$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/SFG_Z4adFJCXNBMm00466wU55Mg.roa File: SFG_Z4adFJCXNBMm00466wU55Mg.roa (raw, json) Hash identifier: XAhkYiekiIopA0qwnvpDDRO/PeAM1xanRHUXsLpye0I= Subject key identifier: 48:51:BF:67:86:9D:14:90:97:34:13:26:D3:4E:3A:EB:05:39:E4:C8 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2029 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/SFG_Z4adFJCXNBMm00466wU55Mg.roa Signing time: Tue 26 Aug 2025 05:09:51 +0000 ROA not before: Tue 26 Aug 2025 05:09:51 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 56282 IP address blocks: 103.231.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8233 (0x2029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:09:51 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4851BF67869D149097341326D34E3AEB0539E4C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:43:97:17:6c:9d:7f:4a:84:ca:b3:dd:ec:11: d1:fa:1b:f9:c9:0f:f5:60:1a:a9:1d:94:45:06:6e: 96:ce:df:46:bf:eb:39:00:03:cf:1a:d0:17:b5:5d: ee:80:37:20:ec:4d:22:c6:46:d7:7c:47:ea:a8:51: 78:c4:ba:4f:98:f9:b7:2a:67:76:a5:5c:75:ec:c2: 56:8f:b0:87:5b:b8:87:62:eb:c5:9c:dc:fe:48:53: ea:12:1b:c8:ac:ab:57:7c:ea:09:15:bc:59:16:41: f5:f8:6a:fc:26:fc:4c:04:e4:9a:be:06:92:1f:92: f4:49:2e:cd:38:62:9a:90:06:5b:43:45:37:21:ab: 73:97:56:7b:e5:10:bf:22:97:f3:c3:ff:18:38:b6: 4d:33:42:08:fb:4c:41:de:62:55:6d:78:ef:8d:c5: 93:f0:fc:8e:32:3e:9d:a0:87:3f:48:9f:c8:2f:6e: 41:14:a3:82:9c:4d:71:e0:d2:70:d2:5d:ca:81:28: 7c:14:46:e8:11:b5:37:93:aa:f4:13:ef:5a:fd:cb: 9c:9f:e8:61:a7:f5:f5:f8:6a:ce:b3:01:71:5c:92: ca:4a:a0:32:c8:ac:f7:ec:55:b4:72:48:9b:76:7e: dc:ca:28:94:da:95:c7:13:52:3f:ae:3c:4b:d7:a2: 4d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:51:BF:67:86:9D:14:90:97:34:13:26:D3:4E:3A:EB:05:39:E4:C8 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/SFG_Z4adFJCXNBMm00466wU55Mg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.231.68.0/22 Signature Algorithm: sha256WithRSAEncryption 87:71:c2:58:55:1a:7e:9c:42:b6:62:51:db:dc:65:7c:78:91: 6f:17:aa:12:bb:75:d9:21:39:e2:c5:30:1c:f3:dd:d8:58:6a: 70:50:b4:0d:16:42:c5:23:71:60:2a:2a:dd:5c:2d:42:6f:cd: bb:cc:04:08:f7:2c:9f:2d:23:b0:b2:19:b0:af:18:01:2d:88: 8c:c6:0c:ba:4e:e5:8d:2c:78:ff:99:e7:52:9b:6c:70:e1:bf: 97:3a:68:6b:f7:4d:17:80:30:0d:48:b6:eb:42:86:1b:bf:d0: 86:5a:42:b2:b8:d8:59:6c:41:59:f6:f5:de:4a:23:f5:61:9e: b0:d1:e7:a3:c7:d9:bd:54:71:44:c0:68:d1:30:9f:77:cd:66: 75:cf:4a:51:7d:12:b2:a4:b3:82:00:53:e0:a2:bf:d9:f0:ec: d0:33:63:6b:af:43:f3:c8:48:ed:4d:b2:ae:3d:6e:8c:6a:57: a8:b7:ad:6a:4f:bd:e4:e8:a6:a2:ef:c7:84:7e:29:0e:ed:d1: 07:d5:c5:d1:2c:b7:11:94:73:25:25:57:f0:75:f0:0c:78:68: 1f:46:fd:ac:35:6e:48:91:f8:3a:f7:8e:35:7b:82:02:d6:2e: 30:c4:7c:5e:e0:f0:21:26:8b:d7:ec:bf:cc:cb:83:ff:6a:27: 0c:bb:97:23 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICICkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTA5NTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQ4NTFCRjY3ODY5RDE0 OTA5NzM0MTMyNkQzNEUzQUVCMDUzOUU0QzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBQ5cXbJ1/SoTKs93sEdH6G/nJD/VgGqkdlEUGbpbO30a/6zkA A88a0Be1Xe6ANyDsTSLGRtd8R+qoUXjEuk+Y+bcqZ3alXHXswlaPsIdbuIdi68Wc 3P5IU+oSG8isq1d86gkVvFkWQfX4avwm/EwE5Jq+BpIfkvRJLs04YpqQBltDRTch q3OXVnvlEL8il/PD/xg4tk0zQgj7TEHeYlVteO+NxZPw/I4yPp2ghz9In8gvbkEU o4KcTXHg0nDSXcqBKHwURugRtTeTqvQT71r9y5yf6GGn9fX4as6zAXFckspKoDLI rPfsVbRySJt2ftzKKJTalccTUj+uPEvXok0FAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUSFG/Z4adFJCXNBMm00466wU55MgwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL1NGR19aNGFkRkpDWE5C TW0wMDQ2NndVNTVNZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn50QwDQYJKoZIhvcNAQELBQADggEBAIdxwlhVGn6cQrZiUdvcZXx4kW8XqhK7 ddkhOeLFMBzz3dhYanBQtA0WQsUjcWAqKt1cLUJvzbvMBAj3LJ8tI7CyGbCvGAEt iIzGDLpO5Y0seP+Z51KbbHDhv5c6aGv3TReAMA1ItutChhu/0IZaQrK42FlsQVn2 9d5KI/VhnrDR56PH2b1UcUTAaNEwn3fNZnXPSlF9ErKks4IAU+Civ9nw7NAzY2uv Q/PISO1Nsq49boxqV6i3rWpPveTopqLvx4R+KQ7t0QfVxdEstxGUcyUlV/B18Ax4 aB9G/aw1bkiR+Dr3jjV7ggLWLjDEfF7g8CEmi9fsv8zLg/9qJwy7lyM= -----END CERTIFICATE-----Generated at Mon Sep 8 02:35:59 2025 by rpki-client