$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/F6W7kUN26MIhU5cYPs5-OxDmivw.roa File: F6W7kUN26MIhU5cYPs5-OxDmivw.roa (raw, json) Hash identifier: 0mE68qE+0fQk13K0MPHQ1w46wBfO8fQYFUbyMq7NpYc= Subject key identifier: 17:A5:BB:91:43:76:E8:C2:21:53:97:18:3E:CE:7E:3B:10:E6:8A:FC Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 16 Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/F6W7kUN26MIhU5cYPs5-OxDmivw.roa Signing time: Fri 22 Aug 2025 06:24:00 +0000 ROA not before: Fri 22 Aug 2025 06:24:00 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 12076 IP address blocks: 103.61.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:24:00 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=17A5BB914376E8C2215397183ECE7E3B10E68AFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d5:ab:59:d0:3e:37:20:af:db:03:df:7d:c0: 9f:3a:d7:5f:d9:10:62:a6:f1:29:20:5b:97:e5:d4: db:57:27:39:6f:aa:d1:89:48:f7:fa:3b:9d:50:6f: 4c:64:63:d0:be:1b:e8:69:32:8a:d7:92:6f:dd:b4: be:26:73:10:fb:8f:f1:04:9e:35:50:07:6b:74:2f: 3c:ba:3b:53:11:95:0a:dd:ee:c0:9a:91:cf:9e:53: 1e:64:06:61:45:1d:aa:35:b5:28:07:10:7b:92:7b: fd:59:e1:74:a6:ce:32:78:a9:6b:0a:e9:fc:9d:ee: 62:9f:7f:81:0e:3d:37:02:74:db:a8:c6:53:30:aa: 79:65:12:8d:5e:56:8d:95:7f:27:01:68:3e:f4:25: b2:8f:c2:e5:e4:46:07:78:50:7b:ef:68:b0:f6:58: b8:9c:3d:fa:c8:b4:fd:4f:ec:fd:35:c3:88:29:bb: ba:a0:9d:f5:74:cb:8f:09:24:92:8b:fe:6d:73:6f: 08:cc:02:67:a7:e1:e3:0f:41:0a:1f:eb:36:36:08: 6f:90:54:cf:1b:11:3c:42:36:c7:84:7a:62:d9:6d: 38:5a:02:69:22:1e:1c:cd:1b:c5:82:84:69:93:5b: 1b:bb:e5:65:2c:00:2f:80:74:01:47:1e:d4:64:27: b6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A5:BB:91:43:76:E8:C2:21:53:97:18:3E:CE:7E:3B:10:E6:8A:FC X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/F6W7kUN26MIhU5cYPs5-OxDmivw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.61.61.0/24 Signature Algorithm: sha256WithRSAEncryption 65:2e:ac:ab:05:83:88:ca:92:50:fd:dc:1b:f5:9f:19:bf:ce: 52:49:26:69:b9:14:2f:08:2c:f0:3d:7b:a0:f9:96:90:29:78: 4f:f1:3f:b4:39:a0:f4:1a:61:32:30:fe:9f:41:aa:8e:1e:85: 84:7b:b3:40:ba:47:ba:5e:08:ff:fd:e1:3b:77:48:50:eb:f9: 6e:0c:69:1e:10:51:83:63:5e:e5:f5:22:f8:5f:af:34:c7:71: ad:15:ca:a5:4c:16:1b:ca:43:f9:4a:6a:18:e7:ac:ba:21:54: 08:e5:32:c1:64:44:17:03:21:7c:4e:8f:c0:41:4c:b8:12:45: f9:2b:47:15:9f:03:cb:62:7d:3c:e2:17:22:3e:a6:7c:18:26: 22:81:76:e8:93:55:6e:fd:95:7f:a8:7a:35:ff:4c:a0:d8:72: 58:31:f8:25:20:47:f4:b4:0f:7d:62:cb:bf:81:45:a9:05:d4: 48:53:78:09:41:d6:37:10:be:7a:59:c5:c6:56:04:5d:c2:44: ec:fb:78:f3:42:a5:15:0d:b2:11:49:2a:3e:ca:04:49:2d:df: 2f:c1:51:56:16:5b:03:91:1e:0f:40:a4:72:7b:d4:b1:b3:ff: d2:d8:95:a3:dd:09:46:46:64:b0:d9:e9:d1:89:11:7f:67:1c: 85:f5:c5:70 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MjQwMFoXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoMTdBNUJCOTE0Mzc2RThD MjIxNTM5NzE4M0VDRTdFM0IxMEU2OEFGQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKrVq1nQPjcgr9sD333AnzrXX9kQYqbxKSBbl+XU21cnOW+q0YlI 9/o7nVBvTGRj0L4b6GkyiteSb920viZzEPuP8QSeNVAHa3QvPLo7UxGVCt3uwJqR z55THmQGYUUdqjW1KAcQe5J7/VnhdKbOMnipawrp/J3uYp9/gQ49NwJ026jGUzCq eWUSjV5WjZV/JwFoPvQlso/C5eRGB3hQe+9osPZYuJw9+si0/U/s/TXDiCm7uqCd 9XTLjwkkkov+bXNvCMwCZ6fh4w9BCh/rNjYIb5BUzxsRPEI2x4R6YtltOFoCaSIe HM0bxYKEaZNbG7vlZSwAL4B0AUce1GQntoECAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQXpbuRQ3bowiFTlxg+zn47EOaK/DAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi9GNlc3a1VOMjZNSWhV NWNZUHM1LU94RG1pdncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZz09MA0GCSqGSIb3DQEBCwUAA4IBAQBlLqyrBYOIypJQ/dwb9Z8Zv85SSSZp uRQvCCzwPXug+ZaQKXhP8T+0OaD0GmEyMP6fQaqOHoWEe7NAuke6Xgj//eE7d0hQ 6/luDGkeEFGDY17l9SL4X680x3GtFcqlTBYbykP5SmoY56y6IVQI5TLBZEQXAyF8 To/AQUy4EkX5K0cVnwPLYn084hciPqZ8GCYigXbok1Vu/ZV/qHo1/0yg2HJYMfgl IEf0tA99Ysu/gUWpBdRIU3gJQdY3EL56WcXGVgRdwkTs+3jzQqUVDbIRSSo+ygRJ Ld8vwVFWFlsDkR4PQKRye9Sxs//S2JWj3QlGRmSw2enRiRF/ZxyF9cVw -----END CERTIFICATE-----Generated at Sun Aug 24 02:41:46 2025 by rpki-client