$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/65/mMEiB8DXxB3fyMMI-cNxYMYi-_s.roa File: mMEiB8DXxB3fyMMI-cNxYMYi-_s.roa (raw, json) Hash identifier: FjBgAhovtU6yuv9zu3tezDhv2ahyObBTahsIg81AnJ8= Subject key identifier: 98:C1:22:07:C0:D7:C4:1D:DF:C8:C3:08:F9:C3:71:60:C6:22:FB:FB Certificate issuer: /CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Certificate serial: 14DC Authority key identifier: 98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mMEiB8DXxB3fyMMI-cNxYMYi-_s.roa Signing time: Thu 11 Sep 2025 06:17:05 +0000 ROA not before: Thu 11 Sep 2025 06:17:05 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 23853 IP address blocks: 2404:7600:8000::/33 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5340 (0x14dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9824C555228B28B698DDE77BC1ADD0E2807B86B9 Validity Not Before: Sep 11 06:17:05 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=98C12207C0D7C41DDFC8C308F9C37160C622FBFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fc:1a:53:99:e8:1b:90:05:21:27:62:83:77: a4:77:60:2f:f5:96:11:cb:a1:d4:1b:e4:f2:3f:05: af:aa:e0:e5:3f:fb:ea:24:fb:f9:e8:25:26:e6:7a: ef:4d:6c:44:58:4e:5c:16:2a:74:b5:d5:86:38:1a: 3c:f2:67:b9:31:f4:01:45:8e:f1:a6:06:d5:1b:e2: 88:c6:c5:12:50:3c:8f:52:d3:98:51:7e:05:81:81: 1d:60:21:04:fe:7b:cf:d5:37:6c:92:df:1d:1e:bf: fe:df:49:ba:c7:45:2a:8f:a7:f5:39:d6:75:81:c2: fc:90:e7:48:c9:72:39:78:af:85:b7:2a:02:a0:77: 75:d1:9e:80:51:0f:5f:68:9c:90:94:5c:fb:45:1a: f9:31:2f:10:bc:4d:f2:28:eb:a1:66:26:4b:dd:27: ae:89:e0:99:78:e4:46:59:ad:bb:a0:df:39:be:ba: 27:93:c9:f0:cb:27:c3:1f:6e:17:c3:17:2f:db:c3: 6e:e5:cf:56:82:67:11:36:a3:da:3f:3c:ca:f9:d2: 55:b7:57:dd:58:10:8c:8b:d7:f8:8f:0f:65:3f:12: fa:a7:a6:14:68:e8:d3:a2:1d:98:bf:05:e1:a5:af: 9a:2c:ff:49:86:c8:55:7b:a0:7a:6b:4e:e9:c9:88: 64:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C1:22:07:C0:D7:C4:1D:DF:C8:C3:08:F9:C3:71:60:C6:22:FB:FB X509v3 Authority Key Identifier: keyid:98:24:C5:55:22:8B:28:B6:98:DD:E7:7B:C1:AD:D0:E2:80:7B:86:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/mCTFVSKLKLaY3ed7wa3Q4oB7hrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/65/mMEiB8DXxB3fyMMI-cNxYMYi-_s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:7600:8000::/33 Signature Algorithm: sha256WithRSAEncryption 00:41:e8:1b:1f:e7:7d:25:d6:bb:03:3d:8c:f7:f7:99:17:e8: ba:7c:e3:1b:12:16:74:f8:bc:38:c7:5f:33:04:4b:d1:c0:3d: e8:56:f0:ee:52:19:a2:84:ff:3a:dc:7c:56:75:ea:2c:93:aa: 68:81:75:e9:96:33:a6:b6:37:54:61:6c:bf:e0:e1:f6:37:ae: 6e:e4:ff:1e:5b:95:9d:ce:03:56:3d:01:85:fc:2d:93:8b:2e: d8:26:13:f4:fe:1b:03:87:30:d4:3a:c8:2a:0c:37:4c:22:c5: 58:ee:41:6a:3c:45:e4:63:aa:f2:ea:e2:fa:ef:56:9b:70:ae: 9a:de:c3:6b:58:88:2b:9c:82:f6:34:ad:30:66:a3:a8:9b:bc: ac:77:61:0c:2d:f4:b2:84:cf:35:00:93:c9:42:34:77:71:72: 08:f4:cd:6f:f4:15:7d:19:70:70:11:76:84:25:4e:44:bd:21: c9:ad:92:2c:75:b9:b9:d3:5b:73:25:25:27:6c:e5:f4:1e:94: 70:8c:30:77:b9:f5:b5:5b:81:e0:f4:6f:8c:ea:3e:01:af:ff: 62:78:b5:d8:bf:69:2d:0f:a1:35:df:f0:3c:4a:4c:8c:57:d0: 64:4e:64:73:53:59:4e:96:e0:3f:4a:5c:4d:26:c5:ad:71:25: a4:73:f9:8b -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTgy NEM1NTUyMjhCMjhCNjk4RERFNzdCQzFBREQwRTI4MDdCODZCOTAeFw0yNTA5MTEw NjE3MDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk4QzEyMjA3QzBEN0M0 MURERkM4QzMwOEY5QzM3MTYwQzYyMkZCRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDz/BpTmegbkAUhJ2KDd6R3YC/1lhHLodQb5PI/Ba+q4OU/++ok +/noJSbmeu9NbERYTlwWKnS11YY4GjzyZ7kx9AFFjvGmBtUb4ojGxRJQPI9S05hR fgWBgR1gIQT+e8/VN2yS3x0ev/7fSbrHRSqPp/U51nWBwvyQ50jJcjl4r4W3KgKg d3XRnoBRD19onJCUXPtFGvkxLxC8TfIo66FmJkvdJ66J4Jl45EZZrbug3zm+uieT yfDLJ8MfbhfDFy/bw27lz1aCZxE2o9o/PMr50lW3V91YEIyL1/iPD2U/EvqnphRo 6NOiHZi/BeGlr5os/0mGyFV7oHprTunJiGRlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmMEiB8DXxB3fyMMI+cNxYMYi+/swHwYDVR0jBBgwFoAUmCTFVSKLKLaY3ed7 wa3Q4oB7hrkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNjUv bUNURlZTS0xLTGFZM2VkN3dhM1E0b0I3aHJrLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9tQ1RGVlNLTEtMYVkzZWQ3d2EzUTRvQjdocmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC82NS9tTUVpQjhEWHhCM2Z5TU1J LWNOeFlNWWktX3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYH JAR2AIAwDQYJKoZIhvcNAQELBQADggEBAABB6Bsf530l1rsDPYz395kX6Lp84xsS FnT4vDjHXzMES9HAPehW8O5SGaKE/zrcfFZ16iyTqmiBdemWM6a2N1RhbL/g4fY3 rm7k/x5blZ3OA1Y9AYX8LZOLLtgmE/T+GwOHMNQ6yCoMN0wixVjuQWo8ReRjqvLq 4vrvVptwrprew2tYiCucgvY0rTBmo6ibvKx3YQwt9LKEzzUAk8lCNHdxcgj0zW/0 FX0ZcHARdoQlTkS9Icmtkix1ubnTW3MlJSds5fQelHCMMHe59bVbgeD0b4zqPgGv /2J4tdi/aS0PoTXf8DxKTIxX0GROZHNTWU6W4D9KXE0mxa1xJaRz+Ys= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:56 2025 by rpki-client