$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2154/V6CSeHmY5PoyF2DAnLSvowP5W7g.roa File: V6CSeHmY5PoyF2DAnLSvowP5W7g.roa (raw, json) Hash identifier: ixxjdmX9NayZGHWB7qwYCVGnmCyIAj0QVVH+7LNN9uM= Subject key identifier: 57:A0:92:78:79:98:E4:FA:32:17:60:C0:9C:B4:AF:A3:03:F9:5B:B8 Certificate issuer: /CN=E502DE2C6086A66284B80CDB7B5AC0C12CC3F3C2 Certificate serial: 0823 Authority key identifier: E5:02:DE:2C:60:86:A6:62:84:B8:0C:DB:7B:5A:C0:C1:2C:C3:F3:C2 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5QLeLGCGpmKEuAzbe1rAwSzD88I.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2154/V6CSeHmY5PoyF2DAnLSvowP5W7g.roa Signing time: Sat 13 Sep 2025 03:04:08 +0000 ROA not before: Sat 13 Sep 2025 03:04:08 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 63631 IP address blocks: 119.161.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2154/5QLeLGCGpmKEuAzbe1rAwSzD88I.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2154/5QLeLGCGpmKEuAzbe1rAwSzD88I.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5QLeLGCGpmKEuAzbe1rAwSzD88I.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 04:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2083 (0x823) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E502DE2C6086A66284B80CDB7B5AC0C12CC3F3C2 Validity Not Before: Sep 13 03:04:08 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=57A092787998E4FA321760C09CB4AFA303F95BB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3a:9f:dd:3c:d9:15:d7:f6:9d:90:de:2e:7e: 85:d6:3b:80:b5:3e:79:6e:b6:57:78:0b:57:2f:a9: 25:b5:99:2d:7a:ca:da:fb:2b:1e:08:15:7e:55:56: 3f:0c:06:02:ac:24:07:9f:0c:30:3a:93:f4:c3:52: 49:0a:fb:95:31:c2:0d:2e:21:09:02:26:ae:aa:dd: 95:4c:6d:ee:c9:17:08:99:73:ff:fd:14:6f:99:3b: 38:b2:5f:f8:24:77:ac:a8:63:8b:67:cc:1f:e1:6e: 2d:7a:2b:f5:95:56:6d:96:92:0d:aa:4d:17:01:3c: 9b:ca:27:60:68:68:af:f0:f0:be:4a:c7:0a:0c:2a: 1c:3f:ef:b7:5c:b1:3c:c3:69:fc:7a:c1:0f:a9:43: 87:88:08:3a:33:96:47:dd:eb:64:82:1c:bb:2e:6a: b6:da:65:40:4c:e3:2a:f5:1e:ab:43:9c:20:59:c2: 2c:cd:10:d6:0d:1c:65:4b:b6:1e:21:8a:df:b3:60: 8a:e2:e6:e5:70:88:47:d3:41:f2:99:15:31:e6:90: f7:47:06:cf:b0:b9:d0:55:51:33:c3:26:87:61:cc: 9f:44:2f:51:c4:74:75:09:28:99:be:82:c6:77:b7: 1b:a1:97:05:31:02:7b:ea:31:ee:58:61:7f:1b:ff: 48:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A0:92:78:79:98:E4:FA:32:17:60:C0:9C:B4:AF:A3:03:F9:5B:B8 X509v3 Authority Key Identifier: keyid:E5:02:DE:2C:60:86:A6:62:84:B8:0C:DB:7B:5A:C0:C1:2C:C3:F3:C2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2154/5QLeLGCGpmKEuAzbe1rAwSzD88I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5QLeLGCGpmKEuAzbe1rAwSzD88I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2154/V6CSeHmY5PoyF2DAnLSvowP5W7g.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.161.160.0/21 Signature Algorithm: sha256WithRSAEncryption a7:02:70:64:81:dc:41:0a:c4:79:d0:7d:0d:c2:4d:5b:7e:a3: 81:84:02:89:95:6d:b0:71:b3:25:4e:f9:d5:df:64:25:b9:31: e2:f9:1c:c6:ea:c8:88:aa:4f:43:30:74:50:8d:ec:2a:7b:11: 5c:ba:aa:9a:fc:3c:98:f6:6f:1d:a8:fb:b1:6e:31:a2:4e:31: c0:d6:cc:7f:4f:b7:84:ad:80:02:66:ae:95:3f:c5:0a:90:e2: 43:23:0a:9d:c4:09:16:e1:0e:af:ab:d7:f3:9e:32:ae:90:7a: 83:68:83:f1:1d:d7:31:5e:b3:99:1d:51:13:c2:8a:d2:af:2f: a9:2e:38:11:dc:cf:b1:8d:d9:49:45:ca:6d:59:5a:b4:2b:30: e9:3f:a5:7c:0f:51:d4:5d:31:9f:f3:66:be:4c:80:82:e3:b4: 46:b0:d6:29:a6:80:25:a0:c2:04:03:f8:fe:16:6d:7a:84:f0: 51:e9:ea:63:35:32:b4:e3:a6:45:7d:70:be:f4:52:36:a0:dc: ed:14:2a:84:16:b5:a8:11:55:5f:5a:63:71:9d:b4:91:a4:33: ae:95:3d:91:bd:9d:4d:c2:8d:80:76:6f:a3:0d:00:69:ee:53: 44:f4:2e:70:10:25:75:c1:e7:7c:74:4f:c1:f9:cc:7e:d7:43: c5:e7:ae:50 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICCCMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTUw MkRFMkM2MDg2QTY2Mjg0QjgwQ0RCN0I1QUMwQzEyQ0MzRjNDMjAeFw0yNTA5MTMw MzA0MDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDU3QTA5Mjc4Nzk5OEU0 RkEzMjE3NjBDMDlDQjRBRkEzMDNGOTVCQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6Op/dPNkV1/adkN4ufoXWO4C1Pnlutld4C1cvqSW1mS16ytr7 Kx4IFX5VVj8MBgKsJAefDDA6k/TDUkkK+5Uxwg0uIQkCJq6q3ZVMbe7JFwiZc//9 FG+ZOziyX/gkd6yoY4tnzB/hbi16K/WVVm2Wkg2qTRcBPJvKJ2BoaK/w8L5KxwoM Khw/77dcsTzDafx6wQ+pQ4eICDozlkfd62SCHLsuarbaZUBM4yr1HqtDnCBZwizN ENYNHGVLth4hit+zYIri5uVwiEfTQfKZFTHmkPdHBs+wudBVUTPDJodhzJ9EL1HE dHUJKJm+gsZ3txuhlwUxAnvqMe5YYX8b/0gvAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUV6CSeHmY5PoyF2DAnLSvowP5W7gwHwYDVR0jBBgwFoAU5QLeLGCGpmKEuAzb e1rAwSzD88IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjE1 NC81UUxlTEdDR3BtS0V1QXpiZTFyQXdTekQ4OEkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVRTGVMR0NHcG1LRXVBemJlMXJBd1N6RDg4SS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzIxNTQvVjZDU2VIbVk1UG95 RjJEQW5MU3Zvd1A1VzdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3ehoDANBgkqhkiG9w0BAQsFAAOCAQEApwJwZIHcQQrEedB9DcJNW36jgYQC iZVtsHGzJU751d9kJbkx4vkcxurIiKpPQzB0UI3sKnsRXLqqmvw8mPZvHaj7sW4x ok4xwNbMf0+3hK2AAmaulT/FCpDiQyMKncQJFuEOr6vX854yrpB6g2iD8R3XMV6z mR1RE8KK0q8vqS44EdzPsY3ZSUXKbVlatCsw6T+lfA9R1F0xn/NmvkyAguO0RrDW KaaAJaDCBAP4/hZteoTwUenqYzUytOOmRX1wvvRSNqDc7RQqhBa1qBFVX1pjcZ20 kaQzrpU9kb2dTcKNgHZvow0Aae5TRPQucBAldcHnfHRPwfnMftdDxeeuUA== -----END CERTIFICATE-----Generated at Tue Oct 21 01:56:57 2025 by rpki-client