$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3255/UbBWEWLjtIuxoQZhDwQjxJGfOj0.roa File: UbBWEWLjtIuxoQZhDwQjxJGfOj0.roa (raw, json) Hash identifier: 1kYvUM2Xl87aE6PKMHwLOSeiRpB9pAikX4ZR9sd/sqU= Subject key identifier: 51:B0:56:11:62:E3:B4:8B:B1:A1:06:61:0F:04:23:C4:91:9F:3A:3D Certificate issuer: /CN=C6E5F9C1644D63FA206A66FF6717C1D11A2A302D Certificate serial: 0B62 Authority key identifier: C6:E5:F9:C1:64:4D:63:FA:20:6A:66:FF:67:17:C1:D1:1A:2A:30:2D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/UbBWEWLjtIuxoQZhDwQjxJGfOj0.roa Signing time: Wed 20 Aug 2025 06:37:05 +0000 ROA not before: Wed 20 Aug 2025 06:37:05 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 151295 IP address blocks: 157.10.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 11:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C6E5F9C1644D63FA206A66FF6717C1D11A2A302D Validity Not Before: Aug 20 06:37:05 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=51B0561162E3B48BB1A106610F0423C4919F3A3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3f:c2:42:6d:23:ae:30:16:8a:28:b1:d2:9d: 21:44:31:b1:13:55:24:fc:72:28:56:16:fc:70:5d: 10:37:e6:0a:49:37:e4:d5:46:54:ea:7b:dd:de:23: 41:fe:ba:4f:a8:98:e8:a2:9d:0c:6e:23:c5:50:6e: cf:07:04:1c:1d:bf:d9:91:a3:a8:65:5c:cc:3e:cb: 99:ae:07:2c:36:eb:87:a8:34:b1:0f:1b:2d:71:80: 03:f4:98:8f:6e:09:18:77:61:d6:9d:fb:71:67:a0: 91:a5:67:99:dd:3a:5d:19:13:33:34:5d:2b:7a:3d: 3d:9d:bb:00:fd:8b:e7:1c:ca:58:77:11:c1:12:84: 23:d5:21:9e:72:40:f3:1e:6a:1b:a6:07:72:bc:5d: 0f:36:68:0e:83:79:eb:43:a0:28:c0:58:8e:13:ff: cc:35:3a:87:64:fd:40:e9:a8:fc:a0:c9:69:e4:66: 23:6d:ee:ca:62:75:db:00:e9:bf:00:ff:ec:4b:3a: de:c7:98:e1:e7:ac:61:d3:ca:17:29:34:07:36:2d: 33:c6:73:a8:39:97:9d:93:0f:f2:45:46:bf:1f:88: 34:e5:c3:10:62:d2:95:25:2d:b1:17:df:4e:3e:13: 14:2c:78:84:40:57:32:b9:e6:9d:3c:1e:f3:90:24: 7f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B0:56:11:62:E3:B4:8B:B1:A1:06:61:0F:04:23:C4:91:9F:3A:3D X509v3 Authority Key Identifier: keyid:C6:E5:F9:C1:64:4D:63:FA:20:6A:66:FF:67:17:C1:D1:1A:2A:30:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/xuX5wWRNY_ogamb_ZxfB0RoqMC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xuX5wWRNY_ogamb_ZxfB0RoqMC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3255/UbBWEWLjtIuxoQZhDwQjxJGfOj0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.10.112.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:79:3b:73:31:d8:7b:ac:f8:41:6f:ee:66:1d:78:6c:cb:f0: 56:37:a5:ed:75:3d:e8:c1:01:53:00:a1:8e:0f:73:bc:38:c8: ed:81:ab:8c:7b:58:b9:4c:ae:0f:e9:fd:e5:7c:80:ed:63:11: 41:26:dc:e8:76:e7:52:74:8d:4e:4f:bd:5e:22:f9:cf:b5:20: 20:b9:0e:c2:aa:87:85:40:28:88:e2:25:68:39:3e:27:49:4f: 46:87:f8:5e:33:30:05:20:57:f4:7a:bb:28:24:5f:76:40:83: d7:58:88:43:0e:98:49:90:85:18:d6:e2:14:64:51:ea:e5:7f: b7:e7:10:16:43:55:1f:ee:b7:68:5f:7b:5f:f1:3a:b3:a0:64: cf:e2:11:a3:71:82:ca:81:d2:d3:e2:6c:b6:14:b4:35:b4:94: 91:85:f5:ee:83:85:ad:04:6e:a0:8c:21:c2:2f:d4:9e:fb:f5: 58:1b:e9:89:27:5c:f1:51:76:89:d4:bf:2d:0e:8d:05:9a:63: bb:ff:9c:2c:49:77:65:d1:4f:9e:f9:6e:c4:62:14:c0:26:9d: 73:35:5c:92:83:4b:76:b4:1c:e4:fa:dc:77:80:6f:b9:1f:ff: 4a:dc:a1:30:37:51:ff:af:77:ad:9f:12:12:33:09:2a:c1:05: 3a:0c:76:e7 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzZF NUY5QzE2NDRENjNGQTIwNkE2NkZGNjcxN0MxRDExQTJBMzAyRDAeFw0yNTA4MjAw NjM3MDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDUxQjA1NjExNjJFM0I0 OEJCMUExMDY2MTBGMDQyM0M0OTE5RjNBM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDP8JCbSOuMBaKKLHSnSFEMbETVST8cihWFvxwXRA35gpJN+TV RlTqe93eI0H+uk+omOiinQxuI8VQbs8HBBwdv9mRo6hlXMw+y5muByw264eoNLEP Gy1xgAP0mI9uCRh3Ydad+3FnoJGlZ5ndOl0ZEzM0XSt6PT2duwD9i+ccylh3EcES hCPVIZ5yQPMeahumB3K8XQ82aA6DeetDoCjAWI4T/8w1Oodk/UDpqPygyWnkZiNt 7spiddsA6b8A/+xLOt7HmOHnrGHTyhcpNAc2LTPGc6g5l52TD/JFRr8fiDTlwxBi 0pUlLbEX304+ExQseIRAVzK55p08HvOQJH+XAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUUbBWEWLjtIuxoQZhDwQjxJGfOj0wHwYDVR0jBBgwFoAUxuX5wWRNY/ogamb/ ZxfB0RoqMC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI1 NS94dVg1d1dSTllfb2dhbWJfWnhmQjBSb3FNQzAuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3h1WDV3V1JOWV9vZ2FtYl9aeGZCMFJvcU1DMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNTUvVWJCV0VXTGp0SXV4 b1FaaER3UWp4SkdmT2owLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAZ0KcDANBgkqhkiG9w0BAQsFAAOCAQEATHk7czHYe6z4QW/uZh14bMvwVjel 7XU96MEBUwChjg9zvDjI7YGrjHtYuUyuD+n95XyA7WMRQSbc6HbnUnSNTk+9XiL5 z7UgILkOwqqHhUAoiOIlaDk+J0lPRof4XjMwBSBX9Hq7KCRfdkCD11iIQw6YSZCF GNbiFGRR6uV/t+cQFkNVH+63aF97X/E6s6Bkz+IRo3GCyoHS0+JsthS0NbSUkYX1 7oOFrQRuoIwhwi/Unvv1WBvpiSdc8VF2idS/LQ6NBZpju/+cLEl3ZdFPnvluxGIU wCadczVckoNLdrQc5Prcd4BvuR//StyhMDdR/693rZ8SEjMJKsEFOgx25w== -----END CERTIFICATE-----Generated at Sun Aug 24 09:19:55 2025 by rpki-client