$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3164/8C2_C6gmSDmgalrvcm8Ft5YQ9fc.roa File: 8C2_C6gmSDmgalrvcm8Ft5YQ9fc.roa (raw, json) Hash identifier: cFvjS3C7Ni9jMGlyzmgHeGCnydk3CR0hQkqEtMnTBtQ= Subject key identifier: F0:2D:BF:0B:A8:26:48:39:A0:6A:5A:EF:72:6F:05:B7:96:10:F5:F7 Certificate issuer: /CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Certificate serial: 02C6 Authority key identifier: 80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/8C2_C6gmSDmgalrvcm8Ft5YQ9fc.roa Signing time: Wed 15 Oct 2025 10:02:03 +0000 ROA not before: Wed 15 Oct 2025 10:02:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 152320 IP address blocks: 103.219.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 05:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 710 (0x2c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Validity Not Before: Oct 15 10:02:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F02DBF0BA8264839A06A5AEF726F05B79610F5F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8a:b6:96:ba:95:4a:ea:82:1c:24:d5:13:fd: 31:48:02:0f:8a:e5:d3:27:b9:bf:cc:88:9f:c6:31: da:28:83:98:18:7e:8d:66:3a:40:ab:f7:e8:41:28: cc:fb:4c:71:be:53:57:8b:98:9c:c3:9b:2c:37:c3: 0e:7a:b3:c9:cd:35:62:8e:c2:f9:b2:c5:5b:ec:a0: 08:4e:0d:02:6b:38:18:3f:41:58:d4:39:af:76:d2: 08:4e:bc:17:84:b0:24:5b:3d:3a:e3:36:be:14:21: 90:cf:93:49:b9:b3:88:9a:a1:0c:d5:d6:e8:a1:aa: c2:56:87:4d:92:42:01:af:6e:70:85:3b:84:9a:bb: df:89:bd:0a:5a:95:00:81:f5:07:54:e9:0b:3c:b0: 29:0d:cc:cd:59:ca:29:51:37:2e:64:26:9a:6c:7e: de:ac:a7:70:38:4b:f7:f0:2d:98:8c:68:9a:6c:73: 4a:28:df:d7:b1:dd:c5:b1:c8:a9:af:bb:b1:c3:a7: 0e:13:ac:06:98:3d:95:fe:36:d0:87:12:30:7d:06: 25:1e:3f:72:e6:f8:fa:59:3b:3f:ae:b0:65:28:04: 23:d3:3e:24:19:35:47:48:61:e4:ef:38:15:e4:e8: c5:53:a9:e7:7b:42:4b:fd:5f:c6:41:64:3a:26:e5: bb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:2D:BF:0B:A8:26:48:39:A0:6A:5A:EF:72:6F:05:B7:96:10:F5:F7 X509v3 Authority Key Identifier: keyid:80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/8C2_C6gmSDmgalrvcm8Ft5YQ9fc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.219.85.0/24 Signature Algorithm: sha256WithRSAEncryption 83:d4:a3:85:aa:24:b2:d7:f7:26:a7:b8:1d:1a:73:c9:34:ad: 63:9b:95:99:15:b0:e9:52:9c:a1:6e:2b:44:56:05:72:80:a0: df:dc:46:14:94:ba:b4:21:fc:fe:25:cb:a0:cb:86:a3:31:56: 37:de:f5:1b:4a:12:4b:ce:40:83:d3:6e:2b:94:83:f8:93:11: ae:37:2b:ff:cb:e1:02:48:1b:13:0a:96:82:36:c5:07:51:af: 2e:6e:32:f3:42:fc:ce:e1:2f:5b:5b:b1:0a:4a:ea:db:31:95: 53:fe:b8:ff:da:7f:02:d8:a3:de:74:1b:ab:1d:18:e8:49:7c: 55:a7:07:f7:93:26:5f:2f:87:71:55:74:d9:3c:39:ca:83:dc: 30:20:97:6a:b1:85:ab:1d:a7:06:78:d0:86:7a:6c:f1:23:11: f1:66:e9:a0:fc:ea:af:f5:8a:6f:6a:e9:16:a0:f5:ea:ad:4f: a9:db:d8:0d:98:f3:5a:c1:a1:a4:8e:ef:67:9e:7f:c1:3f:e8: 2e:22:13:90:d3:75:bf:ff:4e:a4:a5:39:db:8f:ce:14:6c:91: 2e:48:3e:e0:7e:29:eb:64:d5:ea:d5:7c:7a:b6:90:54:db:97: 59:18:6a:28:58:2e:1e:a8:f1:4f:6e:eb:57:ce:12:75:ea:e8: cc:21:a2:bb -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAsYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODBC RDAyOEQ3NkJCM0Q1NUU2NjQxNjlBOUFGMERGMkE5OEM3NTA1NTAeFw0yNTEwMTUx MDAyMDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEYwMkRCRjBCQTgyNjQ4 MzlBMDZBNUFFRjcyNkYwNUI3OTYxMEY1RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIiraWupVK6oIcJNUT/TFIAg+K5dMnub/MiJ/GMdoog5gYfo1m OkCr9+hBKMz7THG+U1eLmJzDmyw3ww56s8nNNWKOwvmyxVvsoAhODQJrOBg/QVjU Oa920ghOvBeEsCRbPTrjNr4UIZDPk0m5s4iaoQzV1uihqsJWh02SQgGvbnCFO4Sa u9+JvQpalQCB9QdU6Qs8sCkNzM1ZyilRNy5kJppsft6sp3A4S/fwLZiMaJpsc0oo 39ex3cWxyKmvu7HDpw4TrAaYPZX+NtCHEjB9BiUeP3Lm+PpZOz+usGUoBCPTPiQZ NUdIYeTvOBXk6MVTqed7Qkv9X8ZBZDom5bvpAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU8C2/C6gmSDmgalrvcm8Ft5YQ9fcwHwYDVR0jBBgwFoAUgL0CjXa7PVXmZBaa mvDfKpjHUFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 NC9nTDBDalhhN1BWWG1aQmFhbXZEZktwakhVRlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2dMMENqWGE3UFZYbVpCYWFtdkRmS3BqSFVGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjQvOEMyX0M2Z21TRG1n YWxydmNtOEZ0NVlROWZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfbVTANBgkqhkiG9w0BAQsFAAOCAQEAg9Sjhaokstf3Jqe4HRpzyTStY5uV mRWw6VKcoW4rRFYFcoCg39xGFJS6tCH8/iXLoMuGozFWN971G0oSS85Ag9NuK5SD +JMRrjcr/8vhAkgbEwqWgjbFB1GvLm4y80L8zuEvW1uxCkrq2zGVU/64/9p/Atij 3nQbqx0Y6El8VacH95MmXy+HcVV02Tw5yoPcMCCXarGFqx2nBnjQhnps8SMR8Wbp oPzqr/WKb2rpFqD16q1PqdvYDZjzWsGhpI7vZ55/wT/oLiITkNN1v/9OpKU524/O FGyRLkg+4H4p62TV6tV8eraQVNuXWRhqKFguHqjxT27rV84SderozCGiuw== -----END CERTIFICATE-----Generated at Tue Oct 21 01:55:09 2025 by rpki-client