$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1082/LQsH_tF9tF9VXzV6Uq7lUCHdWS0.roa File: LQsH_tF9tF9VXzV6Uq7lUCHdWS0.roa (raw, json) Hash identifier: 2nQiV3yM4C9uHYb22n7t+ehtYvRe8MKJ9sBDK6zNMA0= Subject key identifier: 2D:0B:07:FE:D1:7D:B4:5F:55:5F:35:7A:52:AE:E5:50:21:DD:59:2D Certificate issuer: /CN=03C2468111EA1C54EF8B3CCDEFAE516C309A6EC8 Certificate serial: 17CD Authority key identifier: 03:C2:46:81:11:EA:1C:54:EF:8B:3C:CD:EF:AE:51:6C:30:9A:6E:C8 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A8JGgRHqHFTvizzN765RbDCabsg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/LQsH_tF9tF9VXzV6Uq7lUCHdWS0.roa Signing time: Tue 14 Oct 2025 03:16:48 +0000 ROA not before: Tue 14 Oct 2025 03:16:48 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 134765 IP address blocks: 103.47.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/A8JGgRHqHFTvizzN765RbDCabsg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/A8JGgRHqHFTvizzN765RbDCabsg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A8JGgRHqHFTvizzN765RbDCabsg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6093 (0x17cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03C2468111EA1C54EF8B3CCDEFAE516C309A6EC8 Validity Not Before: Oct 14 03:16:48 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2D0B07FED17DB45F555F357A52AEE55021DD592D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:b2:ad:48:e6:e5:6f:62:da:46:b5:b9:f2: d1:5e:ce:9b:5f:c3:89:31:4d:1f:38:38:4b:95:9b: a3:47:f5:18:68:be:c0:91:e2:cc:c8:49:2c:b5:94: b2:84:44:29:36:af:a2:4f:68:e0:c4:ca:26:66:4f: bd:f8:d4:0a:f4:9a:ca:8a:d2:d1:81:68:7e:d0:c4: a8:61:76:ce:76:2f:c3:9d:8f:24:99:59:3f:59:32: cf:04:87:63:d8:24:50:45:56:b0:69:3d:21:9c:86: f5:22:39:33:cf:65:49:9e:bb:0f:a7:e8:6d:69:fb: 4e:2c:88:0b:a5:ae:c2:8e:15:56:52:e7:29:04:74: f8:92:88:a8:93:95:43:e8:32:99:d1:e9:5f:15:3e: b6:74:8e:57:11:8a:90:27:23:4e:71:87:e6:6c:8b: 9f:26:13:26:6e:88:84:1a:3d:25:7b:bd:ee:90:36: 06:47:84:db:c0:81:48:3b:8b:8a:18:f3:32:10:74: 07:e9:1e:a0:41:af:c3:90:7c:dd:08:f8:ca:b0:80: 45:a2:0d:06:86:66:78:d6:5a:7f:a7:41:a9:fd:a2: 2a:a4:23:b2:c9:47:0e:0b:a7:99:31:97:80:9a:a9: ae:42:69:02:08:95:94:b0:4c:97:17:80:4f:ad:5a: f2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0B:07:FE:D1:7D:B4:5F:55:5F:35:7A:52:AE:E5:50:21:DD:59:2D X509v3 Authority Key Identifier: keyid:03:C2:46:81:11:EA:1C:54:EF:8B:3C:CD:EF:AE:51:6C:30:9A:6E:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/A8JGgRHqHFTvizzN765RbDCabsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A8JGgRHqHFTvizzN765RbDCabsg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1082/LQsH_tF9tF9VXzV6Uq7lUCHdWS0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.47.80.0/22 Signature Algorithm: sha256WithRSAEncryption 96:d4:88:d6:a7:3d:6f:c9:6b:74:5a:b5:9f:7b:64:cc:23:59: f3:b3:5c:13:e2:ac:c1:06:d4:0a:19:65:7e:4c:80:d2:f1:ca: 58:74:73:22:d3:37:5e:48:77:cc:8f:4c:0c:4a:db:8c:2d:1a: 4f:73:1e:5d:df:18:44:95:1f:d2:5b:59:59:1b:14:93:99:d7: a5:21:f6:7e:10:0d:ab:57:8e:bc:46:76:47:e6:04:57:00:b3: 57:5f:bb:99:59:d5:27:02:29:8e:16:8f:a0:98:53:7d:ca:5c: 51:a6:0f:43:0e:09:c4:6c:de:01:1e:35:0b:d5:e8:68:a2:9d: 22:d0:47:75:a2:ba:02:d5:01:d6:9d:8a:9e:49:fe:c0:34:9e: fc:f5:2f:72:a8:c4:f9:ab:c0:87:86:ba:24:cb:dd:13:16:a8: c5:a7:ca:21:ab:a4:5d:6d:23:f0:0c:35:98:63:00:6b:cc:52: 1a:42:e7:71:18:fb:40:48:c0:36:e8:b7:a9:3b:02:b5:a7:0a: 02:ed:65:03:b7:7b:e2:f5:2e:f8:7f:34:95:b4:58:1c:49:6c: e5:b1:fb:ca:e1:71:02:d6:64:6d:bf:66:da:95:cc:d2:b2:53: fd:35:23:02:26:b8:5d:7a:38:64:29:ae:de:4b:df:e7:5a:0c: db:2a:47:61 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICF80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDND MjQ2ODExMUVBMUM1NEVGOEIzQ0NERUZBRTUxNkMzMDlBNkVDODAeFw0yNTEwMTQw MzE2NDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDJEMEIwN0ZFRDE3REI0 NUY1NTVGMzU3QTUyQUVFNTUwMjFERDU5MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCz7KtSOblb2LaRrW58tFezptfw4kxTR84OEuVm6NH9RhovsCR 4szISSy1lLKERCk2r6JPaODEyiZmT7341Ar0msqK0tGBaH7QxKhhds52L8OdjySZ WT9ZMs8Eh2PYJFBFVrBpPSGchvUiOTPPZUmeuw+n6G1p+04siAulrsKOFVZS5ykE dPiSiKiTlUPoMpnR6V8VPrZ0jlcRipAnI05xh+Zsi58mEyZuiIQaPSV7ve6QNgZH hNvAgUg7i4oY8zIQdAfpHqBBr8OQfN0I+MqwgEWiDQaGZnjWWn+nQan9oiqkI7LJ Rw4Lp5kxl4Caqa5CaQIIlZSwTJcXgE+tWvLBAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQULQsH/tF9tF9VXzV6Uq7lUCHdWS0wHwYDVR0jBBgwFoAUA8JGgRHqHFTvizzN 765RbDCabsgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTA4 Mi9BOEpHZ1JIcUhGVHZpenpONzY1UmJEQ2Fic2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0E4SkdnUkhxSEZUdml6ek43NjVSYkRDYWJzZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEwODIvTFFzSF90Rjl0RjlW WHpWNlVxN2xVQ0hkV1MwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcvUDANBgkqhkiG9w0BAQsFAAOCAQEAltSI1qc9b8lrdFq1n3tkzCNZ87Nc E+KswQbUChllfkyA0vHKWHRzItM3Xkh3zI9MDErbjC0aT3MeXd8YRJUf0ltZWRsU k5nXpSH2fhANq1eOvEZ2R+YEVwCzV1+7mVnVJwIpjhaPoJhTfcpcUaYPQw4JxGze AR41C9XoaKKdItBHdaK6AtUB1p2Knkn+wDSe/PUvcqjE+avAh4a6JMvdExaoxafK IaukXW0j8Aw1mGMAa8xSGkLncRj7QEjANui3qTsCtacKAu1lA7d74vUu+H80lbRY HEls5bH7yuFxAtZkbb9m2pXM0rJT/TUjAia4XXo4ZCmu3kvf51oM2ypHYQ== -----END CERTIFICATE-----Generated at Mon Oct 20 16:08:23 2025 by rpki-client