$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/EvHlUVp0QgY-1rLmrHDrFIprIdk.roa File: EvHlUVp0QgY-1rLmrHDrFIprIdk.roa (raw, json) Hash identifier: 2FOaBxJq6eJ1rwG/INJakcx5bXvgtRwihHN5scYm3iM= Subject key identifier: 12:F1:E5:51:5A:74:42:06:3E:D6:B2:E6:AC:70:EB:14:8A:6B:21:D9 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2017 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/EvHlUVp0QgY-1rLmrHDrFIprIdk.roa Signing time: Tue 26 Aug 2025 04:55:24 +0000 ROA not before: Tue 26 Aug 2025 04:55:24 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 56282 IP address blocks: 103.227.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8215 (0x2017) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 04:55:24 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=12F1E5515A7442063ED6B2E6AC70EB148A6B21D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:62:45:7e:80:ac:ae:c5:b8:25:b4:be:51:46: c7:e3:03:f0:37:ef:04:73:64:b6:5e:8c:d2:2a:b5: 3f:88:61:23:5d:82:b9:80:1e:0b:84:92:10:85:14: df:d0:9d:a4:87:96:90:cd:98:b2:cf:34:3c:ad:78: 89:93:59:27:e2:46:9b:de:cf:9c:90:bf:b2:30:ae: f5:fc:a8:5e:17:12:ad:76:46:d4:4e:f7:ce:9d:6d: 64:f5:11:23:ba:d0:da:77:1d:a4:ef:c5:ec:c8:ef: d4:3e:5d:f2:66:e9:d6:af:f1:0c:23:29:08:9e:a6: e7:61:34:45:cf:f0:45:53:7c:a5:ed:3a:03:54:ed: 60:3e:25:ba:bc:cf:75:24:03:14:4d:77:09:d9:74: 17:ee:7a:ca:1a:d1:0f:b7:8d:bd:4b:de:f7:a9:6e: eb:b8:bd:8c:aa:70:37:ac:cd:14:23:dc:65:ba:b6: 54:0a:9c:d1:4c:52:21:0a:a3:19:57:1f:8d:0e:58: 5d:38:f9:3a:d2:32:33:22:bc:e7:4b:ce:f5:be:4f: 05:13:9e:81:33:99:56:a0:87:73:fa:84:24:04:6c: 9d:e5:f6:cc:9e:da:ff:07:85:6d:bf:25:26:23:a1: 68:33:06:9d:81:8f:e6:8e:04:9b:f4:75:71:5c:63: bb:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F1:E5:51:5A:74:42:06:3E:D6:B2:E6:AC:70:EB:14:8A:6B:21:D9 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/EvHlUVp0QgY-1rLmrHDrFIprIdk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.80.0/22 Signature Algorithm: sha256WithRSAEncryption a9:9b:a3:2b:92:6a:60:fb:95:e1:a8:37:b2:b0:da:02:87:3d: dc:29:88:2e:dd:a2:10:67:44:5c:13:54:e9:a8:38:08:fe:a4: 60:33:37:1d:00:0c:44:d2:eb:7e:f0:be:3e:6a:c3:fc:77:cd: df:a8:74:15:7a:ef:f6:0c:53:b1:22:53:ed:53:6e:cb:98:8a: 71:10:5b:1b:91:b5:f0:bd:76:88:80:7a:24:5b:dc:9d:21:cc: 12:68:5d:17:97:e0:0f:83:a1:cb:db:58:6b:96:d9:1d:76:81: 08:f8:b8:2b:cd:49:f1:fd:07:81:7d:b1:18:d8:5b:79:4a:61: 0b:d2:5d:06:9c:85:11:5f:ff:77:3c:fe:ec:ad:f7:c6:b1:b7: 15:37:cb:aa:c5:a1:db:ed:4a:5e:6b:13:eb:46:6b:0a:49:e9: 62:be:97:76:79:be:db:11:77:8b:e3:7b:cd:da:e2:0b:36:d2: 96:2e:1d:47:6f:19:41:46:f5:b2:20:a8:34:76:ff:3d:78:6d: 30:4d:72:39:a2:4c:4b:93:b7:fa:5e:9e:ea:6f:16:2c:32:93: d8:9b:0c:7a:11:60:ee:d8:f7:d5:b3:a0:db:81:35:13:cf:e9: fa:3e:5f:a9:db:fe:26:7a:fe:0b:c4:2a:e8:7d:72:02:09:5c: b2:de:10:78 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIBcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NDU1MjRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDEyRjFFNTUxNUE3NDQy MDYzRUQ2QjJFNkFDNzBFQjE0OEE2QjIxRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtYkV+gKyuxbgltL5RRsfjA/A37wRzZLZejNIqtT+IYSNdgrmA HguEkhCFFN/QnaSHlpDNmLLPNDyteImTWSfiRpvez5yQv7IwrvX8qF4XEq12RtRO 986dbWT1ESO60Np3HaTvxezI79Q+XfJm6dav8QwjKQiepudhNEXP8EVTfKXtOgNU 7WA+Jbq8z3UkAxRNdwnZdBfuesoa0Q+3jb1L3vepbuu4vYyqcDeszRQj3GW6tlQK nNFMUiEKoxlXH40OWF04+TrSMjMivOdLzvW+TwUTnoEzmVagh3P6hCQEbJ3l9sye 2v8HhW2/JSYjoWgzBp2Bj+aOBJv0dXFcY7tRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUEvHlUVp0QgY+1rLmrHDrFIprIdkwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL0V2SGxVVnAwUWdZLTFy TG1ySERyRklwcklkay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn41AwDQYJKoZIhvcNAQELBQADggEBAKmboyuSamD7leGoN7Kw2gKHPdwpiC7d ohBnRFwTVOmoOAj+pGAzNx0ADETS637wvj5qw/x3zd+odBV67/YMU7EiU+1TbsuY inEQWxuRtfC9doiAeiRb3J0hzBJoXReX4A+DocvbWGuW2R12gQj4uCvNSfH9B4F9 sRjYW3lKYQvSXQachRFf/3c8/uyt98axtxU3y6rFodvtSl5rE+tGawpJ6WK+l3Z5 vtsRd4vje83a4gs20pYuHUdvGUFG9bIgqDR2/z14bTBNcjmiTEuTt/penupvFiwy k9ibDHoRYO7Y99WzoNuBNRPP6fo+X6nb/iZ6/gvEKuh9cgIJXLLeEHg= -----END CERTIFICATE-----Generated at Mon Sep 8 02:41:42 2025 by rpki-client