSb01cIudFPBAkCs.roa File: 6hEpQgdJ9wORSb01cIudFPBAkCs.roa (raw, json) Hash identifier: Qr/r4t5HPCDJtQz51BiYrt/y0+bXTS55Q7UJvzdr5WQ= Subject key identifier: EA:11:29:42:07:49:F7:03:91:49:BD:35:70:8B:9D:14:F0:40:90:2B Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2013 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/6hEpQgdJ9wORSb01cIudFPBAkCs.roa Signing time: Tue 26 Aug 2025 04:55:23 +0000 ROA not before: Tue 26 Aug 2025 04:55:23 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 56282 IP address blocks: 103.26.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8211 (0x2013) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 04:55:23 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EA1129420749F7039149BD35708B9D14F040902B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:89:f1:2e:97:7b:f9:56:2f:c2:cf:3c:df:d5: 79:b0:d6:e8:a0:ae:9c:16:e6:6e:a8:c1:6b:23:a9: 5e:1e:55:8d:fb:50:af:c1:20:6e:70:1b:c7:aa:2d: c0:45:a7:c4:e1:76:33:e8:49:30:ea:16:4e:99:2b: be:f7:28:1e:c6:30:99:a8:8e:9f:91:ea:82:1d:a6: 09:1d:31:47:b6:d0:10:b6:b2:2a:f4:71:da:84:2b: 0d:71:10:4f:86:11:a2:18:15:f2:d9:8d:8f:15:2d: bb:ef:29:7a:fa:59:87:bb:1a:8e:0b:7e:b9:f0:08: 04:c8:97:99:1c:b4:34:60:38:fa:61:3b:33:65:bc: d3:ec:1e:dd:e3:44:8a:90:d4:76:37:62:b0:01:65: e6:12:84:22:aa:da:72:55:a2:46:15:2c:6f:ba:cf: 2c:59:e1:2a:cc:4a:f9:9b:38:84:9b:d4:01:03:7b: 23:9e:57:06:18:ad:21:8c:e4:fd:1f:db:d8:34:05: ef:b6:21:fe:10:37:c9:3d:19:d4:34:1c:65:a2:ba: e9:4a:1b:2c:65:4b:5d:5a:f3:f0:fb:77:aa:17:72: 67:2f:3d:8f:cf:8d:0d:d5:8c:9b:7a:2b:15:cf:85: 81:5f:c3:4e:7a:4c:f8:b4:4d:8f:eb:29:5a:21:ca: 71:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:11:29:42:07:49:F7:03:91:49:BD:35:70:8B:9D:14:F0:40:90:2B X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/6hEpQgdJ9wORSb01cIudFPBAkCs.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.26.0.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:14:59:79:98:ca:20:71:30:56:be:ab:90:18:9e:63:a1:df: 89:6c:95:62:4a:dc:98:b3:8c:c2:2f:c3:d8:95:64:45:19:2b: 4a:d0:1d:c0:e1:7b:46:1e:6e:76:1a:8f:af:c1:2b:bc:b0:24: f8:41:59:6e:9f:09:58:25:a2:c6:04:14:64:31:18:4a:6d:24: 9c:62:8e:04:d4:5f:bd:f6:1c:f2:51:da:e1:5f:1e:84:6a:3e: 3b:12:94:c0:1e:87:ee:68:5c:b5:cb:10:c5:b3:31:e9:d9:b4: 7e:47:6a:3e:4f:de:98:d9:fe:01:71:62:85:9a:ce:84:75:4b: da:a0:7e:2d:db:4b:98:47:dc:9d:cc:2c:d6:e7:35:03:7d:8d: 4e:78:60:67:ec:e3:9d:1d:b6:fc:56:e2:82:e1:3d:e2:89:83: 10:83:7c:2b:92:95:0d:2b:c1:c9:21:9f:20:8d:ee:30:6f:81: 88:3f:ab:d5:5c:11:9c:fd:83:36:f6:3c:9d:05:b7:b7:17:4f: 66:aa:a8:39:7f:0c:34:60:19:94:2b:15:49:2d:93:9e:25:26: 91:72:98:cc:d3:a1:77:a8:12:d0:61:e4:02:e6:60:63:b0:6b: 2a:03:a3:43:f4:8b:cd:97:cd:41:d1:75:07:d8:a1:8e:3c:71: 07:eb:e6:52 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NDU1MjNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVBMTEyOTQyMDc0OUY3 MDM5MTQ5QkQzNTcwOEI5RDE0RjA0MDkwMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDifEul3v5Vi/Czzzf1Xmw1uigrpwW5m6owWsjqV4eVY37UK/B IG5wG8eqLcBFp8ThdjPoSTDqFk6ZK773KB7GMJmojp+R6oIdpgkdMUe20BC2sir0 cdqEKw1xEE+GEaIYFfLZjY8VLbvvKXr6WYe7Go4LfrnwCATIl5kctDRgOPphOzNl vNPsHt3jRIqQ1HY3YrABZeYShCKq2nJVokYVLG+6zyxZ4SrMSvmbOISb1AEDeyOe VwYYrSGM5P0f29g0Be+2If4QN8k9GdQ0HGWiuulKGyxlS11a8/D7d6oXcmcvPY/P jQ3VjJt6KxXPhYFfw056TPi0TY/rKVohynFFAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6hEpQgdJ9wORSb01cIudFPBAkCswHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxLzZoRXBRZ2RKOXdPUlNi MDFjSXVkRlBCQWtDcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnGgAwDQYJKoZIhvcNAQELBQADggEBAD0UWXmYyiBxMFa+q5AYnmOh34lslWJK 3JizjMIvw9iVZEUZK0rQHcDhe0YebnYaj6/BK7ywJPhBWW6fCVglosYEFGQxGEpt JJxijgTUX732HPJR2uFfHoRqPjsSlMAeh+5oXLXLEMWzMenZtH5Haj5P3pjZ/gFx YoWazoR1S9qgfi3bS5hH3J3MLNbnNQN9jU54YGfs450dtvxW4oLhPeKJgxCDfCuS lQ0rwckhnyCN7jBvgYg/q9VcEZz9gzb2PJ0Ft7cXT2aqqDl/DDRgGZQrFUktk54l JpFymMzToXeoEtBh5ALmYGOwayoDo0P0i82XzUHRdQfYoY48cQfr5lI= -----END CERTIFICATE-----Generated at Mon Sep 8 02:36:03 2025 by rpki-client