$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/5pze6G7DIVvJeqqe7HRDTbdTbSw.roa File: 5pze6G7DIVvJeqqe7HRDTbdTbSw.roa (raw, json) Hash identifier: yTZJsLszyJk0IDjaSmPOwaf/IsYKKX0xpoOkP2W1FuI= Subject key identifier: E6:9C:DE:E8:6E:C3:21:5B:C9:7A:AA:9E:EC:74:43:4D:B7:53:6D:2C Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 30 Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/5pze6G7DIVvJeqqe7HRDTbdTbSw.roa Signing time: Fri 22 Aug 2025 06:27:18 +0000 ROA not before: Fri 22 Aug 2025 06:27:18 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 63582 IP address blocks: 45.120.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:27:18 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=E69CDEE86EC3215BC97AAA9EEC74434DB7536D2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:52:94:dc:30:90:e1:16:a6:99:b3:cd:ed: 41:98:4c:02:cf:05:7c:5b:5b:0e:d1:c1:3d:a1:52: 8f:6d:ff:30:ed:d1:d8:ab:18:0e:c1:28:99:b4:0a: 41:aa:01:f5:0c:7e:de:32:1e:98:63:27:dd:96:c3: 91:0f:e1:74:1d:61:57:b2:7b:2b:8f:2b:80:bf:71: 56:91:42:87:eb:39:ab:0a:fe:5f:6d:85:fd:23:42: 8a:03:7f:80:db:c8:71:01:f4:cc:15:de:a5:3a:77: e5:8d:fe:31:b7:74:6d:b9:10:88:24:f7:1b:c7:72: 56:0a:d1:44:1e:39:f0:b8:92:f6:c1:85:82:bf:8d: e6:97:9f:22:e2:dc:d1:56:83:06:81:31:39:a6:f9: c0:64:42:da:3a:35:7e:84:02:2d:32:af:cb:d2:56: 02:08:a3:39:d4:f7:dd:df:80:8d:a9:5c:0e:d0:4b: 39:a8:b6:2c:bc:95:00:9d:29:f4:79:b6:f9:0e:a8: 7f:62:b7:8e:c5:a4:ab:24:4c:72:6a:a1:f7:95:ee: 23:83:09:7d:d6:0b:b0:02:4d:ca:9b:1a:5a:c4:a8: 26:be:ab:e6:38:8e:6f:fb:89:26:ec:66:3f:27:bd: 55:5a:aa:88:55:42:97:2f:f9:ea:69:ca:07:65:3d: 43:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:9C:DE:E8:6E:C3:21:5B:C9:7A:AA:9E:EC:74:43:4D:B7:53:6D:2C X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/5pze6G7DIVvJeqqe7HRDTbdTbSw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.120.243.0/24 Signature Algorithm: sha256WithRSAEncryption 69:db:87:1f:4e:b2:01:a2:c6:65:52:55:02:7a:65:f8:7c:80: d3:4a:3c:5c:62:e9:ab:2b:7e:81:e5:98:02:ed:33:e4:64:48: ad:78:1f:bc:3e:16:c7:0e:20:ab:b7:fe:5f:8d:5a:2f:88:d3: 27:fd:e1:05:38:40:16:34:d8:53:a9:3d:cc:80:e0:f3:ea:df: 2c:a6:11:17:88:7d:b1:68:01:4d:64:c1:45:9c:60:11:3b:33: 98:aa:73:68:18:28:0b:9e:8a:66:67:1c:e8:bb:43:79:44:9e: 3f:b7:94:ae:ef:f4:4a:b1:b1:7d:cd:ab:10:02:13:e5:5d:d1: 56:36:ce:cb:0b:a8:fd:fb:09:f9:77:d9:3a:a6:8d:88:25:e7: 05:05:15:11:ce:f5:f6:7c:7f:25:13:cd:1e:0e:85:40:90:9f: 55:f3:02:21:2f:49:f1:96:a6:1a:89:51:61:80:8f:d2:85:2a: 34:52:ca:fb:8b:52:79:07:89:fb:06:c9:b3:5d:6d:c8:8d:69: bc:8e:0b:66:d6:f3:3c:65:f5:4f:a7:d3:67:5f:6b:c6:f5:49: f9:b0:63:5b:90:ac:53:fb:69:c4:ba:bf:5a:41:28:a1:92:c2: 1a:96:67:51:ea:09:57:af:7b:9e:c4:d8:8a:19:cc:62:e2:54: 81:a8:92:50 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MjcxOFoXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoRTY5Q0RFRTg2RUMzMjE1 QkM5N0FBQTlFRUM3NDQzNERCNzUzNkQyQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6/UpTcMJDhFqaZs83tQZhMAs8FfFtbDtHBPaFSj23/MO3R2KsY DsEombQKQaoB9Qx+3jIemGMn3ZbDkQ/hdB1hV7J7K48rgL9xVpFCh+s5qwr+X22F /SNCigN/gNvIcQH0zBXepTp35Y3+Mbd0bbkQiCT3G8dyVgrRRB458LiS9sGFgr+N 5pefIuLc0VaDBoExOab5wGRC2jo1foQCLTKvy9JWAgijOdT33d+AjalcDtBLOai2 LLyVAJ0p9Hm2+Q6of2K3jsWkqyRMcmqh95XuI4MJfdYLsAJNypsaWsSoJr6r5jiO b/uJJuxmPye9VVqqiFVCly/56mnKB2U9Q7sCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBTmnN7obsMhW8l6qp7sdENNt1NtLDAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi81cHplNkc3RElWdkpl cXFlN0hSRFRiZFRiU3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQALXjzMA0GCSqGSIb3DQEBCwUAA4IBAQBp24cfTrIBosZlUlUCemX4fIDTSjxc YumrK36B5ZgC7TPkZEiteB+8PhbHDiCrt/5fjVoviNMn/eEFOEAWNNhTqT3MgODz 6t8sphEXiH2xaAFNZMFFnGAROzOYqnNoGCgLnopmZxzou0N5RJ4/t5Su7/RKsbF9 zasQAhPlXdFWNs7LC6j9+wn5d9k6po2IJecFBRURzvX2fH8lE80eDoVAkJ9V8wIh L0nxlqYaiVFhgI/ShSo0Usr7i1J5B4n7BsmzXW3IjWm8jgtm1vM8ZfVPp9NnX2vG 9Un5sGNbkKxT+2nEur9aQSihksIalmdR6glXr3uexNiKGcxi4lSBqJJQ -----END CERTIFICATE-----Generated at Sun Aug 24 02:38:35 2025 by rpki-client