$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/wh1Ime-dKNWTkhoB_RxVOH28xns.roa File: wh1Ime-dKNWTkhoB_RxVOH28xns.roa (raw, json) Hash identifier: 40BSOwtPfH0gfpq8suErfVVkflYSnwgLq80yF8POszU= Subject key identifier: C2:1D:48:99:EF:9D:28:D5:93:92:1A:01:FD:1C:55:38:7D:BC:C6:7B Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 2014 Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/wh1Ime-dKNWTkhoB_RxVOH28xns.roa Signing time: Tue 26 Aug 2025 04:55:23 +0000 ROA not before: Tue 26 Aug 2025 04:55:23 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23724 IP address blocks: 103.227.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 05:06:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8212 (0x2014) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Aug 26 04:55:23 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C21D4899EF9D28D593921A01FD1C55387DBCC67B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0d:5b:ce:d5:e7:43:95:a2:2e:cd:aa:51:b4: a4:46:83:7d:f9:c1:87:0e:4f:07:b1:83:ac:27:da: f2:22:16:ba:23:41:08:44:24:a3:97:e2:93:a1:11: fa:4f:be:d3:10:d0:30:d8:fd:12:21:5d:5e:29:5b: f1:4b:d2:5a:05:22:88:32:10:b7:8f:2c:4a:d8:13: d7:36:52:10:88:ef:ca:4e:07:45:86:f7:32:8d:ae: f7:f8:f4:9e:3d:ff:14:17:5f:b1:75:bf:35:0a:00: 47:e7:98:07:e4:60:1f:73:53:ac:79:f1:0e:66:1d: 5f:60:aa:79:0a:33:41:1c:db:ad:99:b7:5f:a2:76: 90:f4:0f:c7:07:a1:eb:c5:e7:e6:84:91:d7:cb:95: f8:1a:5c:36:b6:33:11:29:da:84:13:59:c1:fd:2c: bd:19:2b:06:6d:71:93:f7:b2:d0:d8:71:43:e1:f5: 04:59:3c:c8:52:55:fa:c2:1e:b7:e3:49:44:54:9e: 0a:5b:a5:b7:dc:23:57:85:85:ea:0d:56:4e:8f:23: fb:2a:9c:3c:df:7f:e0:4a:58:5a:94:a4:e2:a7:6d: 5d:8a:fc:92:1a:1d:1e:ea:23:05:8a:31:4c:29:eb: 9b:f8:7b:10:bc:5c:29:00:00:bc:91:93:bb:d8:bc: 2a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:1D:48:99:EF:9D:28:D5:93:92:1A:01:FD:1C:55:38:7D:BC:C6:7B X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/wh1Ime-dKNWTkhoB_RxVOH28xns.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.80.0/22 Signature Algorithm: sha256WithRSAEncryption 95:81:e9:6e:16:74:d6:f9:07:51:ec:df:ef:9a:4e:6b:fb:a2: 3d:b4:44:ff:22:7f:b2:96:48:30:df:5c:7d:f8:b0:6a:54:fc: ba:47:3f:e5:a5:b8:5a:ce:f5:18:23:11:ed:c7:f2:44:df:ec: 0d:73:63:bd:3f:2a:14:4e:86:09:ff:35:8a:d2:95:d4:09:6b: c1:cd:47:ad:83:0a:89:28:92:1b:3d:29:1d:94:73:36:7c:94: a0:82:69:f6:e0:cc:a3:9f:c0:4f:83:9d:53:4a:3e:a6:94:e7: 58:02:c1:17:37:3a:7b:af:cc:35:65:3c:46:9e:4b:8a:3c:08: 9d:8c:5f:27:90:4c:5f:e5:c8:23:2f:12:8f:39:70:0c:b7:26: dd:2b:ab:9a:d7:0a:a5:53:75:da:3f:4d:04:01:ea:12:3e:d9: 35:b8:e4:bf:ed:21:4e:e0:85:59:77:f8:25:9c:22:79:cb:92: 08:ee:fb:03:4e:cd:a5:f5:46:88:37:09:bf:b4:92:c2:36:ff: 1d:6b:4d:53:c0:3d:41:29:b6:ba:be:fd:a3:59:95:f4:30:7c: 29:5a:98:a9:9f:b6:d3:88:fc:70:f9:fc:40:43:78:cd:f7:d3: 57:12:87:59:bf:87:29:21:66:9a:7a:4f:06:8d:ba:f4:f4:8d: 1a:e8:d9:80 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA4MjYw NDU1MjNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEMyMUQ0ODk5RUY5RDI4 RDU5MzkyMUEwMUZEMUM1NTM4N0RCQ0M2N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4DVvO1edDlaIuzapRtKRGg335wYcOTwexg6wn2vIiFrojQQhE JKOX4pOhEfpPvtMQ0DDY/RIhXV4pW/FL0loFIogyELePLErYE9c2UhCI78pOB0WG 9zKNrvf49J49/xQXX7F1vzUKAEfnmAfkYB9zU6x58Q5mHV9gqnkKM0Ec262Zt1+i dpD0D8cHoevF5+aEkdfLlfgaXDa2MxEp2oQTWcH9LL0ZKwZtcZP3stDYcUPh9QRZ PMhSVfrCHrfjSURUngpbpbfcI1eFheoNVk6PI/sqnDzff+BKWFqUpOKnbV2K/JIa HR7qIwWKMUwp65v4exC8XCkAALyRk7vYvCpZAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUwh1Ime+dKNWTkhoB/RxVOH28xnswHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL3doMUltZS1kS05XVGto b0JfUnhWT0gyOHhucy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn41AwDQYJKoZIhvcNAQELBQADggEBAJWB6W4WdNb5B1Hs3++aTmv7oj20RP8i f7KWSDDfXH34sGpU/LpHP+WluFrO9RgjEe3H8kTf7A1zY70/KhROhgn/NYrSldQJ a8HNR62DCokokhs9KR2UczZ8lKCCafbgzKOfwE+DnVNKPqaU51gCwRc3OnuvzDVl PEaeS4o8CJ2MXyeQTF/lyCMvEo85cAy3Jt0rq5rXCqVTddo/TQQB6hI+2TW45L/t IU7ghVl3+CWcInnLkgju+wNOzaX1Rog3Cb+0ksI2/x1rTVPAPUEptrq+/aNZlfQw fClamKmfttOI/HD5/EBDeM3301cSh1m/hykhZpp6TwaNuvT0jRro2YA= -----END CERTIFICATE-----Generated at Mon Sep 8 02:42:53 2025 by rpki-client