$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2738/hR5WgWlycencAbMn7kinM4GgA5Y.roa File: hR5WgWlycencAbMn7kinM4GgA5Y.roa (raw, json) Hash identifier: Zo+G1xkgkRarijdTBQlPLvHTGIBYjF9dgtJgCZVrDLM= Subject key identifier: 85:1E:56:81:69:72:71:E9:DC:01:B3:27:EE:48:A7:33:81:A0:03:96 Certificate issuer: /CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Certificate serial: 173F Authority key identifier: 8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/hR5WgWlycencAbMn7kinM4GgA5Y.roa Signing time: Sat 13 Sep 2025 03:04:13 +0000 ROA not before: Sat 13 Sep 2025 03:04:13 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 137798 IP address blocks: 103.116.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 04:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5951 (0x173f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E3E027142C633D56598418DF6DEBC01BDD8008C Validity Not Before: Sep 13 03:04:13 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=851E5681697271E9DC01B327EE48A73381A00396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:7f:0f:d8:21:eb:1e:e0:71:35:3e:84:32: ed:4f:6f:43:f2:01:90:04:09:8e:fe:dd:01:c5:7d: d1:28:8a:01:69:03:58:0e:0b:1a:07:c6:22:8e:4d: ac:5e:49:6b:be:fc:6e:64:23:96:e2:ae:1f:3c:55: 18:2b:17:96:f5:96:0e:fd:77:e2:4d:f5:ed:a8:06: 61:c9:37:06:e4:07:da:57:9f:fb:27:ab:48:40:81: ff:6e:e8:42:cd:77:2d:ea:13:30:20:12:68:87:2e: dd:ed:a7:f1:67:1f:de:09:1f:b7:2f:2a:22:fc:74: 26:b4:6a:77:a5:75:6d:c9:31:06:81:be:fc:13:c1: f9:a0:bb:29:4f:81:aa:4a:c4:9b:ae:8d:41:2b:1d: 4c:76:24:6a:0b:c5:6d:20:64:75:43:ee:37:d1:ff: 41:3b:93:ed:9e:75:ce:23:73:0c:88:10:66:61:96: eb:37:4b:d2:f0:8a:cd:01:5d:5f:bb:88:aa:a1:64: 61:7b:a2:b1:34:cd:5c:a1:c5:39:c1:e5:6d:c4:65: 89:b8:59:21:e9:98:34:71:4a:21:52:a4:5f:02:55: 0b:ed:69:cd:eb:eb:ec:03:6e:ac:0e:f8:fe:e3:54: 8f:06:87:f4:cc:4e:06:dd:50:87:57:60:98:74:7d: 35:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1E:56:81:69:72:71:E9:DC:01:B3:27:EE:48:A7:33:81:A0:03:96 X509v3 Authority Key Identifier: keyid:8E:3E:02:71:42:C6:33:D5:65:98:41:8D:F6:DE:BC:01:BD:D8:00:8C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/jj4CcULGM9VlmEGN9t68Ab3YAIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/jj4CcULGM9VlmEGN9t68Ab3YAIw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2738/hR5WgWlycencAbMn7kinM4GgA5Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.92.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:87:f7:3b:86:61:ec:73:7c:7d:a5:45:ee:1d:b3:d8:de:28: 2e:f9:0a:be:92:9b:34:6f:2a:23:d4:0c:f3:e9:9a:e1:0b:d6: 36:28:cc:8d:c4:76:66:28:55:f6:c7:6d:08:5e:67:f1:03:25: 6d:34:b8:96:e3:ba:22:7c:42:66:2f:14:98:d0:22:58:b8:06: b0:d5:8e:d6:da:20:a6:d0:37:1a:c8:b9:e5:9b:ad:b0:d4:bf: 13:18:d8:cc:23:dd:65:ad:4f:f7:c2:92:3e:f6:2b:6d:4a:94: fe:98:03:41:6c:96:52:03:8e:8f:b2:8b:17:6a:ed:3a:b9:ad: ec:ac:c6:a3:e0:7d:54:ed:47:6b:91:01:f1:de:1a:fd:2f:e8: 7f:fe:14:62:5e:d7:4e:ae:e3:7f:9a:0f:ad:ae:1e:ca:81:15: bc:3c:fc:3e:cd:88:1b:3d:94:c7:06:3a:f4:67:2f:ca:6c:79: e5:4b:e1:a3:c4:ba:b8:ad:a6:e6:73:9f:cf:12:b9:00:57:77: 90:97:f7:3f:22:fb:6e:94:59:a1:29:a5:8c:dc:1a:5d:a0:60: 77:c5:29:ad:1e:71:c6:c7:73:17:82:ab:9f:8b:06:11:22:fb: f5:a1:1e:24:85:30:62:b3:87:08:29:ab:e8:53:1a:1d:29:9a: 8c:85:d9:65 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFz8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEUz RTAyNzE0MkM2MzNENTY1OTg0MThERjZERUJDMDFCREQ4MDA4QzAeFw0yNTA5MTMw MzA0MTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDg1MUU1NjgxNjk3Mjcx RTlEQzAxQjMyN0VFNDhBNzMzODFBMDAzOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzvH8P2CHrHuBxNT6EMu1Pb0PyAZAECY7+3QHFfdEoigFpA1gO CxoHxiKOTaxeSWu+/G5kI5birh88VRgrF5b1lg79d+JN9e2oBmHJNwbkB9pXn/sn q0hAgf9u6ELNdy3qEzAgEmiHLt3tp/FnH94JH7cvKiL8dCa0aneldW3JMQaBvvwT wfmguylPgapKxJuujUErHUx2JGoLxW0gZHVD7jfR/0E7k+2edc4jcwyIEGZhlus3 S9Lwis0BXV+7iKqhZGF7orE0zVyhxTnB5W3EZYm4WSHpmDRxSiFSpF8CVQvtac3r 6+wDbqwO+P7jVI8Gh/TMTgbdUIdXYJh0fTV1AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUhR5WgWlycencAbMn7kinM4GgA5YwHwYDVR0jBBgwFoAUjj4CcULGM9VlmEGN 9t68Ab3YAIwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcz OC9qajRDY1VMR005VmxtRUdOOXQ2OEFiM1lBSXcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2pqNENjVUxHTTlWbG1FR045dDY4QWIzWUFJdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MzgvaFI1V2dXbHljZW5j QWJNbjdraW5NNEdnQTVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGd0XDANBgkqhkiG9w0BAQsFAAOCAQEADof3O4Zh7HN8faVF7h2z2N4oLvkK vpKbNG8qI9QM8+ma4QvWNijMjcR2ZihV9sdtCF5n8QMlbTS4luO6InxCZi8UmNAi WLgGsNWO1togptA3Gsi55ZutsNS/ExjYzCPdZa1P98KSPvYrbUqU/pgDQWyWUgOO j7KLF2rtOrmt7KzGo+B9VO1Ha5EB8d4a/S/of/4UYl7XTq7jf5oPra4eyoEVvDz8 Ps2IGz2UxwY69Gcvymx55Uvho8S6uK2m5nOfzxK5AFd3kJf3PyL7bpRZoSmljNwa XaBgd8UprR5xxsdzF4Krn4sGESL79aEeJIUwYrOHCCmr6FMaHSmajIXZZQ== -----END CERTIFICATE-----Generated at Tue Oct 21 02:18:33 2025 by rpki-client