$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/G6BMHT-xnH6dEQAosBKumu67_uc.roa File: G6BMHT-xnH6dEQAosBKumu67_uc.roa (raw, json) Hash identifier: wY6aNY8ZTH86i5aXhynI53jpSRA3pZFKehbmLlXF//Q= Subject key identifier: 1B:A0:4C:1D:3F:B1:9C:7E:9D:11:00:28:B0:12:AE:9A:EE:BB:FE:E7 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 203D Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/G6BMHT-xnH6dEQAosBKumu67_uc.roa Signing time: Tue 26 Aug 2025 05:15:43 +0000 ROA not before: Tue 26 Aug 2025 05:15:43 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4808 IP address blocks: 103.235.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 04:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8253 (0x203d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:15:43 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1BA04C1D3FB19C7E9D110028B012AE9AEEBBFEE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:49:20:29:5b:95:36:46:2b:90:76:7f:ff:78: b5:9e:43:36:bc:a2:9a:67:1c:32:ed:46:2a:f6:b6: 26:55:cb:5c:9f:cc:76:03:b3:52:19:1e:c3:ec:c0: 21:c1:82:01:1c:8c:21:c5:68:52:e3:1c:15:4c:e3: 01:aa:e6:de:fe:f6:9d:53:61:4f:b4:10:e7:ff:4b: d7:4c:ac:56:d6:0d:af:09:26:62:d0:25:db:15:96: 6a:7a:c6:3b:45:5a:3c:e7:2b:4f:0d:4c:a5:f3:6b: 1e:66:f7:f4:c3:f0:0c:4e:a4:c1:e6:7e:e0:aa:8e: ae:2d:60:85:89:c4:f4:ac:29:cb:18:dd:02:5c:3f: 2d:34:ab:00:80:83:9e:d4:8a:bd:f6:1c:27:8b:f0: bd:7e:10:6b:74:e0:72:ec:5b:51:b8:b2:69:2b:bc: c8:3e:a3:bc:d8:87:f1:0f:72:ce:c8:0d:1b:fd:d2: 0d:ab:f4:32:6c:14:f2:ad:a6:08:3b:f7:16:7a:f1: 86:44:cc:96:54:48:8d:7d:cd:8c:28:bc:79:17:64: 0c:c1:b1:a6:2a:64:e1:ee:3e:4c:04:fc:e1:f4:2f: 5e:bb:50:36:f7:3b:6e:f2:1c:d7:3d:6d:a9:17:99: 05:3f:8e:83:b2:b8:f2:7b:23:d8:1c:c0:91:86:06: c5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A0:4C:1D:3F:B1:9C:7E:9D:11:00:28:B0:12:AE:9A:EE:BB:FE:E7 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/G6BMHT-xnH6dEQAosBKumu67_uc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.228.0/22 Signature Algorithm: sha256WithRSAEncryption 64:86:6b:80:ca:57:29:f0:ae:a1:dc:f9:7f:72:c7:f6:c6:86: d7:c4:00:2f:57:73:25:ac:ba:38:41:c1:a1:81:20:e1:92:7c: e9:77:c0:70:fe:aa:39:06:28:a0:d7:39:fe:80:2f:51:b8:98: f6:1a:bf:bf:0d:50:57:25:66:76:30:b6:e5:d1:c2:55:62:9d: 26:ee:f9:a7:fe:4d:d8:48:26:f9:81:cf:03:45:c6:ed:8b:fa: 0f:c3:40:36:59:e7:52:9c:2a:fe:9b:b4:37:4c:93:93:41:14: 6e:db:d7:23:09:ea:0e:a5:c0:14:6e:bb:d1:3e:f6:b0:98:63: b3:9e:7e:fd:07:e5:e9:a1:13:d7:47:bf:e0:f6:17:b5:8e:fa: 0d:68:88:b5:2d:12:b0:d8:dc:fb:e1:12:e4:30:f1:06:f4:a9: ee:cf:47:93:c6:35:e0:c5:71:1a:a1:9b:70:28:56:71:b0:08: d7:d9:ad:bd:e9:c8:44:30:0b:65:0d:35:a8:ec:fe:41:d1:eb: 2c:b7:bd:b7:fb:ba:f3:5e:b7:7a:c7:d0:d2:09:a3:4b:57:c9: 5d:3b:ab:0f:1e:f9:53:ef:29:51:cd:9d:18:7a:61:b3:21:1f: 18:e7:75:fc:00:93:40:15:8d:63:94:c0:c5:e6:c2:6f:4e:1a: 3d:2a:fc:11 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICID0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTE1NDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFCQTA0QzFEM0ZCMTlD N0U5RDExMDAyOEIwMTJBRTlBRUVCQkZFRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6SSApW5U2RiuQdn//eLWeQza8oppnHDLtRir2tiZVy1yfzHYD s1IZHsPswCHBggEcjCHFaFLjHBVM4wGq5t7+9p1TYU+0EOf/S9dMrFbWDa8JJmLQ JdsVlmp6xjtFWjznK08NTKXzax5m9/TD8AxOpMHmfuCqjq4tYIWJxPSsKcsY3QJc Py00qwCAg57Uir32HCeL8L1+EGt04HLsW1G4smkrvMg+o7zYh/EPcs7IDRv90g2r 9DJsFPKtpgg79xZ68YZEzJZUSI19zYwovHkXZAzBsaYqZOHuPkwE/OH0L167UDb3 O27yHNc9bakXmQU/joOyuPJ7I9gcwJGGBsVRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUG6BMHT+xnH6dEQAosBKumu67/ucwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL0c2Qk1IVC14bkg2ZEVR QW9zQkt1bXU2N191Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn6+QwDQYJKoZIhvcNAQELBQADggEBAGSGa4DKVynwrqHc+X9yx/bGhtfEAC9X cyWsujhBwaGBIOGSfOl3wHD+qjkGKKDXOf6AL1G4mPYav78NUFclZnYwtuXRwlVi nSbu+af+TdhIJvmBzwNFxu2L+g/DQDZZ51KcKv6btDdMk5NBFG7b1yMJ6g6lwBRu u9E+9rCYY7Oefv0H5emhE9dHv+D2F7WO+g1oiLUtErDY3PvhEuQw8Qb0qe7PR5PG NeDFcRqhm3AoVnGwCNfZrb3pyEQwC2UNNajs/kHR6yy3vbf7uvNet3rH0NIJo0tX yV07qw8e+VPvKVHNnRh6YbMhHxjndfwAk0AVjWOUwMXmwm9OGj0q/BE= -----END CERTIFICATE-----Generated at Sun Sep 7 03:29:21 2025 by rpki-client