$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/a6MqWFo1KYkwHnvheRYE7GSZz34.roa File: a6MqWFo1KYkwHnvheRYE7GSZz34.roa (raw, json) Hash identifier: lMX/VRqhyqR+ieG0WxB4o8x2aMi3SwClpqt68kBiKNc= Subject key identifier: 6B:A3:2A:58:5A:35:29:89:30:1E:7B:E1:79:16:04:EC:64:99:CF:7E Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A68 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/a6MqWFo1KYkwHnvheRYE7GSZz34.roa Signing time: Sat 13 Sep 2025 03:07:14 +0000 ROA not before: Sat 13 Sep 2025 03:07:14 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 152179 IP address blocks: 180.223.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6760 (0x1a68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:14 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=6BA32A585A352989301E7BE1791604EC6499CF7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:28:d4:45:77:1b:21:28:7f:a0:ef:12:9c: e4:82:08:8b:3c:93:c8:25:b8:d2:05:2a:45:72:6a: fc:2d:42:eb:6c:68:9a:a1:61:46:3e:71:4e:a5:2f: c3:8c:47:1f:a1:20:e4:37:86:b7:0d:1f:ed:49:42: ab:9d:e2:90:ea:73:5a:f7:a8:ba:a0:c8:54:21:5b: 61:e9:21:49:60:2b:80:5b:c8:28:a2:89:eb:3b:78: 68:ab:5b:c1:1b:b4:d0:9f:21:55:d4:20:81:01:68: ac:be:4f:51:cd:a1:5e:22:77:cf:46:9e:d9:b6:78: 1b:a7:55:13:33:b0:9c:d9:ce:74:7b:c6:7b:8d:2f: 91:34:47:7e:65:7a:e8:ad:67:90:9c:ee:0b:51:03: bb:34:d6:86:0d:45:57:6c:08:b4:59:db:94:2b:5f: cc:ac:8f:78:06:09:14:a3:83:88:75:ac:d6:bc:af: d7:ad:39:71:c7:7d:6f:a8:72:68:20:29:fa:9f:3d: b8:5c:1d:51:e9:77:0f:fd:05:b8:9f:9f:e6:d4:60: 51:7f:b6:78:a9:b7:23:62:e4:d4:90:e5:27:f6:4d: 2c:31:6d:92:8e:8c:0c:b6:15:53:8b:72:89:6e:62: a4:84:ed:8e:30:56:f9:e8:d5:30:a6:49:00:da:ec: 17:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A3:2A:58:5A:35:29:89:30:1E:7B:E1:79:16:04:EC:64:99:CF:7E X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/a6MqWFo1KYkwHnvheRYE7GSZz34.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.210.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:1b:1e:52:75:10:ce:4a:bb:42:51:5e:8b:53:62:90:f0:24: 3d:df:26:b1:77:52:53:d4:33:41:32:5a:6a:0e:8d:07:7b:bf: ef:c6:41:6d:82:c9:f3:63:70:c3:52:2b:c4:b3:15:c5:19:b4: 55:7a:fc:06:21:ac:e8:47:9a:73:78:71:77:fc:35:3c:b9:88: 4e:ce:df:1a:fc:b6:8e:f5:90:10:33:9d:99:d6:da:37:7c:98: da:60:1f:2a:1b:06:f7:ba:92:aa:30:24:f2:ba:e3:25:b9:62: 82:91:ee:da:76:77:91:76:dd:c7:2f:1d:ce:9e:9b:0a:8c:e9: 95:e0:7f:c5:00:0a:42:f9:ef:4c:8d:8c:03:7d:11:89:5b:6d: f3:41:c8:36:fa:c3:5d:3c:25:30:62:2e:fb:30:db:2a:2d:c7: e4:5f:3e:0c:95:a5:20:f9:c0:20:24:94:4f:ff:a3:d6:e3:ac: 14:28:23:71:3c:ab:65:4a:0f:80:83:e2:38:c2:62:87:61:92: bf:15:cd:61:e1:fd:76:f9:e0:52:f3:3c:77:89:c0:19:69:38: 25:da:f6:cb:c4:ea:7b:ea:5e:b9:47:e6:33:f6:80:ce:de:65: 9b:4d:e1:b8:59:a1:b3:d5:c7:d5:27:3f:75:33:1c:03:79:a1: ca:a9:e9:ef -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTRaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDZCQTMyQTU4NUEzNTI5 ODkzMDFFN0JFMTc5MTYwNEVDNjQ5OUNGN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8qCjURXcbISh/oO8SnOSCCIs8k8gluNIFKkVyavwtQutsaJqh YUY+cU6lL8OMRx+hIOQ3hrcNH+1JQqud4pDqc1r3qLqgyFQhW2HpIUlgK4BbyCii ies7eGirW8EbtNCfIVXUIIEBaKy+T1HNoV4id89Gntm2eBunVRMzsJzZznR7xnuN L5E0R35leuitZ5Cc7gtRA7s01oYNRVdsCLRZ25QrX8ysj3gGCRSjg4h1rNa8r9et OXHHfW+ocmggKfqfPbhcHVHpdw/9Bbifn+bUYFF/tniptyNi5NSQ5Sf2TSwxbZKO jAy2FVOLcoluYqSE7Y4wVvno1TCmSQDa7Bf7AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUa6MqWFo1KYkwHnvheRYE7GSZz34wHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvYTZNcVdGbzFLWWt3 SG52aGVSWUU3R1NaejM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEALTf0jANBgkqhkiG9w0BAQsFAAOCAQEAjRseUnUQzkq7QlFei1NikPAkPd8m sXdSU9QzQTJaag6NB3u/78ZBbYLJ82Nww1IrxLMVxRm0VXr8BiGs6Eeac3hxd/w1 PLmITs7fGvy2jvWQEDOdmdbaN3yY2mAfKhsG97qSqjAk8rrjJbligpHu2nZ3kXbd xy8dzp6bCozpleB/xQAKQvnvTI2MA30RiVtt80HINvrDXTwlMGIu+zDbKi3H5F8+ DJWlIPnAICSUT/+j1uOsFCgjcTyrZUoPgIPiOMJih2GSvxXNYeH9dvngUvM8d4nA GWk4Jdr2y8Tqe+peuUfmM/aAzt5lm03huFmhs9XH1Sc/dTMcA3mhyqnp7w== -----END CERTIFICATE-----Generated at Mon Oct 20 00:04:36 2025 by rpki-client