$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/613/G2_F2khzhzZtvsmr4SdgcJ0z46I.roa File: G2_F2khzhzZtvsmr4SdgcJ0z46I.roa (raw, json) Hash identifier: mz/tagPOKEyGLD1MNuZ/pwN1F+qoR6N6gYInKPVnAnU= Subject key identifier: 1B:6F:C5:DA:48:73:87:36:6D:BE:C9:AB:E1:27:60:70:9D:33:E3:A2 Certificate issuer: /CN=2E83EB0E1CB7B4A7617A04AD7A82629D98B95B94 Certificate serial: 2167 Authority key identifier: 2E:83:EB:0E:1C:B7:B4:A7:61:7A:04:AD:7A:82:62:9D:98:B9:5B:94 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LoPrDhy3tKdhegSteoJinZi5W5Q.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/G2_F2khzhzZtvsmr4SdgcJ0z46I.roa Signing time: Sat 13 Sep 2025 03:03:03 +0000 ROA not before: Sat 13 Sep 2025 03:03:03 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 4134 IP address blocks: 115.31.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/LoPrDhy3tKdhegSteoJinZi5W5Q.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/LoPrDhy3tKdhegSteoJinZi5W5Q.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LoPrDhy3tKdhegSteoJinZi5W5Q.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8551 (0x2167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E83EB0E1CB7B4A7617A04AD7A82629D98B95B94 Validity Not Before: Sep 13 03:03:03 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1B6FC5DA487387366DBEC9ABE12760709D33E3A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e3:52:29:35:65:3b:f8:b0:7a:a4:a4:5f:8a: 5d:f0:37:32:cd:cd:6d:fe:fa:d4:37:1e:85:83:97: 8d:b4:57:b4:ca:b4:5c:97:77:93:13:1c:97:fe:42: 2d:0f:9b:22:bc:95:e7:04:77:09:41:a1:a6:27:a1: 57:15:f7:c1:5c:69:12:bd:c6:73:a6:9f:f0:e4:7e: ae:da:7b:d8:3a:f8:ab:e2:f7:6c:6e:bb:69:07:98: 54:fc:8e:d4:43:55:5b:6f:ca:41:7c:ea:e1:94:27: 45:49:f1:75:d6:bc:4a:64:46:5d:ba:f7:7e:ea:74: dd:25:78:cb:73:2a:e6:7f:fa:64:3b:91:4e:a5:42: 16:19:96:84:27:a9:2a:03:48:41:dc:14:b7:ea:e8: 5b:59:ef:7c:83:20:b1:9b:fc:ff:3c:5d:9f:91:2c: c8:3f:1a:96:46:0a:c5:4a:f8:40:63:98:3d:77:00: ba:c7:85:5d:63:aa:b4:e5:f8:ef:96:51:bc:46:e2: 33:d6:ee:3f:71:75:bc:99:ea:4a:e5:83:c5:52:3a: 23:57:2d:72:a7:02:7f:bc:ba:06:1a:bb:ac:cb:eb: 72:45:23:30:3b:42:ee:e8:ed:30:68:1d:e7:dd:57: eb:74:61:ba:7b:68:01:2d:06:ff:e8:bb:a4:61:cc: 99:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6F:C5:DA:48:73:87:36:6D:BE:C9:AB:E1:27:60:70:9D:33:E3:A2 X509v3 Authority Key Identifier: keyid:2E:83:EB:0E:1C:B7:B4:A7:61:7A:04:AD:7A:82:62:9D:98:B9:5B:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/LoPrDhy3tKdhegSteoJinZi5W5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LoPrDhy3tKdhegSteoJinZi5W5Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/613/G2_F2khzhzZtvsmr4SdgcJ0z46I.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.31.68.0/22 Signature Algorithm: sha256WithRSAEncryption 35:7e:8d:c0:cc:bf:12:b4:c1:6a:10:65:92:ba:3c:5f:82:09: 7b:25:fe:df:1f:95:14:f9:5d:03:28:f3:20:2c:e9:65:4b:20: a2:2d:d9:2d:75:92:ce:5f:44:2a:58:20:01:9d:52:ea:0e:2c: d3:88:c6:f1:90:97:a0:15:4a:df:6d:b7:96:d7:a8:7b:3e:dc: dd:ca:0d:08:9f:f1:28:82:55:be:0a:48:84:ef:e5:2e:e3:82: a8:7f:5f:e2:7f:01:e6:ae:9e:a9:ec:e2:f6:22:e2:20:53:52: 87:9d:ef:99:93:56:9b:95:3d:b9:fe:79:9f:cb:70:0e:d1:c6: 7f:54:a8:bf:1d:12:53:ae:b9:ac:8a:34:ad:c8:1c:f9:d2:bf: 7f:78:ce:3a:fe:1d:d5:42:ee:6a:4a:0e:2d:ae:12:47:60:b6: a0:55:f4:9d:59:de:93:3b:b9:46:16:f9:0c:3c:ec:45:d4:0c: bc:53:06:20:97:b2:cf:d7:9b:8f:73:74:bc:9a:c9:dc:87:e4: 2b:35:64:e4:53:b7:76:f8:34:9d:d4:31:7d:88:81:84:12:a2: ed:83:d4:ed:ce:b6:85:3a:a9:4b:c6:2e:42:12:48:a4:c0:1c: 02:25:f4:16:f0:fa:46:4c:51:88:77:7d:09:f7:98:48:4b:89: 9c:f0:11:ae -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkU4 M0VCMEUxQ0I3QjRBNzYxN0EwNEFEN0E4MjYyOUQ5OEI5NUI5NDAeFw0yNTA5MTMw MzAzMDNaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDFCNkZDNURBNDg3Mzg3 MzY2REJFQzlBQkUxMjc2MDcwOUQzM0UzQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH41IpNWU7+LB6pKRfil3wNzLNzW3++tQ3HoWDl420V7TKtFyX d5MTHJf+Qi0PmyK8lecEdwlBoaYnoVcV98FcaRK9xnOmn/Dkfq7ae9g6+Kvi92xu u2kHmFT8jtRDVVtvykF86uGUJ0VJ8XXWvEpkRl26937qdN0leMtzKuZ/+mQ7kU6l QhYZloQnqSoDSEHcFLfq6FtZ73yDILGb/P88XZ+RLMg/GpZGCsVK+EBjmD13ALrH hV1jqrTl+O+WUbxG4jPW7j9xdbyZ6krlg8VSOiNXLXKnAn+8ugYau6zL63JFIzA7 Qu7o7TBoHefdV+t0Ybp7aAEtBv/ou6RhzJlhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUG2/F2khzhzZtvsmr4SdgcJ0z46IwHwYDVR0jBBgwFoAULoPrDhy3tKdhegSt eoJinZi5W5QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjEz L0xvUHJEaHkzdEtkaGVnU3Rlb0ppblppNVc1US5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvTG9QckRoeTN0S2RoZWdTdGVvSmluWmk1VzVRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjEzL0cyX0Yya2h6aHpadHZz bXI0U2RnY0owejQ2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJzH0QwDQYJKoZIhvcNAQELBQADggEBADV+jcDMvxK0wWoQZZK6PF+CCXsl/t8f lRT5XQMo8yAs6WVLIKIt2S11ks5fRCpYIAGdUuoOLNOIxvGQl6AVSt9tt5bXqHs+ 3N3KDQif8SiCVb4KSITv5S7jgqh/X+J/Aeaunqns4vYi4iBTUoed75mTVpuVPbn+ eZ/LcA7Rxn9UqL8dElOuuayKNK3IHPnSv394zjr+HdVC7mpKDi2uEkdgtqBV9J1Z 3pM7uUYW+Qw87EXUDLxTBiCXss/Xm49zdLyaydyH5Cs1ZORTt3b4NJ3UMX2IgYQS ou2D1O3OtoU6qUvGLkISSKTAHAIl9Bbw+kZMUYh3fQn3mEhLiZzwEa4= -----END CERTIFICATE-----Generated at Mon Oct 20 14:31:38 2025 by rpki-client