$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1228/PrzOu3HLgb_fDfFfMV2C3u7dgAY.roa File: PrzOu3HLgb_fDfFfMV2C3u7dgAY.roa (raw, json) Hash identifier: nQaZQEHGizfw2JArT6RRleWiUXqFqGuwPW1JdBlvgps= Subject key identifier: 3E:BC:CE:BB:71:CB:81:BF:DF:0D:F1:5F:31:5D:82:DE:EE:DD:80:06 Certificate issuer: /CN=ADD2726DD6FF9F5A459AE5B0A9EE8E7DDFC7F07C Certificate serial: 0176 Authority key identifier: AD:D2:72:6D:D6:FF:9F:5A:45:9A:E5:B0:A9:EE:8E:7D:DF:C7:F0:7C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/PrzOu3HLgb_fDfFfMV2C3u7dgAY.roa Signing time: Tue 22 Jul 2025 09:06:20 +0000 ROA not before: Tue 22 Jul 2025 09:06:20 +0000 ROA not after: Sat 16 May 2026 10:06:17 +0000 asID: 62468 IP address blocks: 103.19.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 10:02:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADD2726DD6FF9F5A459AE5B0A9EE8E7DDFC7F07C Validity Not Before: Jul 22 09:06:20 2025 GMT Not After : May 16 10:06:17 2026 GMT Subject: CN=3EBCCEBB71CB81BFDF0DF15F315D82DEEEDD8006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:d0:54:61:f7:85:74:5a:05:1d:28:85:41: f9:ca:93:d1:35:5f:01:41:90:c0:1c:d6:95:aa:78: 0f:7e:e2:e7:2d:f3:d3:cd:9e:f8:51:a8:68:47:f9: 52:6d:68:90:9b:89:00:80:04:97:32:7c:62:88:f6: da:18:9d:d2:75:da:41:09:92:87:ee:9d:d0:59:b7: 42:e7:de:1d:41:ce:52:24:dd:88:36:ae:20:c6:45: 37:61:c9:06:15:21:81:72:1d:de:e2:9d:e9:c3:3d: ca:79:dd:37:ce:78:8c:39:03:0d:51:16:dc:04:a4: ab:44:4c:5d:48:df:34:5f:62:bd:b7:3a:88:7f:45: b9:e0:33:2d:ab:ca:21:5e:b3:6a:6b:e8:5f:65:44: 3e:3b:a7:2c:29:d6:58:fa:98:a9:3c:68:16:ab:f0: 50:d3:74:d8:a5:4a:85:3d:72:9d:80:58:90:76:f2: 71:bf:2d:ef:96:a0:42:4f:92:52:c6:1e:c6:75:d3: 1a:b6:8c:5c:71:e4:5a:a1:af:1a:68:5b:96:ce:da: 6c:39:dd:eb:9d:1a:a7:ae:b3:d4:84:d5:8d:1f:b5: 4b:b1:34:a2:9f:df:ed:46:a8:53:94:1b:68:a3:12: db:a9:43:81:0a:30:da:e8:ef:c2:cc:b0:0b:2a:c8: 49:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:BC:CE:BB:71:CB:81:BF:DF:0D:F1:5F:31:5D:82:DE:EE:DD:80:06 X509v3 Authority Key Identifier: keyid:AD:D2:72:6D:D6:FF:9F:5A:45:9A:E5:B0:A9:EE:8E:7D:DF:C7:F0:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/rdJybdb_n1pFmuWwqe6Ofd_H8Hw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1228/PrzOu3HLgb_fDfFfMV2C3u7dgAY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.19.232.0/22 Signature Algorithm: sha256WithRSAEncryption a2:30:f7:cb:b0:34:2e:e3:58:8e:62:3b:da:e7:29:7c:3a:6f: 37:83:bc:af:ab:a9:c5:87:c0:96:f7:44:13:0a:1f:50:72:c6: a4:bb:54:b5:ae:1a:34:89:a9:22:ee:78:d7:88:9c:1b:64:d8: cb:e4:dc:6f:48:c8:04:cf:9f:da:c0:8c:52:89:b2:13:68:e8: ab:db:8c:e4:31:95:1c:df:aa:d6:c4:84:82:b6:da:7a:06:c1: ec:ce:83:6b:e3:80:27:4c:85:74:09:f7:2e:18:05:4b:45:5f: 24:6e:4a:9b:7f:1c:ec:66:69:7b:f3:e2:62:34:a9:76:53:39: e3:d0:dd:5a:bb:ea:8d:87:b7:2b:99:fd:e5:a7:26:5d:29:3f: 02:9b:60:f0:ed:a1:b1:7c:12:64:59:10:7e:1a:af:fc:03:bb: 60:5d:9a:d0:d9:b1:cb:05:e2:34:66:88:af:01:c1:f3:9b:bb: fc:14:35:ae:a4:be:68:ed:67:95:95:9d:b7:2e:7e:0f:34:88: c4:ff:46:07:c3:33:d1:00:04:dc:b7:06:27:ce:a7:35:57:8e: 20:20:58:33:be:d7:7a:c8:0f:b3:a5:7a:c7:86:20:4f:bd:e3: c5:a5:e8:46:af:03:d6:90:ce:15:51:7d:26:96:ec:8b:96:25: 43:41:87:8a -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURE MjcyNkRENkZGOUY1QTQ1OUFFNUIwQTlFRThFN0RERkM3RjA3QzAeFw0yNTA3MjIw OTA2MjBaFw0yNjA1MTYxMDA2MTdaMDMxMTAvBgNVBAMTKDNFQkNDRUJCNzFDQjgx QkZERjBERjE1RjMxNUQ4MkRFRUVERDgwMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+f9BUYfeFdFoFHSiFQfnKk9E1XwFBkMAc1pWqeA9+4uct89PN nvhRqGhH+VJtaJCbiQCABJcyfGKI9toYndJ12kEJkofundBZt0Ln3h1BzlIk3Yg2 riDGRTdhyQYVIYFyHd7inenDPcp53TfOeIw5Aw1RFtwEpKtETF1I3zRfYr23Ooh/ RbngMy2ryiFes2pr6F9lRD47pywp1lj6mKk8aBar8FDTdNilSoU9cp2AWJB28nG/ Le+WoEJPklLGHsZ10xq2jFxx5FqhrxpoW5bO2mw53eudGqeus9SE1Y0ftUuxNKKf 3+1GqFOUG2ijEtupQ4EKMNro78LMsAsqyEl1AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUPrzOu3HLgb/fDfFfMV2C3u7dgAYwHwYDVR0jBBgwFoAUrdJybdb/n1pFmuWw qe6Ofd/H8HwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTIy OC9yZEp5YmRiX24xcEZtdVd3cWU2T2ZkX0g4SHcuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3JkSnliZGJfbjFwRm11V3dxZTZPZmRfSDhIdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzEyMjgvUHJ6T3UzSExnYl9m RGZGZk1WMkMzdTdkZ0FZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcT6DANBgkqhkiG9w0BAQsFAAOCAQEAojD3y7A0LuNYjmI72ucpfDpvN4O8 r6upxYfAlvdEEwofUHLGpLtUta4aNImpIu5414icG2TYy+Tcb0jIBM+f2sCMUomy E2joq9uM5DGVHN+q1sSEgrbaegbB7M6Da+OAJ0yFdAn3LhgFS0VfJG5Km38c7GZp e/PiYjSpdlM549DdWrvqjYe3K5n95acmXSk/Aptg8O2hsXwSZFkQfhqv/AO7YF2a 0NmxywXiNGaIrwHB85u7/BQ1rqS+aO1nlZWdty5+DzSIxP9GB8Mz0QAE3LcGJ86n NVeOICBYM77XesgPs6V6x4YgT73jxaXoRq8D1pDOFVF9Jpbsi5YlQ0GHig== -----END CERTIFICATE-----Generated at Mon Aug 11 07:39:51 2025 by rpki-client