$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3026/DZpeBfqJBJwg-vJiF-us7Oq1Ajc.roa File: DZpeBfqJBJwg-vJiF-us7Oq1Ajc.roa (raw, json) Hash identifier: IqrDYaumWndKvevRYGH8OdmWhcHhuXGetVwOqHmtqUY= Subject key identifier: 0D:9A:5E:05:FA:89:04:9C:20:FA:F2:62:17:EB:AC:EC:EA:B5:02:37 Certificate issuer: /CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Certificate serial: 06F9 Authority key identifier: 0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DZpeBfqJBJwg-vJiF-us7Oq1Ajc.roa Signing time: Fri 22 Aug 2025 15:26:29 +0000 ROA not before: Fri 22 Aug 2025 15:26:29 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55991 IP address blocks: 103.43.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Validity Not Before: Aug 22 15:26:29 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=0D9A5E05FA89049C20FAF26217EBACECEAB50237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:11:04:03:3e:3e:14:75:34:55:74:66:6d:16: 5f:e7:6a:9f:72:fe:25:76:ea:21:b4:3e:40:d0:72: 5e:11:26:a5:30:a0:68:96:7d:bd:3e:83:fc:17:bd: 9f:d5:7a:77:f2:c5:f0:6a:72:9f:e1:ad:a8:37:24: 0b:d9:4b:3e:b1:ee:f5:01:44:be:b4:d9:82:e9:a9: 6e:a9:10:2c:91:61:64:b3:e1:8f:73:59:5b:18:77: 91:20:31:e0:70:00:4e:2c:e8:d2:02:f2:2f:fd:5c: 6f:84:3c:0f:84:05:1a:c3:b2:ff:ad:dc:0a:dc:6a: e2:d6:7c:d0:7a:39:96:7c:ed:49:31:76:4d:e5:a4: f7:3c:b6:d2:44:8c:e6:e9:3b:da:7a:3c:99:4b:63: ac:eb:69:27:2d:a0:5d:bb:15:e5:7a:85:8f:97:e9: 63:57:12:64:f7:c1:21:ff:ad:ae:ff:42:87:46:96: 99:e1:d3:5f:aa:9f:24:34:92:9f:52:0b:53:73:34: 8d:fb:9e:e0:eb:01:a2:27:2f:f6:54:7a:2c:77:c2: ac:10:b6:9a:51:22:a0:8d:01:29:cc:e0:8d:53:b2: 4b:fc:d5:ce:f7:0f:3b:c8:9c:32:a3:b8:39:be:28: eb:d7:f7:62:e2:63:59:8b:39:17:ff:78:b1:ca:5b: 71:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9A:5E:05:FA:89:04:9C:20:FA:F2:62:17:EB:AC:EC:EA:B5:02:37 X509v3 Authority Key Identifier: keyid:0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DZpeBfqJBJwg-vJiF-us7Oq1Ajc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.135.0/24 Signature Algorithm: sha256WithRSAEncryption 72:e0:b3:02:be:0a:48:61:f1:e7:14:8f:58:b1:9a:aa:6c:50: 42:4f:a1:14:5d:19:20:85:3a:39:14:c7:33:05:2b:2b:66:06: e3:f1:c2:a7:d5:57:e1:a5:f9:a0:5c:6b:1d:72:f5:d0:f9:ac: cf:e1:74:20:22:0f:70:da:83:61:5a:8f:dc:6b:11:f2:8d:ca: 37:7a:57:27:ae:ac:c8:57:79:90:0d:1d:c0:36:38:d9:3e:51: 87:1e:a3:ec:be:37:b6:b0:ed:51:9a:bf:f7:6b:37:28:19:2e: 9d:b4:10:36:ab:12:e9:96:7a:52:d1:13:ca:76:1a:3b:ff:6a: aa:24:de:40:1d:e3:47:8f:55:72:56:25:33:35:22:53:c7:b7: 65:67:df:46:5b:f9:6d:eb:bd:00:48:8e:b5:6f:20:11:2d:9f: 74:c7:b6:82:dd:4c:86:43:14:34:cc:70:8b:dc:66:ae:65:30: 63:2c:0b:6b:a9:55:e0:4a:38:40:52:1b:58:6d:2b:4b:0c:1e: 87:08:f1:31:ff:d5:27:f8:23:5f:92:1f:f1:bf:f4:77:c8:f6: dd:97:80:2e:ab:f6:6c:c3:1e:dd:ac:4f:f8:48:e2:f5:66:95: 82:ed:6b:9d:da:3c:13:75:b9:52:b9:6f:a0:39:64:2c:e9:78: be:f4:41:df -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENC MDRDQzVBNkIzOUIxNDhERDcxMEVGNUM2RTNGMkQ5MzgwQjQ1NTAeFw0yNTA4MjIx NTI2MjlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDBEOUE1RTA1RkE4OTA0 OUMyMEZBRjI2MjE3RUJBQ0VDRUFCNTAyMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVEQQDPj4UdTRVdGZtFl/nap9y/iV26iG0PkDQcl4RJqUwoGiW fb0+g/wXvZ/VenfyxfBqcp/hrag3JAvZSz6x7vUBRL602YLpqW6pECyRYWSz4Y9z WVsYd5EgMeBwAE4s6NIC8i/9XG+EPA+EBRrDsv+t3ArcauLWfNB6OZZ87Ukxdk3l pPc8ttJEjObpO9p6PJlLY6zraSctoF27FeV6hY+X6WNXEmT3wSH/ra7/QodGlpnh 01+qnyQ0kp9SC1NzNI37nuDrAaInL/ZUeix3wqwQtppRIqCNASnM4I1Tskv81c73 DzvInDKjuDm+KOvX92LiY1mLORf/eLHKW3E/AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUDZpeBfqJBJwg+vJiF+us7Oq1AjcwHwYDVR0jBBgwFoAUDLBMxaazmxSN1xDv XG4/LZOAtFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy Ni9ETEJNeGFhem14U04xeER2WEc0X0xaT0F0RlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RMQk14YWF6bXhTTjF4RHZYRzRfTFpPQXRGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjYvRFpwZUJmcUpCSndn LXZKaUYtdXM3T3ExQWpjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcrhzANBgkqhkiG9w0BAQsFAAOCAQEAcuCzAr4KSGHx5xSPWLGaqmxQQk+h FF0ZIIU6ORTHMwUrK2YG4/HCp9VX4aX5oFxrHXL10Pmsz+F0ICIPcNqDYVqP3GsR 8o3KN3pXJ66syFd5kA0dwDY42T5Rhx6j7L43trDtUZq/92s3KBkunbQQNqsS6ZZ6 UtETynYaO/9qqiTeQB3jR49VclYlMzUiU8e3ZWffRlv5beu9AEiOtW8gES2fdMe2 gt1MhkMUNMxwi9xmrmUwYywLa6lV4Eo4QFIbWG0rSwwehwjxMf/VJ/gjX5If8b/0 d8j23ZeALqv2bMMe3axP+Eji9WaVgu1rndo8E3W5UrlvoDlkLOl4vvRB3w== -----END CERTIFICATE-----Generated at Mon Oct 20 21:34:53 2025 by rpki-client