$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/27/8h30GBA3h4n0nrMTSP0xr0y7b_o.roa File: 8h30GBA3h4n0nrMTSP0xr0y7b_o.roa (raw, json) Hash identifier: 9cfhHU+BjNybxApiI/hSLUqpXkVi5pN6Lvjf+RUUdws= Subject key identifier: F2:1D:F4:18:10:37:87:89:F4:9E:B3:13:48:FD:31:AF:4C:BB:6F:FA Certificate issuer: /CN=39E47899249325DB499BFC6910919D2F36003E9A Certificate serial: 1F83 Authority key identifier: 39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/8h30GBA3h4n0nrMTSP0xr0y7b_o.roa Signing time: Sat 13 Sep 2025 03:05:47 +0000 ROA not before: Sat 13 Sep 2025 03:05:47 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 17964 IP address blocks: 2403:8080::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8067 (0x1f83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39E47899249325DB499BFC6910919D2F36003E9A Validity Not Before: Sep 13 03:05:47 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F21DF41810378789F49EB31348FD31AF4CBB6FFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:54:a3:e5:10:34:e7:b0:25:3e:83:01:de:66: 1b:eb:52:2c:aa:79:3b:ef:fb:0f:a9:31:a8:dc:68: c8:53:f9:c0:2d:9f:6d:07:e3:71:91:44:46:d3:cc: 86:54:22:0c:01:14:56:bf:41:2c:d7:92:42:ec:91: 8a:51:44:3d:d8:94:0a:54:5d:53:39:11:89:3c:f9: 70:14:4d:eb:97:54:b2:f8:da:9a:6c:ae:df:02:e7: ff:0c:da:f0:c5:52:3d:db:ce:25:eb:fb:40:f1:94: 82:06:66:85:25:47:7b:83:eb:bb:0a:8c:3f:64:c1: fc:67:fc:75:a3:dc:bd:85:a7:ef:cb:5c:7b:c1:85: 3d:c9:e7:f4:ef:57:d4:64:3a:9c:70:ce:8e:ec:78: c8:cf:e9:b8:2e:79:ae:a9:f2:26:bc:9a:5f:40:96: 19:c6:42:c5:70:b7:b5:5c:75:22:90:bf:e0:83:1e: 8b:4d:a7:ce:b2:76:74:4f:c5:65:aa:ab:f2:71:44: 0e:dd:92:b0:a6:a2:56:ba:d5:d0:b7:99:69:60:9f: 13:b7:c3:6d:fe:ea:75:19:4f:fd:6b:4f:59:b6:6e: 2a:8e:3b:fb:8b:59:24:69:07:db:b4:92:f8:d9:e7: de:b3:6a:97:63:05:28:0a:c8:50:b8:5a:cc:d0:e9: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1D:F4:18:10:37:87:89:F4:9E:B3:13:48:FD:31:AF:4C:BB:6F:FA X509v3 Authority Key Identifier: keyid:39:E4:78:99:24:93:25:DB:49:9B:FC:69:10:91:9D:2F:36:00:3E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/OeR4mSSTJdtJm_xpEJGdLzYAPpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/OeR4mSSTJdtJm_xpEJGdLzYAPpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/27/8h30GBA3h4n0nrMTSP0xr0y7b_o.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8080::/32 Signature Algorithm: sha256WithRSAEncryption 71:32:90:fb:ea:a2:5e:f2:68:60:95:52:29:b4:aa:3b:9c:4b: c4:5d:02:51:40:6b:0f:ee:53:3a:d0:fb:30:29:53:4b:5d:e4: cd:8c:aa:3e:20:73:6e:82:ce:78:e8:1a:bb:cd:6b:d0:fa:7f: 6c:63:4e:9f:6a:4e:e7:04:b3:f9:37:f8:2a:19:04:f3:b8:75: 63:14:da:0c:33:84:f4:dc:16:7f:3c:16:c6:07:c8:6f:20:70: f5:bd:68:ed:e2:07:28:0c:a5:c4:02:c2:54:e7:fa:27:9c:b9: f4:a8:3d:cb:5a:f6:85:81:f3:b3:b9:b7:97:ab:91:e9:fc:0c: cd:e1:22:fa:1f:d5:e1:99:8d:e3:3d:93:07:73:1e:a4:a4:63: de:46:45:7a:e9:a4:fd:d6:50:22:3f:3f:cb:4f:10:40:29:5f: be:38:25:0b:40:35:bc:c2:eb:d6:68:04:50:2f:0c:12:8c:ae: 4c:14:9b:ad:2c:1b:8f:18:a9:80:43:cb:20:54:40:9d:c9:c2: b2:08:d5:c9:4c:92:d0:ee:6b:09:01:1f:e5:a0:fe:0d:13:71: 26:14:fa:6c:ff:f7:d2:4d:b7:f9:02:4c:8c:01:f9:db:2d:63: 83:c0:7a:f7:51:b8:ff:64:15:8e:bb:63:60:db:e9:35:06:bf: ff:e7:de:ed -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICH4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF NDc4OTkyNDkzMjVEQjQ5OUJGQzY5MTA5MTlEMkYzNjAwM0U5QTAeFw0yNTA5MTMw MzA1NDdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEYyMURGNDE4MTAzNzg3 ODlGNDlFQjMxMzQ4RkQzMUFGNENCQjZGRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhVKPlEDTnsCU+gwHeZhvrUiyqeTvv+w+pMajcaMhT+cAtn20H 43GRREbTzIZUIgwBFFa/QSzXkkLskYpRRD3YlApUXVM5EYk8+XAUTeuXVLL42pps rt8C5/8M2vDFUj3bziXr+0DxlIIGZoUlR3uD67sKjD9kwfxn/HWj3L2Fp+/LXHvB hT3J5/TvV9RkOpxwzo7seMjP6bguea6p8ia8ml9AlhnGQsVwt7VcdSKQv+CDHotN p86ydnRPxWWqq/JxRA7dkrCmola61dC3mWlgnxO3w23+6nUZT/1rT1m2biqOO/uL WSRpB9u0kvjZ596zapdjBSgKyFC4WszQ6W6PAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU8h30GBA3h4n0nrMTSP0xr0y7b/owHwYDVR0jBBgwFoAUOeR4mSSTJdtJm/xp EJGdLzYAPpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcv T2VSNG1TU1RKZHRKbV94cEVKR2RMellBUHBvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9PZVI0bVNTVEpkdEptX3hwRUpHZEx6WUFQcG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yNy84aDMwR0JBM2g0bjBuck1U U1AweHIweTdiX28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA JAOAgDANBgkqhkiG9w0BAQsFAAOCAQEAcTKQ++qiXvJoYJVSKbSqO5xLxF0CUUBr D+5TOtD7MClTS13kzYyqPiBzboLOeOgau81r0Pp/bGNOn2pO5wSz+Tf4KhkE87h1 YxTaDDOE9NwWfzwWxgfIbyBw9b1o7eIHKAylxALCVOf6J5y59Kg9y1r2hYHzs7m3 l6uR6fwMzeEi+h/V4ZmN4z2TB3MepKRj3kZFeumk/dZQIj8/y08QQClfvjglC0A1 vMLr1mgEUC8MEoyuTBSbrSwbjxipgEPLIFRAncnCsgjVyUyS0O5rCQEf5aD+DRNx JhT6bP/30k23+QJMjAH52y1jg8B691G4/2QVjrtjYNvpNQa//+fe7Q== -----END CERTIFICATE-----Generated at Mon Oct 20 20:49:12 2025 by rpki-client