$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/561/XdT6PkuS3VTSNYYYMphfba_w3q8.roa File: XdT6PkuS3VTSNYYYMphfba_w3q8.roa (raw, json) Hash identifier: TzTyRp5StMFh+zZQrNHwlwpyN4qPd5fz29jF6/q8zXY= Subject key identifier: 5D:D4:FA:3E:4B:92:DD:54:D2:35:86:18:32:98:5F:6D:AF:F0:DE:AF Certificate issuer: /CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Certificate serial: 209B Authority key identifier: 83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/XdT6PkuS3VTSNYYYMphfba_w3q8.roa Signing time: Sat 13 Sep 2025 03:09:56 +0000 ROA not before: Sat 13 Sep 2025 03:09:56 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 56282 IP address blocks: 211.155.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 04:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8347 (0x209b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83E77F37B3B93850835BAA30EE8FC12D55F87054 Validity Not Before: Sep 13 03:09:56 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=5DD4FA3E4B92DD54D235861832985F6DAFF0DEAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:78:af:49:d6:d1:7e:67:08:76:1b:79:20:76: 92:42:c9:ae:c5:94:5d:e0:cc:d9:79:9e:ad:a8:75: 6f:e4:dc:20:d3:c2:51:40:31:c8:d2:7e:ab:38:06: 7a:93:f0:d3:ef:60:23:ae:cf:46:c7:b0:b5:6d:0e: 8b:f8:80:d4:82:f6:45:4e:c7:bf:9d:c8:38:e4:cb: 92:d3:b0:a7:58:42:8b:69:ca:e7:59:8c:cc:4c:48: 36:95:a9:5c:b4:1d:26:ee:4d:bc:27:40:3f:10:46: 33:9c:86:5b:32:f4:ba:3c:0e:6e:0e:d2:9f:5c:1d: 85:c4:dd:25:70:f1:fe:72:db:5f:3e:90:b1:b4:92: 9d:be:47:19:56:f8:9a:07:b1:46:a0:71:46:df:6c: 9e:b6:34:80:d9:ec:c7:97:64:f5:b4:2c:82:a4:ad: 9e:1f:9c:08:ce:ce:75:0b:70:61:9b:a3:7a:d0:74: fa:d1:0b:06:56:29:bb:0d:e9:c6:84:83:86:be:0d: 26:6c:42:a0:fa:58:8b:bc:b5:4e:b2:8c:1f:91:0c: 7b:6c:40:a9:b4:6c:af:ec:55:d2:9e:08:c2:99:27: 4a:d1:27:3c:df:df:f8:c8:a8:1f:13:96:dd:54:1b: e9:9b:f8:9e:d6:60:66:d0:b9:7c:dd:aa:b6:27:a4: 34:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D4:FA:3E:4B:92:DD:54:D2:35:86:18:32:98:5F:6D:AF:F0:DE:AF X509v3 Authority Key Identifier: keyid:83:E7:7F:37:B3:B9:38:50:83:5B:AA:30:EE:8F:C1:2D:55:F8:70:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/g-d_N7O5OFCDW6ow7o_BLVX4cFQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/561/XdT6PkuS3VTSNYYYMphfba_w3q8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.155.92.0/22 Signature Algorithm: sha256WithRSAEncryption 48:2a:a0:6d:4c:e4:cd:fc:d0:18:9d:88:b9:7c:dc:a0:52:80: 2c:23:97:0f:2b:91:1e:bd:36:39:fc:e2:9a:c3:7e:b3:66:58: be:b5:66:b7:21:c8:a3:56:bd:af:1e:94:ad:a1:a5:11:63:b5: cb:ad:90:bb:83:e2:ba:4e:22:58:4b:34:2d:1b:a9:49:a1:ba: 67:80:52:8f:69:4d:84:eb:73:51:47:21:d1:3c:41:38:f6:1b: bf:a6:f7:4b:3e:cf:03:22:46:12:0b:07:84:2c:f3:fc:25:1d: f0:6b:cc:3d:0b:c8:b4:fd:9b:44:01:cf:91:38:8e:9a:f2:5e: bb:12:16:98:77:0a:31:33:7f:0d:ee:da:4e:47:85:d1:e0:89: bb:c9:b6:0b:51:ff:b6:fc:d0:49:e5:19:98:b1:f9:94:92:0d: 58:58:9f:e9:55:f2:91:c9:a1:2d:8d:c8:9e:3c:da:cc:0f:de: 85:df:e7:e2:f5:fc:4c:04:c9:f5:7b:95:f7:6d:17:ba:f5:5d: bf:b8:ca:f2:b0:78:2e:36:82:ac:8f:94:07:30:7b:55:8e:47: 60:92:2a:cf:7a:58:84:a3:f7:4f:af:1c:72:84:e3:88:f7:7a: 40:45:c1:10:ce:55:d3:39:6d:ca:92:77:ff:84:6b:5b:8d:d2: fc:ee:a2:fa -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNF NzdGMzdCM0I5Mzg1MDgzNUJBQTMwRUU4RkMxMkQ1NUY4NzA1NDAeFw0yNTA5MTMw MzA5NTZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDVERDRGQTNFNEI5MkRE NTREMjM1ODYxODMyOTg1RjZEQUZGMERFQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeeK9J1tF+Zwh2G3kgdpJCya7FlF3gzNl5nq2odW/k3CDTwlFA McjSfqs4BnqT8NPvYCOuz0bHsLVtDov4gNSC9kVOx7+dyDjky5LTsKdYQotpyudZ jMxMSDaVqVy0HSbuTbwnQD8QRjOchlsy9Lo8Dm4O0p9cHYXE3SVw8f5y218+kLG0 kp2+RxlW+JoHsUagcUbfbJ62NIDZ7MeXZPW0LIKkrZ4fnAjOznULcGGbo3rQdPrR CwZWKbsN6caEg4a+DSZsQqD6WIu8tU6yjB+RDHtsQKm0bK/sVdKeCMKZJ0rRJzzf 3/jIqB8Tlt1UG+mb+J7WYGbQuXzdqrYnpDRlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUXdT6PkuS3VTSNYYYMphfba/w3q8wHwYDVR0jBBgwFoAUg+d/N7O5OFCDW6ow 7o/BLVX4cFQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYx L2ctZF9ON081T0ZDRFc2b3c3b19CTFZYNGNGUS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZy1kX043TzVPRkNEVzZvdzdvX0JMVlg0Y0ZRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTYxL1hkVDZQa3VTM1ZUU05Z WVlNcGhmYmFfdzNxOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BALTm1wwDQYJKoZIhvcNAQELBQADggEBAEgqoG1M5M380BidiLl83KBSgCwjlw8r kR69Njn84prDfrNmWL61ZrchyKNWva8elK2hpRFjtcutkLuD4rpOIlhLNC0bqUmh umeAUo9pTYTrc1FHIdE8QTj2G7+m90s+zwMiRhILB4Qs8/wlHfBrzD0LyLT9m0QB z5E4jpryXrsSFph3CjEzfw3u2k5HhdHgibvJtgtR/7b80EnlGZix+ZSSDVhYn+lV 8pHJoS2NyJ482swP3oXf5+L1/EwEyfV7lfdtF7r1Xb+4yvKweC42gqyPlAcwe1WO R2CSKs96WISj90+vHHKE44j3ekBFwRDOVdM5bcqSd/+Ea1uN0vzuovo= -----END CERTIFICATE-----Generated at Mon Oct 20 03:50:04 2025 by rpki-client