$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3026/jGdnRC6VDN6Imr13q4NZO7a5mkg.roa File: jGdnRC6VDN6Imr13q4NZO7a5mkg.roa (raw, json) Hash identifier: /uUTtmAdEMTExP+0nYXVNge5d5+IIIqIefDjy5nRpI8= Subject key identifier: 8C:67:67:44:2E:95:0C:DE:88:9A:BD:77:AB:83:59:3B:B6:B9:9A:48 Certificate issuer: /CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Certificate serial: 06F8 Authority key identifier: 0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/jGdnRC6VDN6Imr13q4NZO7a5mkg.roa Signing time: Fri 22 Aug 2025 15:26:29 +0000 ROA not before: Fri 22 Aug 2025 15:26:29 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55991 IP address blocks: 103.43.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 02:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Validity Not Before: Aug 22 15:26:29 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=8C6767442E950CDE889ABD77AB83593BB6B99A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5f:07:b7:29:1f:93:88:02:74:25:2f:ab:69: 75:a7:52:46:06:c1:2c:14:e1:64:a0:40:ce:78:36: db:bc:85:0c:b6:d0:a5:ac:61:e3:59:23:7e:4d:59: 82:fd:2a:6c:15:98:bd:00:0e:f5:d0:be:52:77:f3: 06:0f:9d:96:07:0a:fe:73:1c:c7:2b:c6:c4:68:a2: fc:71:13:8e:6e:e6:c2:f3:9f:80:1f:d1:a6:bf:0a: 52:77:e8:b7:8b:1a:8f:a6:7e:ca:f3:2a:fd:4d:b5: e8:b2:04:f8:fa:f8:3a:65:7f:30:ca:e7:67:71:51: ae:dc:f3:31:a2:1e:e2:b4:e4:2c:ee:70:60:3f:87: 80:18:ae:e2:7a:c3:45:2d:d8:6c:b1:55:cb:d8:fa: 98:d1:11:f7:d6:7c:30:21:e0:c4:67:e7:d2:b4:0a: 8d:cd:f3:6a:6c:a9:87:a8:34:06:98:19:cc:b8:c5: 3b:1d:20:38:1e:77:73:a0:b3:da:d4:27:99:c3:63: 18:58:67:e3:b2:9a:da:29:b2:22:6b:8c:1c:e7:7c: 81:d3:b5:75:aa:f0:59:22:35:c9:76:f0:f8:b1:7c: 2c:10:59:18:9b:4c:11:b2:4d:6b:62:68:c0:2f:2a: ad:ee:89:a8:f5:54:35:07:55:41:72:1d:eb:03:7c: 97:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:67:67:44:2E:95:0C:DE:88:9A:BD:77:AB:83:59:3B:B6:B9:9A:48 X509v3 Authority Key Identifier: keyid:0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/jGdnRC6VDN6Imr13q4NZO7a5mkg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.132.0/24 Signature Algorithm: sha256WithRSAEncryption 94:59:b8:40:75:ff:c5:f4:40:1e:71:c0:28:6c:fa:84:1b:c1: 39:94:bb:99:f9:49:2f:43:92:8e:2e:c0:8f:1d:08:dc:47:11: 59:74:2d:34:cf:b5:b2:eb:6a:6b:d2:3b:91:1c:72:62:76:a7: f3:e9:50:4f:da:7c:c1:62:bc:e8:ad:0f:ca:a8:19:64:2b:3c: 37:db:60:95:94:15:46:f7:70:15:d0:1b:3d:e3:77:2d:fa:b7: 41:0e:1a:c5:32:f1:ac:b3:4d:36:ac:36:22:11:86:2b:5d:d4: 01:5a:40:7b:ea:5d:0c:58:fd:61:68:8d:e3:e6:8f:18:3f:02: 27:04:13:e8:55:4d:b6:81:5f:73:2c:b8:02:b1:16:12:ff:3e: 24:37:24:d0:31:d2:5e:a7:71:8d:0e:a2:ad:3d:f2:dc:6b:53: 52:62:33:71:1d:40:c4:f3:62:7c:b5:6b:1a:1b:19:a3:aa:2b: 50:b2:9e:2e:05:b7:7e:0a:1d:4f:7d:dd:e9:4a:dd:82:41:e0: ba:64:a8:1a:e6:04:5b:7b:ef:84:c5:59:83:b9:2e:51:44:47: cf:3b:f4:41:4d:07:c8:01:64:c9:f2:dc:47:43:1c:ee:34:d7: bb:b8:fa:71:4f:af:b3:d4:65:75:b4:72:80:45:ce:12:13:87: 4e:17:04:11 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENC MDRDQzVBNkIzOUIxNDhERDcxMEVGNUM2RTNGMkQ5MzgwQjQ1NTAeFw0yNTA4MjIx NTI2MjlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDhDNjc2NzQ0MkU5NTBD REU4ODlBQkQ3N0FCODM1OTNCQjZCOTlBNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFXwe3KR+TiAJ0JS+raXWnUkYGwSwU4WSgQM54Ntu8hQy20KWs YeNZI35NWYL9KmwVmL0ADvXQvlJ38wYPnZYHCv5zHMcrxsRoovxxE45u5sLzn4Af 0aa/ClJ36LeLGo+mfsrzKv1NteiyBPj6+DplfzDK52dxUa7c8zGiHuK05CzucGA/ h4AYruJ6w0Ut2GyxVcvY+pjREffWfDAh4MRn59K0Co3N82psqYeoNAaYGcy4xTsd IDged3Ogs9rUJ5nDYxhYZ+OymtopsiJrjBznfIHTtXWq8FkiNcl28PixfCwQWRib TBGyTWtiaMAvKq3uiaj1VDUHVUFyHesDfJcFAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUjGdnRC6VDN6Imr13q4NZO7a5mkgwHwYDVR0jBBgwFoAUDLBMxaazmxSN1xDv XG4/LZOAtFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy Ni9ETEJNeGFhem14U04xeER2WEc0X0xaT0F0RlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RMQk14YWF6bXhTTjF4RHZYRzRfTFpPQXRGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjYvakdkblJDNlZETjZJ bXIxM3E0TlpPN2E1bWtnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGcrhDANBgkqhkiG9w0BAQsFAAOCAQEAlFm4QHX/xfRAHnHAKGz6hBvBOZS7 mflJL0OSji7Ajx0I3EcRWXQtNM+1sutqa9I7kRxyYnan8+lQT9p8wWK86K0PyqgZ ZCs8N9tglZQVRvdwFdAbPeN3Lfq3QQ4axTLxrLNNNqw2IhGGK13UAVpAe+pdDFj9 YWiN4+aPGD8CJwQT6FVNtoFfcyy4ArEWEv8+JDck0DHSXqdxjQ6irT3y3GtTUmIz cR1AxPNifLVrGhsZo6orULKeLgW3fgodT33d6UrdgkHgumSoGuYEW3vvhMVZg7ku UURHzzv0QU0HyAFkyfLcR0Mc7jTXu7j6cU+vs9RldbRygEXOEhOHThcEEQ== -----END CERTIFICATE-----Generated at Sun Aug 24 00:50:10 2025 by rpki-client