$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/585/F0kSGnAIagivcV8g5cUdsyi-f3E.roa File: F0kSGnAIagivcV8g5cUdsyi-f3E.roa (raw, json) Hash identifier: UcsToYzGinH+LaJVhXhSb5v+g/uBThplPaSlnEqw7FM= Subject key identifier: 17:49:12:1A:70:08:6A:08:AF:71:5F:20:E5:C5:1D:B3:28:BE:7F:71 Certificate issuer: /CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Certificate serial: 32 Authority key identifier: A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/F0kSGnAIagivcV8g5cUdsyi-f3E.roa Signing time: Wed 03 Sep 2025 03:49:28 +0000 ROA not before: Wed 03 Sep 2025 03:49:28 +0000 ROA not after: Thu 27 Aug 2026 05:36:57 +0000 asID: 4837 IP address blocks: 103.24.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 15:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8FDF0BBAEA67953693896C763F129DA3B4183EB Validity Not Before: Sep 3 03:49:28 2025 GMT Not After : Aug 27 05:36:57 2026 GMT Subject: CN=1749121A70086A08AF715F20E5C51DB328BE7F71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7b:9b:32:88:c9:f5:dc:f5:22:4c:38:e4:a2: e8:20:81:99:07:87:0f:b2:22:b0:d1:43:8a:f4:5d: b3:03:47:a6:ad:1e:0c:4b:d7:2f:16:b8:2c:56:09: 74:7a:f4:10:91:84:c6:da:0c:37:ad:fd:00:71:52: 66:6d:d3:4a:c7:bc:c1:d7:1e:cc:c2:a3:f7:1a:79: 9b:b3:02:de:0f:2a:f5:60:a8:a9:a4:5c:f4:86:3f: 4c:57:f5:39:e6:d3:a5:9c:3a:bc:2b:b8:df:a3:52: 5a:1a:f1:1e:eb:ea:20:03:ef:bf:8a:b4:2f:25:f3: 55:0e:0d:83:46:35:71:9e:c8:ea:2e:a5:13:23:54: 27:1f:bc:b4:31:ce:e9:68:21:b2:84:a1:e8:3d:4b: 75:23:66:f2:39:03:d7:80:93:89:14:76:28:12:ca: 07:39:b1:cf:ee:2e:9c:41:cd:fd:a5:53:ed:ce:2e: 82:fb:5e:70:e3:ab:64:17:fd:0b:e1:22:8b:ac:e6: 75:a8:b0:1a:dc:1b:55:60:82:38:28:2e:20:b3:ce: e8:a6:0b:31:83:33:17:93:82:d1:f8:75:f8:f3:82: da:84:38:f8:77:96:09:13:0a:ed:79:28:f8:3e:87: 21:ad:47:b5:5d:1c:60:a8:4c:3d:1c:15:36:f8:f0: db:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:49:12:1A:70:08:6A:08:AF:71:5F:20:E5:C5:1D:B3:28:BE:7F:71 X509v3 Authority Key Identifier: keyid:A8:FD:F0:BB:AE:A6:79:53:69:38:96:C7:63:F1:29:DA:3B:41:83:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/qP3wu66meVNpOJbHY_Ep2jtBg-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qP3wu66meVNpOJbHY_Ep2jtBg-s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/585/F0kSGnAIagivcV8g5cUdsyi-f3E.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.24.230.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:10:3d:12:4e:66:26:86:6a:92:07:81:a9:58:55:68:59:ac: 80:02:1f:2d:5e:08:da:e5:a1:01:23:4e:4a:9d:8f:cf:e4:f3: 1e:2a:cf:89:3f:0b:fe:b1:e4:81:fc:b5:8a:b0:81:1c:38:1f: 7d:84:8f:e0:c8:b8:f9:e3:aa:5d:43:20:a5:5c:70:ff:88:69: d0:a2:9d:d8:a7:a5:9a:e3:fa:2b:61:07:1f:48:0a:84:7d:ac: 7e:c0:d5:a6:5d:07:b2:83:c1:ce:ec:cd:0b:41:bc:7d:1b:3f: 64:48:12:0b:dc:a1:1b:a0:c6:bf:38:ec:96:c7:f0:9f:83:8c: 89:e8:d5:12:79:98:04:47:8b:fe:ba:9f:82:05:43:3b:18:a7: e3:40:f3:36:d1:55:c9:ce:4b:08:af:13:ae:14:0f:79:5b:60: d8:5c:a1:bd:91:3d:48:23:37:77:19:6a:8e:56:f6:52:93:f5: 81:e0:25:2a:97:7f:f0:e2:b2:0f:0d:2b:80:b8:d5:9d:82:83: 84:3b:63:b4:b5:aa:95:2d:78:a6:bc:3b:29:82:41:30:a3:a5: b8:31:36:96:bd:82:42:ab:50:81:ee:df:7d:63:ad:ac:d8:bf: 29:d6:b0:de:5f:dd:4f:45:6b:2c:d3:30:7c:11:00:a1:bb:5b: 3e:14:2b:33 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgIBMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBOEZE RjBCQkFFQTY3OTUzNjkzODk2Qzc2M0YxMjlEQTNCNDE4M0VCMB4XDTI1MDkwMzAz NDkyOFoXDTI2MDgyNzA1MzY1N1owMzExMC8GA1UEAxMoMTc0OTEyMUE3MDA4NkEw OEFGNzE1RjIwRTVDNTFEQjMyOEJFN0Y3MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALt7mzKIyfXc9SJMOOSi6CCBmQeHD7IisNFDivRdswNHpq0eDEvX Lxa4LFYJdHr0EJGExtoMN639AHFSZm3TSse8wdcezMKj9xp5m7MC3g8q9WCoqaRc 9IY/TFf1OebTpZw6vCu436NSWhrxHuvqIAPvv4q0LyXzVQ4Ng0Y1cZ7I6i6lEyNU Jx+8tDHO6WghsoSh6D1LdSNm8jkD14CTiRR2KBLKBzmxz+4unEHN/aVT7c4ugvte cOOrZBf9C+Eii6zmdaiwGtwbVWCCOCguILPO6KYLMYMzF5OC0fh1+POC2oQ4+HeW CRMK7Xko+D6HIa1HtV0cYKhMPRwVNvjw2y8CAwEAAaOCAfEwggHtMB0GA1UdDgQW BBQXSRIacAhqCK9xXyDlxR2zKL5/cTAfBgNVHSMEGDAWgBSo/fC7rqZ5U2k4lsdj 8SnaO0GD6zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81ODUv cVAzd3U2Nm1lVk5wT0piSFlfRXAyanRCZy1zLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9xUDN3dTY2bWVWTnBPSmJIWV9FcDJqdEJnLXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC81ODUvRjBrU0duQUlhZ2l2Y1Y4 ZzVjVWRzeWktZjNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGcY5jANBgkqhkiG9w0BAQsFAAOCAQEAjRA9Ek5mJoZqkgeBqVhVaFmsgAIfLV4I 2uWhASNOSp2Pz+TzHirPiT8L/rHkgfy1irCBHDgffYSP4Mi4+eOqXUMgpVxw/4hp 0KKd2KelmuP6K2EHH0gKhH2sfsDVpl0HsoPBzuzNC0G8fRs/ZEgSC9yhG6DGvzjs lsfwn4OMiejVEnmYBEeL/rqfggVDOxin40DzNtFVyc5LCK8TrhQPeVtg2FyhvZE9 SCM3dxlqjlb2UpP1geAlKpd/8OKyDw0rgLjVnYKDhDtjtLWqlS14prw7KYJBMKOl uDE2lr2CQqtQge7ffWOtrNi/Kdaw3l/dT0VrLNMwfBEAobtbPhQrMw== -----END CERTIFICATE-----Generated at Sat Sep 6 13:19:19 2025 by rpki-client