$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/RRFrB6LguCMZDE-B_sXEhCtbJBM.roa File: RRFrB6LguCMZDE-B_sXEhCtbJBM.roa (raw, json) Hash identifier: Gx8o4KxG1k/D3prLzvmMTdc1T55TgrP5y/uQEw/sgXU= Subject key identifier: 45:11:6B:07:A2:E0:B8:23:19:0C:4F:81:FE:C5:C4:84:2B:5B:24:13 Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 18 Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/RRFrB6LguCMZDE-B_sXEhCtbJBM.roa Signing time: Fri 22 Aug 2025 06:24:00 +0000 ROA not before: Fri 22 Aug 2025 06:24:00 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 63583 IP address blocks: 103.61.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:24:00 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=45116B07A2E0B823190C4F81FEC5C4842B5B2413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:e3:5a:94:22:4c:57:c7:cb:ef:86:1f:c9: 3e:5a:a5:69:ff:49:ab:8d:cf:36:18:9d:a0:95:9a: 95:49:5f:fb:4d:3c:fe:07:ab:9c:81:4c:bd:5a:2d: e8:8d:7f:60:e5:bd:3c:a5:d4:7d:26:6b:90:2b:04: f9:56:7b:d3:1b:c7:1f:56:e0:49:30:09:3e:51:bb: aa:71:de:8c:12:2f:28:4e:bb:a3:88:3f:10:17:47: 28:c8:72:2b:28:08:35:d7:16:eb:d8:08:25:d9:c0: b9:1d:dc:09:30:05:d6:e8:af:6a:94:a1:60:ec:94: 09:3b:f2:1f:a7:6d:4c:d6:9b:be:ce:e1:63:58:cb: 14:c0:67:a2:de:c4:fd:03:9f:c0:5a:7f:e4:14:88: 3d:11:0c:1f:0f:2b:c6:79:44:36:13:cc:ac:a4:15: 01:1c:10:4a:bf:6b:28:7c:17:8e:8e:c7:5c:34:28: a1:99:1f:15:36:75:3a:54:0c:db:9e:75:21:30:dd: fa:f5:d1:8f:72:bf:6a:93:9a:9c:9c:1e:ec:66:a4: 38:ea:27:23:83:99:f0:00:53:8b:ab:ea:6d:44:6d: d3:33:2f:76:79:e1:73:97:b1:47:85:4f:89:7f:38: 31:c7:43:9b:c8:ff:ab:1b:60:7b:75:bb:a2:d7:20: 0f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:11:6B:07:A2:E0:B8:23:19:0C:4F:81:FE:C5:C4:84:2B:5B:24:13 X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/RRFrB6LguCMZDE-B_sXEhCtbJBM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.61.63.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:c7:02:b4:09:96:18:16:06:57:18:4b:71:47:04:12:33:dc: 8e:e4:f4:39:04:a2:c5:02:e0:87:89:f6:74:c8:b7:a9:11:55: ed:97:2c:98:1e:1e:d0:bd:85:2f:77:c1:ed:8c:f8:25:84:7b: 0e:8d:22:fb:f3:d1:8e:7f:31:83:d2:31:ee:05:15:96:f6:8c: fe:78:df:aa:dd:3d:b1:c5:34:c9:ad:cd:44:3f:28:fc:0e:4f: b7:aa:34:db:6a:7e:ee:51:26:94:bf:90:19:24:e7:f4:e7:dc: 84:4e:98:b1:19:24:b6:85:2b:05:d8:a2:b5:cd:8c:f2:cf:9e: fe:fa:67:f2:0d:e1:67:fe:7e:ba:47:b8:3e:46:f2:eb:c8:72: ae:b9:44:58:b0:08:2f:18:7e:fc:8a:2e:ce:8a:38:43:52:f4: 5e:82:d1:1b:39:08:92:18:5a:2b:5d:2b:f0:f5:8c:46:c9:9b: d5:7e:de:63:e5:0d:c5:7d:c4:8c:eb:87:e3:7a:d2:74:5b:13: 21:75:79:ff:d9:40:b7:b2:57:e4:0f:8e:a1:2a:50:ef:5c:78: 25:f1:f6:3a:8c:66:51:8a:fc:ca:c9:3e:93:54:68:77:99:8a: c4:9e:57:4f:a6:0c:af:7a:e5:e3:bb:54:c6:11:18:18:7e:ae: ef:67:f6:7d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MjQwMFoXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoNDUxMTZCMDdBMkUwQjgy MzE5MEM0RjgxRkVDNUM0ODQyQjVCMjQxMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALYQ41qUIkxXx8vvhh/JPlqlaf9Jq43PNhidoJWalUlf+008/ger nIFMvVot6I1/YOW9PKXUfSZrkCsE+VZ70xvHH1bgSTAJPlG7qnHejBIvKE67o4g/ EBdHKMhyKygINdcW69gIJdnAuR3cCTAF1uivapShYOyUCTvyH6dtTNabvs7hY1jL FMBnot7E/QOfwFp/5BSIPREMHw8rxnlENhPMrKQVARwQSr9rKHwXjo7HXDQooZkf FTZ1OlQM2551ITDd+vXRj3K/apOanJwe7GakOOonI4OZ8ABTi6vqbURt0zMvdnnh c5exR4VPiX84McdDm8j/qxtge3W7otcgD7sCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRFEWsHouC4IxkMT4H+xcSEK1skEzAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi9SUkZyQjZMZ3VDTVpE RS1CX3NYRWhDdGJKQk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZz0/MA0GCSqGSIb3DQEBCwUAA4IBAQAdxwK0CZYYFgZXGEtxRwQSM9yO5PQ5 BKLFAuCHifZ0yLepEVXtlyyYHh7QvYUvd8HtjPglhHsOjSL789GOfzGD0jHuBRWW 9oz+eN+q3T2xxTTJrc1EPyj8Dk+3qjTban7uUSaUv5AZJOf059yETpixGSS2hSsF 2KK1zYzyz57++mfyDeFn/n66R7g+RvLryHKuuURYsAgvGH78ii7OijhDUvRegtEb OQiSGForXSvw9YxGyZvVft5j5Q3FfcSM64fjetJ0WxMhdXn/2UC3slfkD46hKlDv XHgl8fY6jGZRivzKyT6TVGh3mYrEnldPpgyveuXju1TGERgYfq7vZ/Z9 -----END CERTIFICATE-----Generated at Sun Aug 24 02:42:30 2025 by rpki-client