$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/FvSZ6qT2LrYmXZVbZWwl79g5eZ0.roa File: FvSZ6qT2LrYmXZVbZWwl79g5eZ0.roa (raw, json) Hash identifier: s57QjJoc5hgTk0jVse6PtfYO/ylZrZw6WfU6AYJVHDg= Subject key identifier: 16:F4:99:EA:A4:F6:2E:B6:26:5D:95:5B:65:6C:25:EF:D8:39:79:9D Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 1C Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/FvSZ6qT2LrYmXZVbZWwl79g5eZ0.roa Signing time: Fri 22 Aug 2025 06:24:01 +0000 ROA not before: Fri 22 Aug 2025 06:24:01 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 139137 IP address blocks: 103.61.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:24:01 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=16F499EAA4F62EB6265D955B656C25EFD839799D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:17:8c:03:cd:60:80:20:52:1a:e5:8d:69:19: 49:71:e8:ad:1a:11:b5:a3:d9:39:c8:36:74:6c:a4: a9:01:33:0d:f8:4d:4d:aa:6e:be:0c:c4:b7:4e:31: 73:77:2b:0f:32:3a:b3:7a:a9:77:73:f3:08:76:00: cf:2d:93:7a:a0:84:92:a2:8c:15:2f:69:9f:93:7f: aa:86:45:ba:32:b4:df:59:12:68:fb:6e:24:82:28: d0:7d:f5:9b:04:b3:64:4d:e6:73:7f:38:4a:ec:b3: 70:b5:0f:f2:06:67:2f:e4:7a:e4:1b:fc:a1:03:c1: 07:21:64:ed:d3:39:e2:05:dc:40:3b:a9:2a:f9:9e: 81:40:0e:e2:71:12:30:8f:c4:78:ba:ce:37:df:e6: cd:58:4c:9c:30:88:30:7b:78:c7:34:aa:da:a2:8a: 4a:6b:3b:59:6f:22:35:50:8b:ea:d8:e9:44:c8:68: 7d:c9:e6:aa:28:72:42:50:b2:96:9e:35:01:ec:7c: 15:3e:f8:31:26:3d:f5:d3:ed:ca:f5:1f:8b:c4:15: ac:7d:ef:0a:16:c0:08:1d:6a:ec:95:1f:ef:9b:b2: 8f:8f:ca:10:5c:32:55:38:c2:a3:e2:75:48:a6:22: 93:a3:b4:23:cd:97:02:57:0a:34:01:76:08:5a:54: a4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F4:99:EA:A4:F6:2E:B6:26:5D:95:5B:65:6C:25:EF:D8:39:79:9D X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/FvSZ6qT2LrYmXZVbZWwl79g5eZ0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.61.61.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:fc:0c:7e:13:cc:b6:a1:a4:39:f6:f1:68:85:60:68:6b:0e: fc:56:af:b0:b3:7a:dc:d5:d0:06:e6:4a:11:f3:54:5c:6f:8e: 1e:55:31:4c:5a:c7:82:40:7e:c0:39:6d:a1:97:6f:39:35:79: 3c:53:7a:ce:6a:13:c6:9e:a2:17:ee:8b:00:97:b1:8a:29:86: 42:a4:0b:e6:36:40:59:ad:2d:9d:f1:31:0e:71:f6:86:84:1e: 93:66:f9:d6:a2:8e:3e:c4:e4:5e:08:d5:a7:b4:b3:86:21:df: 61:9a:26:60:b4:b6:ed:e7:a3:0f:bb:7c:4d:bd:b6:5a:e1:d0: d4:9d:2a:b6:56:1d:42:9e:cd:6d:aa:67:9e:bf:40:5e:c2:85: d8:53:2c:ad:d4:59:97:8c:c6:04:0f:80:39:b5:bd:70:1f:59: e7:13:06:7f:b4:e4:c4:d9:57:e7:73:ec:c3:cf:38:ef:10:e5: 5d:86:37:08:8a:48:6f:d4:8f:63:45:52:0b:9c:72:76:18:f9: 1b:7b:8b:0d:56:a3:ec:e8:3c:e5:92:df:c2:97:5a:cf:04:6d: a8:8b:f8:43:7f:e6:31:18:35:10:f0:97:e6:2f:b2:51:f5:6b: 7f:1f:94:05:46:06:88:1d:73:2f:53:74:fd:ea:f3:c2:a6:b6: 12:b7:b7:0e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MjQwMVoXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoMTZGNDk5RUFBNEY2MkVC NjI2NUQ5NTVCNjU2QzI1RUZEODM5Nzk5RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANkXjAPNYIAgUhrljWkZSXHorRoRtaPZOcg2dGykqQEzDfhNTapu vgzEt04xc3crDzI6s3qpd3PzCHYAzy2TeqCEkqKMFS9pn5N/qoZFujK031kSaPtu JIIo0H31mwSzZE3mc384SuyzcLUP8gZnL+R65Bv8oQPBByFk7dM54gXcQDupKvme gUAO4nESMI/EeLrON9/mzVhMnDCIMHt4xzSq2qKKSms7WW8iNVCL6tjpRMhofcnm qihyQlCylp41Aex8FT74MSY99dPtyvUfi8QVrH3vChbACB1q7JUf75uyj4/KEFwy VTjCo+J1SKYik6O0I82XAlcKNAF2CFpUpI0CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQW9JnqpPYutiZdlVtlbCXv2Dl5nTAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi9GdlNaNnFUMkxyWW1Y WlZiWld3bDc5ZzVlWjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZz09MA0GCSqGSIb3DQEBCwUAA4IBAQBL/Ax+E8y2oaQ59vFohWBoaw78Vq+w s3rc1dAG5koR81Rcb44eVTFMWseCQH7AOW2hl285NXk8U3rOahPGnqIX7osAl7GK KYZCpAvmNkBZrS2d8TEOcfaGhB6TZvnWoo4+xOReCNWntLOGId9hmiZgtLbt56MP u3xNvbZa4dDUnSq2Vh1Cns1tqmeev0BewoXYUyyt1FmXjMYED4A5tb1wH1nnEwZ/ tOTE2Vfnc+zDzzjvEOVdhjcIikhv1I9jRVILnHJ2GPkbe4sNVqPs6Dzlkt/Cl1rP BG2oi/hDf+YxGDUQ8JfmL7JR9Wt/H5QFRgaIHXMvU3T96vPCprYSt7cO -----END CERTIFICATE-----Generated at Sun Aug 24 02:40:20 2025 by rpki-client