$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3262/92t4RzgNPjYk66DRZ1sJwIh9_eY.roa File: 92t4RzgNPjYk66DRZ1sJwIh9_eY.roa (raw, json) Hash identifier: aWb5/Hx14lsaxXBrptAMaYaOjShmOD7vpxxwMU8/re0= Subject key identifier: F7:6B:78:47:38:0D:3E:36:24:EB:A0:D1:67:5B:09:C0:88:7D:FD:E6 Certificate issuer: /CN=E5C6CEFC8782F89731A2C72966EDC181DAB5AE22 Certificate serial: 0AEE Authority key identifier: E5:C6:CE:FC:87:82:F8:97:31:A2:C7:29:66:ED:C1:81:DA:B5:AE:22 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/92t4RzgNPjYk66DRZ1sJwIh9_eY.roa Signing time: Fri 15 Aug 2025 01:17:18 +0000 ROA not before: Fri 15 Aug 2025 01:17:18 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37969 IP address blocks: 103.83.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2798 (0xaee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E5C6CEFC8782F89731A2C72966EDC181DAB5AE22 Validity Not Before: Aug 15 01:17:18 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F76B7847380D3E3624EBA0D1675B09C0887DFDE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8b:09:94:4e:cf:56:53:91:13:a0:79:f7:d7: 83:a4:19:a4:53:8a:18:7f:c7:fa:2c:be:76:3a:45: 9d:f3:93:06:99:3e:40:e1:8b:8b:fb:a5:3d:50:cc: 56:4e:1e:c5:9f:42:13:54:26:af:96:d3:6c:4b:91: a6:36:f6:58:f0:ac:f6:3f:f2:97:4f:b2:59:30:d0: bf:6d:dc:fc:8c:a5:e6:62:7c:6e:d5:a2:4c:94:e0: 73:5a:e7:8f:f4:20:3f:c0:6c:46:84:e6:98:d7:a1: b8:a2:38:10:5e:d8:6c:65:2f:f9:84:04:52:81:19: 14:50:6e:14:9e:2d:d8:ee:88:d7:c1:53:a1:c1:b8: 58:e4:43:b4:eb:6a:1c:4a:55:5b:7c:04:7c:b3:ac: 91:0e:66:45:a1:1e:c3:a5:96:6a:ce:63:2e:b4:a7: 7e:00:df:25:5e:00:46:8e:d0:e3:72:74:da:6c:7d: 5b:63:2c:d9:dd:3f:07:d4:a0:8a:78:f9:45:e8:a2: 7a:ef:22:86:32:99:2c:b2:12:88:db:1e:47:43:e0: 1f:4d:0f:f6:d8:c3:ea:33:3e:09:c2:79:f1:48:cd: 76:51:a8:b1:89:81:ce:49:f6:76:c2:41:51:0e:1b: a2:c6:47:1e:54:10:c2:85:22:52:bf:9e:16:30:7a: b0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6B:78:47:38:0D:3E:36:24:EB:A0:D1:67:5B:09:C0:88:7D:FD:E6 X509v3 Authority Key Identifier: keyid:E5:C6:CE:FC:87:82:F8:97:31:A2:C7:29:66:ED:C1:81:DA:B5:AE:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/5cbO_IeC-JcxoscpZu3Bgdq1riI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5cbO_IeC-JcxoscpZu3Bgdq1riI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3262/92t4RzgNPjYk66DRZ1sJwIh9_eY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.83.64.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:d2:4a:44:9d:a7:aa:9b:86:a7:fe:e2:98:ff:9a:a5:45:8a: bd:11:67:5b:a2:bf:59:89:58:b8:d4:90:32:ed:b1:68:0e:1c: 58:d7:ba:51:5c:2d:78:46:31:22:33:b0:20:e1:57:07:10:23: e3:6a:7f:8d:83:e8:ae:f7:68:70:c2:26:10:e4:3a:6e:80:66: 6e:93:d1:95:64:2f:8d:25:5a:e9:a2:a0:81:1e:71:cd:00:e9: aa:f2:28:57:60:21:97:89:49:e4:e8:ab:9c:2f:79:db:d6:2e: 86:0a:ce:ce:32:b6:c2:55:93:3f:c2:73:66:26:e7:46:23:cb: 3b:bc:46:86:a1:de:25:6a:d4:31:23:0b:10:10:67:c4:e8:32: af:00:0e:20:97:7a:8c:d4:8c:b6:3f:80:34:ba:d6:a5:0c:66: fb:05:11:7d:cc:dc:63:87:02:4a:e5:a5:bc:b7:af:af:5f:a9: 75:13:b7:78:b0:32:b8:b6:f6:af:e8:15:cb:c8:b5:1a:cb:0e: e0:be:95:0e:e5:2d:38:36:e2:7d:64:48:fe:4c:a2:8c:27:b7: 11:92:b6:9c:c5:73:06:93:c3:57:67:18:b9:84:6f:cf:e8:28: 37:e0:0a:9a:f7:0f:c7:f3:da:84:c2:de:60:bf:a1:94:26:3a: 9d:49:68:54 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICCu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTVD NkNFRkM4NzgyRjg5NzMxQTJDNzI5NjZFREMxODFEQUI1QUUyMjAeFw0yNTA4MTUw MTE3MThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEY3NkI3ODQ3MzgwRDNF MzYyNEVCQTBEMTY3NUIwOUMwODg3REZERTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFiwmUTs9WU5EToHn314OkGaRTihh/x/osvnY6RZ3zkwaZPkDh i4v7pT1QzFZOHsWfQhNUJq+W02xLkaY29ljwrPY/8pdPslkw0L9t3PyMpeZifG7V okyU4HNa54/0ID/AbEaE5pjXobiiOBBe2GxlL/mEBFKBGRRQbhSeLdjuiNfBU6HB uFjkQ7TrahxKVVt8BHyzrJEOZkWhHsOllmrOYy60p34A3yVeAEaO0ONydNpsfVtj LNndPwfUoIp4+UXoonrvIoYymSyyEojbHkdD4B9ND/bYw+ozPgnCefFIzXZRqLGJ gc5J9nbCQVEOG6LGRx5UEMKFIlK/nhYwerAzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU92t4RzgNPjYk66DRZ1sJwIh9/eYwHwYDVR0jBBgwFoAU5cbO/IeC+Jcxoscp Zu3Bgdq1riIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI2 Mi81Y2JPX0llQy1KY3hvc2NwWnUzQmdkcTFyaUkuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLzVjYk9fSWVDLUpjeG9zY3BadTNCZ2RxMXJpSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyNjIvOTJ0NFJ6Z05Qallr NjZEUloxc0p3SWg5X2VZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdTQDANBgkqhkiG9w0BAQsFAAOCAQEAmtJKRJ2nqpuGp/7imP+apUWKvRFn W6K/WYlYuNSQMu2xaA4cWNe6UVwteEYxIjOwIOFXBxAj42p/jYPorvdocMImEOQ6 boBmbpPRlWQvjSVa6aKggR5xzQDpqvIoV2Ahl4lJ5OirnC9529YuhgrOzjK2wlWT P8JzZibnRiPLO7xGhqHeJWrUMSMLEBBnxOgyrwAOIJd6jNSMtj+ANLrWpQxm+wUR fczcY4cCSuWlvLevr1+pdRO3eLAyuLb2r+gVy8i1GssO4L6VDuUtODbifWRI/kyi jCe3EZK2nMVzBpPDV2cYuYRvz+goN+AKmvcPx/PahMLeYL+hlCY6nUloVA== -----END CERTIFICATE-----Generated at Sun Aug 24 11:39:21 2025 by rpki-client