$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/kX61mcVlXwm5tk0Gsqw632WQpD8.roa File: kX61mcVlXwm5tk0Gsqw632WQpD8.roa (raw, json) Hash identifier: 1BHwfClepq424ane8szqQA1NVHFOiHukDlDG3t54beo= Subject key identifier: 91:7E:B5:99:C5:65:5F:09:B9:B6:4D:06:B2:AC:3A:DF:65:90:A4:3F Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2028 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/kX61mcVlXwm5tk0Gsqw632WQpD8.roa Signing time: Tue 26 Aug 2025 05:09:51 +0000 ROA not before: Tue 26 Aug 2025 05:09:51 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4808 IP address blocks: 103.231.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 04:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8232 (0x2028) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:09:51 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=917EB599C5655F09B9B64D06B2AC3ADF6590A43F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:33:9f:81:da:39:45:8d:88:a5:c7:95:7c:52: 34:0a:73:43:f4:57:fb:dc:8e:77:d2:7a:42:e4:0b: c3:39:92:6e:40:a1:f8:66:6b:9e:50:9b:40:40:59: c4:34:06:d1:06:e3:d8:76:e0:b0:3f:72:57:a7:34: 80:62:93:3c:fd:a1:fd:fc:62:a1:15:d0:9d:c3:c2: f6:c1:f6:a8:24:cd:7f:14:5e:03:22:f1:a1:0c:3b: e6:79:a9:2c:fe:58:a9:85:7d:17:d1:4e:36:bc:5e: 01:28:67:77:4f:14:ca:37:5b:aa:d2:63:74:18:0f: 6d:80:f4:2e:66:d2:35:36:97:4a:16:ad:01:f4:f1: 94:db:f6:06:b0:f9:68:ab:2e:3d:1d:16:47:59:b2: b0:e5:1a:7f:f9:03:95:c1:b8:3f:c2:fb:c3:68:1f: c9:c5:e0:07:83:42:5a:5b:14:e6:93:d1:4d:ed:4b: e5:c4:6b:1e:f8:49:e6:0a:74:41:02:1c:3c:70:3b: 45:35:bf:cb:7c:ad:28:40:be:eb:4f:7a:e0:47:09: 48:55:dc:ce:c8:6f:c5:3c:4c:c2:95:d6:7d:74:9f: 2b:71:bd:77:7d:c8:d5:b1:3a:29:aa:db:95:44:66: 22:24:4e:1d:e7:e5:1a:5f:66:af:61:69:a3:6d:a4: 2b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:7E:B5:99:C5:65:5F:09:B9:B6:4D:06:B2:AC:3A:DF:65:90:A4:3F X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/kX61mcVlXwm5tk0Gsqw632WQpD8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.231.68.0/22 Signature Algorithm: sha256WithRSAEncryption c1:7d:a6:a7:03:b7:7f:a6:cb:e2:b7:11:bd:ed:62:f1:f9:41: 8c:e2:55:e1:1c:ac:1d:5f:9c:ce:3a:e7:43:f9:c5:54:fb:32: 97:b6:c4:a2:72:a8:d0:8b:42:b1:b7:5d:4f:ec:43:a3:3d:f4: 2d:20:4a:95:39:35:66:1d:fb:d2:bf:98:b9:b5:4f:77:7c:4a: c4:8c:f6:d2:ae:63:10:d3:eb:b8:d8:36:ec:f4:2f:ec:47:e3: 28:5a:99:ed:a2:ee:27:a3:1d:d3:6b:31:a5:86:38:cf:5b:96: cc:4c:1d:49:e7:98:dc:b6:c5:89:0c:e9:28:31:ec:7f:ce:15: 25:6a:9b:71:df:9f:88:2e:ed:8f:82:45:1b:93:14:be:0f:4e: fd:ed:17:17:63:81:ba:ab:b7:25:dd:b7:47:70:cf:23:2f:bf: 23:c6:2a:11:8f:80:e7:dc:05:b7:64:d8:87:fc:d4:28:73:ca: bc:e2:c7:62:ef:99:48:e3:97:fc:af:ac:48:3a:ad:bf:b9:d8: d9:6e:9b:53:e5:07:0a:7b:21:24:c9:5c:a9:09:7e:0a:38:8a: 9f:f3:98:49:88:37:e7:ee:10:72:b4:e9:ba:4a:a6:cc:c9:7c: 84:68:7d:4a:78:31:71:f4:bd:05:07:0b:bf:f5:08:cd:55:e9: 1c:33:ad:17 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICICgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTA5NTFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDkxN0VCNTk5QzU2NTVG MDlCOUI2NEQwNkIyQUMzQURGNjU5MEE0M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpM5+B2jlFjYilx5V8UjQKc0P0V/vcjnfSekLkC8M5km5Aofhm a55Qm0BAWcQ0BtEG49h24LA/clenNIBikzz9of38YqEV0J3DwvbB9qgkzX8UXgMi 8aEMO+Z5qSz+WKmFfRfRTja8XgEoZ3dPFMo3W6rSY3QYD22A9C5m0jU2l0oWrQH0 8ZTb9gaw+WirLj0dFkdZsrDlGn/5A5XBuD/C+8NoH8nF4AeDQlpbFOaT0U3tS+XE ax74SeYKdEECHDxwO0U1v8t8rShAvutPeuBHCUhV3M7Ib8U8TMKV1n10nytxvXd9 yNWxOimq25VEZiIkTh3n5RpfZq9haaNtpCunAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUkX61mcVlXwm5tk0Gsqw632WQpD8wHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL2tYNjFtY1ZsWHdtNXRr MEdzcXc2MzJXUXBEOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn50QwDQYJKoZIhvcNAQELBQADggEBAMF9pqcDt3+my+K3Eb3tYvH5QYziVeEc rB1fnM4650P5xVT7Mpe2xKJyqNCLQrG3XU/sQ6M99C0gSpU5NWYd+9K/mLm1T3d8 SsSM9tKuYxDT67jYNuz0L+xH4yhame2i7iejHdNrMaWGOM9blsxMHUnnmNy2xYkM 6Sgx7H/OFSVqm3Hfn4gu7Y+CRRuTFL4PTv3tFxdjgbqrtyXdt0dwzyMvvyPGKhGP gOfcBbdk2If81Chzyrzix2LvmUjjl/yvrEg6rb+52Nlum1PlBwp7ISTJXKkJfgo4 ip/zmEmIN+fuEHK06bpKpszJfIRofUp4MXH0vQUHC7/1CM1V6RwzrRc= -----END CERTIFICATE-----Generated at Sun Sep 7 03:29:22 2025 by rpki-client