$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/vOmQtPay6dBklMPkqxh6Ysu9Z7I.roa File: vOmQtPay6dBklMPkqxh6Ysu9Z7I.roa (raw, json) Hash identifier: jlmI6gD75+a21oKVyFVwlCyeXwy6mx5e3SpO0arn4ys= Subject key identifier: BC:E9:90:B4:F6:B2:E9:D0:64:94:C3:E4:AB:18:7A:62:CB:BD:67:B2 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2036 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/vOmQtPay6dBklMPkqxh6Ysu9Z7I.roa Signing time: Tue 26 Aug 2025 05:15:37 +0000 ROA not before: Tue 26 Aug 2025 05:15:37 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 56282 IP address blocks: 103.235.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8246 (0x2036) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 05:15:37 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BCE990B4F6B2E9D06494C3E4AB187A62CBBD67B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:42:b7:7f:18:d6:f3:2f:5a:1a:ba:79:52:2d: eb:ca:c8:41:d2:d1:81:f1:b9:61:88:66:fb:aa:0e: e2:03:42:35:ca:88:bb:75:70:d6:99:7d:32:33:84: 3f:a9:f4:43:f7:b8:2d:75:f7:6a:66:47:c1:d6:29: 62:04:97:e3:27:c7:94:c7:85:95:59:9a:05:19:2f: d6:e1:f4:ef:54:6d:b8:c3:d7:0f:4f:3f:a5:57:05: 11:f5:3a:14:4a:b9:38:df:33:5a:fa:bf:3d:63:53: 48:b7:b8:4b:e5:9a:88:ee:8d:d1:1b:69:79:8f:f9: b4:ee:44:dd:74:9e:8f:fd:b6:36:65:94:0b:a9:17: b3:53:17:6b:38:0f:58:73:84:99:b7:84:7d:4e:08: 9e:a3:08:f7:66:18:ae:2b:2e:dd:3f:98:42:8e:60: af:6e:5a:f3:cf:ae:27:8b:e2:10:2d:46:5c:ce:38: 26:c7:95:67:ec:4d:2b:5e:0d:aa:b6:ac:e4:93:e2: af:17:96:31:6d:18:0e:27:0f:c4:7e:2b:0b:56:9f: 4c:36:22:7f:2f:19:f2:d4:0c:4c:de:2c:66:22:a0: de:58:e5:04:68:2a:ab:0b:b7:ab:41:23:24:e8:dd: 85:be:47:0e:f6:85:20:a1:32:65:31:f8:d0:3b:59: e4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E9:90:B4:F6:B2:E9:D0:64:94:C3:E4:AB:18:7A:62:CB:BD:67:B2 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/vOmQtPay6dBklMPkqxh6Ysu9Z7I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.236.0/22 Signature Algorithm: sha256WithRSAEncryption 28:a8:ea:6c:41:74:12:05:bd:e5:45:e1:c9:86:a0:d9:fa:cf: 96:c2:55:50:37:5d:a1:38:ee:0e:33:b5:d8:76:f0:e5:94:55: 73:cb:82:c3:66:cc:5b:54:52:92:6e:e7:1a:85:5c:54:a3:66: 0a:de:42:e7:3c:14:f9:a1:b5:30:c0:a1:15:a9:78:ab:e9:ee: b7:14:f7:07:75:f1:5e:b5:cf:5c:32:0a:46:1d:51:ad:39:f6: 50:1a:ee:48:24:63:48:04:dc:1f:26:60:18:29:46:4d:c6:8c: d0:ae:67:78:eb:74:09:c8:b2:55:09:27:cf:57:7a:02:7b:41: 5e:5f:c0:1a:d3:5f:dc:08:24:f3:5e:c2:a1:91:ce:ca:97:3f: f5:23:a4:f9:c7:dd:00:ec:70:34:e6:59:85:aa:4d:17:2a:36: 36:ff:0c:e2:31:88:d8:fe:29:9b:3b:69:6f:80:4b:fe:b1:0a: 9e:d4:23:ee:ae:eb:c7:18:ac:bf:21:b8:90:d2:49:48:f6:77: cc:60:15:7e:76:36:59:8e:74:65:6f:52:fd:24:fa:e1:25:98: 92:90:0c:18:ba:02:76:82:54:26:07:db:a6:f9:38:57:1e:de: 52:69:0e:fb:f2:85:e0:b3:d7:c1:53:4b:48:0b:5e:af:5d:2a: ef:54:f8:6a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NTE1MzdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJDRTk5MEI0RjZCMkU5 RDA2NDk0QzNFNEFCMTg3QTYyQ0JCRDY3QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQQrd/GNbzL1oaunlSLevKyEHS0YHxuWGIZvuqDuIDQjXKiLt1 cNaZfTIzhD+p9EP3uC1192pmR8HWKWIEl+Mnx5THhZVZmgUZL9bh9O9UbbjD1w9P P6VXBRH1OhRKuTjfM1r6vz1jU0i3uEvlmojujdEbaXmP+bTuRN10no/9tjZllAup F7NTF2s4D1hzhJm3hH1OCJ6jCPdmGK4rLt0/mEKOYK9uWvPPrieL4hAtRlzOOCbH lWfsTSteDaq2rOST4q8XljFtGA4nD8R+KwtWn0w2In8vGfLUDEzeLGYioN5Y5QRo KqsLt6tBIyTo3YW+Rw72hSChMmUx+NA7WeRRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUvOmQtPay6dBklMPkqxh6Ysu9Z7IwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL3ZPbVF0UGF5NmRCa2xN UGtxeGg2WXN1OVo3SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn6+wwDQYJKoZIhvcNAQELBQADggEBACio6mxBdBIFveVF4cmGoNn6z5bCVVA3 XaE47g4ztdh28OWUVXPLgsNmzFtUUpJu5xqFXFSjZgreQuc8FPmhtTDAoRWpeKvp 7rcU9wd18V61z1wyCkYdUa059lAa7kgkY0gE3B8mYBgpRk3GjNCuZ3jrdAnIslUJ J89XegJ7QV5fwBrTX9wIJPNewqGRzsqXP/UjpPnH3QDscDTmWYWqTRcqNjb/DOIx iNj+KZs7aW+AS/6xCp7UI+6u68cYrL8huJDSSUj2d8xgFX52NlmOdGVvUv0k+uEl mJKQDBi6AnaCVCYH26b5OFce3lJpDvvyheCz18FTS0gLXq9dKu9U+Go= -----END CERTIFICATE-----Generated at Mon Sep 8 02:35:27 2025 by rpki-client