$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/fXvxjkxv2gWy_3cun_FTjfx5SQA.roa File: fXvxjkxv2gWy_3cun_FTjfx5SQA.roa (raw, json) Hash identifier: 0Pu3ybTislFO6gg9e4amXypT9qUdLSSk1iKedwaARe4= Subject key identifier: 7D:7B:F1:8E:4C:6F:DA:05:B2:FF:77:2E:9F:F1:53:8D:FC:79:49:00 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 7F99 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fXvxjkxv2gWy_3cun_FTjfx5SQA.roa Signing time: Wed 06 Aug 2025 07:33:17 +0000 ROA not before: Wed 06 Aug 2025 07:33:17 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 103.35.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 14:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32665 (0x7f99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Aug 6 07:33:17 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=7D7BF18E4C6FDA05B2FF772E9FF1538DFC794900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:d5:f6:c0:e1:ab:e9:cb:3d:b2:bc:69:b7: e1:6a:c9:40:a0:98:3a:0a:ab:55:d3:98:0b:91:c7: 44:69:65:57:28:64:47:26:a4:05:50:86:37:ea:bb: fd:8e:2e:59:51:10:9a:89:db:08:3a:ad:99:55:8f: 8f:4c:47:a6:dc:03:b7:d5:aa:65:99:7d:7d:10:c9: 71:b8:14:d0:c5:09:8d:b3:7a:e1:8e:e3:37:81:43: 44:52:bd:47:2e:53:22:4b:44:8a:90:49:8d:52:cf: 54:3c:08:d7:59:4d:2c:7e:ba:fd:01:0a:f0:7a:ae: 4f:ae:1e:f6:f9:a5:fd:bb:18:d3:6d:f9:e4:70:09: 55:90:1f:f7:84:fe:0d:c7:2f:69:6f:61:e8:2d:6b: c7:ab:cb:b4:6e:34:a7:62:84:68:4f:2e:97:86:f6: 4b:ec:d1:45:e1:dc:96:72:cd:24:c9:4c:74:c1:39: d5:e9:3b:ad:b4:29:28:1a:12:d0:e7:df:ee:64:6e: c4:44:13:74:46:b0:48:a9:cf:c1:24:85:2e:51:30: 5f:8e:a2:51:80:29:e7:92:95:8c:7d:19:0f:39:15: 18:c1:11:ce:7c:04:40:1c:71:bb:64:91:01:12:a1: 03:d4:06:bf:2c:a8:b6:3d:e5:8e:2b:ca:be:14:b1: f3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7B:F1:8E:4C:6F:DA:05:B2:FF:77:2E:9F:F1:53:8D:FC:79:49:00 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/fXvxjkxv2gWy_3cun_FTjfx5SQA.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.35.48.0/22 Signature Algorithm: sha256WithRSAEncryption a1:0a:1f:dc:e8:ea:34:48:5e:cf:ac:54:ac:46:79:7e:f7:6d: 1a:35:ae:1d:63:67:00:40:0a:00:90:4d:53:73:5f:0d:23:39: 5a:30:07:e7:27:85:aa:b9:f7:99:be:75:d5:d8:9b:3d:45:dc: e9:94:6e:03:7a:78:e8:89:6e:30:3b:a4:bc:96:1a:72:5e:94: fc:77:7e:32:a1:71:e4:3c:b0:80:7d:ef:ba:40:79:6e:b7:7f: 78:2d:73:da:b3:f5:37:44:4e:53:dd:ea:f0:34:d2:71:c0:5d: 62:b5:9a:6b:e3:e2:1a:77:de:2d:40:20:89:13:97:b3:db:f7: 4a:d4:79:e3:32:23:29:fd:32:84:9e:a0:14:37:ea:e0:1e:f8: c0:78:ab:f6:dd:9c:f1:10:11:b1:ae:30:ee:22:7c:f8:75:b2: 35:82:cc:91:83:6c:45:a5:71:53:1c:94:4f:37:a2:21:89:d3: be:af:cb:17:94:fd:28:e6:73:0a:d8:02:95:ba:d2:5a:a3:e3: ad:08:2d:ae:e8:db:07:40:e5:98:e2:e8:b8:69:b2:49:9f:e5: d2:b4:06:5e:69:41:38:cb:6d:21:eb:85:7e:21:86:03:fb:e2: 2e:64:09:e3:f5:11:99:d4:b7:93:61:a8:cd:e9:8b:e0:3a:42: ed:56:eb:b8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICf5kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA4MDYw NzMzMTdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDdEN0JGMThFNEM2RkRB MDVCMkZGNzcyRTlGRjE1MzhERkM3OTQ5MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4Q9X2wOGr6cs9srxpt+FqyUCgmDoKq1XTmAuRx0RpZVcoZEcm pAVQhjfqu/2OLllREJqJ2wg6rZlVj49MR6bcA7fVqmWZfX0QyXG4FNDFCY2zeuGO 4zeBQ0RSvUcuUyJLRIqQSY1Sz1Q8CNdZTSx+uv0BCvB6rk+uHvb5pf27GNNt+eRw CVWQH/eE/g3HL2lvYegta8ery7RuNKdihGhPLpeG9kvs0UXh3JZyzSTJTHTBOdXp O620KSgaEtDn3+5kbsREE3RGsEipz8EkhS5RMF+OolGAKeeSlYx9GQ85FRjBEc58 BEAccbtkkQESoQPUBr8sqLY95Y4ryr4UsfPFAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUfXvxjkxv2gWy/3cun/FTjfx5SQAwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L2ZYdnhqa3h2MmdXeV8z Y3VuX0ZUamZ4NVNRQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnIzAwDQYJKoZIhvcNAQELBQADggEBAKEKH9zo6jRIXs+sVKxGeX73bRo1rh1j ZwBACgCQTVNzXw0jOVowB+cnhaq595m+ddXYmz1F3OmUbgN6eOiJbjA7pLyWGnJe lPx3fjKhceQ8sIB977pAeW63f3gtc9qz9TdETlPd6vA00nHAXWK1mmvj4hp33i1A IIkTl7Pb90rUeeMyIyn9MoSeoBQ36uAe+MB4q/bdnPEQEbGuMO4ifPh1sjWCzJGD bEWlcVMclE83oiGJ076vyxeU/SjmcwrYApW60lqj460ILa7o2wdA5Zji6Lhpskmf 5dK0Bl5pQTjLbSHrhX4hhgP74i5kCeP1EZnUt5NhqM3pi+A6Qu1W67g= -----END CERTIFICATE-----Generated at Thu Aug 14 11:12:11 2025 by rpki-client