$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/EaNlYNZdpC8DZmncE_SIujkNGCE.roa File: EaNlYNZdpC8DZmncE_SIujkNGCE.roa (raw, json) Hash identifier: s7qB68yPRTto3ZfMgj5Vxv8shLMB/uBHJFNwn8/r3GY= Subject key identifier: 11:A3:65:60:D6:5D:A4:2F:03:66:69:DC:13:F4:88:BA:39:0D:18:21 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 202C Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/EaNlYNZdpC8DZmncE_SIujkNGCE.roa Signing time: Tue 26 Aug 2025 05:09:52 +0000 ROA not before: Tue 26 Aug 2025 05:09:52 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23724 IP address blocks: 103.231.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8236 (0x202c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:09:52 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=11A36560D65DA42F036669DC13F488BA390D1821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ba:a8:a4:99:10:f6:39:6b:c2:97:4a:95:65: cb:e6:4c:93:30:99:67:0e:76:ef:24:c3:d1:81:bd: 67:b6:6d:d3:19:66:d9:9a:31:d4:4f:e0:5e:46:cb: 0e:96:8b:48:fa:23:ba:fd:09:09:15:10:73:ac:ab: 0f:f7:f6:c2:32:e8:7f:8e:b5:41:58:e5:bc:9d:30: 6b:ff:06:b7:f0:0b:66:71:92:8c:53:17:02:df:71: 89:b3:fc:ee:15:1d:01:85:52:24:49:b4:9f:cf:ef: 22:b4:01:b1:4c:e1:b9:af:43:71:0e:ca:f3:6a:a6: cd:d7:47:7b:4c:05:58:5a:d5:23:b6:0a:3e:b6:a8: ce:85:e2:7b:89:2a:72:a5:8c:ac:a7:a7:27:28:66: 19:56:f8:60:de:6b:b1:87:dd:78:ba:e2:ec:70:cb: 45:89:7f:c9:02:df:ec:03:11:96:01:45:9d:17:2c: c0:b1:af:3c:10:fd:26:e5:61:b7:75:db:4f:b3:9c: 36:3b:41:97:a8:ce:32:89:4b:aa:ac:46:6a:ac:87: 96:36:4e:5c:4f:af:a3:b2:3f:78:16:d8:cf:9b:81: db:f6:07:1d:42:dc:98:da:67:22:45:b8:83:f8:16: 3d:4c:6a:b8:0b:b7:08:53:a3:a5:6f:a8:98:a0:e9: 44:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A3:65:60:D6:5D:A4:2F:03:66:69:DC:13:F4:88:BA:39:0D:18:21 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/EaNlYNZdpC8DZmncE_SIujkNGCE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.231.68.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:96:13:d6:41:de:a3:47:92:f1:12:5e:6e:db:16:fb:05:c9: 27:bc:29:ba:29:7f:52:94:6d:3b:c8:43:93:2e:a9:b5:8a:a4: 9b:d5:aa:8a:05:0a:7c:79:ee:90:82:8c:3f:10:33:79:69:46: cd:37:90:4e:18:4a:66:75:6d:51:2f:28:dd:f8:94:c3:19:36: 6c:a3:92:05:b8:10:ad:68:27:8c:e4:ba:9e:9b:df:e6:fb:76: 78:42:9c:af:be:82:aa:8c:ad:a6:1d:b6:ba:4e:42:f1:1b:bb: a1:d9:ba:b5:5b:91:af:a0:e6:6b:9d:ad:6c:58:e9:3f:54:af: 12:9d:da:c2:99:cd:dc:e1:eb:ad:36:4c:be:c6:16:b9:96:09: a5:ad:17:f0:a2:bb:60:74:58:7b:5b:7c:72:8d:7d:d5:ea:a5: 15:b5:80:94:67:fa:8e:39:50:cf:56:6d:ea:e2:ff:87:c0:b4: d1:2f:d1:9d:a8:10:c6:04:da:69:14:3d:cf:ec:e6:71:ee:86: 8a:26:c4:ab:a7:ef:47:9d:9f:ea:0c:7b:ed:f7:e5:88:4f:9c: 82:8a:9a:67:fc:1b:0c:d3:d3:45:bb:48:6e:7c:9a:61:b1:bd: ce:e8:b4:4b:c8:a8:99:92:c9:75:7f:c1:2d:49:ee:28:dd:34: 50:5b:56:db -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICICwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTA5NTJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDExQTM2NTYwRDY1REE0 MkYwMzY2NjlEQzEzRjQ4OEJBMzkwRDE4MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpuqikmRD2OWvCl0qVZcvmTJMwmWcOdu8kw9GBvWe2bdMZZtma MdRP4F5Gyw6Wi0j6I7r9CQkVEHOsqw/39sIy6H+OtUFY5bydMGv/BrfwC2ZxkoxT FwLfcYmz/O4VHQGFUiRJtJ/P7yK0AbFM4bmvQ3EOyvNqps3XR3tMBVha1SO2Cj62 qM6F4nuJKnKljKynpycoZhlW+GDea7GH3Xi64uxwy0WJf8kC3+wDEZYBRZ0XLMCx rzwQ/SblYbd120+znDY7QZeozjKJS6qsRmqsh5Y2TlxPr6OyP3gW2M+bgdv2Bx1C 3JjaZyJFuIP4Fj1MargLtwhTo6VvqJig6UTlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUEaNlYNZdpC8DZmncE/SIujkNGCEwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL0VhTmxZTlpkcEM4RFpt bmNFX1NJdWprTkdDRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn50QwDQYJKoZIhvcNAQELBQADggEBAGqWE9ZB3qNHkvESXm7bFvsFySe8Kbop f1KUbTvIQ5MuqbWKpJvVqooFCnx57pCCjD8QM3lpRs03kE4YSmZ1bVEvKN34lMMZ NmyjkgW4EK1oJ4zkup6b3+b7dnhCnK++gqqMraYdtrpOQvEbu6HZurVbka+g5mud rWxY6T9UrxKd2sKZzdzh6602TL7GFrmWCaWtF/Ciu2B0WHtbfHKNfdXqpRW1gJRn +o45UM9Wberi/4fAtNEv0Z2oEMYE2mkUPc/s5nHuhoomxKun70edn+oMe+335YhP nIKKmmf8GwzT00W7SG58mmGxvc7otEvIqJmSyXV/wS1J7ijdNFBbVts= -----END CERTIFICATE-----Generated at Mon Sep 8 02:33:43 2025 by rpki-client