$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3040/0FSVK6s04HHBN8epe9fP2wVDWH8.roa File: 0FSVK6s04HHBN8epe9fP2wVDWH8.roa (raw, json) Hash identifier: 3NwXayRgOaHm4yyAt+gwo8VvokNDN1y5+kh9Wr8A518= Subject key identifier: D0:54:95:2B:AB:34:E0:71:C1:37:C7:A9:7B:D7:CF:DB:05:43:58:7F Certificate issuer: /CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5 Certificate serial: 2412 Authority key identifier: 03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/0FSVK6s04HHBN8epe9fP2wVDWH8.roa Signing time: Sat 13 Sep 2025 03:08:45 +0000 ROA not before: Sat 13 Sep 2025 03:08:45 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 49544 IP address blocks: 103.159.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9234 (0x2412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F075D9C6F18DC09BDA62B7087EA80DC5B711C5 Validity Not Before: Sep 13 03:08:45 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D054952BAB34E071C137C7A97BD7CFDB0543587F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:44:f4:4f:83:75:a9:83:a1:3d:30:6e:d6:ff: 83:60:bb:b1:ef:f4:e8:70:47:a1:72:78:bf:63:e1: d2:83:36:72:a2:4c:60:cf:84:09:4c:20:55:74:4f: 92:96:70:8c:4c:ba:de:a9:67:af:cc:32:11:20:ba: 4e:bc:0a:32:f4:b7:e9:d4:e9:56:69:65:1c:de:65: 19:50:09:f0:54:01:51:d5:95:bf:64:96:e5:05:cc: fe:3d:b1:3e:d5:df:e3:63:d7:d2:d5:08:5c:27:be: 05:ab:cd:d6:e4:c9:6c:eb:50:4a:e1:ca:8c:c2:74: 56:b7:38:b9:e2:f7:a9:b5:82:fd:5d:0c:80:7e:b8: 73:23:2e:24:11:67:b3:34:b3:d9:83:71:a7:02:5c: 30:ac:51:65:6c:b3:b0:b3:b1:41:77:2b:6e:7e:fd: 98:ca:e3:b8:32:2c:db:a5:8d:1d:00:c9:4a:6c:e0: 69:9c:52:0e:f1:e9:ad:cb:f8:e3:f4:c4:b0:31:02: 39:35:fa:26:23:dc:ab:d2:5f:1a:ec:37:69:09:95: 90:53:fc:4a:b0:b8:17:5b:68:b3:28:67:de:07:5c: 0d:1b:8c:f7:d9:93:a6:d0:30:74:8e:b5:29:b2:37: 57:0a:e9:40:bb:4c:b3:6c:c6:5c:7c:01:55:53:fd: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:54:95:2B:AB:34:E0:71:C1:37:C7:A9:7B:D7:CF:DB:05:43:58:7F X509v3 Authority Key Identifier: keyid:03:F0:75:D9:C6:F1:8D:C0:9B:DA:62:B7:08:7E:A8:0D:C5:B7:11:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/A_B12cbxjcCb2mK3CH6oDcW3EcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/A_B12cbxjcCb2mK3CH6oDcW3EcU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3040/0FSVK6s04HHBN8epe9fP2wVDWH8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.159.122.0/23 Signature Algorithm: sha256WithRSAEncryption 63:ba:39:c0:22:54:07:04:d0:9d:4f:ed:e7:41:56:bb:e4:d2: 28:5c:dc:0c:ef:21:0f:80:65:3e:48:de:3d:62:07:fe:f3:c0: ad:15:6e:da:23:f5:52:19:54:12:97:39:81:28:3e:99:cb:59: 7b:3f:2e:63:e6:61:7b:87:c7:fc:4f:da:74:cd:bd:fd:80:e5: a9:6d:0c:d4:8a:e4:37:4e:3f:cb:59:5b:b4:be:d3:1d:ab:f1: 50:0d:e1:87:06:ca:a7:90:e3:b9:1d:db:52:76:b5:6b:b6:99: 14:14:27:2c:9b:5a:cb:bc:c0:19:b3:3e:c7:a5:de:d0:9a:62: 55:20:a6:d0:4f:91:45:c8:b0:5a:17:ec:4f:fb:1e:1f:1b:68: 94:98:2a:56:d0:f3:39:0d:c0:b6:2e:4e:7c:3e:b5:98:7d:87: ab:bb:cd:af:21:ab:c1:99:e8:76:b8:00:41:fc:cc:c9:cd:5a: b0:88:8f:65:bf:51:a0:9b:b4:c5:27:00:af:d2:af:b9:8e:bc: 8e:e9:da:a4:e7:ab:14:c8:60:4e:c9:a6:ba:8a:21:87:94:22: 5f:88:43:02:70:38:94:4c:f9:02:a3:1f:dc:7a:94:00:91:a7: 3c:fa:12:23:bc:9e:e8:47:f4:64:08:a9:02:74:57:7f:48:c9: 44:24:5f:ce -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICJBIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDNG MDc1RDlDNkYxOERDMDlCREE2MkI3MDg3RUE4MERDNUI3MTFDNTAeFw0yNTA5MTMw MzA4NDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQwNTQ5NTJCQUIzNEUw NzFDMTM3QzdBOTdCRDdDRkRCMDU0MzU4N0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiRPRPg3Wpg6E9MG7W/4Ngu7Hv9OhwR6FyeL9j4dKDNnKiTGDP hAlMIFV0T5KWcIxMut6pZ6/MMhEguk68CjL0t+nU6VZpZRzeZRlQCfBUAVHVlb9k luUFzP49sT7V3+Nj19LVCFwnvgWrzdbkyWzrUErhyozCdFa3OLni96m1gv1dDIB+ uHMjLiQRZ7M0s9mDcacCXDCsUWVss7CzsUF3K25+/ZjK47gyLNuljR0AyUps4Gmc Ug7x6a3L+OP0xLAxAjk1+iYj3KvSXxrsN2kJlZBT/EqwuBdbaLMoZ94HXA0bjPfZ k6bQMHSOtSmyN1cK6UC7TLNsxlx8AVVT/czTAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU0FSVK6s04HHBN8epe9fP2wVDWH8wHwYDVR0jBBgwFoAUA/B12cbxjcCb2mK3 CH6oDcW3EcUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 MC9BX0IxMmNieGpjQ2IybUszQ0g2b0RjVzNFY1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0FfQjEyY2J4amNDYjJtSzNDSDZvRGNXM0VjVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDAvMEZTVks2czA0SEhC TjhlcGU5ZlAyd1ZEV0g4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWefejANBgkqhkiG9w0BAQsFAAOCAQEAY7o5wCJUBwTQnU/t50FWu+TSKFzc DO8hD4BlPkjePWIH/vPArRVu2iP1UhlUEpc5gSg+mctZez8uY+Zhe4fH/E/adM29 /YDlqW0M1IrkN04/y1lbtL7THavxUA3hhwbKp5DjuR3bUna1a7aZFBQnLJtay7zA GbM+x6Xe0JpiVSCm0E+RRciwWhfsT/seHxtolJgqVtDzOQ3Ati5OfD61mH2Hq7vN ryGrwZnodrgAQfzMyc1asIiPZb9RoJu0xScAr9KvuY68junapOerFMhgTsmmuooh h5QiX4hDAnA4lEz5AqMf3HqUAJGnPPoSI7ye6Ef0ZAipAnRXf0jJRCRfzg== -----END CERTIFICATE-----Generated at Mon Oct 20 00:04:31 2025 by rpki-client