$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/242/rv_gAjG_1H9fNLirCKsyP5M3UR4.roa File: rv_gAjG_1H9fNLirCKsyP5M3UR4.roa (raw, json) Hash identifier: dOQl+NMTbf19BuAJXCihoFrae8r62h4qO/73ud5Acnk= Subject key identifier: AE:FF:E0:02:31:BF:D4:7F:5F:34:B8:AB:08:AB:32:3F:93:37:51:1E Certificate issuer: /CN=0A6F972D24078F89088ED110A26DCDF90A9EBCEA Certificate serial: 1732 Authority key identifier: 0A:6F:97:2D:24:07:8F:89:08:8E:D1:10:A2:6D:CD:F9:0A:9E:BC:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Cm-XLSQHj4kIjtEQom3N-QqevOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/rv_gAjG_1H9fNLirCKsyP5M3UR4.roa Signing time: Sat 13 Sep 2025 03:08:05 +0000 ROA not before: Sat 13 Sep 2025 03:08:05 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 59.82.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/Cm-XLSQHj4kIjtEQom3N-QqevOo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/Cm-XLSQHj4kIjtEQom3N-QqevOo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Cm-XLSQHj4kIjtEQom3N-QqevOo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 04:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5938 (0x1732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A6F972D24078F89088ED110A26DCDF90A9EBCEA Validity Not Before: Sep 13 03:08:05 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=AEFFE00231BFD47F5F34B8AB08AB323F9337511E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:5e:06:5f:9e:1d:da:54:32:72:24:dd:9c: 7c:79:46:6f:29:9c:68:8c:52:c6:10:ac:fb:f5:fd: fa:e7:dd:a6:68:35:aa:2f:1b:4a:6b:ff:cb:b2:d6: 50:05:61:18:41:aa:0e:2d:f1:f9:96:64:ed:29:71: 20:65:78:68:f8:5a:1c:fa:84:22:67:e4:f7:38:f4: fa:14:de:45:a6:79:6c:2d:c9:07:67:b8:df:fd:55: 1b:df:c4:e4:be:d8:11:14:42:65:15:44:a6:7f:c7: ea:0f:bc:6f:ef:17:04:33:4c:87:23:3f:bf:ea:cd: 42:f3:3c:1c:c3:a1:b9:fc:c1:b8:8e:e4:3b:ad:b5: 54:96:12:58:aa:25:e1:bc:8f:d9:09:e9:91:21:60: da:a8:45:7e:1b:0f:a9:b8:8c:f9:8e:90:bd:3c:58: c1:e6:db:40:f2:22:3b:13:c5:b7:c9:00:88:7a:f4: fe:61:71:2b:65:41:8f:23:91:0f:e6:b4:b9:06:1f: a1:c1:d4:1a:fe:66:4f:51:46:d3:df:c1:83:e9:db: 06:54:63:c6:0f:43:1a:d0:57:61:8a:d7:50:f1:e7: 78:3b:52:1d:71:61:d9:7f:b3:27:8f:01:33:e4:31: 96:82:2c:df:32:2d:a2:50:36:7d:b6:47:7a:93:27: a3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FF:E0:02:31:BF:D4:7F:5F:34:B8:AB:08:AB:32:3F:93:37:51:1E X509v3 Authority Key Identifier: keyid:0A:6F:97:2D:24:07:8F:89:08:8E:D1:10:A2:6D:CD:F9:0A:9E:BC:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/Cm-XLSQHj4kIjtEQom3N-QqevOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Cm-XLSQHj4kIjtEQom3N-QqevOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/242/rv_gAjG_1H9fNLirCKsyP5M3UR4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.82.136.0/21 Signature Algorithm: sha256WithRSAEncryption 45:e3:8a:81:66:d2:30:7c:75:8b:5e:f2:5b:f3:91:f5:9f:3d: cf:9c:e6:cc:27:ad:68:dd:d6:5f:1b:98:5e:c1:d6:dc:1f:c2: 90:c8:e8:83:1f:66:1a:77:25:b0:e6:91:d4:e1:2f:5a:ca:43: 84:fa:13:04:b2:ec:b1:81:cc:4e:86:fe:39:e8:c0:31:ee:8f: 25:8b:1c:a6:74:90:3d:87:4f:ee:7f:cb:21:fd:61:95:6c:b9: 68:32:a7:c9:1e:b3:fb:9f:ce:4b:03:1e:77:ad:30:5f:aa:58: db:4c:65:c4:0b:8f:7a:43:d5:46:f8:9c:ba:d0:65:17:e6:9f: 22:17:ef:71:a5:88:ce:61:fc:70:1e:0b:50:ea:00:79:00:be: d9:0d:72:37:d9:cf:72:00:4f:a7:60:82:e7:29:3e:61:84:8c: 73:25:9a:37:aa:8d:4e:1f:03:bc:7a:a0:5f:f7:cf:19:42:1f: b1:0f:8d:e5:49:11:75:55:a0:b6:b8:f3:f5:88:79:25:cb:5a: 9c:40:8e:81:d3:55:98:0d:22:85:67:77:03:2e:a4:7a:81:80: 84:16:62:36:f0:e2:1e:cd:99:f7:be:a0:10:ea:d0:46:c0:05: bf:75:4b:e0:5c:e2:da:92:6a:57:44:7f:59:a6:12:c3:2e:aa: 1e:ce:14:00 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFzIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE2 Rjk3MkQyNDA3OEY4OTA4OEVEMTEwQTI2RENERjkwQTlFQkNFQTAeFw0yNTA5MTMw MzA4MDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFFRkZFMDAyMzFCRkQ0 N0Y1RjM0QjhBQjA4QUIzMjNGOTMzNzUxMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBmV4GX54d2lQyciTdnHx5Rm8pnGiMUsYQrPv1/frn3aZoNaov G0pr/8uy1lAFYRhBqg4t8fmWZO0pcSBleGj4Whz6hCJn5Pc49PoU3kWmeWwtyQdn uN/9VRvfxOS+2BEUQmUVRKZ/x+oPvG/vFwQzTIcjP7/qzULzPBzDobn8wbiO5Dut tVSWEliqJeG8j9kJ6ZEhYNqoRX4bD6m4jPmOkL08WMHm20DyIjsTxbfJAIh69P5h cStlQY8jkQ/mtLkGH6HB1Br+Zk9RRtPfwYPp2wZUY8YPQxrQV2GK11Dx53g7Uh1x Ydl/syePATPkMZaCLN8yLaJQNn22R3qTJ6NVAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUrv/gAjG/1H9fNLirCKsyP5M3UR4wHwYDVR0jBBgwFoAUCm+XLSQHj4kIjtEQ om3N+QqevOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQy L0NtLVhMU1FIajRrSWp0RVFvbTNOLVFxZXZPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvQ20tWExTUUhqNGtJanRFUW9tM04tUXFldk9vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjQyL3J2X2dBakdfMUg5Zk5M aXJDS3N5UDVNM1VSNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAM7UogwDQYJKoZIhvcNAQELBQADggEBAEXjioFm0jB8dYte8lvzkfWfPc+c5swn rWjd1l8bmF7B1twfwpDI6IMfZhp3JbDmkdThL1rKQ4T6EwSy7LGBzE6G/jnowDHu jyWLHKZ0kD2HT+5/yyH9YZVsuWgyp8kes/ufzksDHnetMF+qWNtMZcQLj3pD1Ub4 nLrQZRfmnyIX73GliM5h/HAeC1DqAHkAvtkNcjfZz3IAT6dggucpPmGEjHMlmjeq jU4fA7x6oF/3zxlCH7EPjeVJEXVVoLa48/WIeSXLWpxAjoHTVZgNIoVndwMupHqB gIQWYjbw4h7Nmfe+oBDq0EbABb91S+Bc4tqSaldEf1mmEsMuqh7OFAA= -----END CERTIFICATE-----Generated at Tue Oct 21 02:20:17 2025 by rpki-client