$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/Fd_d-g20_ji9deeGY0sp62V0sZk.roa File: Fd_d-g20_ji9deeGY0sp62V0sZk.roa (raw, json) Hash identifier: RGMYCM5WU1h7WNa9T9lDD15Uq19a6dn+UE+SXeWDY7Q= Subject key identifier: 15:DF:DD:FA:0D:B4:FE:38:BD:75:E7:86:63:4B:29:EB:65:74:B1:99 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 0A68 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/Fd_d-g20_ji9deeGY0sp62V0sZk.roa Signing time: Sat 13 Sep 2025 03:03:18 +0000 ROA not before: Sat 13 Sep 2025 03:03:18 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 7641 IP address blocks: 103.8.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 08:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2664 (0xa68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: Sep 13 03:03:18 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=15DFDDFA0DB4FE38BD75E786634B29EB6574B199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cd:74:4f:64:d5:c3:59:33:57:90:9f:ba:fa: d3:6f:f5:81:14:02:e5:95:92:e8:d3:32:d3:f9:41: 38:b3:e7:28:58:37:82:fd:34:9d:6a:0f:fb:77:6b: e0:69:e2:55:2b:07:0b:22:35:5d:96:7f:05:a8:cd: 91:38:9e:79:84:d4:d0:1a:7c:cc:71:c5:bb:19:a8: 6a:e2:72:38:0c:57:07:cd:e9:59:87:3e:e1:eb:8c: c1:12:cf:7e:1b:f1:28:dc:f8:58:61:0c:93:9f:6f: c6:3f:24:d4:83:13:72:0d:33:5e:fe:37:1a:5f:f5: 74:c7:9b:a7:79:14:b8:7e:9a:25:34:35:10:2f:16: 76:38:39:a4:54:66:ac:bb:bb:be:12:fe:03:26:e9: 17:7b:f7:e3:b1:9a:ce:ae:98:86:a3:e3:41:0a:ec: 37:91:d1:02:43:5d:00:ae:65:cd:b8:d8:bb:a7:98: 31:43:01:94:79:34:ea:68:59:53:a5:db:f5:41:b0: 79:ba:dd:42:1c:af:48:8e:75:cc:00:2e:35:0d:0f: ed:05:06:59:0f:74:f0:c2:43:74:03:72:3e:0f:e4: de:7d:3d:ac:c9:15:1c:7e:84:b2:6a:b0:ee:2e:54: 5d:ca:7d:fb:0a:1e:34:48:12:f0:d3:4e:9d:4e:57: e1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DF:DD:FA:0D:B4:FE:38:BD:75:E7:86:63:4B:29:EB:65:74:B1:99 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/Fd_d-g20_ji9deeGY0sp62V0sZk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.8.204.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:cd:e5:17:54:ab:bc:34:7a:a6:1b:0c:de:dd:6b:e6:52:29: 18:85:d5:8c:fb:66:a9:77:20:45:71:64:73:c3:66:bd:42:14: 4d:a8:28:13:c8:7b:0a:3c:b7:c0:54:36:15:42:47:79:17:61: cf:b3:34:11:52:26:d1:6e:70:e6:66:c8:0f:8c:cc:ad:9e:c0: c3:20:50:5e:44:95:b7:5e:6c:5a:a6:ca:08:00:da:c9:97:e7: 5c:98:b4:ad:50:29:d1:b1:75:5b:30:59:ec:ec:4b:8f:04:e6: 74:4b:29:41:d7:23:44:5f:15:31:2b:38:2f:92:6b:cb:8d:5c: 55:5e:33:4c:88:52:ff:ab:36:05:ea:0c:c6:c4:7b:8a:65:e8: f7:ce:52:72:fd:65:07:c1:23:a3:a7:7f:4c:c5:65:71:fe:3f: 21:eb:5d:33:2b:70:99:27:1e:35:da:d9:ba:b2:b7:cf:7c:37: b3:3d:74:c7:7e:33:0c:86:a0:4a:10:6f:4d:24:1d:45:f0:9b: f2:4e:d7:66:00:e4:e7:bc:53:da:c1:cd:da:a8:c7:1c:65:a1: 16:91:fa:c5:60:37:90:28:a9:cc:21:61:23:2a:6f:08:97:73: 7a:1d:01:60:20:ae:69:51:a2:42:48:62:07:ac:28:ec:54:1f: 35:7c:7c:ed -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICCmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA5MTMw MzAzMThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDE1REZEREZBMERCNEZF MzhCRDc1RTc4NjYzNEIyOUVCNjU3NEIxOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdzXRPZNXDWTNXkJ+6+tNv9YEUAuWVkujTMtP5QTiz5yhYN4L9 NJ1qD/t3a+Bp4lUrBwsiNV2WfwWozZE4nnmE1NAafMxxxbsZqGricjgMVwfN6VmH PuHrjMESz34b8Sjc+FhhDJOfb8Y/JNSDE3INM17+Nxpf9XTHm6d5FLh+miU0NRAv FnY4OaRUZqy7u74S/gMm6Rd79+Oxms6umIaj40EK7DeR0QJDXQCuZc242LunmDFD AZR5NOpoWVOl2/VBsHm63UIcr0iOdcwALjUND+0FBlkPdPDCQ3QDcj4P5N59PazJ FRx+hLJqsO4uVF3KffsKHjRIEvDTTp1OV+F3AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUFd/d+g20/ji9deeGY0sp62V0sZkwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy9GZF9kLWcyMF9qaTlkZWVH WTBzcDYyVjBzWmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC ZwjMMA0GCSqGSIb3DQEBCwUAA4IBAQAPzeUXVKu8NHqmGwze3WvmUikYhdWM+2ap dyBFcWRzw2a9QhRNqCgTyHsKPLfAVDYVQkd5F2HPszQRUibRbnDmZsgPjMytnsDD IFBeRJW3XmxapsoIANrJl+dcmLStUCnRsXVbMFns7EuPBOZ0SylB1yNEXxUxKzgv kmvLjVxVXjNMiFL/qzYF6gzGxHuKZej3zlJy/WUHwSOjp39MxWVx/j8h610zK3CZ Jx412tm6srfPfDezPXTHfjMMhqBKEG9NJB1F8JvyTtdmAOTnvFPawc3aqMccZaEW kfrFYDeQKKnMIWEjKm8Il3N6HQFgIK5pUaJCSGIHrCjsVB81fHzt -----END CERTIFICATE-----Generated at Mon Oct 20 08:28:35 2025 by rpki-client