$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/gc45iv6kCZTCLFGbPWwJ11Oky18.roa File: gc45iv6kCZTCLFGbPWwJ11Oky18.roa (raw, json) Hash identifier: AXbZPwpgOcPaouSM1rokRH6k4Mv4n4k4rDGi1jBw7nw= Subject key identifier: 81:CE:39:8A:FE:A4:09:94:C2:2C:51:9B:3D:6C:09:D7:53:A4:CB:5F Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 3F Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/gc45iv6kCZTCLFGbPWwJ11Oky18.roa Signing time: Fri 22 Aug 2025 06:30:22 +0000 ROA not before: Fri 22 Aug 2025 06:30:22 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 139140 IP address blocks: 45.120.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:30:22 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=81CE398AFEA40994C22C519B3D6C09D753A4CB5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ff:0b:f9:4a:e8:8a:45:63:49:d0:41:12:3c: cf:a2:3e:4b:86:3d:85:41:d7:df:e2:d1:6a:d4:bb: 81:fb:a4:16:8d:66:20:ec:ac:c0:2e:a3:1b:b9:00: af:86:b9:58:3a:ff:e5:0a:07:96:73:f0:ea:1d:98: 7f:e6:d2:17:4c:4d:59:2c:91:44:21:23:bd:a4:43: 00:f3:1a:8e:d4:68:28:53:60:3f:3d:79:61:21:54: c0:77:b9:2c:4d:e0:0b:b5:d2:7e:5d:d5:0b:a6:da: 78:80:44:30:d8:10:24:9d:ad:45:54:15:09:67:08: f1:59:2d:77:6a:b3:4b:5c:31:8c:35:69:10:b5:1b: 92:0f:f0:d8:1c:39:dc:7c:a3:11:0c:e7:64:e7:fb: 81:f6:59:ae:8b:2e:d7:bb:fd:c9:20:76:b1:84:ed: 1b:cd:58:4d:aa:f9:c8:4b:0d:dd:ed:33:28:63:18: 3c:19:81:db:f1:9f:7c:7e:a1:35:7f:eb:c8:77:86: 50:5b:03:48:f3:5d:32:32:99:70:fb:49:e1:3d:e3: 91:99:b0:e9:3d:ed:73:5a:80:00:69:c2:08:3c:61: 4d:7b:59:cd:32:55:00:e7:b7:19:19:b2:f8:fd:73: 0c:59:d6:e5:36:ed:e0:52:f0:d7:e5:0d:c3:f1:32: 96:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CE:39:8A:FE:A4:09:94:C2:2C:51:9B:3D:6C:09:D7:53:A4:CB:5F X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/gc45iv6kCZTCLFGbPWwJ11Oky18.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.120.243.0/24 Signature Algorithm: sha256WithRSAEncryption 81:bf:fa:c8:fe:d7:47:89:38:70:06:7e:65:95:34:74:fb:6b: cb:f2:2e:84:ce:f6:71:8e:fb:5a:05:17:7d:58:79:a1:a1:13: 68:5a:a5:25:f0:42:d6:63:08:b2:b7:7d:eb:15:f0:c1:e4:41: ad:92:4f:a4:16:35:b4:59:26:1f:ad:88:31:5a:62:77:8a:48: cb:25:4d:78:7c:8e:5f:6b:a5:3a:36:8e:55:33:70:1a:86:05: ff:63:58:74:bd:75:84:a0:cf:28:72:b1:fe:c2:1a:08:7b:52: 64:d4:fb:a5:61:8c:fe:8b:c3:c7:65:65:89:80:d4:ea:56:98: eb:25:8d:84:e7:8b:6c:ed:f6:23:3a:73:0b:5b:e4:9c:72:fe: 6a:57:76:4c:f2:42:89:c5:16:7e:7e:3c:9e:46:29:bc:76:b8: f4:8f:36:a4:3a:0f:90:44:59:51:57:2f:38:58:58:54:eb:47: f6:34:31:de:68:60:90:4e:4d:8a:1e:07:d3:f0:33:58:3b:b3: 04:d9:7f:46:e3:b1:f4:82:87:b0:93:4e:26:c8:42:7b:14:3f: 0a:35:d5:17:b0:43:bb:82:32:a9:4a:59:03:88:44:ef:0e:5e: 24:ad:2e:ae:09:77:4d:57:b8:d2:60:d5:7f:49:7b:70:a8:45: 8d:15:1e:22 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MzAyMloXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoODFDRTM5OEFGRUE0MDk5 NEMyMkM1MTlCM0Q2QzA5RDc1M0E0Q0I1RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANr/C/lK6IpFY0nQQRI8z6I+S4Y9hUHX3+LRatS7gfukFo1mIOys wC6jG7kAr4a5WDr/5QoHlnPw6h2Yf+bSF0xNWSyRRCEjvaRDAPMajtRoKFNgPz15 YSFUwHe5LE3gC7XSfl3VC6baeIBEMNgQJJ2tRVQVCWcI8Vktd2qzS1wxjDVpELUb kg/w2Bw53HyjEQznZOf7gfZZrosu17v9ySB2sYTtG81YTar5yEsN3e0zKGMYPBmB 2/GffH6hNX/ryHeGUFsDSPNdMjKZcPtJ4T3jkZmw6T3tc1qAAGnCCDxhTXtZzTJV AOe3GRmy+P1zDFnW5Tbt4FLw1+UNw/Eylg0CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSBzjmK/qQJlMIsUZs9bAnXU6TLXzAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi9nYzQ1aXY2a0NaVENM RkdiUFd3SjExT2t5MTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQALXjzMA0GCSqGSIb3DQEBCwUAA4IBAQCBv/rI/tdHiThwBn5llTR0+2vL8i6E zvZxjvtaBRd9WHmhoRNoWqUl8ELWYwiyt33rFfDB5EGtkk+kFjW0WSYfrYgxWmJ3 ikjLJU14fI5fa6U6No5VM3AahgX/Y1h0vXWEoM8ocrH+whoIe1Jk1PulYYz+i8PH ZWWJgNTqVpjrJY2E54ts7fYjOnMLW+Sccv5qV3ZM8kKJxRZ+fjyeRim8drj0jzak Og+QRFlRVy84WFhU60f2NDHeaGCQTk2KHgfT8DNYO7ME2X9G47H0goewk04myEJ7 FD8KNdUXsEO7gjKpSlkDiETvDl4krS6uCXdNV7jSYNV/SXtwqEWNFR4i -----END CERTIFICATE-----Generated at Sun Aug 24 02:40:05 2025 by rpki-client