$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/621/_jo-OpB0a2QqJWmzSg_T-s-buhA.roa File: _jo-OpB0a2QqJWmzSg_T-s-buhA.roa (raw, json) Hash identifier: MVdXgaSblUpx++jZOW0IupDe0oNmWrAZls5J44Lx+jk= Subject key identifier: FE:3A:3E:3A:90:74:6B:64:2A:25:69:B3:4A:0F:D3:FA:CF:9B:BA:10 Certificate issuer: /CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D Certificate serial: 23D5 Authority key identifier: E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/_jo-OpB0a2QqJWmzSg_T-s-buhA.roa Signing time: Sat 13 Sep 2025 03:09:19 +0000 ROA not before: Sat 13 Sep 2025 03:09:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 58854 IP address blocks: 103.27.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9173 (0x23d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E56DA4C275F3CCC92D086202A1EDA7783F0C3D0D Validity Not Before: Sep 13 03:09:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FE3A3E3A90746B642A2569B34A0FD3FACF9BBA10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f7:43:54:dc:59:a1:54:a8:1b:c6:15:a5:fc: 64:0a:30:bc:b2:0f:66:15:18:d4:6e:b3:65:cc:1e: 14:d3:7b:3c:aa:02:af:91:a1:ba:d1:a6:2c:40:17: 5b:ff:34:e6:30:c8:a0:08:ad:3f:b1:bb:4d:25:2b: eb:cc:e3:81:98:17:5d:1e:6c:57:e1:4f:90:37:60: 10:4b:f6:55:e9:92:02:02:a7:cd:13:c7:1e:78:17: 1b:57:18:73:f8:2f:f3:11:16:74:c4:5a:0f:be:b7: 4a:b7:27:b7:2e:28:55:98:c0:66:c7:23:ba:f6:5b: fd:b8:9d:15:68:d7:7b:34:43:aa:16:bb:37:6c:d3: a6:6e:e3:cb:d0:ea:68:79:89:12:55:58:08:0d:73: e1:d5:86:a0:1b:4a:bf:0a:73:f0:cb:bc:83:3d:48: be:fe:6a:dc:45:d8:01:c1:7c:d0:3a:5d:9a:1b:3f: 9d:bd:d6:25:42:2f:60:7e:38:62:a7:0d:24:7d:79: 11:fc:25:18:22:95:6e:35:b8:6c:5d:6f:35:d2:0b: a5:22:cf:7a:24:41:b6:23:74:8b:f1:ac:d6:d6:dc: 4e:8b:fb:d8:80:97:0a:e9:59:32:12:22:23:c4:46: b9:bd:d6:4c:f2:cd:ba:be:b6:88:38:52:f0:e7:6c: 5b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3A:3E:3A:90:74:6B:64:2A:25:69:B3:4A:0F:D3:FA:CF:9B:BA:10 X509v3 Authority Key Identifier: keyid:E5:6D:A4:C2:75:F3:CC:C9:2D:08:62:02:A1:ED:A7:78:3F:0C:3D:0D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/5W2kwnXzzMktCGICoe2neD8MPQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/5W2kwnXzzMktCGICoe2neD8MPQ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/621/_jo-OpB0a2QqJWmzSg_T-s-buhA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.27.4.0/24 Signature Algorithm: sha256WithRSAEncryption 36:04:9d:87:70:5e:0b:38:31:3a:88:5e:21:55:30:39:0b:ad: 7b:64:df:75:f2:0f:40:ad:9f:2d:b2:25:d7:78:85:94:5b:da: 06:83:bb:dc:f4:70:e4:02:5b:75:16:b2:8f:83:5a:23:a2:07: d8:6e:75:2f:46:24:d9:59:fd:9b:fa:57:96:8b:d7:cb:2b:d7: 2f:10:db:e1:b3:e3:00:cc:d5:ea:8c:8f:c3:43:3e:b1:94:ea: 8e:1a:48:62:79:84:eb:06:48:6f:c6:3a:4d:75:ca:a3:d6:64: e1:7b:1e:ab:61:c7:15:8b:27:e5:45:8b:85:48:1d:d8:bb:08: c9:d4:d4:38:23:91:3f:5c:61:21:09:5c:46:79:01:10:0c:5d: 4d:16:11:8e:1f:48:f4:59:dd:2d:e0:19:ea:5c:0b:7a:cf:be: 74:36:70:a9:71:10:98:28:a0:72:bc:79:ce:b3:a3:8e:a4:95: 98:d8:89:59:fc:65:47:5c:59:fb:8b:09:59:84:c3:9a:16:4a: f7:03:e4:c5:85:38:a7:c4:cf:1a:04:ab:f8:35:5d:fb:5c:a2: 68:d3:ad:20:a7:b2:ad:15:ba:e7:91:24:7b:d1:f8:7f:3c:2e: 7d:ef:2c:e0:91:61:43:ec:15:1f:5a:ca:7b:56:dd:09:56:5a: ff:24:50:5f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICI9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTU2 REE0QzI3NUYzQ0NDOTJEMDg2MjAyQTFFREE3NzgzRjBDM0QwRDAeFw0yNTA5MTMw MzA5MTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZFM0EzRTNBOTA3NDZC NjQyQTI1NjlCMzRBMEZEM0ZBQ0Y5QkJBMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu90NU3FmhVKgbxhWl/GQKMLyyD2YVGNRus2XMHhTTezyqAq+R obrRpixAF1v/NOYwyKAIrT+xu00lK+vM44GYF10ebFfhT5A3YBBL9lXpkgICp80T xx54FxtXGHP4L/MRFnTEWg++t0q3J7cuKFWYwGbHI7r2W/24nRVo13s0Q6oWuzds 06Zu48vQ6mh5iRJVWAgNc+HVhqAbSr8Kc/DLvIM9SL7+atxF2AHBfNA6XZobP529 1iVCL2B+OGKnDSR9eRH8JRgilW41uGxdbzXSC6Uiz3okQbYjdIvxrNbW3E6L+9iA lwrpWTISIiPERrm91kzyzbq+tog4UvDnbFuVAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU/jo+OpB0a2QqJWmzSg/T+s+buhAwHwYDVR0jBBgwFoAU5W2kwnXzzMktCGIC oe2neD8MPQ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIx LzVXMmt3blh6ek1rdENHSUNvZTJuZUQ4TVBRMC5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvNVcya3duWHp6TWt0Q0dJQ29lMm5lRDhNUFEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjIxL19qby1PcEIwYTJRcUpX bXpTZ19ULXMtYnVoQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnGwQwDQYJKoZIhvcNAQELBQADggEBADYEnYdwXgs4MTqIXiFVMDkLrXtk33Xy D0Ctny2yJdd4hZRb2gaDu9z0cOQCW3UWso+DWiOiB9hudS9GJNlZ/Zv6V5aL18sr 1y8Q2+Gz4wDM1eqMj8NDPrGU6o4aSGJ5hOsGSG/GOk11yqPWZOF7HqthxxWLJ+VF i4VIHdi7CMnU1DgjkT9cYSEJXEZ5ARAMXU0WEY4fSPRZ3S3gGepcC3rPvnQ2cKlx EJgooHK8ec6zo46klZjYiVn8ZUdcWfuLCVmEw5oWSvcD5MWFOKfEzxoEq/g1Xftc omjTrSCnsq0VuueRJHvR+H88Ln3vLOCRYUPsFR9ayntW3QlWWv8kUF8= -----END CERTIFICATE-----Generated at Mon Oct 20 19:51:09 2025 by rpki-client