$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/1vr6izFwJcFZs3zxV7eG2jeG9q8.roa File: 1vr6izFwJcFZs3zxV7eG2jeG9q8.roa (raw, json) Hash identifier: w4o0PotGntg6EvTK0CpWu6EoV7zwCstDJqnfJzizIRU= Subject key identifier: D6:FA:FA:8B:31:70:25:C1:59:B3:7C:F1:57:B7:86:DA:37:86:F6:AF Certificate issuer: /CN=E5C6CEFC8782F89731A2C72966EDC181DAB5AE22 Certificate serial: 0AEC Authority key identifier: E5:C6:CE:FC:87:82:F8:97:31:A2:C7:29:66:ED:C1:81:DA:B5:AE:22 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/1vr6izFwJcFZs3zxV7eG2jeG9q8.roa Signing time: Fri 15 Aug 2025 01:17:18 +0000 ROA not before: Fri 15 Aug 2025 01:17:18 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37969 IP address blocks: 103.98.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2796 (0xaec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5C6CEFC8782F89731A2C72966EDC181DAB5AE22 Validity Not Before: Aug 15 01:17:18 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D6FAFA8B317025C159B37CF157B786DA3786F6AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ec:d4:13:2c:b0:9a:62:d6:f9:5b:00:82:bf: 1f:ed:c1:1a:39:dd:9b:7d:cf:7a:65:3e:7d:e2:48: c3:94:3a:77:0e:f6:8e:3c:c0:41:32:4c:76:d2:59: 27:d7:45:32:a1:eb:ed:8f:ec:65:58:98:74:66:79: f1:63:17:b3:da:bd:ef:82:34:92:21:b0:2f:3c:f3: 2b:d1:ba:7d:e8:45:37:44:fc:cb:6f:87:0a:99:a1: e9:5c:5a:af:5f:4b:7a:5a:ce:7b:6c:f9:53:db:03: 58:23:07:d4:de:80:5b:5c:a1:33:4a:01:c3:17:25: bc:ee:66:19:20:b9:dd:da:21:d4:a1:64:43:99:ce: 30:15:bd:82:ef:72:8d:7f:60:27:64:ec:60:e2:10: 31:e1:f8:10:71:d6:4a:d6:da:72:45:45:01:da:d3: 14:3a:9a:d8:ce:10:fd:68:3c:85:27:b5:2d:37:c0: 8c:ae:6a:e4:e1:3b:e6:cc:c0:48:94:84:d4:8d:fd: a0:58:ee:8a:05:65:b3:89:de:88:22:a9:82:c7:7e: f3:4d:32:93:c3:1f:2e:76:2a:3d:2e:01:65:98:ac: a8:0a:b1:a4:27:c0:b6:2a:29:f4:ab:e1:23:33:f3: a3:1a:1f:8c:c0:fa:36:db:d6:28:cf:f9:96:60:e7: 95:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FA:FA:8B:31:70:25:C1:59:B3:7C:F1:57:B7:86:DA:37:86:F6:AF X509v3 Authority Key Identifier: keyid:E5:C6:CE:FC:87:82:F8:97:31:A2:C7:29:66:ED:C1:81:DA:B5:AE:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/1vr6izFwJcFZs3zxV7eG2jeG9q8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.98.92.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:6f:d1:a4:93:1f:0c:d6:8b:d2:0e:f2:30:d0:da:eb:91:29: 90:cd:b0:41:53:ec:43:10:da:5b:3c:d5:7b:fa:8d:f3:54:01: 8b:20:41:fa:4f:c4:70:69:f9:3b:23:33:15:4b:40:71:f7:ac: 6d:fc:68:02:27:f8:d3:a8:ad:6c:98:ac:10:c2:ac:a5:ef:11: 62:5d:cd:56:8b:ea:57:ed:79:91:a3:91:12:3b:f7:34:76:a3: 58:4d:0a:bd:d2:2e:e6:13:97:85:03:f2:d1:9e:7d:ee:ac:fd: 91:61:8e:b9:ae:0e:56:31:be:df:c0:4f:83:06:0a:7a:be:1b: 86:73:37:c8:0e:c5:97:c7:78:aa:05:ef:66:06:83:15:8d:86: 0f:69:02:3b:87:07:ff:24:81:fc:fb:5e:9b:e6:0c:4c:27:84: de:1c:d9:51:35:26:83:7b:8e:0a:cb:0b:2f:d4:f3:aa:37:80: 27:08:a9:1f:39:cb:5b:1b:26:b0:4d:70:6b:20:b1:ed:35:7a: ea:67:88:a8:d8:08:2e:17:67:e4:19:d2:5c:40:3c:be:bc:b1: 42:13:63:f2:81:e4:49:2d:45:fb:cd:7a:af:ff:83:e7:92:89: 0a:0f:cf:fa:27:98:96:9b:11:56:6a:74:62:82:44:c3:bf:23: 80:2f:3d:a1 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICCuwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTVD NkNFRkM4NzgyRjg5NzMxQTJDNzI5NjZFREMxODFEQUI1QUUyMjAeFw0yNTA4MTUw MTE3MThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQ2RkFGQThCMzE3MDI1 QzE1OUIzN0NGMTU3Qjc4NkRBMzc4NkY2QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb7NQTLLCaYtb5WwCCvx/twRo53Zt9z3plPn3iSMOUOncO9o48 wEEyTHbSWSfXRTKh6+2P7GVYmHRmefFjF7Pave+CNJIhsC888yvRun3oRTdE/Mtv hwqZoelcWq9fS3paznts+VPbA1gjB9TegFtcoTNKAcMXJbzuZhkgud3aIdShZEOZ zjAVvYLvco1/YCdk7GDiEDHh+BBx1krW2nJFRQHa0xQ6mtjOEP1oPIUntS03wIyu auThO+bMwEiUhNSN/aBY7ooFZbOJ3ogiqYLHfvNNMpPDHy52Kj0uAWWYrKgKsaQn wLYqKfSr4SMz86MaH4zA+jbb1ijP+ZZg55XLAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU1vr6izFwJcFZs3zxV7eG2jeG9q8wHwYDVR0jBBgwFoAU5cbO/IeC+Jcxoscp Zu3Bgdq1riIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi81Y2JPX0llQy1KY3hvc2NwWnUzQmdkcTFyaUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVjYk9fSWVDLUpjeG9zY3BadTNCZ2RxMXJpSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvMXZyNml6RndKY0Za czN6eFY3ZUcyamVHOXE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdiXDANBgkqhkiG9w0BAQsFAAOCAQEAfG/RpJMfDNaL0g7yMNDa65EpkM2w QVPsQxDaWzzVe/qN81QBiyBB+k/EcGn5OyMzFUtAcfesbfxoAif406itbJisEMKs pe8RYl3NVovqV+15kaOREjv3NHajWE0KvdIu5hOXhQPy0Z597qz9kWGOua4OVjG+ 38BPgwYKer4bhnM3yA7Fl8d4qgXvZgaDFY2GD2kCO4cH/ySB/Ptem+YMTCeE3hzZ UTUmg3uOCssLL9TzqjeAJwipHznLWxsmsE1wayCx7TV66meIqNgILhdn5BnSXEA8 vryxQhNj8oHkSS1F+816r/+D55KJCg/P+ieYlpsRVmp0YoJEw78jgC89oQ== -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:31 2025 by rpki-client