$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/QpV6nLVqoe2CrAWDkAwUygiRpIg.roa File: QpV6nLVqoe2CrAWDkAwUygiRpIg.roa (raw, json) Hash identifier: qGZB4v9IR2W9wOVyS2pgZco1OLZ1Ybim96x7CQI6bdM= Subject key identifier: 42:95:7A:9C:B5:6A:A1:ED:82:AC:05:83:90:0C:14:CA:08:91:A4:88 Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708 Certificate serial: 21CD Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/QpV6nLVqoe2CrAWDkAwUygiRpIg.roa Signing time: Sat 13 Sep 2025 03:09:01 +0000 ROA not before: Sat 13 Sep 2025 03:09:01 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4811 IP address blocks: 14.103.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8653 (0x21cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708 Validity Not Before: Sep 13 03:09:01 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=42957A9CB56AA1ED82AC0583900C14CA0891A488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:65:37:85:36:3a:dc:4b:4c:39:26:9a:72: 6b:16:aa:e9:db:df:f9:d0:fc:18:f6:a9:39:de:67: 60:f8:4d:d4:d8:78:91:0f:c4:c8:2d:ed:2f:3f:1d: cf:13:8d:2c:73:3f:76:a8:18:e2:84:0f:cc:0a:a0: ce:61:a4:ed:ce:16:97:23:3a:d1:e5:d3:16:fb:a9: 41:4d:a5:a0:74:78:39:31:aa:46:e5:bb:c2:dd:ee: b3:ad:49:12:92:17:d5:9c:7d:e5:74:28:83:ef:2a: 84:fe:dc:e0:9f:2f:36:9d:db:f2:31:6d:4e:f2:08: 4f:92:f1:7a:43:9b:09:c5:b7:01:67:00:cb:85:12: 6c:eb:36:e7:6d:62:64:4d:d1:65:98:60:73:0c:13: 7a:8b:e1:cf:30:4f:0a:c6:86:d2:00:8b:77:89:a5: db:56:2e:ff:8e:99:7e:bf:6c:e2:15:c9:2c:93:a7: 48:7f:61:98:35:58:50:34:45:bd:46:10:ec:d3:4c: 45:01:a2:53:56:07:55:3e:17:c9:90:46:b0:e9:63: 09:ed:30:e8:aa:71:bc:b4:ec:47:b9:75:87:e4:bf: 41:42:cb:a0:0e:ca:48:18:b3:10:68:28:a9:d0:38: b7:51:39:db:20:9f:f3:01:e1:ce:82:25:e7:b0:5c: 25:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:95:7A:9C:B5:6A:A1:ED:82:AC:05:83:90:0C:14:CA:08:91:A4:88 X509v3 Authority Key Identifier: keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/QpV6nLVqoe2CrAWDkAwUygiRpIg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 14.103.32.0/21 Signature Algorithm: sha256WithRSAEncryption 1c:8e:a7:6b:20:3f:3f:bf:02:0f:ab:a1:7f:5c:60:94:38:6c: f0:f9:c9:52:39:07:23:57:db:69:df:99:af:12:91:83:33:21: 21:e8:77:01:1a:4a:12:82:2b:fa:0b:84:36:68:e9:5a:cb:3c: 20:95:58:09:62:5b:2e:5d:e4:ff:b2:04:05:1d:6b:2e:74:49: 98:e3:71:fa:59:6b:a3:3a:e6:f6:9f:e6:a7:5b:3a:16:c2:cc: a8:71:6d:58:8f:65:6f:b7:51:df:ea:f0:d3:9e:3d:f1:3d:45: 14:d1:9a:4c:68:55:7a:24:0f:fe:87:17:0b:3a:61:8a:c3:86: 84:3c:ed:bf:52:91:05:bd:04:b9:e5:9e:6d:aa:44:a6:e6:53: 31:3c:11:15:87:86:d1:a2:b3:31:75:60:ae:04:22:e4:71:70: 9e:e0:6f:7f:20:89:46:5b:1e:e8:aa:b2:1d:4b:46:72:90:06: 78:90:38:35:0e:5a:d3:a2:6f:ea:61:cd:36:7a:de:76:bb:80: 4f:b5:f1:bb:49:ff:af:06:e9:41:35:70:b8:92:99:e9:cc:65: 32:d5:7f:79:2f:f9:cd:8b:6e:ad:d9:bc:7b:74:d1:ae:d0:67: f1:df:60:b2:1f:f1:ad:59:e8:ba:f7:84:aa:a0:c2:c1:0e:bc: 6c:8a:76:43 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICIc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4 QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yNTA5MTMw MzA5MDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDQyOTU3QTlDQjU2QUEx RUQ4MkFDMDU4MzkwMEMxNENBMDg5MUE0ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0FWU3hTY63EtMOSaacmsWqunb3/nQ/Bj2qTneZ2D4TdTYeJEP xMgt7S8/Hc8TjSxzP3aoGOKED8wKoM5hpO3OFpcjOtHl0xb7qUFNpaB0eDkxqkbl u8Ld7rOtSRKSF9WcfeV0KIPvKoT+3OCfLzad2/IxbU7yCE+S8XpDmwnFtwFnAMuF EmzrNudtYmRN0WWYYHMME3qL4c8wTwrGhtIAi3eJpdtWLv+OmX6/bOIVySyTp0h/ YZg1WFA0Rb1GEOzTTEUBolNWB1U+F8mQRrDpYwntMOiqcby07Ee5dYfkv0FCy6AO ykgYsxBoKKnQOLdROdsgn/MB4c6CJeewXCVRAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUQpV6nLVqoe2CrAWDkAwUygiRpIgwHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvUXBWNm5MVnFvZTJD ckFXRGtBd1V5Z2lScElnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAw5nIDANBgkqhkiG9w0BAQsFAAOCAQEAHI6nayA/P78CD6uhf1xglDhs8PnJ UjkHI1fbad+ZrxKRgzMhIeh3ARpKEoIr+guENmjpWss8IJVYCWJbLl3k/7IEBR1r LnRJmONx+llrozrm9p/mp1s6FsLMqHFtWI9lb7dR3+rw05498T1FFNGaTGhVeiQP /ocXCzphisOGhDztv1KRBb0EueWebapEpuZTMTwRFYeG0aKzMXVgrgQi5HFwnuBv fyCJRlse6KqyHUtGcpAGeJA4NQ5a06Jv6mHNNnredruAT7Xxu0n/rwbpQTVwuJKZ 6cxlMtV/eS/5zYturdm8e3TRrtBn8d9gsh/xrVnouveEqqDCwQ68bIp2Qw== -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:27 2025 by rpki-client