$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/XCI-Q54nvqwvA2N1s4fUoeoB5Wc.roa File: XCI-Q54nvqwvA2N1s4fUoeoB5Wc.roa (raw, json) Hash identifier: 55Kyc+BPVF547eTda6rr9gIUQAQ2ZQZocQh21HcJENU= Subject key identifier: 5C:22:3E:43:9E:27:BE:AC:2F:03:63:75:B3:87:D4:A1:EA:01:E5:67 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A67 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/XCI-Q54nvqwvA2N1s4fUoeoB5Wc.roa Signing time: Sat 13 Sep 2025 03:07:13 +0000 ROA not before: Sat 13 Sep 2025 03:07:13 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4766 IP address blocks: 180.223.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 23:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6759 (0x1a67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:13 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=5C223E439E27BEAC2F036375B387D4A1EA01E567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6e:df:a3:3b:f5:e9:10:9e:fc:77:75:fb:59: 20:93:20:63:7f:3a:37:dd:60:59:fb:d8:b9:37:a1: ce:a0:cf:ca:5c:54:ad:33:e7:af:ab:14:9a:9c:a9: b2:6a:9f:fa:3f:63:0d:2a:bb:07:5d:2c:4e:a5:45: 3b:43:66:64:04:1c:22:de:94:0b:ce:dd:b2:24:18: 1d:5b:da:50:44:59:4e:97:4e:5e:d8:c3:6e:fa:68: 5a:85:67:79:5e:17:f5:cf:59:6d:42:96:0c:01:f2: eb:af:0f:98:f9:7f:b8:6c:fc:4f:51:37:7e:fc:02: ea:7f:d2:1c:4a:ac:2c:2f:68:57:69:c8:1e:b0:9d: 34:a1:16:d3:bf:ad:85:c6:a1:94:4e:ec:f9:5f:82: 1f:9f:b5:90:ba:82:bb:44:49:05:36:be:ac:ce:bc: f8:ca:17:76:44:f5:a0:34:04:2f:e5:99:33:25:8b: 3d:c3:bb:78:82:a5:39:91:75:f3:03:28:28:d7:61: f9:b8:02:8a:93:41:67:87:bd:fa:db:a1:93:7d:4f: 16:6f:63:75:88:1c:63:9c:b9:02:09:bf:e9:36:82: fd:0e:bb:85:3a:4d:a9:c6:69:ca:40:60:0e:27:16: d3:79:03:f6:f1:2f:46:c7:60:48:0b:53:e0:c5:a4: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:3E:43:9E:27:BE:AC:2F:03:63:75:B3:87:D4:A1:EA:01:E5:67 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/XCI-Q54nvqwvA2N1s4fUoeoB5Wc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.212.0/22 Signature Algorithm: sha256WithRSAEncryption 63:a3:29:08:80:d1:a5:93:a9:d3:1d:fa:34:dc:dd:95:d5:e9: 10:cb:98:fd:e9:9a:5d:1e:a0:28:78:8d:c9:ad:85:2b:9b:07: 08:68:4e:0d:5f:22:71:2e:ab:10:ad:cb:c0:9f:11:8b:1c:fd: 5e:1a:b0:71:6b:ac:92:71:fe:b1:c3:f1:fc:f4:00:56:0c:f8: 1a:9c:ac:32:1e:20:30:00:8e:b3:f1:39:83:7d:c5:a5:12:17: be:d7:0b:5d:66:ba:df:4a:4c:7b:15:98:f3:bc:a6:e0:27:81: 96:a5:d2:71:ae:76:a9:45:4d:f4:9b:dc:96:2c:7d:fb:2e:ac: 1a:0e:35:37:99:a7:07:d4:19:a3:e0:92:75:f8:36:c6:9d:c7: 44:30:32:bf:b6:ce:cf:20:9a:b0:58:de:f5:05:40:d1:84:ed: d9:0c:72:2b:33:b5:73:27:c1:92:b6:69:b3:b8:3c:e4:5a:29: 56:4e:ef:86:96:15:c4:f0:62:4c:93:c0:62:7b:e4:93:cf:cd: 05:c5:d0:b5:38:ae:5e:0e:2a:d4:d9:02:ec:aa:c4:43:0e:6b: 0b:0e:3c:e5:45:85:79:0e:c4:00:1b:d5:9f:59:10:b7:e0:3b: e6:e6:a5:cb:8c:d5:60:8a:d6:1e:5f:6a:7d:6a:ec:61:fd:49: 09:c9:7b:30 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDVDMjIzRTQzOUUyN0JF QUMyRjAzNjM3NUIzODdENEExRUEwMUU1NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHbt+jO/XpEJ78d3X7WSCTIGN/OjfdYFn72Lk3oc6gz8pcVK0z 56+rFJqcqbJqn/o/Yw0quwddLE6lRTtDZmQEHCLelAvO3bIkGB1b2lBEWU6XTl7Y w276aFqFZ3leF/XPWW1ClgwB8uuvD5j5f7hs/E9RN378Aup/0hxKrCwvaFdpyB6w nTShFtO/rYXGoZRO7Plfgh+ftZC6grtESQU2vqzOvPjKF3ZE9aA0BC/lmTMliz3D u3iCpTmRdfMDKCjXYfm4AoqTQWeHvfrboZN9TxZvY3WIHGOcuQIJv+k2gv0Ou4U6 TanGacpAYA4nFtN5A/bxL0bHYEgLU+DFpCfhAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUXCI+Q54nvqwvA2N1s4fUoeoB5WcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvWENJLVE1NG52cXd2 QTJOMXM0ZlVvZW9CNVdjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArTf1DANBgkqhkiG9w0BAQsFAAOCAQEAY6MpCIDRpZOp0x36NNzdldXpEMuY /emaXR6gKHiNya2FK5sHCGhODV8icS6rEK3LwJ8Rixz9XhqwcWusknH+scPx/PQA Vgz4GpysMh4gMACOs/E5g33FpRIXvtcLXWa630pMexWY87ym4CeBlqXSca52qUVN 9Jvclix9+y6sGg41N5mnB9QZo+CSdfg2xp3HRDAyv7bOzyCasFje9QVA0YTt2Qxy KzO1cyfBkrZps7g85FopVk7vhpYVxPBiTJPAYnvkk8/NBcXQtTiuXg4q1NkC7KrE Qw5rCw485UWFeQ7EABvVn1kQt+A75ualy4zVYIrWHl9qfWrsYf1JCcl7MA== -----END CERTIFICATE-----Generated at Sun Oct 19 21:09:28 2025 by rpki-client