$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2967/6wuomddVv1Cr-WEWhZziFKIfN0Y.roa File: 6wuomddVv1Cr-WEWhZziFKIfN0Y.roa (raw, json) Hash identifier: OiXt13oMglkLM3o0JaOqdrgrAKwVC19QWL4Z+y85snk= Subject key identifier: EB:0B:A8:99:D7:55:BF:50:AB:F9:61:16:85:9C:E2:14:A2:1F:37:46 Certificate issuer: /CN=0AB6F528865292E198F98B68B72D98D130AF532E Certificate serial: 1740 Authority key identifier: 0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/6wuomddVv1Cr-WEWhZziFKIfN0Y.roa Signing time: Sat 13 Sep 2025 03:04:25 +0000 ROA not before: Sat 13 Sep 2025 03:04:25 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 131530 IP address blocks: 103.150.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5952 (0x1740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AB6F528865292E198F98B68B72D98D130AF532E Validity Not Before: Sep 13 03:04:25 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EB0BA899D755BF50ABF96116859CE214A21F3746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:26:a8:66:19:dd:10:c0:c9:9b:cc:51:54:f8: 08:85:b1:15:5e:70:b2:19:e9:09:a5:ed:97:23:3b: 03:f9:f2:d8:14:6f:45:3f:25:58:b7:d9:1d:40:ea: f7:33:23:9d:77:23:30:a3:cb:6f:cf:49:4e:88:d7: 5f:f5:58:86:c4:e6:a6:c8:b5:5e:41:2f:66:5e:55: 29:d2:02:de:e9:bb:aa:7d:fc:21:64:d1:ca:2a:5c: 54:bd:c5:93:a4:ef:61:6f:1c:cd:c5:31:6a:20:76: 17:1d:f2:0c:b8:2d:d0:a1:d4:cb:1a:8d:fb:47:1e: 2c:01:13:d5:ec:10:b8:85:8f:b7:72:41:e4:a5:d8: bd:09:b6:77:ec:3a:97:f7:23:92:1c:cb:db:d9:c2: 0b:e9:1f:97:77:30:d7:e5:05:e8:3e:6c:5f:ba:20: 41:ea:25:57:44:08:70:d1:8f:04:5a:d8:e3:e0:96: b8:65:3e:1b:fc:a4:31:fb:5f:c3:b5:0b:64:52:ed: a4:35:be:12:ff:99:b6:d7:1f:09:7f:e0:52:3b:1a: f9:1e:bf:f0:33:e3:d8:11:c0:c3:1f:cb:b3:5e:bb: a7:31:ab:12:ae:e3:da:19:26:3d:06:ba:d7:27:f6: 6f:26:0e:32:b4:b9:4e:b1:bc:48:01:ae:a3:53:a4: 6f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0B:A8:99:D7:55:BF:50:AB:F9:61:16:85:9C:E2:14:A2:1F:37:46 X509v3 Authority Key Identifier: keyid:0A:B6:F5:28:86:52:92:E1:98:F9:8B:68:B7:2D:98:D1:30:AF:53:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Crb1KIZSkuGY-Ytoty2Y0TCvUy4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2967/6wuomddVv1Cr-WEWhZziFKIfN0Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.150.130.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:39:b1:3b:64:7c:84:4e:61:da:9b:cf:64:f6:c7:4d:78:1a: 80:22:1d:06:d4:01:19:63:1f:29:31:b2:f2:f8:ea:8e:3c:0d: 88:ad:e1:87:cc:93:b6:a0:4d:79:6e:c0:ea:f9:50:fd:88:ed: 9d:b5:44:11:17:0e:2e:8c:5c:fa:fe:7f:ea:8b:bf:a5:e4:82: a4:b5:2a:f5:ff:b8:bf:23:a8:f3:d6:8d:d0:eb:77:6a:42:d4: 9d:31:a7:2e:45:cb:d9:b1:28:cc:b1:e3:12:fb:d0:a2:4b:68: 0b:00:b8:16:f4:32:38:5b:0a:44:51:88:2a:37:d4:27:8a:8a: 0f:c5:1e:2c:7f:23:ab:74:30:76:94:53:35:1e:e9:96:a1:04: 84:f6:3d:b9:7c:93:6c:98:44:e6:c7:53:2e:ff:0e:48:1b:39: b8:fd:9f:56:6a:9d:4b:20:75:8d:05:5e:5f:f4:e5:ac:f0:25: 5b:fe:e5:31:6f:15:45:74:fb:30:71:02:1a:a0:ee:df:48:11: 4e:05:c0:89:d7:cd:e2:2c:22:60:7f:d5:56:6a:2c:24:d7:1c: b0:10:e5:80:6d:c2:1f:1a:24:c6:a3:92:2e:fb:87:d5:e7:4f: bc:28:da:4b:7f:9b:06:dd:f0:cf:8a:9e:90:64:c1:86:4e:4c: f8:c8:a1:d1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICF0AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEFC NkY1Mjg4NjUyOTJFMTk4Rjk4QjY4QjcyRDk4RDEzMEFGNTMyRTAeFw0yNTA5MTMw MzA0MjVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVCMEJBODk5RDc1NUJG NTBBQkY5NjExNjg1OUNFMjE0QTIxRjM3NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVJqhmGd0QwMmbzFFU+AiFsRVecLIZ6Qml7ZcjOwP58tgUb0U/ JVi32R1A6vczI513IzCjy2/PSU6I11/1WIbE5qbItV5BL2ZeVSnSAt7pu6p9/CFk 0coqXFS9xZOk72FvHM3FMWogdhcd8gy4LdCh1MsajftHHiwBE9XsELiFj7dyQeSl 2L0JtnfsOpf3I5Icy9vZwgvpH5d3MNflBeg+bF+6IEHqJVdECHDRjwRa2OPglrhl Phv8pDH7X8O1C2RS7aQ1vhL/mbbXHwl/4FI7Gvkev/Az49gRwMMfy7Neu6cxqxKu 49oZJj0Gutcn9m8mDjK0uU6xvEgBrqNTpG93AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU6wuomddVv1Cr+WEWhZziFKIfN0YwHwYDVR0jBBgwFoAUCrb1KIZSkuGY+Yto ty2Y0TCvUy4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk2 Ny9DcmIxS0laU2t1R1ktWXRvdHkyWTBUQ3ZVeTQuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0NyYjFLSVpTa3VHWS1ZdG90eTJZMFRDdlV5NC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI5NjcvNnd1b21kZFZ2MUNy LVdFV2haemlGS0lmTjBZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWeWgjANBgkqhkiG9w0BAQsFAAOCAQEADTmxO2R8hE5h2pvPZPbHTXgagCId BtQBGWMfKTGy8vjqjjwNiK3hh8yTtqBNeW7A6vlQ/YjtnbVEERcOLoxc+v5/6ou/ peSCpLUq9f+4vyOo89aN0Ot3akLUnTGnLkXL2bEozLHjEvvQoktoCwC4FvQyOFsK RFGIKjfUJ4qKD8UeLH8jq3QwdpRTNR7plqEEhPY9uXyTbJhE5sdTLv8OSBs5uP2f VmqdSyB1jQVeX/TlrPAlW/7lMW8VRXT7MHECGqDu30gRTgXAidfN4iwiYH/VVmos JNccsBDlgG3CHxokxqOSLvuH1edPvCjaS3+bBt3wz4qekGTBhk5M+Mih0Q== -----END CERTIFICATE-----Generated at Mon Oct 20 14:38:00 2025 by rpki-client