$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/mPURwn_g_7x63l2CwpmZA0xjOtc.roa File: mPURwn_g_7x63l2CwpmZA0xjOtc.roa (raw, json) Hash identifier: sQcyDpGP4orM+HHhgw4HALOkV5HH59kzlr3dE2YRIrY= Subject key identifier: 98:F5:11:C2:7F:E0:FF:BC:7A:DE:5D:82:C2:99:99:03:4C:63:3A:D7 Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A80 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/mPURwn_g_7x63l2CwpmZA0xjOtc.roa Signing time: Sat 13 Sep 2025 03:07:19 +0000 ROA not before: Sat 13 Sep 2025 03:07:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4766 IP address blocks: 180.223.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 23:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6784 (0x1a80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=98F511C27FE0FFBC7ADE5D82C29999034C633AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e4:7e:8b:a0:62:94:46:f9:e9:ea:b7:98:01: a2:00:3b:b2:32:62:5c:32:cd:e1:be:32:52:79:b4: 6e:de:e4:cc:a8:83:a9:ad:8c:28:c7:a7:76:d0:f3: 79:00:4a:39:6c:cb:7a:b1:0b:34:bf:e9:94:9d:f4: 1d:ad:6d:2c:6a:9d:ff:d3:45:16:5f:a4:d1:72:f9: 15:4d:54:26:ce:b7:7e:9a:fe:f0:2c:f8:a4:24:38: 1d:34:f5:09:42:65:9f:a4:56:70:e0:98:2f:a8:b3: 95:6c:87:17:9c:01:a6:f6:58:86:b4:9e:ea:8f:58: ed:54:49:cf:fc:d8:21:b3:16:25:f7:ef:8d:c9:52: 59:ec:f0:11:d7:c1:9e:f0:da:77:e3:c9:68:76:df: 54:a7:bc:dc:f6:8d:27:be:a5:c4:f6:b2:54:ef:10: 37:43:48:4e:5b:99:d8:c6:10:b0:c0:b4:a5:fc:92: 87:72:27:4c:10:fb:87:d5:10:db:09:2e:b2:0e:69: 7f:1f:5d:0d:79:40:05:03:92:5d:c8:8b:2f:3c:5b: d1:16:bf:2d:31:7f:b3:c5:9c:8a:28:92:6e:44:dc: 12:c3:6d:32:6f:94:39:26:9f:15:fe:ab:ba:f6:68: 40:3d:0f:02:0c:20:f2:ef:fa:d0:0e:9d:73:a6:2d: 64:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F5:11:C2:7F:E0:FF:BC:7A:DE:5D:82:C2:99:99:03:4C:63:3A:D7 X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/mPURwn_g_7x63l2CwpmZA0xjOtc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.248.0/21 Signature Algorithm: sha256WithRSAEncryption b5:2c:04:dc:12:a7:7a:6a:0c:48:6e:17:a9:00:11:5d:08:e7: 5a:be:a2:8a:40:ea:a6:92:dc:03:48:b0:9e:7b:48:b0:7e:25: 49:03:b8:75:c4:c8:aa:e1:67:2d:af:73:44:30:d6:15:aa:05: 2b:22:d9:6a:9c:e4:66:8b:68:d7:15:ae:75:2b:a7:65:82:54: ef:1a:c3:8b:c2:ec:c2:7f:db:e6:73:71:43:b3:ad:73:fd:21: 24:cb:f0:c7:17:03:22:43:b5:a7:5d:a4:b9:ae:b0:b5:ab:91: 81:a6:dc:6b:09:5c:bf:fa:47:d2:de:21:dc:ea:d5:38:9c:ca: 91:0d:93:e0:1d:fa:dd:09:19:fc:a3:ba:6c:91:95:73:60:97: 8d:12:c0:00:ab:6f:fb:7e:bd:0a:ae:d4:82:1f:6b:71:64:d6: f2:37:4e:2a:12:ee:e8:7d:b5:ef:58:79:19:d0:56:30:41:82: 50:cb:8b:cd:3f:37:4e:98:3b:e7:fa:9d:dc:15:a5:a3:e0:c4: 66:58:be:92:5f:29:f9:06:bd:21:34:f1:22:36:88:31:18:cc: cf:31:4b:94:fc:8f:35:11:56:ef:6a:fe:71:a4:b3:b3:7a:05: 1a:f4:51:5a:ab:43:eb:4d:86:d2:b2:40:12:fa:b9:ff:23:d1: 9f:c9:54:d7 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk4RjUxMUMyN0ZFMEZG QkM3QURFNUQ4MkMyOTk5OTAzNEM2MzNBRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT5H6LoGKURvnp6reYAaIAO7IyYlwyzeG+MlJ5tG7e5Myog6mt jCjHp3bQ83kASjlsy3qxCzS/6ZSd9B2tbSxqnf/TRRZfpNFy+RVNVCbOt36a/vAs +KQkOB009QlCZZ+kVnDgmC+os5VshxecAab2WIa0nuqPWO1USc/82CGzFiX3743J Ulns8BHXwZ7w2nfjyWh231SnvNz2jSe+pcT2slTvEDdDSE5bmdjGELDAtKX8kody J0wQ+4fVENsJLrIOaX8fXQ15QAUDkl3Iiy88W9EWvy0xf7PFnIookm5E3BLDbTJv lDkmnxX+q7r2aEA9DwIMIPLv+tAOnXOmLWSdAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUmPURwn/g/7x63l2CwpmZA0xjOtcwHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvbVBVUnduX2dfN3g2 M2wyQ3dwbVpBMHhqT3RjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA7Tf+DANBgkqhkiG9w0BAQsFAAOCAQEAtSwE3BKnemoMSG4XqQARXQjnWr6i ikDqppLcA0iwnntIsH4lSQO4dcTIquFnLa9zRDDWFaoFKyLZapzkZoto1xWudSun ZYJU7xrDi8Lswn/b5nNxQ7Otc/0hJMvwxxcDIkO1p12kua6wtauRgabcawlcv/pH 0t4h3OrVOJzKkQ2T4B363QkZ/KO6bJGVc2CXjRLAAKtv+369Cq7Ugh9rcWTW8jdO KhLu6H2171h5GdBWMEGCUMuLzT83Tpg75/qd3BWlo+DEZli+kl8p+Qa9ITTxIjaI MRjMzzFLlPyPNRFW72r+caSzs3oFGvRRWqtD602G0rJAEvq5/yPRn8lU1w== -----END CERTIFICATE-----Generated at Sun Oct 19 21:08:57 2025 by rpki-client