$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/9LZMbOJGzIWrwZIphlUZtLKBd_c.roa File: 9LZMbOJGzIWrwZIphlUZtLKBd_c.roa (raw, json) Hash identifier: 2ZF77k5Fogyt6qSiuDajPcYoPcUD48QmqAkwhivvEH4= Subject key identifier: F4:B6:4C:6C:E2:46:CC:85:AB:C1:92:29:86:55:19:B4:B2:81:77:F7 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 5CF8 Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/9LZMbOJGzIWrwZIphlUZtLKBd_c.roa Signing time: Sat 13 Sep 2025 03:06:29 +0000 ROA not before: Sat 13 Sep 2025 03:06:29 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 134762 IP address blocks: 103.45.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23800 (0x5cf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Sep 13 03:06:29 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F4B64C6CE246CC85ABC19229865519B4B28177F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0b:d2:68:b4:f4:73:bc:93:e1:df:ba:fd:e9: b6:81:40:7e:a4:cf:fd:d5:91:34:e7:c1:8c:fe:c3: 0c:b9:ab:60:37:c1:b2:35:3c:f6:96:8e:08:5e:54: 36:60:d0:83:43:21:bb:6d:fb:85:83:45:10:52:ac: 59:26:cf:ac:95:0c:4d:a9:31:18:3a:a9:c3:ec:bb: ab:a5:01:f4:7d:c7:34:ea:5b:fc:15:41:54:05:22: a1:3b:e3:b1:99:d8:61:c2:ae:b2:f7:c4:ea:dd:a4: 30:7a:04:1e:7d:69:ee:25:67:69:ed:10:f3:32:79: 15:30:df:0e:ea:9f:74:21:76:f4:7b:b0:90:2c:8b: 71:5f:bf:45:45:8b:ab:e1:b5:f3:88:16:8d:9c:6b: 40:5a:b9:1a:86:dd:6c:ca:a3:1c:25:de:9b:56:eb: 10:6d:0e:dd:95:6b:d5:51:1b:61:e0:14:8e:a5:ca: fb:56:87:77:b7:c9:fb:c3:55:15:46:0a:22:30:26: 89:7c:f6:70:83:bf:71:6e:52:9c:bb:eb:52:a0:63: ff:55:f2:98:3f:44:91:78:32:c8:33:1e:d0:bc:46: d7:4b:08:2e:38:d2:ec:e3:30:e1:30:bc:84:82:b1: 47:16:ab:45:68:cb:3e:34:9d:fc:0c:96:c4:00:33: fa:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B6:4C:6C:E2:46:CC:85:AB:C1:92:29:86:55:19:B4:B2:81:77:F7 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/9LZMbOJGzIWrwZIphlUZtLKBd_c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.45.172.0/22 Signature Algorithm: sha256WithRSAEncryption 29:cf:da:ac:5d:2c:f4:9d:55:f2:40:e4:5b:76:bb:a7:77:7f: c5:eb:83:75:c9:2d:27:52:01:43:97:fa:79:24:c4:72:c0:8b: 08:40:97:53:20:e0:ee:59:01:3a:0f:1b:74:1b:ae:f6:28:18: 40:cc:04:a0:ac:24:7d:39:1b:6b:0d:03:c8:df:48:9d:c6:11: 07:3f:1e:39:b0:b4:4c:1e:7c:7a:32:eb:d2:a2:98:bf:50:9a: e1:90:0c:ff:0f:3a:be:a2:0c:2d:6b:00:76:cf:e6:fa:6c:dd: eb:45:9e:36:b5:33:24:d9:5c:c9:65:bd:f7:c9:bc:e7:05:0e: e1:0b:20:18:0f:bb:0a:00:1a:cf:21:09:b7:d4:5c:2a:a7:b4: 07:d5:92:d5:7f:ac:51:8e:43:cc:8c:e5:d8:31:0e:eb:02:cc: ea:a0:cb:0d:ca:d1:fa:bf:e8:47:a0:25:a6:dc:6a:12:f3:19: b0:4a:92:14:55:41:52:1d:77:29:e9:81:af:9f:d3:50:a1:5c: 90:59:5d:fa:8b:75:2b:52:4b:9d:dc:84:83:87:f6:71:24:cf: d5:5a:7b:f3:d5:8a:53:e4:24:6e:58:7f:69:de:2a:dd:26:1c: ad:71:0a:98:50:c1:1b:c9:ee:bd:df:59:71:f0:64:26:eb:b7: 8e:f3:a2:74 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICXPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNTA5MTMw MzA2MjlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEY0QjY0QzZDRTI0NkND ODVBQkMxOTIyOTg2NTUxOUI0QjI4MTc3RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTC9JotPRzvJPh37r96baBQH6kz/3VkTTnwYz+wwy5q2A3wbI1 PPaWjgheVDZg0INDIbtt+4WDRRBSrFkmz6yVDE2pMRg6qcPsu6ulAfR9xzTqW/wV QVQFIqE747GZ2GHCrrL3xOrdpDB6BB59ae4lZ2ntEPMyeRUw3w7qn3QhdvR7sJAs i3Ffv0VFi6vhtfOIFo2ca0BauRqG3WzKoxwl3ptW6xBtDt2Va9VRG2HgFI6lyvtW h3e3yfvDVRVGCiIwJol89nCDv3FuUpy761KgY/9V8pg/RJF4MsgzHtC8RtdLCC44 0uzjMOEwvISCsUcWq0Voyz40nfwMlsQAM/rfAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU9LZMbOJGzIWrwZIphlUZtLKBd/cwHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvOUxaTWJPSkd6SVdy d1pJcGhsVVp0TEtCZF9jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmctrDANBgkqhkiG9w0BAQsFAAOCAQEAKc/arF0s9J1V8kDkW3a7p3d/xeuD dcktJ1IBQ5f6eSTEcsCLCECXUyDg7lkBOg8bdBuu9igYQMwEoKwkfTkbaw0DyN9I ncYRBz8eObC0TB58ejLr0qKYv1Ca4ZAM/w86vqIMLWsAds/m+mzd60WeNrUzJNlc yWW998m85wUO4QsgGA+7CgAazyEJt9RcKqe0B9WS1X+sUY5DzIzl2DEO6wLM6qDL DcrR+r/oR6AlptxqEvMZsEqSFFVBUh13KemBr5/TUKFckFld+ot1K1JLndyEg4f2 cSTP1Vp789WKU+Qkblh/ad4q3SYcrXEKmFDBG8nuvd9ZcfBkJuu3jvOidA== -----END CERTIFICATE-----Generated at Mon Oct 20 08:42:46 2025 by rpki-client