$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/0c8UgIn1dMQRPBuL1gu93jFuq6Q.roa File: 0c8UgIn1dMQRPBuL1gu93jFuq6Q.roa (raw, json) Hash identifier: rulCFoBaCKEsOul/yOrda/jsQicrUh4Anxv5Jr1h+zI= Subject key identifier: D1:CF:14:80:89:F5:74:C4:11:3C:1B:8B:D6:0B:BD:DE:31:6E:AB:A4 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 0A69 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/0c8UgIn1dMQRPBuL1gu93jFuq6Q.roa Signing time: Sat 13 Sep 2025 03:03:18 +0000 ROA not before: Sat 13 Sep 2025 03:03:18 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 7641 IP address blocks: 150.242.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2665 (0xa69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: Sep 13 03:03:18 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D1CF148089F574C4113C1B8BD60BBDDE316EABA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6e:bc:2a:de:b5:2a:3e:ae:46:20:fe:90:03: 59:06:96:4f:d9:0b:55:c9:56:b3:80:3c:55:2a:90: d7:40:4d:96:53:c5:e7:ee:62:05:e4:c5:85:82:d3: 68:fe:a2:3b:b1:01:61:4f:6d:38:b7:4b:f5:c7:4d: 81:03:0b:6e:e8:af:11:55:96:c0:7f:7c:a4:d9:c8: 67:21:e5:92:70:e6:33:4b:53:85:b9:b4:52:b0:9a: 46:56:9d:41:cd:17:b5:08:1c:dd:13:bf:77:d1:f1: ca:89:19:9a:83:eb:e1:95:24:97:14:0e:7c:41:3d: f8:51:2d:62:74:8b:77:b6:0f:a9:3b:9c:0f:0a:b0: 2b:7a:51:e7:a2:84:a0:3f:ff:cd:a3:db:01:fd:73: 74:df:cc:4a:9b:fb:95:92:5c:21:1d:ec:de:f6:5f: b2:40:e4:51:9c:4e:99:10:a7:df:4b:0a:37:b8:cd: 65:59:14:05:e8:d6:10:3c:a5:35:0d:b8:0f:c9:4d: 66:33:0b:aa:b8:9a:6d:74:86:af:d7:e4:e3:14:37: e8:2d:5d:cf:5d:fc:cf:bd:9f:73:38:a2:fd:5d:73: e3:06:ef:78:0b:1a:c5:4c:10:fe:73:7e:8c:a4:8d: 5c:a2:15:dc:90:c7:6c:1f:ea:e5:97:a9:6b:94:98: d3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CF:14:80:89:F5:74:C4:11:3C:1B:8B:D6:0B:BD:DE:31:6E:AB:A4 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/0c8UgIn1dMQRPBuL1gu93jFuq6Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.242.52.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:44:79:8c:6a:67:51:ca:17:48:81:54:bb:c1:fc:e3:e8:7b: 4a:3e:f6:ab:56:e4:d0:9d:a0:a3:32:d5:e7:f3:40:b3:d1:0a: ce:15:c7:ae:a1:25:ad:4b:1f:b3:06:59:09:66:82:9f:18:ee: d3:f6:92:15:c0:b5:55:2f:9d:b9:09:b2:12:d7:a6:9d:38:dc: 15:a7:ab:c1:a7:7c:dc:e4:7f:21:c7:f5:9f:13:ee:6b:3e:4d: 2e:54:7d:ad:9e:4e:bf:9b:fb:2e:3a:00:6f:aa:7a:da:cb:b7: 95:b7:a1:80:c5:34:f9:d5:5b:61:e0:b2:df:81:da:ee:6c:c3: 79:d0:29:03:ad:f8:f2:0d:0a:ea:ac:db:44:b9:ac:ca:d7:9c: c7:e7:c1:dc:97:4a:0c:9b:24:ec:bd:2a:95:05:11:37:21:91: 2e:8a:3d:bb:47:26:a4:04:49:92:3c:5b:41:0d:16:f1:7b:3c: ac:e5:59:94:55:17:9f:48:86:5e:85:b1:f9:7e:fb:64:30:b5: f0:77:34:d6:b3:e9:d3:c2:a1:84:40:1a:8d:5f:32:47:31:0a: 96:61:eb:05:89:f2:07:42:68:95:ea:a8:40:c8:b4:95:af:45: c6:7c:f0:0a:f3:98:5c:43:c8:75:9f:f5:2c:a1:a6:37:b6:2c: 74:ec:19:6c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICCmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA5MTMw MzAzMThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQxQ0YxNDgwODlGNTc0 QzQxMTNDMUI4QkQ2MEJCRERFMzE2RUFCQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/brwq3rUqPq5GIP6QA1kGlk/ZC1XJVrOAPFUqkNdATZZTxefu YgXkxYWC02j+ojuxAWFPbTi3S/XHTYEDC27orxFVlsB/fKTZyGch5ZJw5jNLU4W5 tFKwmkZWnUHNF7UIHN0Tv3fR8cqJGZqD6+GVJJcUDnxBPfhRLWJ0i3e2D6k7nA8K sCt6UeeihKA//82j2wH9c3TfzEqb+5WSXCEd7N72X7JA5FGcTpkQp99LCje4zWVZ FAXo1hA8pTUNuA/JTWYzC6q4mm10hq/X5OMUN+gtXc9d/M+9n3M4ov1dc+MG73gL GsVMEP5zfoykjVyiFdyQx2wf6uWXqWuUmNNDAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU0c8UgIn1dMQRPBuL1gu93jFuq6QwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy8wYzhVZ0luMWRNUVJQQnVM MWd1OTNqRnVxNlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC lvI0MA0GCSqGSIb3DQEBCwUAA4IBAQAeRHmMamdRyhdIgVS7wfzj6HtKPvarVuTQ naCjMtXn80Cz0QrOFceuoSWtSx+zBlkJZoKfGO7T9pIVwLVVL525CbIS16adONwV p6vBp3zc5H8hx/WfE+5rPk0uVH2tnk6/m/suOgBvqnray7eVt6GAxTT51Vth4LLf gdrubMN50CkDrfjyDQrqrNtEuazK15zH58Hcl0oMmyTsvSqVBRE3IZEuij27Ryak BEmSPFtBDRbxezys5VmUVRefSIZehbH5fvtkMLXwdzTWs+nTwqGEQBqNXzJHMQqW YesFifIHQmiV6qhAyLSVr0XGfPAK85hcQ8h1n/UsoaY3tix07Bls -----END CERTIFICATE-----Generated at Mon Oct 20 17:58:37 2025 by rpki-client