$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/irAMVBfsS5Qxr7zI6VB0E_qSWUk.roa File: irAMVBfsS5Qxr7zI6VB0E_qSWUk.roa (raw, json) Hash identifier: Ekqsm6IfN0Yw6nidMXC7M/yH2PoGEyq5YcRzyw4GdSw= Subject key identifier: 8A:B0:0C:54:17:EC:4B:94:31:AF:BC:C8:E9:50:74:13:FA:92:59:49 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2025 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/irAMVBfsS5Qxr7zI6VB0E_qSWUk.roa Signing time: Tue 26 Aug 2025 05:01:08 +0000 ROA not before: Tue 26 Aug 2025 05:01:08 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4808 IP address blocks: 103.227.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 04:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8229 (0x2025) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:01:08 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8AB00C5417EC4B9431AFBCC8E9507413FA925949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:07:71:45:ee:47:70:58:4d:e9:59:19:74:be: 16:86:91:15:b1:0b:eb:6f:6e:8e:fd:ba:7c:a3:68: 6d:9b:2c:39:41:2c:5b:67:e1:3f:31:88:53:26:d7: c8:a3:5e:eb:6b:8e:02:0a:55:af:ea:96:38:da:0a: bf:1b:1a:1f:94:07:9e:b7:48:15:89:84:85:58:2c: de:7d:bf:e4:d3:85:49:f7:50:51:5a:55:9b:34:88: 07:35:d9:e1:06:81:4f:2f:9e:2f:fc:a6:9b:50:11: 2b:3a:78:34:47:a1:43:be:35:72:a4:93:16:bb:4b: eb:fd:87:64:2e:af:6f:1e:61:dc:21:cb:be:cd:03: af:03:79:b8:f8:df:59:08:25:6d:88:dc:22:16:c1: 0a:b5:30:39:8e:ac:29:d7:be:17:06:b8:c0:57:b5: a2:3a:83:73:7a:82:b1:ed:42:94:ad:26:01:5b:39: 70:60:c0:95:79:46:7d:6c:94:cb:66:60:89:76:48: f8:0d:20:10:76:aa:47:19:89:71:5a:98:bc:41:3a: d0:bc:ec:2f:2c:70:81:aa:5e:6a:19:4d:93:a8:da: af:86:5e:a7:82:8d:3e:d1:89:1c:d2:a2:ce:e1:1e: 1b:ee:cb:1e:a4:c7:35:45:c3:4d:b0:68:e6:90:65: cc:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B0:0C:54:17:EC:4B:94:31:AF:BC:C8:E9:50:74:13:FA:92:59:49 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/irAMVBfsS5Qxr7zI6VB0E_qSWUk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.76.0/22 Signature Algorithm: sha256WithRSAEncryption b3:a9:69:55:96:97:1a:d3:a4:c1:89:9d:d9:1b:1d:2a:61:08: 60:df:be:8c:17:34:d2:f2:98:43:c7:26:80:b6:dc:10:2b:b0: 81:e9:47:75:b0:bc:cd:b3:9a:4e:bf:ac:46:f9:82:4d:d1:fd: 1d:90:23:c7:09:7f:ee:e5:bf:18:1c:69:fd:0e:97:25:4f:ea: a2:42:3f:d5:a9:d9:73:bc:67:40:bf:58:79:e8:31:79:32:3d: 6f:2b:77:92:27:4e:13:ab:38:a1:8f:98:fd:52:02:f0:30:c4: 21:56:e6:94:3e:0d:d4:ac:8d:e2:51:5a:96:00:a5:a2:43:c4: d1:ad:cd:19:6f:a6:b5:4b:74:5a:b4:f6:53:6a:b1:2c:53:93: d3:c6:bb:83:aa:f8:a4:73:51:86:d6:c3:1b:fd:fc:44:fa:d3: 7e:5b:51:cb:20:a6:b4:17:63:df:74:dd:4c:60:a8:cf:62:45: b8:6b:b1:9c:75:9d:da:99:d1:04:2d:86:58:44:60:ef:eb:86: 4b:67:3f:24:18:98:80:80:ce:3f:e4:50:c6:5a:b4:91:42:38: 16:9d:3e:11:92:60:40:ed:0e:f2:67:e2:35:71:71:ef:2f:78: 02:a4:3e:8e:a0:84:01:15:39:2f:70:da:87:6c:cd:5f:72:c0: 84:65:b0:78 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICICUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTAxMDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhBQjAwQzU0MTdFQzRC OTQzMUFGQkNDOEU5NTA3NDEzRkE5MjU5NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfB3FF7kdwWE3pWRl0vhaGkRWxC+tvbo79unyjaG2bLDlBLFtn 4T8xiFMm18ijXutrjgIKVa/qljjaCr8bGh+UB563SBWJhIVYLN59v+TThUn3UFFa VZs0iAc12eEGgU8vni/8pptQESs6eDRHoUO+NXKkkxa7S+v9h2Qur28eYdwhy77N A68Debj431kIJW2I3CIWwQq1MDmOrCnXvhcGuMBXtaI6g3N6grHtQpStJgFbOXBg wJV5Rn1slMtmYIl2SPgNIBB2qkcZiXFamLxBOtC87C8scIGqXmoZTZOo2q+GXqeC jT7RiRzSos7hHhvuyx6kxzVFw02waOaQZczXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUirAMVBfsS5Qxr7zI6VB0E/qSWUkwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL2lyQU1WQmZzUzVReHI3 ekk2VkIwRV9xU1dVay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn40wwDQYJKoZIhvcNAQELBQADggEBALOpaVWWlxrTpMGJndkbHSphCGDfvowX NNLymEPHJoC23BArsIHpR3WwvM2zmk6/rEb5gk3R/R2QI8cJf+7lvxgcaf0OlyVP 6qJCP9Wp2XO8Z0C/WHnoMXkyPW8rd5InThOrOKGPmP1SAvAwxCFW5pQ+DdSsjeJR WpYApaJDxNGtzRlvprVLdFq09lNqsSxTk9PGu4Oq+KRzUYbWwxv9/ET6035bUcsg prQXY9903UxgqM9iRbhrsZx1ndqZ0QQthlhEYO/rhktnPyQYmICAzj/kUMZatJFC OBadPhGSYEDtDvJn4jVxce8veAKkPo6ghAEVOS9w2odszV9ywIRlsHg= -----END CERTIFICATE-----Generated at Sun Sep 7 03:27:49 2025 by rpki-client