$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/65/JBvWkQgNop_h1MJlmgSubhKIUt0.roa File: JBvWkQgNop_h1MJlmgSubhKIUt0.roa (raw, json) Hash identifier: 7um2gCV5af1CmDBmugDbGTVaZHFiS+ckoH93eQ2b08Q= Subject key identifier: 24:1B:D6:91:08:0D:A2:9F:E1:D4:C2:65:9A:04:AE:6E:12:88:52:DD Certificate issuer: /CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Certificate serial: 14D0 Authority key identifier: 98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/JBvWkQgNop_h1MJlmgSubhKIUt0.roa Signing time: Thu 11 Sep 2025 06:15:31 +0000 ROA not before: Thu 11 Sep 2025 06:15:31 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23853 IP address blocks: 2404:7600:200::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5328 (0x14d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Validity Not Before: Sep 11 06:15:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=241BD691080DA29FE1D4C2659A04AE6E128852DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3a:01:69:b3:85:cc:e0:f8:9e:59:23:3d:3b: c5:ad:59:a4:60:74:cb:81:1f:88:ea:f0:ff:f4:5b: 09:34:56:03:f5:0a:a1:b6:d0:10:82:4c:0b:86:2a: f3:87:4d:80:45:78:18:0a:21:5a:f3:d5:ce:76:32: 98:b5:44:59:06:8b:5d:7d:40:57:db:94:52:46:e8: 99:e9:08:76:4d:8b:31:56:59:7d:86:48:06:1e:4a: 87:63:17:3b:8e:38:38:cc:4c:87:be:51:31:a4:fe: 9d:af:53:e0:9c:58:80:7d:b0:00:56:46:b6:10:f1: 96:fd:85:f2:8c:38:f1:ca:63:c3:06:78:64:19:28: 34:09:d1:b1:f2:29:9b:af:63:11:a6:5c:a8:fd:f9: bb:85:3e:70:a9:58:b2:61:f6:47:62:ec:1e:17:fb: fa:50:dd:6b:ec:14:31:64:5d:67:f9:00:2a:34:eb: 40:d9:14:53:44:8c:b8:fe:e0:ba:68:c2:42:49:a7: ff:9b:54:4d:a0:58:2d:91:87:de:81:5b:70:f7:87: c6:77:ab:52:b1:4b:3a:fc:e8:bb:5f:d8:12:0f:74: 74:7c:75:f4:0f:6d:58:54:01:80:05:d6:d2:86:75: c5:1d:f7:50:e6:6d:bc:b3:6f:21:57:dc:30:34:d6: 1b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1B:D6:91:08:0D:A2:9F:E1:D4:C2:65:9A:04:AE:6E:12:88:52:DD X509v3 Authority Key Identifier: keyid:98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/JBvWkQgNop_h1MJlmgSubhKIUt0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:7600:200::/39 Signature Algorithm: sha256WithRSAEncryption 23:9f:c0:66:32:10:80:3f:ab:36:5c:c8:bd:78:2d:6d:62:cf: 68:0f:22:f9:30:d9:e2:15:7a:77:1a:b5:93:57:45:1f:5c:95: fd:29:f1:37:ab:4e:2e:de:5f:07:5d:81:1c:ab:a2:1c:c0:91: c0:c9:22:cf:7a:cd:03:8e:94:2d:5a:11:80:e9:75:47:f1:3a: a9:4c:02:a3:01:cc:76:75:82:e6:9f:19:cb:4d:1d:54:57:f5: c2:85:7d:66:ac:d6:da:d7:23:ad:01:13:6c:82:11:0f:ef:8f: e5:5b:9d:81:06:36:68:44:9e:c5:10:04:d9:bf:9a:d2:a5:88: 03:51:b3:8b:34:df:aa:5e:e3:d5:a3:c6:bf:41:66:ad:02:7b: 80:ea:ca:3e:db:cf:ac:ce:e6:01:42:63:6d:7b:4e:70:cc:6b: 7f:42:6d:a6:15:c3:ed:04:67:35:5d:9f:af:01:53:c0:1e:e8: 5b:9a:0a:c8:bb:5f:36:f2:9d:2a:75:e2:93:ab:48:02:e6:7e: db:6b:2f:60:16:ee:e2:1e:8b:be:5b:96:2a:bb:3a:4a:43:34: 83:37:d6:9c:29:d8:49:de:b5:ed:02:49:91:87:f5:2c:80:27: 02:27:cb:8d:f6:33:90:85:79:2a:a2:18:79:e8:7f:c7:ec:3d: 34:94:33:fa -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTgy NEM1NTUyMjhCMjhCNjk4RERFNzdCQzFBREQwRTI4MDdCODZCOTAeFw0yNTA5MTEw NjE1MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDI0MUJENjkxMDgwREEy OUZFMUQ0QzI2NTlBMDRBRTZFMTI4ODUyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgOgFps4XM4PieWSM9O8WtWaRgdMuBH4jq8P/0Wwk0VgP1CqG2 0BCCTAuGKvOHTYBFeBgKIVrz1c52Mpi1RFkGi119QFfblFJG6JnpCHZNizFWWX2G SAYeSodjFzuOODjMTIe+UTGk/p2vU+CcWIB9sABWRrYQ8Zb9hfKMOPHKY8MGeGQZ KDQJ0bHyKZuvYxGmXKj9+buFPnCpWLJh9kdi7B4X+/pQ3WvsFDFkXWf5ACo060DZ FFNEjLj+4LpowkJJp/+bVE2gWC2Rh96BW3D3h8Z3q1KxSzr86Ltf2BIPdHR8dfQP bVhUAYAF1tKGdcUd91DmbbyzbyFX3DA01hudAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUJBvWkQgNop/h1MJlmgSubhKIUt0wHwYDVR0jBBgwFoAUmCTFVSKLKLaY3ed7 wa3Q4oB7hrkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjUv bUNURlZTS0xLTGFZM2VkN3dhM1E0b0I3aHJrLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9tQ1RGVlNLTEtMYVkzZWQ3d2EzUTRvQjdocmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NS9KQnZXa1FnTm9wX2gxTUps bWdTdWJoS0lVdDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYB JAR2AAIwDQYJKoZIhvcNAQELBQADggEBACOfwGYyEIA/qzZcyL14LW1iz2gPIvkw 2eIVencatZNXRR9clf0p8TerTi7eXwddgRyrohzAkcDJIs96zQOOlC1aEYDpdUfx OqlMAqMBzHZ1guafGctNHVRX9cKFfWas1trXI60BE2yCEQ/vj+VbnYEGNmhEnsUQ BNm/mtKliANRs4s036pe49Wjxr9BZq0Ce4Dqyj7bz6zO5gFCY217TnDMa39CbaYV w+0EZzVdn68BU8Ae6FuaCsi7XzbynSp14pOrSALmfttrL2AW7uIei75bliq7OkpD NIM31pwp2Enete0CSZGH9SyAJwIny432M5CFeSqiGHnof8fsPTSUM/o= -----END CERTIFICATE-----Generated at Mon Oct 20 17:59:09 2025 by rpki-client