$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/xDCr7aJ-WsLjph24dToUaMqkkX4.roa File: xDCr7aJ-WsLjph24dToUaMqkkX4.roa (raw, json) Hash identifier: HjdOTt/PnQW+v6JiF1Qjc06aGMMttUuOrO3E7FJoX0Y= Subject key identifier: C4:30:AB:ED:A2:7E:5A:C2:E3:A6:1D:B8:75:3A:14:68:CA:A4:91:7E Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1A8C Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/xDCr7aJ-WsLjph24dToUaMqkkX4.roa Signing time: Sat 13 Sep 2025 03:07:21 +0000 ROA not before: Sat 13 Sep 2025 03:07:21 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 18811 IP address blocks: 180.223.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6796 (0x1a8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Sep 13 03:07:21 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C430ABEDA27E5AC2E3A61DB8753A1468CAA4917E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8b:6a:fb:64:f8:10:0d:d5:57:a5:89:7a:c2: ca:33:84:93:c6:22:40:5e:df:5b:0c:ef:0b:8f:58: cc:c8:82:ae:11:40:2e:8c:09:d4:4b:29:cd:13:ac: b3:fe:3b:7c:41:eb:7d:d6:e7:43:6f:37:ff:c1:3a: 12:c1:66:0b:11:45:97:a3:fb:1e:36:f3:4c:1f:2a: 59:35:69:eb:d9:f8:4e:b9:17:ca:3e:3d:3d:be:1a: 89:99:ab:d5:ed:47:a1:8a:db:86:65:2e:d7:73:15: b9:88:aa:42:8a:80:7c:48:f6:08:b5:ca:80:d1:ca: 30:af:91:91:f4:b3:59:d1:5e:02:aa:18:9d:8f:d1: d6:42:f4:85:3a:55:ba:70:ad:bc:28:62:47:c9:6c: 19:4c:d6:53:73:cb:4b:dc:ac:02:14:56:cb:71:1c: 5b:bb:aa:b6:45:44:2b:8c:16:52:75:7e:51:0b:67: 23:9f:65:95:ed:44:1a:83:aa:59:ea:e5:f7:1a:5d: e6:a3:9e:f0:0a:07:86:1c:76:b0:d7:0a:66:c7:f2: 75:68:8b:a2:54:4b:1d:c0:af:9b:bb:0a:ef:6f:eb: a9:a0:e6:f0:7c:19:e2:67:01:0d:25:2c:22:55:1c: d0:9b:04:02:62:54:56:8a:54:66:b7:ae:73:d9:ab: b8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:30:AB:ED:A2:7E:5A:C2:E3:A6:1D:B8:75:3A:14:68:CA:A4:91:7E X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/xDCr7aJ-WsLjph24dToUaMqkkX4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.212.0/22 Signature Algorithm: sha256WithRSAEncryption 24:a6:68:d9:64:bb:5f:27:23:17:35:58:b8:cc:4c:b6:a1:d0: 43:86:14:e1:44:f3:e4:b0:33:e9:8b:15:52:e3:50:03:cc:0c: ec:0a:71:39:12:0c:18:2f:7e:4a:5a:01:c6:b6:50:57:34:b4: 04:f1:dd:32:3a:77:2f:5e:32:be:21:5e:76:f2:6d:f0:6b:11: 02:af:a6:99:b2:d1:d4:4e:eb:94:be:1d:3c:63:a6:2a:3b:df: 89:1c:ea:39:a0:04:d6:ae:60:b8:3d:a3:c4:29:9a:b6:aa:63: d6:f6:9d:7d:05:7c:3a:42:39:db:fa:e4:8f:08:d7:e7:94:cc: ad:75:50:fa:4d:ab:72:da:6b:64:f5:b5:a5:8d:f1:c8:f9:61: 51:92:30:ec:63:0d:46:7e:bb:22:dc:da:4b:96:c1:fc:24:d8: 5e:1d:df:93:27:36:79:51:a8:53:91:18:19:8c:8b:4a:6b:8e: 80:c5:06:2a:0a:d6:25:24:87:01:7e:d7:d9:88:84:d5:ae:61: 6b:9e:6c:d0:d0:3f:42:cd:38:6c:44:25:39:d8:de:9e:88:fa: 6a:f5:ba:69:92:cd:64:5c:1a:51:d0:e8:28:9c:95:c1:72:ad: e7:8d:05:e3:18:54:a2:58:0b:ab:ab:24:d7:a3:e8:a0:75:27: 4c:7b:3e:83 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA5MTMw MzA3MjFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEM0MzBBQkVEQTI3RTVB QzJFM0E2MURCODc1M0ExNDY4Q0FBNDkxN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXi2r7ZPgQDdVXpYl6wsozhJPGIkBe31sM7wuPWMzIgq4RQC6M CdRLKc0TrLP+O3xB633W50NvN//BOhLBZgsRRZej+x4280wfKlk1aevZ+E65F8o+ PT2+GomZq9XtR6GK24ZlLtdzFbmIqkKKgHxI9gi1yoDRyjCvkZH0s1nRXgKqGJ2P 0dZC9IU6VbpwrbwoYkfJbBlM1lNzy0vcrAIUVstxHFu7qrZFRCuMFlJ1flELZyOf ZZXtRBqDqlnq5fcaXeajnvAKB4YcdrDXCmbH8nVoi6JUSx3Ar5u7Cu9v66mg5vB8 GeJnAQ0lLCJVHNCbBAJiVFaKVGa3rnPZq7gFAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUxDCr7aJ+WsLjph24dToUaMqkkX4wHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAveERDcjdhSi1Xc0xq cGgyNGRUb1VhTXFra1g0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEArTf1DANBgkqhkiG9w0BAQsFAAOCAQEAJKZo2WS7XycjFzVYuMxMtqHQQ4YU 4UTz5LAz6YsVUuNQA8wM7ApxORIMGC9+SloBxrZQVzS0BPHdMjp3L14yviFedvJt 8GsRAq+mmbLR1E7rlL4dPGOmKjvfiRzqOaAE1q5guD2jxCmatqpj1vadfQV8OkI5 2/rkjwjX55TMrXVQ+k2rctprZPW1pY3xyPlhUZIw7GMNRn67ItzaS5bB/CTYXh3f kyc2eVGoU5EYGYyLSmuOgMUGKgrWJSSHAX7X2YiE1a5ha55s0NA/Qs04bEQlOdje noj6avW6aZLNZFwaUdDoKJyVwXKt540F4xhUolgLq6sk16PooHUnTHs+gw== -----END CERTIFICATE-----Generated at Mon Oct 20 03:49:36 2025 by rpki-client