$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/65/I4Jpb6n2fhu9A355rAh5qQn-RhM.roa File: I4Jpb6n2fhu9A355rAh5qQn-RhM.roa (raw, json) Hash identifier: 1HtFdezvFD9uZl8hj/+ls+6zUxzYfJEQdyNg7QygxYA= Subject key identifier: 23:82:69:6F:A9:F6:7E:1B:BD:03:7E:79:AC:08:79:A9:09:FE:46:13 Certificate issuer: /CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Certificate serial: 14C0 Authority key identifier: 98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/I4Jpb6n2fhu9A355rAh5qQn-RhM.roa Signing time: Thu 11 Sep 2025 06:11:49 +0000 ROA not before: Thu 11 Sep 2025 06:11:49 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23853 IP address blocks: 2404:7600:102::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5312 (0x14c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Validity Not Before: Sep 11 06:11:49 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=2382696FA9F67E1BBD037E79AC0879A909FE4613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:98:66:b1:52:aa:69:d0:99:ac:3c:2b:58:2d: c2:e4:c4:ab:2a:fa:b7:32:4d:94:16:98:1f:6e:05: ac:b7:10:be:66:38:ad:70:dc:f2:37:bd:31:5b:20: 27:c2:8b:95:fc:34:df:4f:3d:92:49:bb:7b:e8:97: 94:8d:d4:01:28:81:09:01:a1:47:5c:0f:09:09:ae: 63:83:ad:75:4b:e6:63:40:eb:7e:df:79:bb:04:2d: 75:98:7b:ed:ac:f6:40:19:2b:36:5a:f3:b3:6e:30: ea:c3:07:8d:4c:26:18:37:fe:9a:98:dd:62:38:1a: 2a:6a:8a:8b:fd:00:22:79:14:e0:44:e3:47:65:f7: 28:d8:c7:a6:fe:13:e3:0c:a3:ed:f1:ac:31:87:f5: 59:c4:76:21:fa:6b:0c:4c:bb:04:07:c5:25:66:d1: 5d:60:dc:ba:48:b5:d1:10:a1:69:05:be:bf:68:0c: b6:da:ed:28:fc:10:ed:f6:83:8b:78:f3:f0:b5:9a: 4f:01:8f:4b:20:52:c6:58:6f:b5:43:09:13:f9:35: 79:e5:0e:48:df:24:9f:2d:76:47:55:c9:db:5e:83: 85:57:8f:0f:12:c5:43:e3:a2:97:fb:f6:05:39:f5: ef:82:cc:8f:23:06:89:37:f0:05:fc:3a:70:65:5d: 30:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:82:69:6F:A9:F6:7E:1B:BD:03:7E:79:AC:08:79:A9:09:FE:46:13 X509v3 Authority Key Identifier: keyid:98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/I4Jpb6n2fhu9A355rAh5qQn-RhM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:7600:102::/47 Signature Algorithm: sha256WithRSAEncryption 68:d1:76:fe:76:ac:85:0d:e7:02:b3:b1:d0:56:de:6f:87:26: 13:44:ed:8c:5c:05:9b:b8:77:a6:0f:95:cb:2b:38:97:f8:2a: bf:e1:b9:13:10:06:97:3e:0c:24:97:00:c3:2e:93:0c:6e:7a: e9:8e:da:54:e0:5b:85:41:c2:86:13:26:fb:fc:bf:eb:26:f4: 2e:d6:1b:c0:e8:ab:8a:7b:de:d3:f7:78:7e:67:02:17:44:0e: 97:71:9f:1b:88:55:41:4d:3d:d2:e9:6a:3a:2b:8b:45:5d:23: a3:82:91:6b:c7:c5:45:e7:a9:0a:fd:a4:be:ac:e0:cc:49:f2: 63:5b:18:0c:8a:0f:d3:f3:97:58:0f:dd:9a:21:98:c1:e6:72: 1d:66:f0:dd:19:77:77:a3:4d:7c:7e:8c:6a:34:f9:fb:07:ca: 1b:c1:e2:5d:f3:46:84:fe:46:7c:15:5c:bd:f3:20:58:8b:16: 37:34:02:7a:a5:f7:11:b4:36:43:1a:9c:9c:51:0c:7f:e7:45: 54:93:4a:57:b6:a2:5a:f2:be:aa:6d:b1:79:eb:1c:c6:19:cc: 10:a6:1e:e2:f4:17:2c:b3:6b:b8:a8:55:b1:fb:b8:d5:24:60: d1:65:09:92:09:d8:0b:80:7c:49:7b:0b:07:f4:84:8f:79:80: 75:cb:83:5b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICFMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTgy NEM1NTUyMjhCMjhCNjk4RERFNzdCQzFBREQwRTI4MDdCODZCOTAeFw0yNTA5MTEw NjExNDlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDIzODI2OTZGQTlGNjdF MUJCRDAzN0U3OUFDMDg3OUE5MDlGRTQ2MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkmGaxUqpp0JmsPCtYLcLkxKsq+rcyTZQWmB9uBay3EL5mOK1w 3PI3vTFbICfCi5X8NN9PPZJJu3vol5SN1AEogQkBoUdcDwkJrmODrXVL5mNA637f ebsELXWYe+2s9kAZKzZa87NuMOrDB41MJhg3/pqY3WI4Gipqiov9ACJ5FOBE40dl 9yjYx6b+E+MMo+3xrDGH9VnEdiH6awxMuwQHxSVm0V1g3LpItdEQoWkFvr9oDLba 7Sj8EO32g4t48/C1mk8Bj0sgUsZYb7VDCRP5NXnlDkjfJJ8tdkdVydteg4VXjw8S xUPjopf79gU59e+CzI8jBok38AX8OnBlXTAnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUI4Jpb6n2fhu9A355rAh5qQn+RhMwHwYDVR0jBBgwFoAUmCTFVSKLKLaY3ed7 wa3Q4oB7hrkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjUv bUNURlZTS0xLTGFZM2VkN3dhM1E0b0I3aHJrLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9tQ1RGVlNLTEtMYVkzZWQ3d2EzUTRvQjdocmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NS9JNEpwYjZuMmZodTlBMzU1 ckFoNXFRbi1SaE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcB JAR2AAECMA0GCSqGSIb3DQEBCwUAA4IBAQBo0Xb+dqyFDecCs7HQVt5vhyYTRO2M XAWbuHemD5XLKziX+Cq/4bkTEAaXPgwklwDDLpMMbnrpjtpU4FuFQcKGEyb7/L/r JvQu1hvA6KuKe97T93h+ZwIXRA6XcZ8biFVBTT3S6Wo6K4tFXSOjgpFrx8VF56kK /aS+rODMSfJjWxgMig/T85dYD92aIZjB5nIdZvDdGXd3o018foxqNPn7B8obweJd 80aE/kZ8FVy98yBYixY3NAJ6pfcRtDZDGpycUQx/50VUk0pXtqJa8r6qbbF56xzG GcwQph7i9Bcss2u4qFWx+7jVJGDRZQmSCdgLgHxJewsH9ISPeYB1y4Nb -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:51 2025 by rpki-client