$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1407/v77HvQ8JDbuFO6M8TtpWDePh1QU.roa File: v77HvQ8JDbuFO6M8TtpWDePh1QU.roa (raw, json) Hash identifier: mBShptqUxFMYNN76UxyduwjMIWjbI3OnoZJA06+Uy70= Subject key identifier: BF:BE:C7:BD:0F:09:0D:BB:85:3B:A3:3C:4E:DA:56:0D:E3:E1:D5:05 Certificate issuer: /CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E Certificate serial: 205C Authority key identifier: 5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/v77HvQ8JDbuFO6M8TtpWDePh1QU.roa Signing time: Sat 06 Sep 2025 08:04:25 +0000 ROA not before: Sat 06 Sep 2025 08:04:25 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 134700 IP address blocks: 182.50.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8284 (0x205c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DA0A5ECC2182DB00EB85C62313D57B96B7FD68E Validity Not Before: Sep 6 08:04:25 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BFBEC7BD0F090DBB853BA33C4EDA560DE3E1D505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:61:0c:e0:76:2e:d4:77:43:92:77:72:4e: c7:c3:53:8d:08:12:f9:3f:9d:85:e5:de:d3:16:0a: 9c:06:5b:01:a8:d8:68:df:fe:8f:ba:3e:dc:8e:9c: 0b:07:44:5c:fa:ce:01:ff:7f:e9:37:ff:b4:57:66: 9c:83:80:cd:7b:aa:34:a1:5b:da:8a:ea:c7:21:2c: c7:76:b1:9d:63:fa:a3:76:37:97:f5:3d:3c:c3:ad: 9c:a9:b8:a2:88:73:ef:01:d4:e4:8c:5a:f1:78:bc: f4:ca:44:2a:93:d6:1f:0e:d6:ee:1b:83:75:01:ce: 66:f4:67:03:59:2e:f3:bd:15:ee:b5:11:5a:1d:ea: 59:f9:53:6e:5c:f9:f0:c2:86:67:19:59:dd:f6:c4: e4:34:27:b6:7f:b7:21:61:5a:c2:c1:ce:18:96:cd: 84:d9:0c:11:dc:fd:70:b7:ab:c2:be:8e:71:c4:82: ef:98:f2:62:13:af:73:bb:d0:e4:a5:78:c9:6e:b0: d2:e1:b2:82:cc:6f:75:8c:b0:3d:3a:1a:63:63:08: a9:af:0a:d9:f2:02:45:65:17:f8:45:9f:0e:00:88: a1:78:b7:23:22:6d:85:03:23:ad:e8:dd:d0:d1:9a: 34:36:6d:99:a6:24:f9:26:ba:03:cc:3f:a5:66:4f: 91:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BE:C7:BD:0F:09:0D:BB:85:3B:A3:3C:4E:DA:56:0D:E3:E1:D5:05 X509v3 Authority Key Identifier: keyid:5D:A0:A5:EC:C2:18:2D:B0:0E:B8:5C:62:31:3D:57:B9:6B:7F:D6:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/XaCl7MIYLbAOuFxiMT1XuWt_1o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/XaCl7MIYLbAOuFxiMT1XuWt_1o4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1407/v77HvQ8JDbuFO6M8TtpWDePh1QU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.50.7.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:42:56:2d:47:27:40:19:55:b6:19:3e:cb:55:0a:9d:19:17: 00:9a:1a:86:fc:36:6e:a1:47:00:13:79:fd:23:5f:68:37:69: 70:db:4c:30:71:80:b5:97:13:a6:97:86:5e:52:10:dd:60:9b: c0:2a:55:24:9e:5b:09:4a:14:10:4a:ed:1a:39:83:a2:8b:b4: 12:90:3e:aa:7a:cb:4d:af:17:2f:25:27:bb:32:44:ef:a0:5b: 61:44:3a:22:7a:3b:a4:89:72:e3:00:bf:1f:af:27:f9:26:a0: 97:1c:1e:35:1e:3e:95:2b:5a:4a:b3:6b:e3:94:16:28:50:d8: 27:26:45:80:08:fe:b2:ac:c5:b2:5c:16:cd:d7:66:a3:12:d8: 59:c8:54:36:9b:57:7d:4f:70:9a:7c:1d:d0:d5:05:0e:34:cc: bf:3b:c0:fc:05:c9:e0:cb:95:d3:6a:dc:7f:bc:e9:f0:86:16: 60:6d:74:dd:57:f3:73:db:70:c9:78:1d:b1:4e:ce:41:1d:a3: f7:92:69:93:b4:7c:1a:76:73:3a:ae:7b:27:e0:96:b1:1c:20: 82:9b:dd:f7:33:64:9c:95:38:73:f5:e4:5f:bc:cb:c7:f9:43: 5c:58:bb:4a:a5:ad:65:c8:bc:be:4e:61:15:3e:e1:4d:f2:ec: bf:72:ea:b9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNURB MEE1RUNDMjE4MkRCMDBFQjg1QzYyMzEzRDU3Qjk2QjdGRDY4RTAeFw0yNTA5MDYw ODA0MjVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJGQkVDN0JEMEYwOTBE QkI4NTNCQTMzQzRFREE1NjBERTNFMUQ1MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzo2EM4HYu1HdDkndyTsfDU40IEvk/nYXl3tMWCpwGWwGo2Gjf /o+6PtyOnAsHRFz6zgH/f+k3/7RXZpyDgM17qjShW9qK6schLMd2sZ1j+qN2N5f1 PTzDrZypuKKIc+8B1OSMWvF4vPTKRCqT1h8O1u4bg3UBzmb0ZwNZLvO9Fe61EVod 6ln5U25c+fDChmcZWd32xOQ0J7Z/tyFhWsLBzhiWzYTZDBHc/XC3q8K+jnHEgu+Y 8mITr3O70OSleMlusNLhsoLMb3WMsD06GmNjCKmvCtnyAkVlF/hFnw4AiKF4tyMi bYUDI63o3dDRmjQ2bZmmJPkmugPMP6VmT5FJAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUv77HvQ8JDbuFO6M8TtpWDePh1QUwHwYDVR0jBBgwFoAUXaCl7MIYLbAOuFxi MT1XuWt/1o4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTQw Ny9YYUNsN01JWUxiQU91RnhpTVQxWHVXdF8xbzQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1hhQ2w3TUlZTGJBT3VGeGlNVDFYdVd0XzFvNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE0MDcvdjc3SHZROEpEYnVG TzZNOFR0cFdEZVBoMVFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALYyBzANBgkqhkiG9w0BAQsFAAOCAQEAi0JWLUcnQBlVthk+y1UKnRkXAJoa hvw2bqFHABN5/SNfaDdpcNtMMHGAtZcTppeGXlIQ3WCbwCpVJJ5bCUoUEErtGjmD oou0EpA+qnrLTa8XLyUnuzJE76BbYUQ6Ino7pIly4wC/H68n+SaglxweNR4+lSta SrNr45QWKFDYJyZFgAj+sqzFslwWzddmoxLYWchUNptXfU9wmnwd0NUFDjTMvzvA /AXJ4MuV02rcf7zp8IYWYG103Vfzc9twyXgdsU7OQR2j95Jpk7R8GnZzOq57J+CW sRwggpvd9zNknJU4c/XkX7zLx/lDXFi7SqWtZci8vk5hFT7hTfLsv3LquQ== -----END CERTIFICATE-----Generated at Mon Oct 20 05:45:53 2025 by rpki-client