$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/361/lCskf0tlbZLLPtlmhRJ5YbwGRFc.roa File: lCskf0tlbZLLPtlmhRJ5YbwGRFc.roa (raw, json) Hash identifier: YHt5s+uCl8EdztQtvltmEs8xx/gposAuDHZm7SOVtK0= Subject key identifier: 94:2B:24:7F:4B:65:6D:92:CB:3E:D9:66:85:12:79:61:BC:06:44:57 Certificate issuer: /CN=585206C87420BE42C7B9042DE3E5FD51595FF14B Certificate serial: 20BD Authority key identifier: 58:52:06:C8:74:20:BE:42:C7:B9:04:2D:E3:E5:FD:51:59:5F:F1:4B Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WFIGyHQgvkLHuQQt4-X9UVlf8Us.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/lCskf0tlbZLLPtlmhRJ5YbwGRFc.roa Signing time: Fri 26 Sep 2025 06:29:37 +0000 ROA not before: Fri 26 Sep 2025 06:29:37 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4812 IP address blocks: 202.47.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/WFIGyHQgvkLHuQQt4-X9UVlf8Us.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/WFIGyHQgvkLHuQQt4-X9UVlf8Us.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WFIGyHQgvkLHuQQt4-X9UVlf8Us.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:04:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8381 (0x20bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=585206C87420BE42C7B9042DE3E5FD51595FF14B Validity Not Before: Sep 26 06:29:37 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=942B247F4B656D92CB3ED96685127961BC064457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:28:3f:4f:eb:99:f9:95:e5:af:ec:be:f9:2f: 91:55:cd:80:f4:cd:e4:47:1e:82:a5:4a:e5:c4:aa: d6:3c:35:45:fc:be:dd:51:40:3f:01:ec:27:63:ec: 46:19:76:2b:19:e4:65:5f:3f:3b:2a:a5:12:69:00: d4:b0:df:1a:2d:a0:04:76:c5:66:2e:49:33:4b:bc: 48:34:3c:af:92:45:9a:c3:7f:cd:b3:a7:ca:a6:d2: 5f:a7:3e:cb:21:73:a4:d8:79:9b:89:31:06:2c:68: f0:47:0d:b7:93:f9:4a:d8:ad:0c:48:56:87:0c:9e: 66:b9:3c:bc:b3:f9:05:a0:c3:a4:fc:a5:24:44:0c: 50:d7:32:8c:b3:68:9d:af:f1:9c:ef:41:ee:73:5b: 71:ce:16:ed:fb:5c:58:1e:fc:35:58:ca:6a:cd:f1: 1a:fb:6a:f6:06:d7:92:e6:fe:a8:54:47:57:72:09: 5a:c5:b5:76:74:10:21:da:e4:64:0d:f9:fd:77:8d: f8:78:24:b1:e8:6f:5e:09:6b:73:d1:d9:a2:b7:21: be:65:86:0b:eb:eb:59:90:ca:2a:f7:91:1f:b4:39: 27:41:60:cd:5a:58:a6:de:f2:04:ec:e2:f6:a8:9b: 99:c3:2e:5f:2d:f8:56:a6:71:45:4f:7a:a9:a9:5f: e9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:2B:24:7F:4B:65:6D:92:CB:3E:D9:66:85:12:79:61:BC:06:44:57 X509v3 Authority Key Identifier: keyid:58:52:06:C8:74:20:BE:42:C7:B9:04:2D:E3:E5:FD:51:59:5F:F1:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/WFIGyHQgvkLHuQQt4-X9UVlf8Us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/WFIGyHQgvkLHuQQt4-X9UVlf8Us.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/361/lCskf0tlbZLLPtlmhRJ5YbwGRFc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.47.110.0/24 Signature Algorithm: sha256WithRSAEncryption 85:82:dd:f8:96:93:33:04:5c:17:1b:47:a1:05:1a:9f:f5:60: d2:23:c3:54:74:fb:07:ed:0a:88:83:39:0a:4e:5a:4b:f9:e2: 2e:4a:36:ce:0f:40:22:d4:41:6e:01:22:f8:fe:0a:a0:50:3b: b8:34:9d:8d:0c:c7:21:05:1b:60:70:e4:a6:12:6f:07:cf:ff: 89:8a:52:00:0d:f5:fb:29:e0:0b:bb:c0:21:bd:bb:43:54:e9: 86:3e:f3:86:f6:c7:1d:d7:18:aa:11:99:b9:6f:89:56:ec:5b: 4c:62:8c:a5:56:4d:8a:3e:91:58:1f:4e:76:7e:c0:54:9c:7d: 1c:f7:56:3d:ba:b4:24:32:7c:35:02:e6:bd:cd:25:d5:30:24: 91:5c:db:8b:4d:f0:6b:83:2c:c8:66:55:fa:8d:8b:c1:03:5a: 3b:b1:18:db:ae:ae:1f:76:2a:4d:ce:43:6d:49:89:35:59:e8: fa:50:6a:cc:2f:64:06:a0:39:4a:4d:cb:6c:9c:04:18:57:fe: 4a:3f:72:55:47:e2:7e:ad:8b:f0:64:96:02:16:f2:71:fa:81: 97:02:f4:4e:93:85:c3:4a:40:ad:aa:e7:04:87:31:cb:51:ba: 7f:f3:4c:c9:98:4f:c1:87:d5:60:f8:b6:d4:d4:8e:db:99:54: 69:3f:55:e5 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg1 MjA2Qzg3NDIwQkU0MkM3QjkwNDJERTNFNUZENTE1OTVGRjE0QjAeFw0yNTA5MjYw NjI5MzdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk0MkIyNDdGNEI2NTZE OTJDQjNFRDk2Njg1MTI3OTYxQkMwNjQ0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5KD9P65n5leWv7L75L5FVzYD0zeRHHoKlSuXEqtY8NUX8vt1R QD8B7Cdj7EYZdisZ5GVfPzsqpRJpANSw3xotoAR2xWYuSTNLvEg0PK+SRZrDf82z p8qm0l+nPsshc6TYeZuJMQYsaPBHDbeT+UrYrQxIVocMnma5PLyz+QWgw6T8pSRE DFDXMoyzaJ2v8ZzvQe5zW3HOFu37XFge/DVYymrN8Rr7avYG15Lm/qhUR1dyCVrF tXZ0ECHa5GQN+f13jfh4JLHob14Ja3PR2aK3Ib5lhgvr61mQyir3kR+0OSdBYM1a WKbe8gTs4vaom5nDLl8t+FamcUVPeqmpX+mdAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUlCskf0tlbZLLPtlmhRJ5YbwGRFcwHwYDVR0jBBgwFoAUWFIGyHQgvkLHuQQt 4+X9UVlf8UswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzYx L1dGSUd5SFFndmtMSHVRUXQ0LVg5VVZsZjhVcy5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvV0ZJR3lIUWd2a0xIdVFRdDQtWDlVVmxmOFVzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzYxL2xDc2tmMHRsYlpMTFB0 bG1oUko1WWJ3R1JGYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKL24wDQYJKoZIhvcNAQELBQADggEBAIWC3fiWkzMEXBcbR6EFGp/1YNIjw1R0 +wftCoiDOQpOWkv54i5KNs4PQCLUQW4BIvj+CqBQO7g0nY0MxyEFG2Bw5KYSbwfP /4mKUgAN9fsp4Au7wCG9u0NU6YY+84b2xx3XGKoRmblviVbsW0xijKVWTYo+kVgf TnZ+wFScfRz3Vj26tCQyfDUC5r3NJdUwJJFc24tN8GuDLMhmVfqNi8EDWjuxGNuu rh92Kk3OQ21JiTVZ6PpQaswvZAagOUpNy2ycBBhX/ko/clVH4n6ti/BklgIW8nH6 gZcC9E6ThcNKQK2q5wSHMctRun/zTMmYT8GH1WD4ttTUjtuZVGk/VeU= -----END CERTIFICATE-----Generated at Mon Oct 20 17:52:06 2025 by rpki-client