$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3026/vB8gih2Vmb-JMXc4AZHawZmiFd4.roa File: vB8gih2Vmb-JMXc4AZHawZmiFd4.roa (raw, json) Hash identifier: R77a2jAz8w3Bdf2BEOxaO1ZQA8/CWQoIBw5SHLti/BQ= Subject key identifier: BC:1F:20:8A:1D:95:99:BF:89:31:77:38:01:91:DA:C1:99:A2:15:DE Certificate issuer: /CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Certificate serial: 06F0 Authority key identifier: 0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/vB8gih2Vmb-JMXc4AZHawZmiFd4.roa Signing time: Fri 22 Aug 2025 15:20:09 +0000 ROA not before: Fri 22 Aug 2025 15:20:09 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55991 IP address blocks: 103.235.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 02:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CB04CC5A6B39B148DD710EF5C6E3F2D9380B455 Validity Not Before: Aug 22 15:20:09 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=BC1F208A1D9599BF893177380191DAC199A215DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:77:fb:6d:d5:bb:00:ee:6d:33:58:81:63:80: f6:02:97:09:dc:d1:9b:74:5d:8b:60:ed:a5:07:84: 38:9a:0c:c6:af:bd:ce:57:eb:77:ac:9b:5f:57:8a: df:49:fb:32:f7:77:73:43:81:d0:54:7b:68:42:28: 0a:1b:d3:14:e4:46:24:46:48:6e:dc:fb:8b:88:fe: 9b:4b:56:81:88:8d:a8:10:74:a6:38:16:b5:53:95: c8:bd:9e:67:3d:04:7b:1b:57:23:bb:86:50:d0:04: dd:4a:d1:2d:79:9a:f1:10:1f:1b:21:0f:30:54:41: e7:d5:ce:47:06:29:0f:ee:3a:87:a8:03:27:d6:2d: ca:b6:7b:72:56:98:24:cf:cf:6d:06:08:d7:5f:de: e3:97:06:83:0e:9e:b0:f5:d8:7d:3e:28:e0:ab:af: 9b:64:67:93:57:c2:68:7a:76:5f:82:02:f4:89:cd: 6d:07:8e:93:ad:cd:4e:13:65:62:03:9d:31:e9:8d: c5:fa:d3:9a:2e:a5:87:b4:c4:dd:e3:ba:45:b0:5b: 60:4f:b6:ce:48:71:a0:38:6e:40:0e:1a:fa:6b:55: 3e:43:b2:bc:8a:25:b7:da:40:98:e5:b6:89:02:0e: be:21:41:20:d7:a3:46:50:00:63:74:f7:c3:3e:03: da:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1F:20:8A:1D:95:99:BF:89:31:77:38:01:91:DA:C1:99:A2:15:DE X509v3 Authority Key Identifier: keyid:0C:B0:4C:C5:A6:B3:9B:14:8D:D7:10:EF:5C:6E:3F:2D:93:80:B4:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/DLBMxaazmxSN1xDvXG4_LZOAtFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/DLBMxaazmxSN1xDvXG4_LZOAtFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3026/vB8gih2Vmb-JMXc4AZHawZmiFd4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.100.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:e5:0e:cc:ce:2e:20:6f:7a:1f:fc:54:80:7e:c0:f7:e4:2b: 63:ff:e4:89:a5:28:34:6e:27:a4:42:63:6d:77:27:43:e4:bd: 65:0e:c7:5c:2a:6b:5e:7f:de:7a:c2:f7:cb:4d:5d:e0:58:4d: e2:07:0c:45:3e:2a:a9:94:d6:80:25:cd:99:87:28:9f:50:f0: 12:59:0b:51:01:13:cd:31:6a:d7:a0:d2:2a:5b:bd:87:1c:54: 5b:c3:88:df:62:a8:d6:4f:7e:f3:09:ec:5b:76:78:4c:ca:6c: 36:ea:88:7c:72:33:67:41:ee:d5:6f:df:ad:34:35:63:56:62: 0a:bd:6e:6d:3f:89:72:ca:9a:1f:bc:53:ec:11:66:53:4e:c0: 01:88:cb:18:bd:4d:ab:3c:2a:d9:30:77:82:93:17:da:f6:2e: e3:7e:a7:e0:dc:e1:5a:04:23:db:ac:42:57:7a:c3:b7:ab:2e: fb:bf:72:d9:8e:25:50:d7:02:b2:af:92:da:a5:93:81:56:eb: 68:e9:90:12:7f:c8:ae:20:4d:e7:27:15:8a:1e:b4:6c:4e:89: 39:2e:4c:ff:4c:c7:d0:a2:54:49:f0:f5:89:39:81:3d:61:6d: 1a:c7:e9:ae:7d:bc:fb:94:79:4f:56:04:60:a3:c3:e6:08:9e: 48:92:bf:fa -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMENC MDRDQzVBNkIzOUIxNDhERDcxMEVGNUM2RTNGMkQ5MzgwQjQ1NTAeFw0yNTA4MjIx NTIwMDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEJDMUYyMDhBMUQ5NTk5 QkY4OTMxNzczODAxOTFEQUMxOTlBMjE1REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwd/tt1bsA7m0zWIFjgPYClwnc0Zt0XYtg7aUHhDiaDMavvc5X 63esm19Xit9J+zL3d3NDgdBUe2hCKAob0xTkRiRGSG7c+4uI/ptLVoGIjagQdKY4 FrVTlci9nmc9BHsbVyO7hlDQBN1K0S15mvEQHxshDzBUQefVzkcGKQ/uOoeoAyfW Lcq2e3JWmCTPz20GCNdf3uOXBoMOnrD12H0+KOCrr5tkZ5NXwmh6dl+CAvSJzW0H jpOtzU4TZWIDnTHpjcX605oupYe0xN3jukWwW2BPts5IcaA4bkAOGvprVT5DsryK JbfaQJjltokCDr4hQSDXo0ZQAGN098M+A9rbAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUvB8gih2Vmb+JMXc4AZHawZmiFd4wHwYDVR0jBBgwFoAUDLBMxaazmxSN1xDv XG4/LZOAtFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAy Ni9ETEJNeGFhem14U04xeER2WEc0X0xaT0F0RlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0RMQk14YWF6bXhTTjF4RHZYRzRfTFpPQXRGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMjYvdkI4Z2loMlZtYi1K TVhjNEFaSGF3Wm1pRmQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfrZDANBgkqhkiG9w0BAQsFAAOCAQEALOUOzM4uIG96H/xUgH7A9+QrY//k iaUoNG4npEJjbXcnQ+S9ZQ7HXCprXn/eesL3y01d4FhN4gcMRT4qqZTWgCXNmYco n1DwElkLUQETzTFq16DSKlu9hxxUW8OI32Ko1k9+8wnsW3Z4TMpsNuqIfHIzZ0Hu 1W/frTQ1Y1ZiCr1ubT+JcsqaH7xT7BFmU07AAYjLGL1Nqzwq2TB3gpMX2vYu436n 4NzhWgQj26xCV3rDt6su+79y2Y4lUNcCsq+S2qWTgVbraOmQEn/IriBN5ycVih60 bE6JOS5M/0zH0KJUSfD1iTmBPWFtGsfprn28+5R5T1YEYKPD5gieSJK/+g== -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:39 2025 by rpki-client