$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2972/-MrjC-Wa5eHOs5iz6663lcQmVdk.roa File: -MrjC-Wa5eHOs5iz6663lcQmVdk.roa (raw, json) Hash identifier: Cz4/7Zsm1ISGWWnX0XZFGpbGxCLE/5T6NkRhl97/hgg= Subject key identifier: F8:CA:E3:0B:E5:9A:E5:E1:CE:B3:98:B3:EB:AE:B7:95:C4:26:55:D9 Certificate issuer: /CN=A8EBEAD4B13A791850CAF7914EA30D0F5036C3E7 Certificate serial: 0F Authority key identifier: A8:EB:EA:D4:B1:3A:79:18:50:CA:F7:91:4E:A3:0D:0F:50:36:C3:E7 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qOvq1LE6eRhQyveRTqMND1A2w-c.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2972/-MrjC-Wa5eHOs5iz6663lcQmVdk.roa Signing time: Thu 16 Oct 2025 09:07:55 +0000 ROA not before: Thu 16 Oct 2025 09:07:55 +0000 ROA not after: Thu 15 Oct 2026 07:34:23 +0000 asID: 139138 IP address blocks: 103.150.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2972/qOvq1LE6eRhQyveRTqMND1A2w-c.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2972/qOvq1LE6eRhQyveRTqMND1A2w-c.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qOvq1LE6eRhQyveRTqMND1A2w-c.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8EBEAD4B13A791850CAF7914EA30D0F5036C3E7 Validity Not Before: Oct 16 09:07:55 2025 GMT Not After : Oct 15 07:34:23 2026 GMT Subject: CN=F8CAE30BE59AE5E1CEB398B3EBAEB795C42655D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:98:ae:55:b3:e5:05:09:93:25:20:d0:86:c1: b8:36:88:b2:07:1c:ef:46:b2:c9:59:7d:a0:42:9b: 1a:f7:9e:3c:7f:0d:eb:2c:dd:f3:85:6e:5f:52:0b: e9:42:81:dc:30:57:13:2b:5c:6b:ed:b3:5b:31:85: c5:09:50:07:16:81:6c:10:a3:bd:40:7e:96:3b:04: 2f:b7:ed:4c:6e:00:f5:0c:fd:d7:cc:e8:ee:0c:93: 96:34:6a:43:9e:73:c2:29:30:fc:c9:e6:e4:1b:2d: 4f:fe:bb:8c:bb:88:dc:c1:cc:1b:ee:44:b3:9e:c5: f2:4b:df:13:67:77:1a:8c:fb:69:d8:fc:a3:1f:74: 1d:66:45:67:af:57:27:b6:87:6e:b9:15:84:ec:0b: a1:d0:4f:8d:a0:e8:53:17:8a:7b:37:03:ef:99:b5: 8d:a8:d1:9e:73:12:4f:56:d9:e8:b1:5e:c6:06:fd: 15:a8:0d:0e:43:6e:30:20:7b:54:94:20:b5:52:25: fc:3d:02:c8:b2:64:0a:66:6b:42:44:43:db:36:60: 63:04:81:c4:d3:1e:26:20:0f:ae:7b:a0:dd:a9:90: 35:6d:1f:2b:09:15:cc:a8:93:12:ac:9f:b5:a4:87: 15:45:1a:f5:40:83:52:d6:00:35:73:28:90:0f:6c: 91:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CA:E3:0B:E5:9A:E5:E1:CE:B3:98:B3:EB:AE:B7:95:C4:26:55:D9 X509v3 Authority Key Identifier: keyid:A8:EB:EA:D4:B1:3A:79:18:50:CA:F7:91:4E:A3:0D:0F:50:36:C3:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2972/qOvq1LE6eRhQyveRTqMND1A2w-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/qOvq1LE6eRhQyveRTqMND1A2w-c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2972/-MrjC-Wa5eHOs5iz6663lcQmVdk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.150.165.0/24 Signature Algorithm: sha256WithRSAEncryption 07:b7:db:17:05:fa:6b:3b:25:05:b8:a0:6e:34:5d:05:dd:d0: 5b:15:18:b0:ff:a9:58:94:7a:1d:85:e8:6f:56:38:aa:1c:bb: 21:c4:0f:80:1e:df:d0:68:4e:5b:97:91:7a:ba:14:5c:7e:f7: fd:83:e7:c0:bc:16:8c:ae:69:73:17:92:60:ca:4c:da:09:8c: 29:9d:c7:ad:f3:02:07:3c:b5:91:0c:b5:0b:e8:f5:df:78:9b: eb:d2:09:1c:ca:65:72:c5:68:7d:6d:ec:67:ef:0a:a2:dd:67: 91:9a:80:68:46:64:dc:d8:82:c5:bf:db:43:d9:85:85:02:07: 83:08:10:39:24:9f:c4:a4:9a:b3:04:f4:bc:9b:84:b6:f0:a5: f1:2b:23:11:8d:ea:03:2d:45:a0:58:02:3e:22:20:7d:2b:bf: da:99:58:eb:13:3c:16:c8:4f:48:35:db:c4:b8:f3:b5:a4:57: dc:94:f3:51:13:06:81:d0:63:26:52:da:03:14:77:e7:80:53: 10:4e:ba:16:1b:60:64:09:10:9f:6c:9b:16:60:87:37:ba:9f: 9e:6a:05:14:1a:10:55:e2:16:c2:ed:4c:75:25:e2:10:db:7e: 6f:e2:b0:0b:ec:fb:59:8f:c5:26:94:e0:c6:27:4b:3a:1f:8b: 4c:fe:5c:ab -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBOEVC RUFENEIxM0E3OTE4NTBDQUY3OTE0RUEzMEQwRjUwMzZDM0U3MB4XDTI1MTAxNjA5 MDc1NVoXDTI2MTAxNTA3MzQyM1owMzExMC8GA1UEAxMoRjhDQUUzMEJFNTlBRTVF MUNFQjM5OEIzRUJBRUI3OTVDNDI2NTVEOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKSYrlWz5QUJkyUg0IbBuDaIsgcc70ayyVl9oEKbGveePH8N6yzd 84VuX1IL6UKB3DBXEytca+2zWzGFxQlQBxaBbBCjvUB+ljsEL7ftTG4A9Qz918zo 7gyTljRqQ55zwikw/Mnm5BstT/67jLuI3MHMG+5Es57F8kvfE2d3Goz7adj8ox90 HWZFZ69XJ7aHbrkVhOwLodBPjaDoUxeKezcD75m1jajRnnMST1bZ6LFexgb9FagN DkNuMCB7VJQgtVIl/D0CyLJkCmZrQkRD2zZgYwSBxNMeJiAPrnug3amQNW0fKwkV zKiTEqyftaSHFUUa9UCDUtYANXMokA9skf0CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBT4yuML5Zrl4c6zmLPrrreVxCZV2TAfBgNVHSMEGDAWgBSo6+rUsTp5GFDK95FO ow0PUDbD5zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yOTcy L3FPdnExTEU2ZVJoUXl2ZVJUcU1ORDFBMnctYy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvcU92cTFMRTZlUmhReXZlUlRxTU5EMUEydy1jLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjk3Mi8tTXJqQy1XYTVlSE9z NWl6NjY2M2xjUW1WZGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ5alMA0GCSqGSIb3DQEBCwUAA4IBAQAHt9sXBfprOyUFuKBuNF0F3dBbFRiw /6lYlHodhehvVjiqHLshxA+AHt/QaE5bl5F6uhRcfvf9g+fAvBaMrmlzF5Jgykza CYwpncet8wIHPLWRDLUL6PXfeJvr0gkcymVyxWh9bexn7wqi3WeRmoBoRmTc2ILF v9tD2YWFAgeDCBA5JJ/EpJqzBPS8m4S28KXxKyMRjeoDLUWgWAI+IiB9K7/amVjr EzwWyE9INdvEuPO1pFfclPNREwaB0GMmUtoDFHfngFMQTroWG2BkCRCfbJsWYIc3 up+eagUUGhBV4hbC7Ux1JeIQ235v4rAL7PtZj8UmlODGJ0s6H4tM/lyr -----END CERTIFICATE-----Generated at Mon Oct 20 16:08:44 2025 by rpki-client