$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2793/Jjq7lUGmENI2hGsHBVMBajc7AM0.roa File: Jjq7lUGmENI2hGsHBVMBajc7AM0.roa (raw, json) Hash identifier: p6PoxLf28mqVaxNc2P0/8WawjpfYf7LL9ddnWyfyznY= Subject key identifier: 26:3A:BB:95:41:A6:10:D2:36:84:6B:07:05:53:01:6A:37:3B:00:CD Certificate issuer: /CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033 Certificate serial: 2058 Authority key identifier: D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/Jjq7lUGmENI2hGsHBVMBajc7AM0.roa Signing time: Sat 13 Sep 2025 03:10:13 +0000 ROA not before: Sat 13 Sep 2025 03:10:13 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 38344 IP address blocks: 103.9.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8280 (0x2058) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6C5C18CCE6030730BC222AB17F4E3D8F1603033 Validity Not Before: Sep 13 03:10:13 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=263ABB9541A610D236846B070553016A373B00CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2e:92:e5:56:ef:f9:bc:77:b5:98:a6:aa:10: 43:3f:38:65:a4:9c:9d:86:e2:04:e0:6f:dc:f2:87: 64:15:1c:4b:34:88:2f:b2:de:d8:e2:ca:e1:e3:b0: c5:2d:4d:4a:a6:df:bc:af:b1:f4:56:cb:df:e4:ce: 43:33:67:01:33:70:5c:00:60:fd:ac:e7:4e:a1:38: 38:c8:69:dc:34:17:21:fd:3f:4b:82:50:4c:4a:a0: 09:3f:42:f0:01:65:f9:12:84:87:3c:21:70:59:e8: fe:c1:20:a2:7e:53:45:b3:98:cf:4a:a7:35:21:22: d5:db:cb:03:0a:da:67:ed:e6:74:63:30:4a:b8:db: de:ea:02:a3:2a:4d:b7:ee:de:53:1b:2d:56:ec:15: d6:08:8e:dc:71:5b:d2:79:1e:fb:44:ea:c4:84:b1: 13:29:bc:ae:cc:fc:86:3b:73:4c:7a:20:91:a7:6a: 3d:90:ac:45:b7:25:50:6c:c7:92:a0:77:b6:6d:b7: b8:57:90:b3:72:ff:e3:00:d4:ae:8c:06:b9:80:32: a8:40:16:66:3e:8d:86:2e:fe:99:7c:3e:ce:1d:4b: 9d:dd:51:3b:b4:69:ad:40:11:26:59:d4:1e:2e:6e: 7a:7b:2d:3c:b6:e9:1d:ea:2d:11:c3:83:18:cf:db: 8b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3A:BB:95:41:A6:10:D2:36:84:6B:07:05:53:01:6A:37:3B:00:CD X509v3 Authority Key Identifier: keyid:D6:C5:C1:8C:CE:60:30:73:0B:C2:22:AB:17:F4:E3:D8:F1:60:30:33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1sXBjM5gMHMLwiKrF_Tj2PFgMDM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2793/Jjq7lUGmENI2hGsHBVMBajc7AM0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.9.152.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a0:9f:10:30:d7:12:db:67:ad:c9:40:5b:52:90:71:78:0e: fd:d9:79:a7:1a:43:66:60:b1:ea:e6:ba:ec:57:2f:37:0b:95: 24:d8:f4:b6:53:9f:d2:b9:b7:c4:9b:5d:8a:e7:2b:53:f0:0e: 10:55:98:82:23:83:af:b0:8b:61:fa:95:05:63:ba:cc:11:24: 34:6f:89:f1:a3:88:75:6d:0e:26:58:19:f9:69:25:05:68:80: 69:b3:cb:74:f8:67:bf:1a:64:bc:72:b1:3a:52:7d:ef:77:65: ce:07:03:e9:0d:a0:50:95:b2:96:67:65:66:c1:86:5f:e9:f7: 80:88:ae:77:ca:a6:2b:39:85:2f:32:fc:b4:a7:57:dd:07:de: 00:b4:55:1d:e7:d6:c4:b3:71:42:0f:b1:b1:8a:58:8b:51:07: 33:a7:3c:d6:a8:0f:27:84:27:7a:42:03:14:75:3a:22:d6:6f: 56:23:24:70:a9:4f:8a:f0:01:40:c7:a8:e5:74:dd:c6:f8:2b: 16:51:1e:a9:be:0f:dc:64:31:0d:b6:56:91:04:5d:1e:ba:9a: 73:c7:1d:ad:1b:bc:45:65:31:63:94:4f:2c:44:c8:ea:16:ff: 7f:8d:4e:16:a3:4e:5c:08:20:5b:01:b2:b2:28:c3:7a:30:a1: 3e:ab:74:71 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDZD NUMxOENDRTYwMzA3MzBCQzIyMkFCMTdGNEUzRDhGMTYwMzAzMzAeFw0yNTA5MTMw MzEwMTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI2M0FCQjk1NDFBNjEw RDIzNjg0NkIwNzA1NTMwMTZBMzczQjAwQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgLpLlVu/5vHe1mKaqEEM/OGWknJ2G4gTgb9zyh2QVHEs0iC+y 3tjiyuHjsMUtTUqm37yvsfRWy9/kzkMzZwEzcFwAYP2s506hODjIadw0FyH9P0uC UExKoAk/QvABZfkShIc8IXBZ6P7BIKJ+U0WzmM9KpzUhItXbywMK2mft5nRjMEq4 297qAqMqTbfu3lMbLVbsFdYIjtxxW9J5HvtE6sSEsRMpvK7M/IY7c0x6IJGnaj2Q rEW3JVBsx5Kgd7Ztt7hXkLNy/+MA1K6MBrmAMqhAFmY+jYYu/pl8Ps4dS53dUTu0 aa1AESZZ1B4ubnp7LTy26R3qLRHDgxjP24srAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUJjq7lUGmENI2hGsHBVMBajc7AM0wHwYDVR0jBBgwFoAU1sXBjM5gMHMLwiKr F/Tj2PFgMDMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc5 My8xc1hCak01Z01ITUx3aUtyRl9UajJQRmdNRE0uY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzFzWEJqTTVnTUhNTHdpS3JGX1RqMlBGZ01ETS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3OTMvSmpxN2xVR21FTkky aEdzSEJWTUJhamM3QU0wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcJmDANBgkqhkiG9w0BAQsFAAOCAQEAB6CfEDDXEttnrclAW1KQcXgO/dl5 pxpDZmCx6ua67FcvNwuVJNj0tlOf0rm3xJtdiucrU/AOEFWYgiODr7CLYfqVBWO6 zBEkNG+J8aOIdW0OJlgZ+WklBWiAabPLdPhnvxpkvHKxOlJ973dlzgcD6Q2gUJWy lmdlZsGGX+n3gIiud8qmKzmFLzL8tKdX3QfeALRVHefWxLNxQg+xsYpYi1EHM6c8 1qgPJ4QnekIDFHU6ItZvViMkcKlPivABQMeo5XTdxvgrFlEeqb4P3GQxDbZWkQRd Hrqac8cdrRu8RWUxY5RPLETI6hb/f41OFqNOXAggWwGysijDejChPqt0cQ== -----END CERTIFICATE-----Generated at Mon Oct 20 08:43:01 2025 by rpki-client