$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/817/pKtZ63snPiRTE2XUHBooGL0FXIM.roa File: pKtZ63snPiRTE2XUHBooGL0FXIM.roa (raw, json) Hash identifier: lMU/JVALEtSiI7ula13ogASBQ9sFHSp8DDkwHgDgRrg= Subject key identifier: A4:AB:59:EB:7B:27:3E:24:53:13:65:D4:1C:1A:28:18:BD:05:5C:83 Certificate issuer: /CN=2A711AA7DC60049B0B0D884897E015B1171F37B9 Certificate serial: 218F Authority key identifier: 2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/pKtZ63snPiRTE2XUHBooGL0FXIM.roa Signing time: Fri 29 Aug 2025 09:05:28 +0000 ROA not before: Fri 29 Aug 2025 09:05:28 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 17621 IP address blocks: 113.31.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 06:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8591 (0x218f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A711AA7DC60049B0B0D884897E015B1171F37B9 Validity Not Before: Aug 29 09:05:28 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A4AB59EB7B273E24531365D41C1A2818BD055C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7e:9d:3f:65:a3:3c:10:54:b6:09:bb:0d:46: 60:69:8e:65:2b:f4:1e:f7:46:3d:cd:df:73:14:aa: d3:a2:4a:d8:a8:24:cc:61:0f:1b:0f:10:74:b5:43: 81:ef:c6:93:1b:0f:bf:5b:02:3c:cf:d5:04:c8:15: af:9d:3f:93:b3:05:20:e4:06:81:cc:91:5a:63:b2: 9c:c6:51:d3:b5:7c:6b:3c:fb:b9:61:ec:3c:f6:3c: 5b:df:83:59:d6:6e:ef:38:97:03:c3:f2:68:74:d1: ac:ed:90:a0:9f:2a:81:bb:1f:63:34:ae:d0:3b:13: 1a:bc:02:a4:ec:ce:a4:cd:a0:ec:c9:e2:72:80:12: 41:21:7c:b6:c9:4d:ad:ac:1d:54:6c:96:f4:fe:93: af:07:a6:78:73:33:5b:9f:02:63:9b:11:26:34:5e: 6b:d6:3e:71:86:2c:4f:21:64:c0:93:7c:a7:48:4b: 1f:e3:1a:ea:2f:02:da:96:af:60:bd:1c:2d:d8:b7: b9:6b:25:ec:21:75:d4:4c:7b:bc:17:40:9e:e2:ef: d1:40:e1:49:73:9f:d1:a4:6b:f0:2e:6c:6a:51:60: 96:b0:7c:2e:79:a1:ed:ab:7d:ca:59:76:22:8a:31: f2:58:05:55:75:e4:eb:b2:f1:1f:22:97:64:f6:c3: 2b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AB:59:EB:7B:27:3E:24:53:13:65:D4:1C:1A:28:18:BD:05:5C:83 X509v3 Authority Key Identifier: keyid:2A:71:1A:A7:DC:60:04:9B:0B:0D:88:48:97:E0:15:B1:17:1F:37:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/KnEap9xgBJsLDYhIl-AVsRcfN7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KnEap9xgBJsLDYhIl-AVsRcfN7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/817/pKtZ63snPiRTE2XUHBooGL0FXIM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.31.96.0/20 Signature Algorithm: sha256WithRSAEncryption 65:92:b6:b6:51:25:57:9f:35:6b:2a:9b:6a:dd:56:44:b7:61: 8d:b0:d6:7c:03:2d:2f:f6:85:0e:22:6e:bf:ba:d2:81:b6:ae: 3c:81:c7:cc:d1:8b:0b:a9:b6:cf:72:d5:e3:4c:53:9d:c0:a1: 55:3a:5e:b5:ba:c9:1a:f2:f5:2a:d9:c7:28:1b:4a:28:56:fa: ac:b2:f8:e1:7f:3b:3b:11:e5:a0:f3:0f:a2:70:ff:6b:54:b5: 49:0c:f6:67:2f:4c:09:89:d5:b3:59:ad:21:85:fc:81:ad:af: 53:55:50:87:2f:8a:f8:cd:73:19:7c:e3:7c:e2:8d:61:be:7e: c8:4f:96:32:63:04:da:b2:26:2f:60:e3:d7:17:8e:72:bb:88: 01:04:7a:d7:c1:0c:15:68:45:7b:0f:2a:20:26:ac:c1:af:43: 0d:f0:5d:ec:c8:0f:6d:e8:c7:93:40:65:67:71:86:ae:d7:99: 4b:a9:62:da:23:f9:88:64:66:cb:1c:46:60:60:3f:64:6b:35: 98:00:c4:c5:64:1b:da:e7:23:e7:4d:a3:49:5b:c8:f7:d8:96: 68:07:76:6a:49:e5:bf:9c:4e:b4:13:e8:e5:f5:d7:19:2d:dc: c3:21:c6:25:d6:d4:30:7e:88:4c:e4:25:fc:45:43:bc:4a:57: a9:9e:0d:9e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE3 MTFBQTdEQzYwMDQ5QjBCMEQ4ODQ4OTdFMDE1QjExNzFGMzdCOTAeFw0yNTA4Mjkw OTA1MjhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEE0QUI1OUVCN0IyNzNF MjQ1MzEzNjVENDFDMUEyODE4QkQwNTVDODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDufp0/ZaM8EFS2CbsNRmBpjmUr9B73Rj3N33MUqtOiStioJMxh DxsPEHS1Q4HvxpMbD79bAjzP1QTIFa+dP5OzBSDkBoHMkVpjspzGUdO1fGs8+7lh 7Dz2PFvfg1nWbu84lwPD8mh00aztkKCfKoG7H2M0rtA7Exq8AqTszqTNoOzJ4nKA EkEhfLbJTa2sHVRslvT+k68HpnhzM1ufAmObESY0XmvWPnGGLE8hZMCTfKdISx/j GuovAtqWr2C9HC3Yt7lrJewhddRMe7wXQJ7i79FA4Ulzn9Gka/AubGpRYJawfC55 oe2rfcpZdiKKMfJYBVV15Ouy8R8il2T2wyvrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUpKtZ63snPiRTE2XUHBooGL0FXIMwHwYDVR0jBBgwFoAUKnEap9xgBJsLDYhI l+AVsRcfN7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODE3 L0tuRWFwOXhnQkpzTERZaElsLUFWc1JjZk43ay5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvS25FYXA5eGdCSnNMRFloSWwtQVZzUmNmTjdrLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvODE3L3BLdFo2M3NuUGlSVEUy WFVIQm9vR0wwRlhJTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BARxH2AwDQYJKoZIhvcNAQELBQADggEBAGWStrZRJVefNWsqm2rdVkS3YY2w1nwD LS/2hQ4ibr+60oG2rjyBx8zRiwupts9y1eNMU53AoVU6XrW6yRry9SrZxygbSihW +qyy+OF/OzsR5aDzD6Jw/2tUtUkM9mcvTAmJ1bNZrSGF/IGtr1NVUIcvivjNcxl8 43zijWG+fshPljJjBNqyJi9g49cXjnK7iAEEetfBDBVoRXsPKiAmrMGvQw3wXezI D23ox5NAZWdxhq7XmUupYtoj+YhkZsscRmBgP2RrNZgAxMVkG9rnI+dNo0lbyPfY lmgHdmpJ5b+cTrQT6OX11xkt3MMhxiXW1DB+iEzkJfxFQ7xKV6meDZ4= -----END CERTIFICATE-----Generated at Tue Sep 9 04:00:53 2025 by rpki-client