$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1232/ti06eIeVhMvjvb6PlZG1xbQWeRg.roa File: ti06eIeVhMvjvb6PlZG1xbQWeRg.roa (raw, json) Hash identifier: 7h3soQ3R4fmp0pFkRQeCejojVyjyHnfMJUr1agk2VD8= Subject key identifier: B6:2D:3A:78:87:95:84:CB:E3:BD:BE:8F:95:91:B5:C5:B4:16:79:18 Certificate issuer: /CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Certificate serial: 13 Authority key identifier: F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/ti06eIeVhMvjvb6PlZG1xbQWeRg.roa Signing time: Fri 22 Aug 2025 06:23:59 +0000 ROA not before: Fri 22 Aug 2025 06:23:59 +0000 ROA not after: Thu 20 Aug 2026 07:49:18 +0000 asID: 138457 IP address blocks: 103.61.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1989B406901ADF8810B9DCDC4E0FC9E7E85EEB4 Validity Not Before: Aug 22 06:23:59 2025 GMT Not After : Aug 20 07:49:18 2026 GMT Subject: CN=B62D3A78879584CBE3BDBE8F9591B5C5B4167918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:25:08:15:fd:fc:80:dc:f2:fd:7c:3e:18:55: 20:d9:86:93:6b:82:75:10:fd:22:9b:ff:98:2c:6c: d7:a0:83:58:ea:65:38:67:78:09:06:ce:92:b3:74: a3:1a:a3:ca:73:ee:fd:eb:8c:44:bb:1b:f2:12:ee: 3b:b1:af:bb:c7:be:be:08:df:41:ff:40:5e:b6:18: fb:cb:bb:69:3c:c2:d8:d3:31:0d:13:81:f9:88:b9: ea:f0:b6:23:69:db:02:f8:c2:69:f5:d3:c5:f9:71: ca:fb:3d:0b:c3:27:da:63:96:74:2e:45:aa:be:43: 2a:06:4c:8b:47:af:d8:66:c4:e7:6f:65:4f:a1:39: 46:c7:8d:cc:74:9d:4d:a9:35:83:96:3d:25:d4:0c: 6a:c2:21:7a:66:a8:15:39:88:89:e5:f8:dd:89:aa: b3:c8:3e:fc:00:b1:fb:69:5c:c3:f2:81:de:5e:47: 3f:6c:1b:21:3e:5c:2a:c4:47:2f:e1:97:e3:78:84: af:7a:b0:08:d0:35:de:30:a5:ee:06:34:c4:fe:3c: 6d:49:a2:2c:fe:4a:3b:b4:76:56:7b:ef:b4:4a:d5: 16:a0:79:b8:77:cf:d6:a9:a0:81:c7:f1:c5:ce:f7: af:68:bd:a3:31:11:db:9b:bd:fb:b3:b6:38:58:e0: 8d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:2D:3A:78:87:95:84:CB:E3:BD:BE:8F:95:91:B5:C5:B4:16:79:18 X509v3 Authority Key Identifier: keyid:F1:98:9B:40:69:01:AD:F8:81:0B:9D:CD:C4:E0:FC:9E:7E:85:EE:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/8ZibQGkBrfiBC53NxOD8nn6F7rQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/8ZibQGkBrfiBC53NxOD8nn6F7rQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1232/ti06eIeVhMvjvb6PlZG1xbQWeRg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.61.63.0/24 Signature Algorithm: sha256WithRSAEncryption 23:da:34:67:e0:81:d2:d5:4a:3c:fd:d7:15:f5:24:13:c3:8e: 0f:5b:fc:8e:18:dc:88:13:ae:c9:65:ca:1d:76:24:1d:2a:d0: b7:d6:ff:54:c9:92:4f:ee:4c:59:ba:8a:86:49:86:cd:fd:54: 27:5c:54:bb:77:a7:7f:8c:8b:6c:74:78:25:be:bd:5b:dc:9b: 7c:4c:6f:10:ad:3c:72:ad:91:76:79:73:a4:23:d4:1a:49:c2: 60:6d:18:41:68:78:f1:98:fc:fa:bb:e9:bc:a0:17:2f:86:61: aa:6c:0c:e7:81:87:7e:15:61:65:88:8d:1e:9f:cb:11:db:17: 72:9f:db:7e:8f:76:b4:e5:40:3a:44:f5:a9:c8:51:d6:d9:9e: 22:2e:fb:7b:02:7d:9c:c9:c2:3f:f6:11:b5:2a:b7:6f:81:1d: 01:45:da:03:8f:aa:b7:9b:78:95:0a:43:89:4e:4f:0d:ea:06: 3d:f1:bd:17:57:8e:35:db:ff:7f:91:da:3a:8a:c7:67:92:93: 53:89:0c:e7:5d:bd:89:6a:79:47:b1:2d:43:99:79:4d:7d:1c: ab:41:6e:cf:26:44:c5:97:bb:11:e2:f5:c1:c8:c9:20:7a:30: 0a:71:68:fd:95:76:c1:e6:44:d2:d2:c1:dc:23:0a:05:22:33: 01:58:88:46 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTk4 OUI0MDY5MDFBREY4ODEwQjlEQ0RDNEUwRkM5RTdFODVFRUI0MB4XDTI1MDgyMjA2 MjM1OVoXDTI2MDgyMDA3NDkxOFowMzExMC8GA1UEAxMoQjYyRDNBNzg4Nzk1ODRD QkUzQkRCRThGOTU5MUI1QzVCNDE2NzkxODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMMlCBX9/IDc8v18PhhVINmGk2uCdRD9Ipv/mCxs16CDWOplOGd4 CQbOkrN0oxqjynPu/euMRLsb8hLuO7Gvu8e+vgjfQf9AXrYY+8u7aTzC2NMxDROB +Yi56vC2I2nbAvjCafXTxflxyvs9C8Mn2mOWdC5Fqr5DKgZMi0ev2GbE529lT6E5 RseNzHSdTak1g5Y9JdQMasIhemaoFTmIieX43Ymqs8g+/ACx+2lcw/KB3l5HP2wb IT5cKsRHL+GX43iEr3qwCNA13jCl7gY0xP48bUmiLP5KO7R2VnvvtErVFqB5uHfP 1qmggcfxxc73r2i9ozER25u9+7O2OFjgjUsCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBS2LTp4h5WEy+O9vo+VkbXFtBZ5GDAfBgNVHSMEGDAWgBTxmJtAaQGt+IELnc3E 4PyefoXutDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8xMjMy LzhaaWJRR2tCcmZpQkM1M054T0Q4bm42RjdyUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvOFppYlFHa0JyZmlCQzUzTnhPRDhubjZGN3JRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIzMi90aTA2ZUllVmhNdmp2 YjZQbFpHMXhiUVdlUmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZz0/MA0GCSqGSIb3DQEBCwUAA4IBAQAj2jRn4IHS1Uo8/dcV9SQTw44PW/yO GNyIE67JZcoddiQdKtC31v9UyZJP7kxZuoqGSYbN/VQnXFS7d6d/jItsdHglvr1b 3Jt8TG8QrTxyrZF2eXOkI9QaScJgbRhBaHjxmPz6u+m8oBcvhmGqbAzngYd+FWFl iI0en8sR2xdyn9t+j3a05UA6RPWpyFHW2Z4iLvt7An2cycI/9hG1KrdvgR0BRdoD j6q3m3iVCkOJTk8N6gY98b0XV4412/9/kdo6isdnkpNTiQznXb2JanlHsS1DmXlN fRyrQW7PJkTFl7sR4vXByMkgejAKcWj9lXbB5kTS0sHcIwoFIjMBWIhG -----END CERTIFICATE-----Generated at Sun Aug 24 02:39:24 2025 by rpki-client