$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2122/wzc_WUpsJHBOC5bXT23rsnwLlEA.roa File: wzc_WUpsJHBOC5bXT23rsnwLlEA.roa (raw, json) Hash identifier: oUk+TLMKhpxuLg7x60Ebk+2ZtJtK58RY+A4bPMMhRb8= Subject key identifier: C3:37:3F:59:4A:6C:24:70:4E:0B:96:D7:4F:6D:EB:B2:7C:0B:94:40 Certificate issuer: /CN=88884D4D4A75F17F08DD44CBA9592FE70F539D97 Certificate serial: 20AD Authority key identifier: 88:88:4D:4D:4A:75:F1:7F:08:DD:44:CB:A9:59:2F:E7:0F:53:9D:97 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/wzc_WUpsJHBOC5bXT23rsnwLlEA.roa Signing time: Sat 13 Sep 2025 03:05:50 +0000 ROA not before: Sat 13 Sep 2025 03:05:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 63641 IP address blocks: 123.49.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8365 (0x20ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88884D4D4A75F17F08DD44CBA9592FE70F539D97 Validity Not Before: Sep 13 03:05:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C3373F594A6C24704E0B96D74F6DEBB27C0B9440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:ff:f9:c8:b2:55:dd:41:8c:3f:ea:75:c8: 6e:91:1e:75:c5:00:51:f4:fb:ea:d8:ad:cd:b4:9d: 51:d7:16:9e:b7:93:bf:ab:16:b3:6e:28:3e:51:1d: 8f:c5:6a:6a:47:0e:fd:7b:4c:a4:f4:51:cb:9e:88: 08:bb:d9:0b:f3:9b:2d:c3:b2:55:4e:4e:cb:a0:01: ee:f5:fc:e4:85:75:97:24:a9:d6:40:cd:b3:8c:e1: 7b:fa:c2:bd:07:e6:b9:2f:4b:2d:15:a1:41:91:3c: 60:51:1e:a6:5b:35:72:20:1a:18:f2:34:c9:9e:dc: 09:a3:a6:46:a8:ea:ef:e5:48:be:ec:0a:d4:ad:98: 4c:bb:f9:ab:9a:10:49:04:3e:49:88:bb:56:39:25: 97:15:c4:a0:ed:7b:f5:d5:f0:82:6d:2f:12:8f:65: 7c:2c:99:a5:b0:3f:6e:60:f5:91:3d:93:e6:f4:8e: ba:14:de:f5:c5:e9:80:f1:c6:17:74:a5:40:14:9f: ca:b4:27:09:f8:29:cb:da:f2:98:c1:c9:e2:e3:a2: 34:1a:75:44:a5:ad:d6:59:cb:5c:c8:8c:16:6c:40: d9:58:1a:2d:8f:db:60:12:09:b1:1d:8d:d3:65:48: e3:99:4e:ef:bb:86:e5:c7:75:fa:84:c7:f5:d7:dc: 35:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:37:3F:59:4A:6C:24:70:4E:0B:96:D7:4F:6D:EB:B2:7C:0B:94:40 X509v3 Authority Key Identifier: keyid:88:88:4D:4D:4A:75:F1:7F:08:DD:44:CB:A9:59:2F:E7:0F:53:9D:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/iIhNTUp18X8I3UTLqVkv5w9TnZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iIhNTUp18X8I3UTLqVkv5w9TnZc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2122/wzc_WUpsJHBOC5bXT23rsnwLlEA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.49.246.0/24 Signature Algorithm: sha256WithRSAEncryption 37:0a:e5:c4:bf:ed:b2:e9:dc:a0:a6:bf:57:09:68:2a:9d:26: 3a:9d:5b:87:f8:0a:9b:cc:98:c1:bf:50:d2:d9:4f:39:5d:33: 6a:10:20:2d:65:ea:bd:ea:5b:e1:a5:09:f0:f6:70:b2:b5:ce: 99:23:23:90:c3:dc:a0:7f:2f:bb:64:2a:71:1d:eb:25:7e:d8: 57:be:02:9a:c4:42:f6:26:08:8e:bf:c6:53:6a:bb:8d:92:6a: 8b:ec:75:6b:d1:09:c9:8f:14:82:9b:94:89:43:41:4f:b4:97: 75:96:d3:ec:15:00:33:04:8d:42:a1:d6:65:fe:ca:4e:9b:b1: e1:88:1c:6f:2b:46:f0:64:fe:b8:c9:67:1d:b7:e8:b3:a1:23: 1d:6a:b1:12:1c:8a:5d:76:23:ec:39:09:86:76:67:2e:42:be: 21:d5:53:2b:08:75:6b:2c:b5:63:f4:4b:03:bc:86:1e:06:08: 08:a0:d5:73:5e:27:81:6c:36:08:cb:d3:97:f9:cc:51:70:fe: 2a:b0:c3:36:82:ce:74:b4:3c:ea:4d:52:74:5e:0c:09:86:da: 64:6c:2a:0f:0b:c9:17:f1:8a:93:c1:6d:ad:45:3d:1e:73:8a: 35:8b:fa:9f:66:d8:3c:17:61:7e:fb:70:92:8d:52:e7:bf:eb: e3:fd:18:2d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODg4 ODRENEQ0QTc1RjE3RjA4REQ0NENCQTk1OTJGRTcwRjUzOUQ5NzAeFw0yNTA5MTMw MzA1NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEMzMzczRjU5NEE2QzI0 NzA0RTBCOTZENzRGNkRFQkIyN0MwQjk0NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4+P/5yLJV3UGMP+p1yG6RHnXFAFH0++rYrc20nVHXFp63k7+r FrNuKD5RHY/FampHDv17TKT0UcueiAi72Qvzmy3DslVOTsugAe71/OSFdZckqdZA zbOM4Xv6wr0H5rkvSy0VoUGRPGBRHqZbNXIgGhjyNMme3Amjpkao6u/lSL7sCtSt mEy7+auaEEkEPkmIu1Y5JZcVxKDte/XV8IJtLxKPZXwsmaWwP25g9ZE9k+b0jroU 3vXF6YDxxhd0pUAUn8q0Jwn4Kcva8pjByeLjojQadUSlrdZZy1zIjBZsQNlYGi2P 22ASCbEdjdNlSOOZTu+7huXHdfqEx/XX3DU5AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUwzc/WUpsJHBOC5bXT23rsnwLlEAwHwYDVR0jBBgwFoAUiIhNTUp18X8I3UTL qVkv5w9TnZcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjEy Mi9pSWhOVFVwMThYOEkzVVRMcVZrdjV3OVRuWmMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2lJaE5UVXAxOFg4STNVVExxVmt2NXc5VG5aYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxMjIvd3pjX1dVcHNKSEJP QzViWFQyM3JzbndMbEVBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHsx9jANBgkqhkiG9w0BAQsFAAOCAQEANwrlxL/tsuncoKa/VwloKp0mOp1b h/gKm8yYwb9Q0tlPOV0zahAgLWXqvepb4aUJ8PZwsrXOmSMjkMPcoH8vu2QqcR3r JX7YV74CmsRC9iYIjr/GU2q7jZJqi+x1a9EJyY8UgpuUiUNBT7SXdZbT7BUAMwSN QqHWZf7KTpux4YgcbytG8GT+uMlnHbfos6EjHWqxEhyKXXYj7DkJhnZnLkK+IdVT Kwh1ayy1Y/RLA7yGHgYICKDVc14ngWw2CMvTl/nMUXD+KrDDNoLOdLQ86k1SdF4M CYbaZGwqDwvJF/GKk8FtrUU9HnOKNYv6n2bYPBdhfvtwko1S57/r4/0YLQ== -----END CERTIFICATE-----Generated at Mon Oct 20 22:35:59 2025 by rpki-client