$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/LW0D-IfLZF19h4GVLvBxQ-vkj4Y.roa File: LW0D-IfLZF19h4GVLvBxQ-vkj4Y.roa (raw, json) Hash identifier: kLMpomRHPkhhPs9JM6g7EURjHXkStEYUdHWItoWnf6I= Subject key identifier: 2D:6D:03:F8:87:CB:64:5D:7D:87:81:95:2E:F0:71:43:EB:E4:8F:86 Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708 Certificate serial: 21EE Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/LW0D-IfLZF19h4GVLvBxQ-vkj4Y.roa Signing time: Sat 13 Sep 2025 03:09:07 +0000 ROA not before: Sat 13 Sep 2025 03:09:07 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 137718 IP address blocks: 2406:d440::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8686 (0x21ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708 Validity Not Before: Sep 13 03:09:07 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2D6D03F887CB645D7D8781952EF07143EBE48F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:66:62:7a:82:99:0b:60:5f:e1:83:2c:b8: 2c:d9:1f:8b:4d:68:37:23:cd:9e:9d:7d:74:a1:44: 77:59:77:3f:81:3e:3b:ce:f1:96:ea:48:56:07:bf: d4:77:4c:86:3a:66:fb:6f:8b:87:b3:3b:f8:50:f1: 5d:59:98:7a:81:e1:97:c1:9a:83:f5:81:76:f0:ce: 25:9a:5d:0b:81:38:ef:d2:33:2d:01:1a:d8:32:92: f6:47:a1:6c:53:cd:c8:a0:56:94:5f:a0:01:fb:31: 2b:a2:24:d6:27:ff:03:3f:98:5c:41:d5:35:67:b7: aa:69:99:73:96:af:9e:d8:39:b8:9a:c0:d6:8c:fa: aa:7a:f8:99:af:f6:8d:5c:38:6a:f4:01:af:8a:28: 47:1a:98:84:f6:cb:80:d6:77:fc:e7:7a:e2:62:ce: 81:32:11:24:0d:85:10:27:2f:6e:c7:fb:61:0c:d4: 87:69:91:db:46:f0:a4:dc:a8:1c:9e:b3:5f:62:8d: 41:3f:68:f9:fd:96:7c:56:29:8a:1e:99:10:b2:b0: a1:7d:39:f6:6c:f4:d9:1f:99:9e:be:95:9f:62:6f: 43:ff:0f:de:21:d5:9d:d1:e6:a5:d1:ea:91:d1:c8: c0:1f:d1:6c:f6:e9:d5:2c:33:f7:d2:20:7b:64:55: 74:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:6D:03:F8:87:CB:64:5D:7D:87:81:95:2E:F0:71:43:EB:E4:8F:86 X509v3 Authority Key Identifier: keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/LW0D-IfLZF19h4GVLvBxQ-vkj4Y.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d440::/32 Signature Algorithm: sha256WithRSAEncryption 57:9d:df:50:81:b7:92:c2:61:53:a5:4f:79:3e:40:78:fc:6e: 5f:c4:c8:68:02:4e:8f:82:0b:37:57:b4:73:96:e7:80:ac:e1: 79:d4:ce:38:29:be:4b:db:40:56:a2:eb:f4:3c:cb:19:ca:6e: c2:12:17:61:b7:11:8a:a0:e3:e5:b0:13:fe:69:86:b9:88:64: bf:38:23:72:c7:6d:8f:00:fc:52:f8:7b:3b:16:07:a8:6b:75: 1f:2c:a6:83:5d:ef:42:34:d8:c8:d4:d0:a4:ec:38:22:ca:6d: 22:34:f1:9f:4e:49:8a:cd:f4:29:83:3e:c0:f4:05:ea:23:f9: df:e1:94:57:42:8b:10:7f:f9:95:9d:65:02:3c:92:e5:55:6c: 44:58:21:fb:15:c0:26:66:6b:3c:aa:c4:8f:80:6e:0a:61:b9: 19:cb:4a:c1:e0:f9:01:56:77:6b:9a:f2:77:ef:35:98:2c:06: 05:6d:ea:3a:97:68:db:0f:5a:68:9e:2c:76:40:b0:75:4f:09: 83:fa:cb:4b:ae:9b:82:e3:8b:36:c7:48:b2:37:c4:39:90:d6: 46:61:3f:7f:e3:db:8a:d0:51:d5:c2:94:25:79:5a:4e:0d:35: 4d:b7:2b:f0:9f:6e:bf:e8:f4:15:61:81:43:e6:2f:ef:40:0b: 9a:bd:4a:de -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICIe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4 QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yNTA5MTMw MzA5MDdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDJENkQwM0Y4ODdDQjY0 NUQ3RDg3ODE5NTJFRjA3MTQzRUJFNDhGODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAA2ZieoKZC2Bf4YMsuCzZH4tNaDcjzZ6dfXShRHdZdz+BPjvO 8ZbqSFYHv9R3TIY6Zvtvi4ezO/hQ8V1ZmHqB4ZfBmoP1gXbwziWaXQuBOO/SMy0B GtgykvZHoWxTzcigVpRfoAH7MSuiJNYn/wM/mFxB1TVnt6ppmXOWr57YObiawNaM +qp6+Jmv9o1cOGr0Aa+KKEcamIT2y4DWd/zneuJizoEyESQNhRAnL27H+2EM1Idp kdtG8KTcqByes19ijUE/aPn9lnxWKYoemRCysKF9OfZs9NkfmZ6+lZ9ib0P/D94h 1Z3R5qXR6pHRyMAf0Wz26dUsM/fSIHtkVXShAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQULW0D+IfLZF19h4GVLvBxQ+vkj4YwHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvTFcwRC1JZkxaRjE5 aDRHVkx2QnhRLXZrajRZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIw BwMFACQG1EAwDQYJKoZIhvcNAQELBQADggEBAFed31CBt5LCYVOlT3k+QHj8bl/E yGgCTo+CCzdXtHOW54Cs4XnUzjgpvkvbQFai6/Q8yxnKbsISF2G3EYqg4+WwE/5p hrmIZL84I3LHbY8A/FL4ezsWB6hrdR8spoNd70I02MjU0KTsOCLKbSI08Z9OSYrN 9CmDPsD0Beoj+d/hlFdCixB/+ZWdZQI8kuVVbERYIfsVwCZmazyqxI+AbgphuRnL SsHg+QFWd2ua8nfvNZgsBgVt6jqXaNsPWmieLHZAsHVPCYP6y0uum4LjizbHSLI3 xDmQ1kZhP3/j24rQUdXClCV5Wk4NNU23K/Cfbr/o9BVhgUPmL+9AC5q9St4= -----END CERTIFICATE-----Generated at Tue Oct 21 01:19:21 2025 by rpki-client