$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/wG3GF-RbkWB6GmD1MArcTJRDmqg.roa File: wG3GF-RbkWB6GmD1MArcTJRDmqg.roa (raw, json) Hash identifier: xAx8S1MBNaqKGCu9ToG0KIhJ9W3o+uLSW08+q2umOHg= Subject key identifier: C0:6D:C6:17:E4:5B:91:60:7A:1A:60:F5:30:0A:DC:4C:94:43:9A:A8 Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 201B Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/wG3GF-RbkWB6GmD1MArcTJRDmqg.roa Signing time: Tue 26 Aug 2025 04:55:24 +0000 ROA not before: Tue 26 Aug 2025 04:55:24 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4808 IP address blocks: 103.227.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Sep 2025 09:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8219 (0x201b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 04:55:24 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C06DC617E45B91607A1A60F5300ADC4C94439AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0a:0c:b2:79:8d:bb:54:14:08:5d:be:02:a3: 91:1d:ba:9f:06:ed:24:80:b2:84:08:99:48:d6:c9: 7d:f5:75:67:be:2a:6d:dc:11:b7:1f:d3:15:8e:8c: e4:80:be:fb:60:0d:32:e2:dd:33:ff:2e:a1:25:f3: c6:95:29:51:79:0a:8a:f7:4b:b4:df:82:51:6f:75: bc:2c:76:16:1a:31:03:04:f1:e5:1f:59:28:b9:8f: d7:b5:71:09:65:6a:b7:50:23:85:2e:ae:67:8d:4e: be:b3:c8:e1:36:24:9b:be:b4:89:9c:2b:b3:5c:5b: 6e:e8:47:54:c9:1a:b8:ed:62:81:80:b6:c9:5c:63: b0:bb:21:06:23:4b:47:52:ba:ea:a8:80:dd:90:a6: 96:49:33:9a:d4:2e:45:62:c5:88:a7:c4:28:57:14: c4:06:68:a4:fd:22:cf:32:4e:59:8e:4d:d0:3d:52: 21:45:db:2e:0d:84:8b:e7:72:7f:db:a6:c3:95:76: d5:91:1e:dd:77:d3:0d:e2:77:14:7e:55:eb:de:b4: 5c:98:94:41:b5:a4:bc:a7:82:c1:92:42:a4:4e:8d: 69:b1:80:bb:9d:e7:9a:3c:d8:43:75:12:14:96:ed: 31:6d:f6:ce:bb:2f:a4:63:84:a8:db:a6:0e:c4:14: 02:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6D:C6:17:E4:5B:91:60:7A:1A:60:F5:30:0A:DC:4C:94:43:9A:A8 X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/wG3GF-RbkWB6GmD1MArcTJRDmqg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.80.0/22 Signature Algorithm: sha256WithRSAEncryption b1:fa:96:d2:1f:54:8c:41:af:03:22:ac:dc:27:84:f4:87:43: a2:c8:21:0d:af:fd:32:74:3a:0d:93:91:6f:82:51:3b:79:cd: 32:ab:0b:6f:6d:ee:26:13:c9:81:46:fb:10:94:d8:bc:3a:c6: 62:28:52:ca:d1:27:58:a4:57:82:d3:1c:43:97:6c:7c:5b:21: b6:27:f8:1f:12:02:af:33:4f:29:20:c4:ee:6b:d6:c2:b4:23: a1:fa:01:2a:3c:b4:8d:cb:0d:a3:fb:e5:6c:55:aa:0b:53:70: 5d:db:a8:09:5b:5a:79:cc:9a:b1:0d:7b:fd:e8:0c:8b:aa:dd: f5:6e:91:fa:80:13:03:9f:3f:b6:3d:d4:f6:30:9c:58:76:49: d6:db:d1:47:c1:f7:85:0b:e3:63:00:79:c2:3d:94:c6:8a:04: a9:77:74:d1:4c:de:f3:44:cd:91:49:10:9e:29:ea:11:7d:78: 7a:5e:a4:f9:02:12:20:a6:a6:b0:84:2d:74:9b:e7:9b:79:97: 96:e3:f7:97:10:df:c9:ce:2c:6f:5e:b5:98:cd:2b:28:60:ff: 08:3d:6b:49:7a:f9:87:f5:e7:94:ce:b0:8a:82:2d:86:d1:6d: 10:61:d4:69:4a:72:43:53:54:95:6a:75:07:66:e8:c1:76:ec: ff:a1:24:76 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NDU1MjRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEMwNkRDNjE3RTQ1Qjkx NjA3QTFBNjBGNTMwMEFEQzRDOTQ0MzlBQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBCgyyeY27VBQIXb4Co5Edup8G7SSAsoQImUjWyX31dWe+Km3c Ebcf0xWOjOSAvvtgDTLi3TP/LqEl88aVKVF5Cor3S7TfglFvdbwsdhYaMQME8eUf WSi5j9e1cQllardQI4UurmeNTr6zyOE2JJu+tImcK7NcW27oR1TJGrjtYoGAtslc Y7C7IQYjS0dSuuqogN2QppZJM5rULkVixYinxChXFMQGaKT9Is8yTlmOTdA9UiFF 2y4NhIvncn/bpsOVdtWRHt130w3idxR+VevetFyYlEG1pLyngsGSQqROjWmxgLud 55o82EN1EhSW7TFt9s67L6RjhKjbpg7EFAInAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUwG3GF+RbkWB6GmD1MArcTJRDmqgwHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL3dHM0dGLVJia1dCNkdt RDFNQXJjVEpSRG1xZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn41AwDQYJKoZIhvcNAQELBQADggEBALH6ltIfVIxBrwMirNwnhPSHQ6LIIQ2v /TJ0Og2TkW+CUTt5zTKrC29t7iYTyYFG+xCU2Lw6xmIoUsrRJ1ikV4LTHEOXbHxb IbYn+B8SAq8zTykgxO5r1sK0I6H6ASo8tI3LDaP75WxVqgtTcF3bqAlbWnnMmrEN e/3oDIuq3fVukfqAEwOfP7Y91PYwnFh2Sdbb0UfB94UL42MAecI9lMaKBKl3dNFM 3vNEzZFJEJ4p6hF9eHpepPkCEiCmprCELXSb55t5l5bj95cQ38nOLG9etZjNKyhg /wg9a0l6+Yf155TOsIqCLYbRbRBh1GlKckNTVJVqdQdm6MF27P+hJHY= -----END CERTIFICATE-----Generated at Sun Sep 7 07:09:03 2025 by rpki-client