$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3026/aC_eu2XgM19FoUcxuZmTLIuGiG8.roa File: aC_eu2XgM19FoUcxuZmTLIuGiG8.roa (raw, json) Hash identifier: jqBR1z7rB7rP1EfreLlGKnVQX7ENm8Q1Iu6vH2i2byk= Subject key identifier: 68:2F:DE:BB:65:E0:33:5F:45:A1:47:31:B9:99:93:2C:8B:86:88:6F Certificate issuer: /CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Certificate serial: 06F7 Authority key identifier: 0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/aC_eu2XgM19FoUcxuZmTLIuGiG8.roa Signing time: Fri 22 Aug 2025 15:26:28 +0000 ROA not before: Fri 22 Aug 2025 15:26:28 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55989 IP address blocks: 103.43.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 02:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Validity Not Before: Aug 22 15:26:28 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=682FDEBB65E0335F45A14731B999932C8B86886F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:99:6f:84:73:f0:07:45:22:40:95:16:66:e1: 89:73:7b:71:cc:c3:84:2d:8b:0b:d5:83:a0:a6:c8: 61:89:d8:4c:ef:e9:e3:cd:cd:d2:d9:84:3d:f3:c7: b7:53:23:08:3f:c0:33:3a:7a:9f:c5:5c:72:35:9c: bf:b4:db:56:f2:d1:40:55:07:af:27:cf:46:29:be: 36:0e:b0:79:4f:cf:9a:d3:48:b7:ab:1c:e4:b8:e0: 5f:e9:0b:3e:44:24:b4:78:1d:fc:d1:a7:4f:1b:2e: 5e:92:35:e4:52:5c:9a:6d:29:14:c7:8e:e7:8c:ca: f8:54:7c:b4:65:0e:3e:f3:01:bd:bb:1a:88:da:9c: fb:79:b9:35:00:8b:6a:c6:78:e2:99:46:5f:2a:de: b3:11:58:43:97:3a:be:48:34:3c:4a:38:aa:f5:b7: 12:24:db:af:fa:b8:d0:db:52:d0:f0:95:62:2b:e8: b2:2b:03:2f:10:98:33:db:66:69:94:d1:e9:76:f2: 66:3f:b1:a2:70:83:8f:4b:cc:34:88:98:32:4c:04: 41:db:da:0f:f8:8c:54:1e:be:9d:e2:ad:7c:87:84: c8:e8:c8:07:81:b9:3d:6a:7a:df:fe:73:a5:c4:33: 47:f2:80:b9:a5:c1:5f:74:06:c7:fa:ff:3e:74:ac: 5c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2F:DE:BB:65:E0:33:5F:45:A1:47:31:B9:99:93:2C:8B:86:88:6F X509v3 Authority Key Identifier: keyid:0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/aC_eu2XgM19FoUcxuZmTLIuGiG8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.134.0/23 Signature Algorithm: sha256WithRSAEncryption 47:99:1d:df:7a:80:ed:e4:f5:65:a9:07:6f:96:19:ad:2d:d4: 6a:25:0e:d9:16:db:69:13:18:4d:72:be:e6:55:b4:f2:9a:1d: b0:da:9c:83:b7:8a:33:1b:d1:9c:81:09:f6:b9:a6:12:e4:87: f6:f0:e4:d9:96:c1:72:9a:7b:40:e2:41:ae:b9:59:c3:97:3b: 1b:cb:fd:b3:3d:ff:93:33:f1:c1:71:d5:99:84:65:82:e3:d4: 1f:c6:cd:54:76:d0:08:1c:df:5b:6b:db:2a:8d:b2:e8:62:3c: f2:26:75:60:b3:5c:fb:67:da:ee:49:34:65:cd:54:94:02:e7: 94:a4:94:f8:04:95:39:a6:7f:4a:44:d6:55:31:e3:85:65:6d: 36:70:10:eb:c5:31:45:d5:5f:30:2c:99:0f:39:61:af:14:ee: d4:31:c6:8a:cf:c1:ee:3f:9d:50:02:f2:91:39:06:ca:98:a4: ed:f7:81:58:99:19:75:f9:51:80:94:5c:0e:be:05:68:86:12: 8d:17:71:c4:e5:6e:e4:47:4c:f1:e3:6e:f9:35:b4:2b:1e:7a: e6:1b:f5:d9:ea:88:e4:c7:2a:cc:0f:c6:3d:bf:f9:c4:78:ab: 67:4f:81:35:cb:90:0f:ca:ff:b8:cc:d2:40:8b:03:94:f7:ce: 46:b2:43:a6 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENC MDRDQzVBNkIzOUIxNDhERDcxMEVGNUM2RTNGMkQ5MzgwQjQ1NTAeFw0yNTA4MjIx NTI2MjhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDY4MkZERUJCNjVFMDMz NUY0NUExNDczMUI5OTk5MzJDOEI4Njg4NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcmW+Ec/AHRSJAlRZm4Ylze3HMw4QtiwvVg6CmyGGJ2Ezv6ePN zdLZhD3zx7dTIwg/wDM6ep/FXHI1nL+021by0UBVB68nz0YpvjYOsHlPz5rTSLer HOS44F/pCz5EJLR4HfzRp08bLl6SNeRSXJptKRTHjueMyvhUfLRlDj7zAb27Goja nPt5uTUAi2rGeOKZRl8q3rMRWEOXOr5INDxKOKr1txIk26/6uNDbUtDwlWIr6LIr Ay8QmDPbZmmU0el28mY/saJwg49LzDSImDJMBEHb2g/4jFQevp3irXyHhMjoyAeB uT1qet/+c6XEM0fygLmlwV90Bsf6/z50rFx3AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUaC/eu2XgM19FoUcxuZmTLIuGiG8wHwYDVR0jBBgwFoAUDLBMxaazmxSN1xDv XG4/LZOAtFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy Ni9ETEJNeGFhem14U04xeER2WEc0X0xaT0F0RlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RMQk14YWF6bXhTTjF4RHZYRzRfTFpPQXRGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjYvYUNfZXUyWGdNMTlG b1VjeHVabVRMSXVHaUc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWcrhjANBgkqhkiG9w0BAQsFAAOCAQEAR5kd33qA7eT1ZakHb5YZrS3UaiUO 2RbbaRMYTXK+5lW08podsNqcg7eKMxvRnIEJ9rmmEuSH9vDk2ZbBcpp7QOJBrrlZ w5c7G8v9sz3/kzPxwXHVmYRlguPUH8bNVHbQCBzfW2vbKo2y6GI88iZ1YLNc+2fa 7kk0Zc1UlALnlKSU+ASVOaZ/SkTWVTHjhWVtNnAQ68UxRdVfMCyZDzlhrxTu1DHG is/B7j+dUALykTkGypik7feBWJkZdflRgJRcDr4FaIYSjRdxxOVu5EdM8eNu+TW0 Kx565hv12eqI5McqzA/GPb/5xHirZ0+BNcuQD8r/uMzSQIsDlPfORrJDpg== -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:05 2025 by rpki-client