$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3026/TQQeNLcziqEPvIOed1oPsiSBzLA.roa File: TQQeNLcziqEPvIOed1oPsiSBzLA.roa (raw, json) Hash identifier: 6ymgmr2w4EScGUrqqpVegW6GAj/HrBP2Hf3EdY9Hufc= Subject key identifier: 4D:04:1E:34:B7:33:8A:A1:0F:BC:83:9E:77:5A:0F:B2:24:81:CC:B0 Certificate issuer: /CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Certificate serial: 06F2 Authority key identifier: 0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/TQQeNLcziqEPvIOed1oPsiSBzLA.roa Signing time: Fri 22 Aug 2025 15:20:10 +0000 ROA not before: Fri 22 Aug 2025 15:20:10 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55991 IP address blocks: 103.235.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 02:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1778 (0x6f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Validity Not Before: Aug 22 15:20:10 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4D041E34B7338AA10FBC839E775A0FB22481CCB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:73:0f:0d:2f:38:fc:fc:14:39:8a:6f:a6:18: e6:32:a3:ca:45:1e:f0:60:77:97:ee:c6:06:08:28: bf:97:d2:78:e0:d8:93:8c:64:e4:ce:62:26:15:48: 51:3d:e9:53:d4:91:b8:b1:86:74:ad:24:5e:66:9b: 13:75:ff:14:db:48:d7:37:19:11:b4:0d:68:5d:9e: 26:14:8f:f5:4a:51:b6:42:01:30:b0:71:da:30:3c: d6:08:c2:e1:6f:69:00:04:58:1c:19:5e:28:ee:ec: ac:2a:ee:66:85:96:e3:bb:bf:e5:bd:9f:33:05:e4: 8c:ee:a2:12:ca:83:b3:60:1b:40:2e:30:fc:8b:1c: fa:9f:17:3c:c1:77:d1:50:3d:57:d7:ea:ab:03:41: a8:fc:f3:77:65:7a:f5:a1:6d:53:49:32:06:02:ba: ec:c1:97:20:60:02:bc:aa:ea:bf:c0:09:b1:3d:b9: c1:84:3a:ad:09:7b:b6:21:b5:de:d0:f9:f2:46:68: 34:f6:81:29:6f:e1:ba:da:36:e4:da:2b:61:63:85: f6:3b:e7:13:f5:9c:ce:40:f3:75:6f:11:ed:da:b6: ea:05:cb:6b:00:ee:eb:2b:b9:b3:be:ab:21:1b:63: a9:ec:bd:00:ca:af:c9:b1:2f:68:6d:4e:3f:79:5f: f6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:04:1E:34:B7:33:8A:A1:0F:BC:83:9E:77:5A:0F:B2:24:81:CC:B0 X509v3 Authority Key Identifier: keyid:0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/TQQeNLcziqEPvIOed1oPsiSBzLA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.102.0/24 Signature Algorithm: sha256WithRSAEncryption 51:21:6f:28:fe:7c:4c:58:b1:ee:7e:d6:b8:4b:d1:1c:3f:8f: 72:ad:03:0d:ec:ff:55:99:0d:53:f9:cf:2d:3b:51:83:92:27: 54:aa:53:10:c8:c8:05:24:2d:d2:5d:fb:4e:84:34:86:1e:1a: 57:7c:ba:38:77:39:63:7c:3d:67:83:9e:f2:96:16:f6:08:0d: 7c:b3:08:de:15:dc:d9:ea:82:6e:ee:d4:d4:a6:5a:cf:ac:20: 0e:b7:de:ea:6d:a3:47:4b:13:84:4c:4a:b6:e9:77:16:55:42: 67:65:65:a8:d9:9b:ba:4a:2e:28:10:a6:65:94:c9:33:f6:b2: d4:4b:19:4e:e3:ef:18:50:1e:c4:7f:e8:66:9e:22:af:4d:ea: 09:c4:16:9b:29:e3:47:ca:c2:5a:a8:32:d4:9b:f1:12:73:e9: 12:ef:92:90:f7:3f:e7:c6:bc:ed:d3:5f:87:02:2e:e9:8f:ff: 5f:f0:29:e2:db:8d:c1:90:e3:83:28:a7:fc:6b:2d:03:a6:a4: 0c:0e:c4:0f:95:0e:75:98:9b:77:c9:0e:e3:f1:c9:e4:d2:13: 91:df:07:56:6f:de:6a:08:ce:83:76:8b:74:11:e0:a4:3f:1e: ea:a5:6e:23:85:43:23:39:c0:73:30:0d:59:48:49:b4:dd:9f: 0a:c5:ee:15 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENC MDRDQzVBNkIzOUIxNDhERDcxMEVGNUM2RTNGMkQ5MzgwQjQ1NTAeFw0yNTA4MjIx NTIwMTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDREMDQxRTM0QjczMzhB QTEwRkJDODM5RTc3NUEwRkIyMjQ4MUNDQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzcw8NLzj8/BQ5im+mGOYyo8pFHvBgd5fuxgYIKL+X0njg2JOM ZOTOYiYVSFE96VPUkbixhnStJF5mmxN1/xTbSNc3GRG0DWhdniYUj/VKUbZCATCw cdowPNYIwuFvaQAEWBwZXiju7Kwq7maFluO7v+W9nzMF5IzuohLKg7NgG0AuMPyL HPqfFzzBd9FQPVfX6qsDQaj883dlevWhbVNJMgYCuuzBlyBgAryq6r/ACbE9ucGE Oq0Je7Yhtd7Q+fJGaDT2gSlv4braNuTaK2FjhfY75xP1nM5A83VvEe3atuoFy2sA 7usrubO+qyEbY6nsvQDKr8mxL2htTj95X/YTAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUTQQeNLcziqEPvIOed1oPsiSBzLAwHwYDVR0jBBgwFoAUDLBMxaazmxSN1xDv XG4/LZOAtFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy Ni9ETEJNeGFhem14U04xeER2WEc0X0xaT0F0RlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RMQk14YWF6bXhTTjF4RHZYRzRfTFpPQXRGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjYvVFFRZU5MY3ppcUVQ dklPZWQxb1BzaVNCekxBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfrZjANBgkqhkiG9w0BAQsFAAOCAQEAUSFvKP58TFix7n7WuEvRHD+Pcq0D Dez/VZkNU/nPLTtRg5InVKpTEMjIBSQt0l37ToQ0hh4aV3y6OHc5Y3w9Z4Oe8pYW 9ggNfLMI3hXc2eqCbu7U1KZaz6wgDrfe6m2jR0sThExKtul3FlVCZ2VlqNmbukou KBCmZZTJM/ay1EsZTuPvGFAexH/oZp4ir03qCcQWmynjR8rCWqgy1JvxEnPpEu+S kPc/58a87dNfhwIu6Y//X/Ap4tuNwZDjgyin/GstA6akDA7ED5UOdZibd8kO4/HJ 5NITkd8HVm/eagjOg3aLdBHgpD8e6qVuI4VDIznAczANWUhJtN2fCsXuFQ== -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:05 2025 by rpki-client