$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3282/g_rwJqn620T5ukN94yTzIjH-qVo.roa File: g_rwJqn620T5ukN94yTzIjH-qVo.roa (raw, json) Hash identifier: 96Avw8eFjSbQ575II11/refxqKik+Cak4C6VORPkNEs= Subject key identifier: 83:FA:F0:26:A9:FA:DB:44:F9:BA:43:7D:E3:24:F3:22:31:FE:A9:5A Certificate issuer: /CN=4CA9EBB4D4C42C00C6D5AD5C70FB6B4576583177 Certificate serial: 01D4 Authority key identifier: 4C:A9:EB:B4:D4:C4:2C:00:C6:D5:AD:5C:70:FB:6B:45:76:58:31:77 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TKnrtNTELADG1a1ccPtrRXZYMXc.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/g_rwJqn620T5ukN94yTzIjH-qVo.roa Signing time: Fri 22 Aug 2025 01:52:25 +0000 ROA not before: Fri 22 Aug 2025 01:52:25 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 151261 IP address blocks: 45.112.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TKnrtNTELADG1a1ccPtrRXZYMXc.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 01:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CA9EBB4D4C42C00C6D5AD5C70FB6B4576583177 Validity Not Before: Aug 22 01:52:25 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=83FAF026A9FADB44F9BA437DE324F32231FEA95A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2d:84:cd:51:d4:50:f5:c8:49:e9:62:9c:6f: 15:fe:10:da:f9:47:a7:79:68:11:60:f6:f8:cc:b3: 1a:63:e6:48:01:cb:c2:59:a4:36:0e:6f:52:1a:9c: fd:a3:b9:53:4c:fe:b5:ef:7b:a3:3a:b8:2e:a6:37: 6f:51:49:ea:60:71:9d:5b:97:a9:b0:6a:6c:3b:3b: a9:0e:f1:80:4b:08:7d:d2:56:ad:68:07:21:1b:f8: 49:c2:8b:3e:ba:70:af:69:1f:c8:3b:98:40:76:c2: fa:fe:cf:4b:f9:68:20:ec:04:2d:44:05:f4:1e:bc: 2b:22:c8:0d:0f:2e:54:9b:08:28:81:45:e8:b9:d9: 4f:b6:70:eb:77:35:75:28:8f:58:cd:ee:2b:39:95: 94:06:8c:dd:66:1e:d2:72:79:21:c8:db:18:87:bf: 9e:8b:17:ca:21:c4:4a:a9:8e:e8:f6:70:c9:2e:6e: 01:13:33:69:3e:e8:c3:39:0b:20:b3:84:03:88:68: dc:ab:6f:5a:48:ed:1f:b9:41:f4:5e:cd:9c:f9:c5: d9:24:70:a8:01:28:32:a8:35:2a:90:ad:4c:ca:24: da:c0:72:74:6a:68:db:95:f9:42:03:ef:a3:68:48: fe:ec:fe:8e:28:93:d4:f7:96:57:1c:10:78:2b:22: 17:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FA:F0:26:A9:FA:DB:44:F9:BA:43:7D:E3:24:F3:22:31:FE:A9:5A X509v3 Authority Key Identifier: keyid:4C:A9:EB:B4:D4:C4:2C:00:C6:D5:AD:5C:70:FB:6B:45:76:58:31:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/TKnrtNTELADG1a1ccPtrRXZYMXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TKnrtNTELADG1a1ccPtrRXZYMXc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3282/g_rwJqn620T5ukN94yTzIjH-qVo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.112.232.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:40:48:d9:86:89:7b:dc:a4:8c:3d:db:49:7f:f7:6e:be:5d: d0:af:43:e4:e7:f8:db:d9:7d:7d:d0:0b:27:a2:f4:8d:f8:e9: da:db:20:67:3d:41:26:12:8b:a9:bf:a3:63:ff:d1:8c:8b:c5: 1e:9a:29:fb:d3:bb:59:85:56:66:c2:6c:cb:41:78:cd:9f:dd: 4c:1f:97:7f:06:a0:eb:55:2e:34:75:a2:01:7c:1c:5a:34:95: de:f7:43:66:ea:c9:61:07:ba:b3:48:e7:07:76:ca:7b:34:04: 56:07:3c:00:24:7d:8b:d4:c1:ec:ff:87:df:7b:0b:ac:13:31: 41:48:4b:33:74:96:0f:cd:fc:b9:fb:7c:93:30:37:ad:a5:03: 02:7e:ec:0d:69:0c:1b:e8:24:bd:40:f3:f9:6d:9a:c7:23:d9: bd:35:52:4e:b6:f5:74:46:5a:7b:bc:30:ed:b9:03:b4:4e:de: d8:29:4a:bd:31:d6:17:0e:e5:6b:6f:6d:f2:51:5b:67:e3:51: d2:33:48:f5:ec:df:5a:48:a8:e8:9b:ce:a1:65:01:b1:a5:21: 76:da:48:11:08:73:a3:fa:87:be:44:6b:ce:94:b6:f8:08:77: c7:50:8b:c4:f8:c7:18:32:74:8a:e7:53:e9:4e:1e:b1:73:b7: d3:57:88:04 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNENB OUVCQjRENEM0MkMwMEM2RDVBRDVDNzBGQjZCNDU3NjU4MzE3NzAeFw0yNTA4MjIw MTUyMjVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDgzRkFGMDI2QTlGQURC NDRGOUJBNDM3REUzMjRGMzIyMzFGRUE5NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfLYTNUdRQ9chJ6WKcbxX+ENr5R6d5aBFg9vjMsxpj5kgBy8JZ pDYOb1IanP2juVNM/rXve6M6uC6mN29RSepgcZ1bl6mwamw7O6kO8YBLCH3SVq1o ByEb+EnCiz66cK9pH8g7mEB2wvr+z0v5aCDsBC1EBfQevCsiyA0PLlSbCCiBRei5 2U+2cOt3NXUoj1jN7is5lZQGjN1mHtJyeSHI2xiHv56LF8ohxEqpjuj2cMkubgET M2k+6MM5CyCzhAOIaNyrb1pI7R+5QfRezZz5xdkkcKgBKDKoNSqQrUzKJNrAcnRq aNuV+UID76NoSP7s/o4ok9T3llccEHgrIhfTAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUg/rwJqn620T5ukN94yTzIjH+qVowHwYDVR0jBBgwFoAUTKnrtNTELADG1a1c cPtrRXZYMXcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzI4 Mi9US25ydE5URUxBREcxYTFjY1B0clJYWllNWGMuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL1RLbnJ0TlRFTEFERzFhMWNjUHRyUlhaWU1YYy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMyODIvZ19yd0pxbjYyMFQ1 dWtOOTR5VHpJakgtcVZvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAC1w6DANBgkqhkiG9w0BAQsFAAOCAQEAGkBI2YaJe9ykjD3bSX/3br5d0K9D 5Of429l9fdALJ6L0jfjp2tsgZz1BJhKLqb+jY//RjIvFHpop+9O7WYVWZsJsy0F4 zZ/dTB+Xfwag61UuNHWiAXwcWjSV3vdDZurJYQe6s0jnB3bKezQEVgc8ACR9i9TB 7P+H33sLrBMxQUhLM3SWD838uft8kzA3raUDAn7sDWkMG+gkvUDz+W2axyPZvTVS Trb1dEZae7ww7bkDtE7e2ClKvTHWFw7la29t8lFbZ+NR0jNI9ezfWkio6JvOoWUB saUhdtpIEQhzo/qHvkRrzpS2+Ah3x1CLxPjHGDJ0iudT6U4esXO301eIBA== -----END CERTIFICATE-----Generated at Sun Aug 24 00:59:26 2025 by rpki-client