$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3164/rG9SJlY2VCyvJqAzoBsnhQ0xcBM.roa File: rG9SJlY2VCyvJqAzoBsnhQ0xcBM.roa (raw, json) Hash identifier: JIOcK/4hBjG98Ni9c37B+JALVOIlIpEiHyXVV83dZhY= Subject key identifier: AC:6F:52:26:56:36:54:2C:AF:26:A0:33:A0:1B:27:85:0D:31:70:13 Certificate issuer: /CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Certificate serial: 02C5 Authority key identifier: 80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/rG9SJlY2VCyvJqAzoBsnhQ0xcBM.roa Signing time: Wed 15 Oct 2025 10:02:03 +0000 ROA not before: Wed 15 Oct 2025 10:02:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 152320 IP address blocks: 103.219.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 05:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80BD028D76BB3D55E664169A9AF0DF2A98C75055 Validity Not Before: Oct 15 10:02:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=AC6F52265636542CAF26A033A01B27850D317013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1e:cb:f0:19:66:c2:31:db:fa:48:77:3d:14: 65:21:b9:1d:b1:16:d5:2c:6f:83:26:d2:f5:c6:d9: b0:0a:b3:b5:06:3d:77:00:f4:b5:5d:42:37:4f:11: a1:6a:ce:85:cb:d7:c2:f1:98:f9:d0:d4:41:9f:06: 25:b6:bb:0d:cc:18:77:76:64:94:dd:a4:93:2e:c0: db:44:c0:7f:0c:30:95:87:80:ec:60:73:b9:4d:cd: 0a:fe:61:58:6a:56:79:c4:cb:22:a9:5d:c7:d7:a4: d1:06:39:be:30:e9:0f:dc:df:db:de:64:02:b8:86: 83:38:49:c6:97:e9:11:be:2e:76:cb:68:e7:0b:ce: c2:4c:14:38:a2:8e:c8:a8:c0:4b:a4:42:b4:c6:eb: 5c:6c:50:e9:23:5e:6e:f4:cb:6d:a8:84:13:67:20: a4:d5:8b:e3:4e:ef:61:8b:a8:93:fc:be:b6:97:1c: e1:5a:0d:86:3b:6d:3b:1d:70:79:4e:15:88:bc:c2: fc:bd:75:37:95:22:6f:48:a3:24:b9:73:5d:a8:a8: 60:8d:dd:d0:e2:c9:31:f3:58:60:83:08:3d:dd:84: 83:16:b4:29:87:ef:68:86:48:2a:1b:68:eb:8a:5f: 4a:f9:e3:f3:db:64:f0:ff:56:2a:92:57:0f:ac:2c: 3a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6F:52:26:56:36:54:2C:AF:26:A0:33:A0:1B:27:85:0D:31:70:13 X509v3 Authority Key Identifier: keyid:80:BD:02:8D:76:BB:3D:55:E6:64:16:9A:9A:F0:DF:2A:98:C7:50:55 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/gL0CjXa7PVXmZBaamvDfKpjHUFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/gL0CjXa7PVXmZBaamvDfKpjHUFU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3164/rG9SJlY2VCyvJqAzoBsnhQ0xcBM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.219.86.0/23 Signature Algorithm: sha256WithRSAEncryption b8:5c:c5:1e:f3:f2:d0:9a:6e:67:10:69:7b:f5:21:11:f2:19: b9:63:8b:d2:a5:06:ab:70:a4:40:e1:1e:32:98:00:60:6f:35: c1:c5:22:ef:50:14:c6:32:89:d6:62:56:b5:8b:15:ed:ae:ff: d8:69:6f:2a:e7:3c:54:41:da:4f:51:11:a2:46:02:4c:be:0b: d4:c8:e6:fa:dc:4f:67:70:f8:82:53:1b:63:6f:43:5f:37:4c: 2f:8b:60:ec:90:7a:67:81:39:7b:a7:32:8b:b8:ce:7c:80:1c: bf:55:f8:e2:0f:f2:6e:5f:42:29:0f:04:89:50:9b:4c:0e:60: 09:92:f4:92:a3:9f:9b:d7:54:69:3f:05:1e:8e:d2:a0:10:1c: c5:36:0a:17:fc:44:d6:67:f1:d7:82:e5:dd:d6:bc:83:d2:7b: 0a:c2:af:08:69:35:21:96:82:fd:46:bb:51:04:7e:24:c4:58: d2:2e:57:6b:ec:08:19:01:15:4a:f3:64:0e:bd:08:ec:32:ff: a4:ab:70:e6:f4:12:5f:22:4b:a1:c3:4c:9a:90:b5:8c:6b:99: 79:3d:25:60:ea:a6:ad:f8:c0:ee:73:ec:ad:51:e8:54:fb:62: f4:52:bc:e1:2c:de:bc:68:1b:dc:cb:15:79:3f:a2:d5:d1:6f: cb:81:c9:54 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODBC RDAyOEQ3NkJCM0Q1NUU2NjQxNjlBOUFGMERGMkE5OEM3NTA1NTAeFw0yNTEwMTUx MDAyMDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEFDNkY1MjI2NTYzNjU0 MkNBRjI2QTAzM0EwMUIyNzg1MEQzMTcwMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCHsvwGWbCMdv6SHc9FGUhuR2xFtUsb4Mm0vXG2bAKs7UGPXcA 9LVdQjdPEaFqzoXL18LxmPnQ1EGfBiW2uw3MGHd2ZJTdpJMuwNtEwH8MMJWHgOxg c7lNzQr+YVhqVnnEyyKpXcfXpNEGOb4w6Q/c39veZAK4hoM4ScaX6RG+LnbLaOcL zsJMFDiijsiowEukQrTG61xsUOkjXm70y22ohBNnIKTVi+NO72GLqJP8vraXHOFa DYY7bTsdcHlOFYi8wvy9dTeVIm9IoyS5c12oqGCN3dDiyTHzWGCDCD3dhIMWtCmH 72iGSCobaOuKX0r54/PbZPD/ViqSVw+sLDpnAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUrG9SJlY2VCyvJqAzoBsnhQ0xcBMwHwYDVR0jBBgwFoAUgL0CjXa7PVXmZBaa mvDfKpjHUFUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzE2 NC9nTDBDalhhN1BWWG1aQmFhbXZEZktwakhVRlUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2dMMENqWGE3UFZYbVpCYWFtdkRmS3BqSFVGVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxNjQvckc5U0psWTJWQ3l2 SnFBem9Cc25oUTB4Y0JNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWfbVjANBgkqhkiG9w0BAQsFAAOCAQEAuFzFHvPy0JpuZxBpe/UhEfIZuWOL 0qUGq3CkQOEeMpgAYG81wcUi71AUxjKJ1mJWtYsV7a7/2GlvKuc8VEHaT1ERokYC TL4L1Mjm+txPZ3D4glMbY29DXzdML4tg7JB6Z4E5e6cyi7jOfIAcv1X44g/ybl9C KQ8EiVCbTA5gCZL0kqOfm9dUaT8FHo7SoBAcxTYKF/xE1mfx14Ll3da8g9J7CsKv CGk1IZaC/Ua7UQR+JMRY0i5Xa+wIGQEVSvNkDr0I7DL/pKtw5vQSXyJLocNMmpC1 jGuZeT0lYOqmrfjA7nPsrVHoVPti9FK84SzevGgb3MsVeT+i1dFvy4HJVA== -----END CERTIFICATE-----Generated at Tue Oct 21 04:15:41 2025 by rpki-client