$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1082/7TNp04BVwJQHv1dTpUlNr2M_EVY.roa File: 7TNp04BVwJQHv1dTpUlNr2M_EVY.roa (raw, json) Hash identifier: yU8KZh3ejWSVkJaNoqfDcd1ZHbJOOM2Z2NpvcoGuRRE= Subject key identifier: ED:33:69:D3:80:55:C0:94:07:BF:57:53:A5:49:4D:AF:63:3F:11:56 Certificate issuer: /CN=03C2468111EA1C54EF8B3CCDEFAE516C309A6EC8 Certificate serial: 17CE Authority key identifier: 03:C2:46:81:11:EA:1C:54:EF:8B:3C:CD:EF:AE:51:6C:30:9A:6E:C8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A8JGgRHqHFTvizzN765RbDCabsg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/7TNp04BVwJQHv1dTpUlNr2M_EVY.roa Signing time: Tue 14 Oct 2025 03:16:48 +0000 ROA not before: Tue 14 Oct 2025 03:16:48 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 134765 IP address blocks: 103.203.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/A8JGgRHqHFTvizzN765RbDCabsg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/A8JGgRHqHFTvizzN765RbDCabsg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A8JGgRHqHFTvizzN765RbDCabsg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 15:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6094 (0x17ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03C2468111EA1C54EF8B3CCDEFAE516C309A6EC8 Validity Not Before: Oct 14 03:16:48 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=ED3369D38055C09407BF5753A5494DAF633F1156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b0:a7:4f:e9:c8:05:2e:0c:e9:ab:93:16:ff: 80:77:71:64:ca:71:32:d0:f1:c2:0e:50:a6:64:c3: 4c:19:ca:fc:fa:d3:8e:bd:b7:39:bc:c6:25:3e:cf: 41:68:8e:51:78:41:42:c9:1f:75:77:e3:b5:b2:a9: 53:36:ae:f7:a6:17:1e:4b:b8:4e:9e:45:bc:16:5a: 3b:cd:3c:82:17:da:6c:5e:51:9b:67:2e:66:3a:ae: cc:ed:ea:6e:f3:1f:6b:cc:d8:a3:ca:b8:f9:4c:13: d9:aa:60:76:db:ab:82:75:7e:e4:84:0e:fa:fd:14: 25:e6:2c:12:8e:14:dc:35:11:d3:9f:84:42:35:20: 23:d9:23:51:f5:a8:58:50:ef:fe:cd:2f:76:12:82: 0c:ad:f9:39:04:27:60:bf:4a:88:28:11:84:55:16: 35:20:06:c7:dd:3f:09:d9:6f:0c:f5:fd:cc:91:80: 56:a9:84:3c:2e:ef:22:b2:ee:85:2c:a9:eb:cf:53: 3f:8f:83:e2:7d:8d:74:05:7e:d3:f7:4a:40:d9:c0: 80:9e:8d:f5:47:a0:1e:88:cc:6d:b4:61:94:0d:7f: 0e:75:10:04:95:2a:6e:f5:60:8e:b5:25:5b:d9:ec: 42:bd:ed:c1:89:e8:66:14:30:6a:bf:9a:f5:12:28: 2d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:33:69:D3:80:55:C0:94:07:BF:57:53:A5:49:4D:AF:63:3F:11:56 X509v3 Authority Key Identifier: keyid:03:C2:46:81:11:EA:1C:54:EF:8B:3C:CD:EF:AE:51:6C:30:9A:6E:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/A8JGgRHqHFTvizzN765RbDCabsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A8JGgRHqHFTvizzN765RbDCabsg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/7TNp04BVwJQHv1dTpUlNr2M_EVY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.203.140.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:54:b5:f9:36:18:58:aa:74:6e:27:12:c3:90:dd:52:de:55: f9:84:fe:36:c3:62:9e:f3:6a:08:27:55:37:bf:57:36:06:ca: 7a:58:ff:64:95:17:07:47:88:53:73:cf:ff:23:c4:f4:6e:9c: 11:da:42:a3:d9:13:e5:5f:70:49:7a:87:28:f6:3c:97:a4:d9: 7d:af:28:4d:89:84:ee:4c:c9:f2:29:c2:4b:00:98:fd:f2:46: 6c:82:ba:66:8d:83:47:7e:91:c0:1c:e1:b2:58:93:85:18:71: 2e:55:52:e9:79:8f:d9:93:d4:1f:13:73:3e:c8:07:31:12:1b: 21:82:24:03:e2:3f:47:2c:e6:78:75:d3:93:48:af:04:6f:ab: fb:13:0f:bf:af:a3:36:2d:8c:9e:75:12:14:14:6d:97:ce:77: fe:a3:48:0d:b8:ef:02:e6:3c:25:95:78:2e:bd:3d:ea:d3:a8: 91:7b:1d:1b:89:18:54:cf:9c:0a:c9:17:52:bc:77:8e:02:5b: 1d:74:d2:9a:2a:33:ae:c9:c7:bf:63:4b:84:98:92:60:26:03: b9:82:e1:97:c1:20:d3:18:9c:c6:34:1d:1b:e8:97:9c:18:74: c6:81:dc:2a:3b:3d:61:7c:82:b5:25:32:35:bf:4b:ba:a7:92: d1:b7:1d:de -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICF84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDND MjQ2ODExMUVBMUM1NEVGOEIzQ0NERUZBRTUxNkMzMDlBNkVDODAeFw0yNTEwMTQw MzE2NDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVEMzM2OUQzODA1NUMw OTQwN0JGNTc1M0E1NDk0REFGNjMzRjExNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfsKdP6cgFLgzpq5MW/4B3cWTKcTLQ8cIOUKZkw0wZyvz60469 tzm8xiU+z0FojlF4QULJH3V347WyqVM2rvemFx5LuE6eRbwWWjvNPIIX2mxeUZtn LmY6rszt6m7zH2vM2KPKuPlME9mqYHbbq4J1fuSEDvr9FCXmLBKOFNw1EdOfhEI1 ICPZI1H1qFhQ7/7NL3YSggyt+TkEJ2C/SogoEYRVFjUgBsfdPwnZbwz1/cyRgFap hDwu7yKy7oUsqevPUz+Pg+J9jXQFftP3SkDZwICejfVHoB6IzG20YZQNfw51EASV Km71YI61JVvZ7EK97cGJ6GYUMGq/mvUSKC0DAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU7TNp04BVwJQHv1dTpUlNr2M/EVYwHwYDVR0jBBgwFoAUA8JGgRHqHFTvizzN 765RbDCabsgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA4 Mi9BOEpHZ1JIcUhGVHZpenpONzY1UmJEQ2Fic2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0E4SkdnUkhxSEZUdml6ek43NjVSYkRDYWJzZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwODIvN1ROcDA0QlZ3SlFI djFkVHBVbE5yMk1fRVZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfLjDANBgkqhkiG9w0BAQsFAAOCAQEALFS1+TYYWKp0bicSw5DdUt5V+YT+ NsNinvNqCCdVN79XNgbKelj/ZJUXB0eIU3PP/yPE9G6cEdpCo9kT5V9wSXqHKPY8 l6TZfa8oTYmE7kzJ8inCSwCY/fJGbIK6Zo2DR36RwBzhsliThRhxLlVS6XmP2ZPU HxNzPsgHMRIbIYIkA+I/RyzmeHXTk0ivBG+r+xMPv6+jNi2MnnUSFBRtl853/qNI DbjvAuY8JZV4Lr096tOokXsdG4kYVM+cCskXUrx3jgJbHXTSmiozrsnHv2NLhJiS YCYDuYLhl8Eg0xicxjQdG+iXnBh0xoHcKjs9YXyCtSUyNb9LuqeS0bcd3g== -----END CERTIFICATE-----Generated at Mon Oct 20 14:42:45 2025 by rpki-client