$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2564/aP6HMIRMVaJb-HQCxP3ZEw8fy-c.roa File: aP6HMIRMVaJb-HQCxP3ZEw8fy-c.roa (raw, json) Hash identifier: fXEKdM5uTD2uZfbp7AsKEXmMlsEMvfXlWleKalWUB0Q= Subject key identifier: 68:FE:87:30:84:4C:55:A2:5B:F8:74:02:C4:FD:D9:13:0F:1F:CB:E7 Certificate issuer: /CN=6A21A11AAC4EAE0A630659B31A230B08D6B58177 Certificate serial: 2079 Authority key identifier: 6A:21:A1:1A:AC:4E:AE:0A:63:06:59:B3:1A:23:0B:08:D6:B5:81:77 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aP6HMIRMVaJb-HQCxP3ZEw8fy-c.roa Signing time: Sat 13 Sep 2025 03:10:26 +0000 ROA not before: Sat 13 Sep 2025 03:10:26 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 131530 IP address blocks: 103.98.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aiGhGqxOrgpjBlmzGiMLCNa1gXc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aiGhGqxOrgpjBlmzGiMLCNa1gXc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8313 (0x2079) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A21A11AAC4EAE0A630659B31A230B08D6B58177 Validity Not Before: Sep 13 03:10:26 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=68FE8730844C55A25BF87402C4FDD9130F1FCBE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e2:d5:11:8f:b9:f6:64:af:41:c7:f1:1b:4f: 2e:13:31:05:8f:58:c4:d9:e5:da:ec:ec:c5:98:2d: 56:23:9b:4c:38:bc:dc:32:fb:a4:9e:0c:c6:36:66: 5b:89:37:d3:14:49:08:4c:40:67:b5:55:d9:a6:76: d7:8b:4d:fe:c3:40:f3:48:87:57:b2:df:31:e3:40: c8:74:4a:a5:f1:af:1a:2b:17:a6:6d:3c:5e:f5:70: ed:8e:7c:be:2f:e3:98:0a:20:cc:44:f3:86:e5:9b: 73:4f:ab:e1:85:ba:be:dd:b2:e4:87:e5:df:74:07: eb:39:b2:09:64:fe:66:de:50:dd:5b:08:40:23:a4: 17:db:89:4c:13:ad:96:c4:8f:97:76:fd:4e:c5:a8: 09:8a:ce:7f:e4:a8:5b:64:94:6b:81:f8:6e:b2:61: cb:f1:16:32:27:57:2d:a5:cc:c0:4a:db:4a:26:c6: 19:2b:26:2e:ec:ac:72:31:44:b4:9f:1d:3e:c0:6b: 3d:c0:3e:cc:50:d1:6c:19:b1:72:bb:61:ff:40:87: ea:2e:3f:bc:1d:a0:61:cb:28:43:32:8f:16:8b:23: 8f:97:1a:7e:cf:29:22:ed:32:60:24:40:3f:eb:1c: bf:f1:b8:25:c0:39:ea:ac:43:3f:65:cc:45:23:d9: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FE:87:30:84:4C:55:A2:5B:F8:74:02:C4:FD:D9:13:0F:1F:CB:E7 X509v3 Authority Key Identifier: keyid:6A:21:A1:1A:AC:4E:AE:0A:63:06:59:B3:1A:23:0B:08:D6:B5:81:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aiGhGqxOrgpjBlmzGiMLCNa1gXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/aiGhGqxOrgpjBlmzGiMLCNa1gXc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2564/aP6HMIRMVaJb-HQCxP3ZEw8fy-c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.98.164.0/22 Signature Algorithm: sha256WithRSAEncryption 30:0c:b3:42:fa:52:34:1b:3d:9c:0b:ec:f9:2b:74:97:06:7a: 78:c0:32:52:8e:8f:28:5a:cd:02:77:8a:96:24:d8:08:8b:ee: 03:f4:d4:a5:68:1a:07:3f:b7:8c:38:9e:0b:18:27:31:a5:87: 06:6b:70:af:62:18:09:de:65:b7:38:0a:49:31:f6:7a:83:dd: 14:9a:50:9c:65:0e:44:05:f1:37:29:3e:af:3a:f4:c9:cb:a7: e2:55:d3:1b:db:fb:cd:97:fa:e6:06:69:b1:e3:01:4e:15:c2: f1:b2:12:22:b2:e9:6b:6c:60:af:b3:8a:8e:a3:5a:cd:07:98: 35:23:18:8a:87:c2:b7:8c:86:99:cb:7b:76:ac:83:20:17:13: 08:6b:2d:56:9d:4c:1f:46:f8:88:d9:a0:a0:f6:c9:95:69:ef: 72:d7:96:bb:b4:29:0d:61:fa:6f:6d:cc:1a:dd:57:c2:26:43: 6b:f0:1b:2b:db:32:e5:75:2c:14:1d:fd:46:5e:a2:55:a9:6a: 45:c3:8c:2a:60:73:49:99:ca:9b:01:18:9d:0b:59:3c:17:8f: 62:a7:40:9a:13:09:e4:6b:bc:fd:cb:dc:1f:c6:19:e5:bb:8f: 3b:72:dd:be:ae:75:91:2b:f4:ea:d6:74:79:e5:d8:c8:7b:1a: 7b:e7:e9:0f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEy MUExMUFBQzRFQUUwQTYzMDY1OUIzMUEyMzBCMDhENkI1ODE3NzAeFw0yNTA5MTMw MzEwMjZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDY4RkU4NzMwODQ0QzU1 QTI1QkY4NzQwMkM0RkREOTEzMEYxRkNCRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC64tURj7n2ZK9Bx/EbTy4TMQWPWMTZ5drs7MWYLVYjm0w4vNwy +6SeDMY2ZluJN9MUSQhMQGe1VdmmdteLTf7DQPNIh1ey3zHjQMh0SqXxrxorF6Zt PF71cO2OfL4v45gKIMxE84blm3NPq+GFur7dsuSH5d90B+s5sglk/mbeUN1bCEAj pBfbiUwTrZbEj5d2/U7FqAmKzn/kqFtklGuB+G6yYcvxFjInVy2lzMBK20omxhkr Ji7srHIxRLSfHT7Aaz3APsxQ0WwZsXK7Yf9Ah+ouP7wdoGHLKEMyjxaLI4+XGn7P KSLtMmAkQD/rHL/xuCXAOeqsQz9lzEUj2ZvxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUaP6HMIRMVaJb+HQCxP3ZEw8fy+cwHwYDVR0jBBgwFoAUaiGhGqxOrgpjBlmz GiMLCNa1gXcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjU2 NC9haUdoR3F4T3JncGpCbG16R2lNTENOYTFnWGMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2FpR2hHcXhPcmdwakJsbXpHaU1MQ05hMWdYYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI1NjQvYVA2SE1JUk1WYUpi LUhRQ3hQM1pFdzhmeS1jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdipDANBgkqhkiG9w0BAQsFAAOCAQEAMAyzQvpSNBs9nAvs+St0lwZ6eMAy Uo6PKFrNAneKliTYCIvuA/TUpWgaBz+3jDieCxgnMaWHBmtwr2IYCd5ltzgKSTH2 eoPdFJpQnGUORAXxNyk+rzr0ycun4lXTG9v7zZf65gZpseMBThXC8bISIrLpa2xg r7OKjqNazQeYNSMYiofCt4yGmct7dqyDIBcTCGstVp1MH0b4iNmgoPbJlWnvcteW u7QpDWH6b23MGt1XwiZDa/AbK9sy5XUsFB39Rl6iValqRcOMKmBzSZnKmwEYnQtZ PBePYqdAmhMJ5Gu8/cvcH8YZ5buPO3Ldvq51kSv06tZ0eeXYyHsae+fpDw== -----END CERTIFICATE-----Generated at Mon Oct 20 17:52:05 2025 by rpki-client