$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/q2x-AKQ7vp35DJjy3YbDv-QUzkU.roa File: q2x-AKQ7vp35DJjy3YbDv-QUzkU.roa (raw, json) Hash identifier: Ur+xUqo8PR1nh0rBSWnVSUuU/4hjWDPGHZ688Z8CPwo= Subject key identifier: AB:6C:7E:00:A4:3B:BE:9D:F9:0C:98:F2:DD:86:C3:BF:E4:14:CE:45 Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 20 Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/q2x-AKQ7vp35DJjy3YbDv-QUzkU.roa Signing time: Fri 22 Aug 2025 06:24:03 +0000 ROA not before: Fri 22 Aug 2025 06:24:03 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 63583 IP address blocks: 103.61.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:24:03 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=AB6C7E00A43BBE9DF90C98F2DD86C3BFE414CE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a0:9f:e1:31:83:fc:23:f4:18:39:28:55:fa: ee:3c:0b:0c:d0:71:9c:ae:fc:34:5c:1b:12:d5:37: a8:58:da:1d:13:91:29:fb:6c:2d:c7:0b:13:91:ae: 1a:25:f3:89:37:12:bc:a4:5a:78:76:96:94:e3:9c: c4:db:5a:5b:09:85:63:c9:ab:70:ba:d4:45:3b:ca: e0:b5:19:24:f2:ee:ee:b9:3e:bd:80:f9:da:79:de: 59:53:d0:d6:84:9c:4e:fb:f4:76:83:1d:81:5e:0a: 34:b9:e5:fc:ad:f4:f8:1a:57:a5:8d:e2:50:19:64: 97:62:bf:7d:1f:c4:a5:c1:6f:41:dc:90:6b:c3:c9: 8d:56:4c:a7:26:2f:8b:07:79:65:2e:64:f9:af:06: 49:38:9e:12:33:92:b2:77:b9:99:00:b7:27:de:bb: 35:c1:af:86:eb:1f:45:72:ab:50:b9:62:30:62:b0: 7e:26:e0:14:9c:40:6e:df:3f:dd:8b:6b:5d:a7:38: 10:1e:09:dc:01:66:8e:f1:bb:73:29:b8:2b:fb:f7: 60:0b:f3:30:de:2c:c6:af:2f:78:91:00:07:2b:1d: d0:79:c8:85:eb:12:2c:cd:b3:6c:b7:71:7d:b4:eb: ee:f0:54:41:47:d9:f9:14:21:9f:bd:53:ef:b7:24: 3d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6C:7E:00:A4:3B:BE:9D:F9:0C:98:F2:DD:86:C3:BF:E4:14:CE:45 X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/q2x-AKQ7vp35DJjy3YbDv-QUzkU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.61.62.0/24 Signature Algorithm: sha256WithRSAEncryption 17:8c:a9:90:cd:39:2d:59:2f:c2:4a:92:37:50:76:f2:27:8b: b1:08:49:25:2d:80:9b:79:ed:a1:2b:4c:46:af:dc:24:ed:67: 3f:17:d7:1c:1e:ec:05:11:07:71:22:e8:f8:2c:2e:2f:f2:ee: 1f:7b:e0:0a:fc:86:e7:c2:6b:99:c0:79:7e:00:85:4e:10:c8: 48:25:61:bc:33:06:4e:c5:78:29:d9:18:f5:33:e3:ca:08:b8: fe:93:8e:c9:06:75:75:14:46:60:6d:b8:a4:6c:7a:56:8a:20: 0d:a3:0c:cc:af:53:1e:e9:d4:6f:a0:83:c1:0b:7b:d9:69:c3: 32:ef:e9:15:b1:43:d7:7c:0a:b8:24:8f:18:4e:93:b4:be:c9: 08:4a:a2:6d:41:07:86:21:24:ff:ca:14:a9:03:de:76:2a:be: 72:97:a9:e0:97:02:e5:e0:e8:79:e8:b1:44:f3:88:6b:47:34: 62:16:6d:88:e5:d0:0a:8d:1f:82:f6:bb:87:cb:44:d9:4c:fb: 50:f0:26:c6:dd:26:f9:aa:04:7b:f6:29:51:5c:f4:7d:de:d2: dc:75:17:0f:1f:93:30:73:c5:da:af:2f:6b:70:e7:6a:4b:20: ee:56:b9:d3:df:b2:bc:60:89:21:83:5d:da:cf:18:27:a1:10: c2:a5:19:1c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MjQwM1oXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoQUI2QzdFMDBBNDNCQkU5 REY5MEM5OEYyREQ4NkMzQkZFNDE0Q0U0NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANCgn+Exg/wj9Bg5KFX67jwLDNBxnK78NFwbEtU3qFjaHRORKfts LccLE5GuGiXziTcSvKRaeHaWlOOcxNtaWwmFY8mrcLrURTvK4LUZJPLu7rk+vYD5 2nneWVPQ1oScTvv0doMdgV4KNLnl/K30+BpXpY3iUBlkl2K/fR/EpcFvQdyQa8PJ jVZMpyYviwd5ZS5k+a8GSTieEjOSsne5mQC3J967NcGvhusfRXKrULliMGKwfibg FJxAbt8/3YtrXac4EB4J3AFmjvG7cym4K/v3YAvzMN4sxq8veJEABysd0HnIhesS LM2zbLdxfbTr7vBUQUfZ+RQhn71T77ckPaMCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBSrbH4ApDu+nfkMmPLdhsO/5BTORTAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi9xMngtQUtRN3ZwMzVE Smp5M1liRHYtUVV6a1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZz0+MA0GCSqGSIb3DQEBCwUAA4IBAQAXjKmQzTktWS/CSpI3UHbyJ4uxCEkl LYCbee2hK0xGr9wk7Wc/F9ccHuwFEQdxIuj4LC4v8u4fe+AK/IbnwmuZwHl+AIVO EMhIJWG8MwZOxXgp2Rj1M+PKCLj+k47JBnV1FEZgbbikbHpWiiANowzMr1Me6dRv oIPBC3vZacMy7+kVsUPXfAq4JI8YTpO0vskISqJtQQeGIST/yhSpA952Kr5yl6ng lwLl4Oh56LFE84hrRzRiFm2I5dAKjR+C9ruHy0TZTPtQ8CbG3Sb5qgR79ilRXPR9 3tLcdRcPH5Mwc8Xary9rcOdqSyDuVrnT37K8YIkhg13azxgnoRDCpRkc -----END CERTIFICATE-----Generated at Sun Aug 24 02:43:46 2025 by rpki-client