$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/ZPqjM_2Mic4KZf4KtUkfhApcGFY.roa File: ZPqjM_2Mic4KZf4KtUkfhApcGFY.roa (raw, json) Hash identifier: BSX92NorjgLDwN0WS2cBXQ4IsZksnYEFf6CzGDqr58s= Subject key identifier: 64:FA:A3:33:FD:8C:89:CE:0A:65:FE:0A:B5:49:1F:84:0A:5C:18:56 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A61 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/ZPqjM_2Mic4KZf4KtUkfhApcGFY.roa Signing time: Sat 13 Sep 2025 03:07:12 +0000 ROA not before: Sat 13 Sep 2025 03:07:12 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 152179 IP address blocks: 180.223.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6753 (0x1a61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:12 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=64FAA333FD8C89CE0A65FE0AB5491F840A5C1856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d6:0c:76:16:69:aa:7f:1b:ab:48:74:e1:e1: bc:c5:92:8b:ac:34:1a:ac:b0:26:e9:86:ef:86:68: c9:4d:92:64:b7:51:15:4b:b4:38:96:e9:89:d4:e9: d4:1e:80:11:6e:f8:56:8d:3b:80:57:17:1e:24:a4: b4:0b:1c:10:f9:74:a9:bf:4f:bb:62:42:38:35:3e: d1:bd:1f:50:4d:7c:2a:dd:40:43:de:7f:97:e3:de: 3f:cd:7a:29:15:02:d6:5c:40:77:c9:0d:15:4e:f3: 61:41:ef:4b:77:cb:32:94:ef:1d:87:91:49:9d:95: e6:74:56:58:06:5a:54:a2:88:dc:4d:fa:4b:0a:13: 02:96:19:6f:aa:88:e0:0b:6e:46:ef:60:6c:3e:66: 37:3e:c6:e7:10:74:6c:d2:e0:21:2f:b9:54:b8:25: 3a:cc:7f:83:b9:fc:56:66:07:01:a5:5e:2a:36:14: ad:ee:6e:9c:16:a0:d8:ff:6a:e0:4b:7a:9e:0f:79: fd:6e:f3:51:19:2b:7b:b6:ba:90:88:5d:a6:a3:5b: 71:5f:d8:e4:38:f0:f4:61:cc:cd:fa:8c:d8:0d:37: 0b:83:c2:5c:ac:00:60:97:bf:e3:8a:cd:04:27:2d: 9f:57:74:85:b2:72:36:ed:fd:80:e0:39:c0:6d:b0: 3f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FA:A3:33:FD:8C:89:CE:0A:65:FE:0A:B5:49:1F:84:0A:5C:18:56 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/ZPqjM_2Mic4KZf4KtUkfhApcGFY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.211.0/24 Signature Algorithm: sha256WithRSAEncryption 01:fd:2a:92:89:08:09:13:f5:7d:9e:d8:3f:a2:11:75:21:14: c8:58:20:6a:a7:f5:08:c4:14:1c:76:3a:94:8f:a8:30:45:23: 0e:61:6b:14:d4:63:51:f0:da:83:bd:f8:92:be:97:e6:20:65: 90:83:7e:83:f9:eb:d0:15:04:3a:54:26:29:ce:30:84:9b:73: 09:c6:20:5b:cb:00:b0:5f:6b:6a:1b:77:49:c8:3b:5b:d5:95: bf:85:5a:71:a0:9b:6b:4a:5e:77:1e:15:50:42:4d:25:a2:2b: 52:b3:83:9e:e2:5d:9d:4e:fd:44:77:63:a1:c7:70:13:28:c6: 3a:49:e0:d6:f7:f6:d5:4a:54:cd:69:f0:48:7b:55:d7:42:72: a6:5c:95:10:fe:1a:57:f8:d3:c4:2c:41:98:90:1f:0d:c2:9a: 13:d5:c3:fc:16:06:26:ac:6d:88:a0:ee:34:85:c0:fe:f6:61: 48:99:03:3a:a3:64:d7:68:d9:00:71:99:11:10:48:a9:5e:4d: 09:aa:f1:b7:ab:90:24:ee:92:90:0c:7c:4e:11:49:50:c2:3f: 3b:36:d7:42:e6:ba:17:6a:1a:2a:46:78:bd:5d:ea:cc:b7:af: f1:58:c0:97:3c:72:17:17:ae:d3:94:29:03:30:33:17:2a:83: 6c:48:03:92 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDY0RkFBMzMzRkQ4Qzg5 Q0UwQTY1RkUwQUI1NDkxRjg0MEE1QzE4NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu1gx2FmmqfxurSHTh4bzFkousNBqssCbphu+GaMlNkmS3URVL tDiW6YnU6dQegBFu+FaNO4BXFx4kpLQLHBD5dKm/T7tiQjg1PtG9H1BNfCrdQEPe f5fj3j/NeikVAtZcQHfJDRVO82FB70t3yzKU7x2HkUmdleZ0VlgGWlSiiNxN+ksK EwKWGW+qiOALbkbvYGw+Zjc+xucQdGzS4CEvuVS4JTrMf4O5/FZmBwGlXio2FK3u bpwWoNj/auBLep4Pef1u81EZK3u2upCIXaajW3Ff2OQ48PRhzM36jNgNNwuDwlys AGCXv+OKzQQnLZ9XdIWycjbt/YDgOcBtsD8JAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUZPqjM/2Mic4KZf4KtUkfhApcGFYwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvWlBxak1fMk1pYzRL WmY0S3RVa2ZoQXBjR0ZZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTf0zANBgkqhkiG9w0BAQsFAAOCAQEAAf0qkokICRP1fZ7YP6IRdSEUyFgg aqf1CMQUHHY6lI+oMEUjDmFrFNRjUfDag734kr6X5iBlkIN+g/nr0BUEOlQmKc4w hJtzCcYgW8sAsF9raht3Scg7W9WVv4VacaCba0pedx4VUEJNJaIrUrODnuJdnU79 RHdjocdwEyjGOkng1vf21UpUzWnwSHtV10JyplyVEP4aV/jTxCxBmJAfDcKaE9XD /BYGJqxtiKDuNIXA/vZhSJkDOqNk12jZAHGZERBIqV5NCarxt6uQJO6SkAx8ThFJ UMI/OzbXQua6F2oaKkZ4vV3qzLev8VjAlzxyFxeu05QpAzAzFyqDbEgDkg== -----END CERTIFICATE-----Generated at Mon Oct 20 00:04:33 2025 by rpki-client