$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2048/p4my-XSsM49Q-iNITr_6AgRgzHE.roa File: p4my-XSsM49Q-iNITr_6AgRgzHE.roa (raw, json) Hash identifier: RgvHwk+/dBQhQO4TTGk8PLduIMpNhMhJLkZlqXsN+4c= Subject key identifier: A7:89:B2:F9:74:AC:33:8F:50:FA:23:48:4E:BF:FA:02:04:60:CC:71 Certificate issuer: /CN=4E25934FE8D89959425D1018EB121981DA250985 Certificate serial: 0AE6 Authority key identifier: 4E:25:93:4F:E8:D8:99:59:42:5D:10:18:EB:12:19:81:DA:25:09:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TiWTT-jYmVlCXRAY6xIZgdolCYU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/p4my-XSsM49Q-iNITr_6AgRgzHE.roa Signing time: Sat 13 Sep 2025 03:07:03 +0000 ROA not before: Sat 13 Sep 2025 03:07:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 151296 IP address blocks: 103.9.24.0/22 maxlen: 24 103.9.108.0/22 maxlen: 24 103.71.68.0/22 maxlen: 24 180.210.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/TiWTT-jYmVlCXRAY6xIZgdolCYU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/TiWTT-jYmVlCXRAY6xIZgdolCYU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TiWTT-jYmVlCXRAY6xIZgdolCYU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E25934FE8D89959425D1018EB121981DA250985 Validity Not Before: Sep 13 03:07:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A789B2F974AC338F50FA23484EBFFA020460CC71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:d0:a0:ee:7f:d0:1c:8c:d6:cb:c9:49:c6: d5:e2:4f:cb:8e:62:56:11:ab:8b:b5:1a:39:55:65: ad:69:54:22:7c:f2:92:c7:3a:0c:5e:65:39:26:92: 49:57:39:71:8a:98:01:5a:03:53:c4:54:af:2b:60: 51:7d:ba:f1:f4:3f:28:f8:36:45:55:e1:d8:34:d9: 3f:a6:f6:fd:c6:1c:56:80:80:8d:c2:02:4c:2b:c1: fc:95:4e:67:f4:0d:ca:e5:93:29:f3:07:37:02:6b: ae:cd:80:75:59:3a:4f:af:3a:62:a8:bf:0f:50:5d: a2:db:1b:8b:d7:d5:f0:47:cd:bf:0d:f6:09:6d:ff: 97:03:e8:53:bf:0b:35:4e:d3:00:ec:5a:de:2b:e7: b5:f5:15:8c:ee:35:30:41:0a:cc:65:57:58:78:bd: 8d:a9:22:a6:42:9c:21:93:a3:22:09:1d:df:67:6c: 43:fd:5a:3a:29:d7:be:b6:4d:e0:15:6d:7a:e5:e6: ef:56:a3:a9:c6:18:6e:c3:29:7b:27:87:f1:c3:cf: 58:48:bb:85:be:a6:32:bb:db:d5:2c:3d:df:ce:a0: 2b:59:b5:03:f8:b3:8a:26:95:f9:0d:3c:c6:aa:94: f8:aa:77:f5:96:10:a0:76:6f:40:62:c6:59:62:fe: 90:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:89:B2:F9:74:AC:33:8F:50:FA:23:48:4E:BF:FA:02:04:60:CC:71 X509v3 Authority Key Identifier: keyid:4E:25:93:4F:E8:D8:99:59:42:5D:10:18:EB:12:19:81:DA:25:09:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/TiWTT-jYmVlCXRAY6xIZgdolCYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TiWTT-jYmVlCXRAY6xIZgdolCYU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2048/p4my-XSsM49Q-iNITr_6AgRgzHE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.9.24.0/22 103.9.108.0/22 103.71.68.0/22 180.210.212.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:0b:86:65:b9:14:3c:31:b2:a0:6f:18:50:33:b8:97:e6:d1: f7:07:76:9f:f4:25:a4:04:62:c9:16:5b:6a:aa:0a:ea:d0:b6: 4f:e1:15:0c:36:6b:df:b8:56:a4:4c:4e:91:ec:a5:4e:e8:6d: ee:97:72:a6:17:b5:2c:17:cf:21:22:d9:49:ea:8e:b9:be:93: c2:95:42:e9:04:2b:80:4c:59:7c:c9:c2:e1:8d:24:47:3e:57: a8:f5:59:7f:0e:c9:bf:16:d5:22:3f:07:6f:11:86:4c:65:b5: d3:e7:01:d3:07:7b:a0:df:59:6f:82:b7:45:da:28:ec:8d:06: 0f:90:62:2a:46:93:31:e9:f5:47:29:46:47:13:03:f6:5a:fb: d2:a8:51:74:db:34:f8:c5:3e:16:0d:ac:34:60:6b:c4:20:6c: 2b:85:6a:6c:85:e1:3d:fd:c4:39:95:12:4d:8e:7d:fc:0b:cb: 7c:de:f4:3e:19:cc:46:f0:09:20:ea:c9:38:f2:87:cc:2f:a4: 48:68:3a:3d:e0:1f:3a:66:f2:98:09:b8:d4:2f:b2:f7:1c:a7: eb:21:fb:d3:f8:d0:c4:11:8d:ef:c7:06:a9:e6:21:ec:3f:e9: 22:11:64:95:67:ac:4f:70:22:d5:42:2d:6c:3c:25:5e:aa:9c: 1f:bd:aa:18 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEUy NTkzNEZFOEQ4OTk1OTQyNUQxMDE4RUIxMjE5ODFEQTI1MDk4NTAeFw0yNTA5MTMw MzA3MDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEE3ODlCMkY5NzRBQzMz OEY1MEZBMjM0ODRFQkZGQTAyMDQ2MENDNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ3NCg7n/QHIzWy8lJxtXiT8uOYlYRq4u1GjlVZa1pVCJ88pLH OgxeZTkmkklXOXGKmAFaA1PEVK8rYFF9uvH0Pyj4NkVV4dg02T+m9v3GHFaAgI3C AkwrwfyVTmf0DcrlkynzBzcCa67NgHVZOk+vOmKovw9QXaLbG4vX1fBHzb8N9glt /5cD6FO/CzVO0wDsWt4r57X1FYzuNTBBCsxlV1h4vY2pIqZCnCGToyIJHd9nbEP9 Wjop1762TeAVbXrl5u9Wo6nGGG7DKXsnh/HDz1hIu4W+pjK729UsPd/OoCtZtQP4 s4omlfkNPMaqlPiqd/WWEKB2b0Bixlli/pBfAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUp4my+XSsM49Q+iNITr/6AgRgzHEwHwYDVR0jBBgwFoAUTiWTT+jYmVlCXRAY 6xIZgdolCYUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjA0 OC9UaVdUVC1qWW1WbENYUkFZNnhJWmdkb2xDWVUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RpV1RULWpZbVZsQ1hSQVk2eElaZ2RvbENZVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIwNDgvcDRteS1YU3NNNDlR LWlOSVRyXzZBZ1JnekhFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAxBggrBgEFBQcBBwEB/wQiMCAwHgQCAAEw GAMEAmcJGAMEAmcJbAMEAmdHRAMEArTS1DANBgkqhkiG9w0BAQsFAAOCAQEAfwuG ZbkUPDGyoG8YUDO4l+bR9wd2n/QlpARiyRZbaqoK6tC2T+EVDDZr37hWpExOkeyl Tuht7pdyphe1LBfPISLZSeqOub6TwpVC6QQrgExZfMnC4Y0kRz5XqPVZfw7JvxbV Ij8HbxGGTGW10+cB0wd7oN9Zb4K3Rdoo7I0GD5BiKkaTMen1RylGRxMD9lr70qhR dNs0+MU+Fg2sNGBrxCBsK4VqbIXhPf3EOZUSTY59/AvLfN70PhnMRvAJIOrJOPKH zC+kSGg6PeAfOmbymAm41C+y9xyn6yH70/jQxBGN78cGqeYh7D/pIhFklWesT3Ai 1UItbDwlXqqcH72qGA== -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:59 2025 by rpki-client