$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/o7U-AK_4Msgg3EphJW86MZt_5bY.roa File: o7U-AK_4Msgg3EphJW86MZt_5bY.roa (raw, json) Hash identifier: OxYH/RfC7Wp2/kK29xJKxQehNA1Emo02Bu35VJyOvGo= Subject key identifier: A3:B5:3E:00:AF:F8:32:C8:20:DC:4A:61:25:6F:3A:31:9B:7F:E5:B6 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 203C Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/o7U-AK_4Msgg3EphJW86MZt_5bY.roa Signing time: Tue 26 Aug 2025 05:15:43 +0000 ROA not before: Tue 26 Aug 2025 05:15:43 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 56282 IP address blocks: 103.235.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8252 (0x203c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:15:43 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A3B53E00AFF832C820DC4A61256F3A319B7FE5B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b7:ef:5f:61:5d:55:c1:7c:c9:ff:e0:c4:b6: 7e:85:e7:a9:1e:36:69:0c:3c:67:a5:e8:31:d3:08: ce:a7:8e:02:86:96:38:85:21:53:0d:6c:b1:cb:08: f3:0d:a7:9d:6c:28:92:a4:5d:38:87:f1:94:21:db: bb:6c:50:96:ea:ff:7e:d5:6c:47:4a:c0:73:55:16: 89:7d:e7:8a:80:a0:a2:1a:38:fb:57:c8:cd:ba:6d: e8:ce:20:71:2d:5b:0d:b7:2d:60:28:44:3f:e4:98: 8f:14:31:79:c1:8a:72:09:67:8f:56:f9:82:b7:44: 26:54:81:bb:da:ca:23:0c:4b:69:ec:4c:77:f0:67: 69:1d:58:41:e1:49:f8:2f:97:37:90:74:b2:3a:99: 71:b4:94:37:75:d8:4a:bc:40:28:ad:ca:e3:db:c8: e5:04:bd:53:83:64:3b:fd:2e:3e:df:43:1f:de:11: d5:7a:8c:d2:4c:b3:5e:02:2f:a1:ef:9b:28:f0:cd: f8:7d:af:1a:83:ae:11:87:26:23:0f:de:55:ad:42: 48:78:ee:24:9b:60:38:75:62:fb:40:8e:14:cb:cc: d1:c5:1b:81:c9:32:9e:26:5c:02:de:7c:b4:78:55: 5a:d7:a9:6e:e7:f1:45:c3:86:47:97:2f:45:a0:ed: 67:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B5:3E:00:AF:F8:32:C8:20:DC:4A:61:25:6F:3A:31:9B:7F:E5:B6 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/o7U-AK_4Msgg3EphJW86MZt_5bY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.232.0/22 Signature Algorithm: sha256WithRSAEncryption 44:32:da:e6:92:c5:a6:75:52:8c:64:4a:d8:f7:e1:3b:44:4d: 6c:6c:b1:84:10:1f:66:ea:22:9a:2d:97:32:31:b8:f2:f3:f4: 77:d2:6d:51:19:41:90:17:3b:43:2e:c5:e5:e3:bd:ab:1d:8b: 43:37:7b:bd:ef:41:49:4c:53:0d:18:c7:fb:9f:08:d8:f5:47: f0:02:af:32:56:20:73:0e:29:c8:99:bf:2a:de:96:3e:e7:05: ad:53:f0:9c:10:4c:0d:0b:2d:1c:cb:76:67:38:71:03:d4:7d: 25:8c:be:e3:58:cd:e4:13:1e:99:12:ec:98:20:b1:5e:73:2c: 1d:e3:58:f7:0f:ef:b8:cd:61:48:52:7f:72:1a:0e:2c:be:a8: c9:bf:70:85:c4:4c:a7:5d:c2:f9:4e:27:b7:e1:1a:5b:76:e4: 55:dd:ed:76:58:16:3c:15:94:7c:44:88:f1:57:cd:85:31:47: be:e9:40:92:20:73:f3:ca:e2:ee:30:8b:f9:f4:9c:4d:17:bb: 03:eb:b8:dd:61:7d:85:d0:9d:68:88:cd:d6:57:4b:46:bb:eb: bd:53:a6:c7:c3:eb:c8:54:80:7d:b9:b9:5e:3e:04:1c:8a:e0: f3:41:45:3e:e7:64:80:a7:25:12:4a:3f:e7:95:f7:12:1c:e9: aa:0a:7f:0e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTE1NDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEEzQjUzRTAwQUZGODMy QzgyMERDNEE2MTI1NkYzQTMxOUI3RkU1QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrt+9fYV1VwXzJ/+DEtn6F56keNmkMPGel6DHTCM6njgKGljiF IVMNbLHLCPMNp51sKJKkXTiH8ZQh27tsUJbq/37VbEdKwHNVFol954qAoKIaOPtX yM26bejOIHEtWw23LWAoRD/kmI8UMXnBinIJZ49W+YK3RCZUgbvayiMMS2nsTHfw Z2kdWEHhSfgvlzeQdLI6mXG0lDd12Eq8QCityuPbyOUEvVODZDv9Lj7fQx/eEdV6 jNJMs14CL6Hvmyjwzfh9rxqDrhGHJiMP3lWtQkh47iSbYDh1YvtAjhTLzNHFG4HJ Mp4mXALefLR4VVrXqW7n8UXDhkeXL0Wg7WfrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUo7U+AK/4Msgg3EphJW86MZt/5bYwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL283VS1BS180TXNnZzNF cGhKVzg2TVp0XzViWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn6+gwDQYJKoZIhvcNAQELBQADggEBAEQy2uaSxaZ1UoxkStj34TtETWxssYQQ H2bqIpotlzIxuPLz9HfSbVEZQZAXO0MuxeXjvasdi0M3e73vQUlMUw0Yx/ufCNj1 R/ACrzJWIHMOKciZvyrelj7nBa1T8JwQTA0LLRzLdmc4cQPUfSWMvuNYzeQTHpkS 7JggsV5zLB3jWPcP77jNYUhSf3IaDiy+qMm/cIXETKddwvlOJ7fhGlt25FXd7XZY FjwVlHxEiPFXzYUxR77pQJIgc/PK4u4wi/n0nE0XuwPruN1hfYXQnWiIzdZXS0a7 671TpsfD68hUgH25uV4+BByK4PNBRT7nZICnJRJKP+eV9xIc6aoKfw4= -----END CERTIFICATE-----Generated at Mon Sep 8 02:33:43 2025 by rpki-client