$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/613/3muw5lSu71smczgwwlBT_wy8dZM.roa File: 3muw5lSu71smczgwwlBT_wy8dZM.roa (raw, json) Hash identifier: mH4gMz1Agc6r4S1U8u6qEU98lH/YjJKYH/vqwjzfpfE= Subject key identifier: DE:6B:B0:E6:54:AE:EF:5B:26:73:38:30:C2:50:53:FF:0C:BC:75:93 Certificate issuer: /CN=2E83EB0E1CB7B4A7617A04AD7A82629D98B95B94 Certificate serial: 2168 Authority key identifier: 2E:83:EB:0E:1C:B7:B4:A7:61:7A:04:AD:7A:82:62:9D:98:B9:5B:94 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LoPrDhy3tKdhegSteoJinZi5W5Q.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/3muw5lSu71smczgwwlBT_wy8dZM.roa Signing time: Sat 13 Sep 2025 03:03:03 +0000 ROA not before: Sat 13 Sep 2025 03:03:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4134 IP address blocks: 103.203.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/LoPrDhy3tKdhegSteoJinZi5W5Q.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/LoPrDhy3tKdhegSteoJinZi5W5Q.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LoPrDhy3tKdhegSteoJinZi5W5Q.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8552 (0x2168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E83EB0E1CB7B4A7617A04AD7A82629D98B95B94 Validity Not Before: Sep 13 03:03:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=DE6BB0E654AEEF5B26733830C25053FF0CBC7593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:93:35:ff:2a:69:55:b2:37:92:44:3c:3f:4c: cf:f4:c3:ff:07:bc:ab:bc:82:7d:17:bd:67:7b:29: 58:07:bc:69:46:6d:2e:56:b8:96:58:ec:a4:82:13: 53:23:06:d1:5a:37:c9:4c:de:90:f5:82:3a:4e:03: 69:88:40:44:e3:24:54:c3:22:16:5c:3a:a0:0a:81: 17:e4:76:91:a0:25:2c:83:66:6e:1c:d3:0d:81:8d: b0:26:53:d1:1c:89:fa:07:95:83:47:96:56:e7:1a: 2f:f9:bb:b8:23:f2:8a:4d:f1:b3:9a:66:d4:f9:a2: 3d:91:9c:b3:53:d3:28:76:21:50:b0:77:40:a1:d9: b3:11:f7:98:49:89:d8:e6:03:25:c6:de:b4:52:81: 5c:dd:5e:2f:79:72:29:fe:ae:c5:db:70:db:08:aa: 0f:77:58:a8:7f:71:93:2e:a5:cf:65:b1:16:b4:34: b0:28:16:1e:a7:52:e3:7a:68:51:d5:a0:c5:2e:0a: 28:30:bb:3b:33:d4:2e:51:a9:96:c9:d7:37:b5:5e: 47:00:b4:33:ee:53:38:07:c7:a5:fd:d5:eb:96:87: b5:8a:da:b2:6e:d9:cf:e4:82:59:e5:ce:8d:b9:9b: 49:60:81:93:48:26:14:1d:39:6c:ea:0e:6d:fc:68: b9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6B:B0:E6:54:AE:EF:5B:26:73:38:30:C2:50:53:FF:0C:BC:75:93 X509v3 Authority Key Identifier: keyid:2E:83:EB:0E:1C:B7:B4:A7:61:7A:04:AD:7A:82:62:9D:98:B9:5B:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/LoPrDhy3tKdhegSteoJinZi5W5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LoPrDhy3tKdhegSteoJinZi5W5Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/3muw5lSu71smczgwwlBT_wy8dZM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.203.100.0/22 Signature Algorithm: sha256WithRSAEncryption ce:cd:0f:3b:b5:48:ff:50:27:c3:a9:68:70:f7:77:af:39:ca: 27:f8:d4:47:0c:47:7b:fb:23:70:fb:0a:37:d5:c1:7e:f0:42: 42:26:69:d0:aa:80:24:d8:02:1d:41:cd:b3:24:ab:e4:54:2a: a3:dd:79:f0:c6:fc:fc:ab:d3:dc:cf:e0:68:ed:44:6f:3d:cd: f7:42:12:0d:a0:1b:09:ee:6e:22:56:37:80:c1:d8:ee:e2:3d: f5:c0:34:5c:26:95:97:4f:2f:fb:99:78:19:ac:ce:3c:bb:74: 21:39:37:44:b4:f8:47:e3:99:d1:9e:2d:8f:c7:1d:51:44:23: 07:63:a7:13:e2:85:da:2f:18:57:42:bb:b7:64:34:38:20:32: 73:48:8e:4e:ca:9e:3a:ef:b9:79:b8:c9:01:09:de:88:da:c2: 8e:f7:03:87:51:8a:d4:5a:ae:b2:fb:a6:d1:5b:a0:e3:44:6c: f6:fb:82:0f:e0:56:ca:20:0d:b4:c4:c2:33:c5:cb:9a:04:37: ee:b2:32:b1:3b:31:7e:32:82:20:0a:7a:43:54:5b:b8:85:6e: 16:9e:95:db:d2:e8:14:8b:3c:a7:ea:59:87:e1:f6:16:c2:24: c1:b6:e6:35:ac:54:f6:19:2f:df:5b:11:65:ec:06:ab:46:52: 6b:f9:0d:25 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkU4 M0VCMEUxQ0I3QjRBNzYxN0EwNEFEN0E4MjYyOUQ5OEI5NUI5NDAeFw0yNTA5MTMw MzAzMDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKERFNkJCMEU2NTRBRUVG NUIyNjczMzgzMEMyNTA1M0ZGMENCQzc1OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBkzX/KmlVsjeSRDw/TM/0w/8HvKu8gn0XvWd7KVgHvGlGbS5W uJZY7KSCE1MjBtFaN8lM3pD1gjpOA2mIQETjJFTDIhZcOqAKgRfkdpGgJSyDZm4c 0w2BjbAmU9EcifoHlYNHllbnGi/5u7gj8opN8bOaZtT5oj2RnLNT0yh2IVCwd0Ch 2bMR95hJidjmAyXG3rRSgVzdXi95cin+rsXbcNsIqg93WKh/cZMupc9lsRa0NLAo Fh6nUuN6aFHVoMUuCigwuzsz1C5RqZbJ1ze1XkcAtDPuUzgHx6X91euWh7WK2rJu 2c/kglnlzo25m0lggZNIJhQdOWzqDm38aLk1AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU3muw5lSu71smczgwwlBT/wy8dZMwHwYDVR0jBBgwFoAULoPrDhy3tKdhegSt eoJinZi5W5QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjEz L0xvUHJEaHkzdEtkaGVnU3Rlb0ppblppNVc1US5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTG9QckRoeTN0S2RoZWdTdGVvSmluWmk1VzVRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjEzLzNtdXc1bFN1NzFzbWN6 Z3d3bEJUX3d5OGRaTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJny2QwDQYJKoZIhvcNAQELBQADggEBAM7NDzu1SP9QJ8OpaHD3d685yif41EcM R3v7I3D7CjfVwX7wQkImadCqgCTYAh1BzbMkq+RUKqPdefDG/Pyr09zP4GjtRG89 zfdCEg2gGwnubiJWN4DB2O7iPfXANFwmlZdPL/uZeBmszjy7dCE5N0S0+EfjmdGe LY/HHVFEIwdjpxPihdovGFdCu7dkNDggMnNIjk7KnjrvuXm4yQEJ3ojawo73A4dR itRarrL7ptFboONEbPb7gg/gVsogDbTEwjPFy5oEN+6yMrE7MX4ygiAKekNUW7iF bhaeldvS6BSLPKfqWYfh9hbCJMG25jWsVPYZL99bEWXsBqtGUmv5DSU= -----END CERTIFICATE-----Generated at Mon Oct 20 14:31:24 2025 by rpki-client