$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/137/sV_AAIAwAhYk14W3TQoWU0zjoRc.roa File: sV_AAIAwAhYk14W3TQoWU0zjoRc.roa (raw, json) Hash identifier: mNQa0Qkk+V2b2ChQfyzPFSWOCOpric0Xhzo7Dd1gO+E= Subject key identifier: B1:5F:C0:00:80:30:02:16:24:D7:85:B7:4D:0A:16:53:4C:E3:A1:17 Certificate issuer: /CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Certificate serial: 7F80 Authority key identifier: BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/sV_AAIAwAhYk14W3TQoWU0zjoRc.roa Signing time: Wed 06 Aug 2025 07:33:11 +0000 ROA not before: Wed 06 Aug 2025 07:33:11 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 24426 IP address blocks: 103.236.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 14:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32640 (0x7f80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BDEBED8640CBA6593DA9F9A3DD228D38912458EA Validity Not Before: Aug 6 07:33:11 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=B15FC0008030021624D785B74D0A16534CE3A117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:65:d4:50:b3:fd:5d:db:be:4d:d8:88:dd:27: 28:b5:fd:dc:81:01:14:cb:67:a7:e5:4c:d8:9c:c6: 13:d7:8b:1d:97:1d:8d:a9:9d:3c:cc:cd:aa:dd:cd: 6c:64:75:5e:1c:0b:64:17:ae:c9:fd:63:5f:2f:d0: 5a:6e:f7:23:f6:3a:4d:02:99:12:2d:18:22:82:86: 1e:3a:8b:75:6a:74:07:ee:00:15:ef:33:b7:ae:03: 8a:70:be:62:15:61:42:7a:5a:96:77:76:67:29:66: e7:b3:97:1a:2c:ec:7a:f3:c4:1c:d8:47:20:cf:3d: 8a:65:7c:a0:6b:f2:f7:f3:d8:76:71:a5:24:6f:b4: 8c:a3:ff:58:a0:aa:72:c9:3c:15:d2:37:e9:5b:de: 23:40:88:1c:59:8d:d4:34:fb:11:25:cd:04:3e:75: f1:03:13:ca:d7:33:7a:22:bf:85:71:e5:5c:ed:e1: cc:b6:2c:b2:c4:88:58:73:3b:6d:29:09:e1:6a:b7: 66:26:1c:fa:0b:a3:8f:81:7b:3e:82:6d:ea:65:01: a7:57:25:ed:20:7f:7a:8b:9c:b0:f2:89:ff:41:85: 21:a8:53:3f:df:c9:26:f7:a8:d2:e5:08:b1:dc:24: 5f:10:f4:18:19:4f:0a:b1:91:03:d4:f1:67:98:bc: b1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5F:C0:00:80:30:02:16:24:D7:85:B7:4D:0A:16:53:4C:E3:A1:17 X509v3 Authority Key Identifier: keyid:BD:EB:ED:86:40:CB:A6:59:3D:A9:F9:A3:DD:22:8D:38:91:24:58:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/vevthkDLplk9qfmj3SKNOJEkWOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/vevthkDLplk9qfmj3SKNOJEkWOo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/137/sV_AAIAwAhYk14W3TQoWU0zjoRc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.236.28.0/22 Signature Algorithm: sha256WithRSAEncryption 12:ec:24:39:c9:61:e2:eb:1c:68:e1:46:54:db:ec:5a:76:de: 22:c7:c8:c7:02:3e:6f:60:04:d7:2f:1e:7f:47:23:3a:bd:9e: 08:52:fe:fb:18:d6:07:ff:ea:7e:c3:09:80:d5:15:03:5c:0a: 15:f7:24:5c:dc:f8:f2:68:e1:ac:18:bd:c8:4e:5c:b0:5c:30: 31:7f:f8:05:a4:0f:0a:55:a3:56:40:11:a7:ea:9e:6e:ce:30: 93:b1:59:ad:2d:7e:db:4c:c0:9d:c8:53:b6:b4:db:2c:14:1f: 53:5c:27:f8:61:33:06:c5:d5:5e:e3:a0:c4:81:69:dc:7f:9d: 57:65:ba:d3:4d:5c:32:3a:04:3e:ff:8d:11:95:ce:95:51:cd: 60:61:df:61:d3:13:39:35:55:81:e8:5b:56:7e:30:d1:17:95: 16:c9:eb:d5:09:90:22:3a:f5:d4:40:ae:d7:a8:93:6a:93:36: a4:6c:71:a1:7b:c7:58:17:74:27:c3:9d:6f:02:96:bf:5f:db: 4d:cd:5a:e3:ff:8e:4d:f9:54:d6:e4:03:6c:23:14:f0:80:c0: fe:5c:1a:f3:ae:72:67:6b:a9:ef:d3:11:7e:42:70:5d:45:7c: bc:b9:08:e3:c9:af:aa:b0:f9:90:2d:63:59:ee:ae:9e:4c:7a: 8a:6f:1f:ad -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICf4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkRF QkVEODY0MENCQTY1OTNEQTlGOUEzREQyMjhEMzg5MTI0NThFQTAeFw0yNTA4MDYw NzMzMTFaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEIxNUZDMDAwODAzMDAy MTYyNEQ3ODVCNzREMEExNjUzNENFM0ExMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrZdRQs/1d275N2IjdJyi1/dyBARTLZ6flTNicxhPXix2XHY2p nTzMzardzWxkdV4cC2QXrsn9Y18v0Fpu9yP2Ok0CmRItGCKChh46i3VqdAfuABXv M7euA4pwvmIVYUJ6WpZ3dmcpZuezlxos7HrzxBzYRyDPPYplfKBr8vfz2HZxpSRv tIyj/1igqnLJPBXSN+lb3iNAiBxZjdQ0+xElzQQ+dfEDE8rXM3oiv4Vx5Vzt4cy2 LLLEiFhzO20pCeFqt2YmHPoLo4+Bez6CbeplAadXJe0gf3qLnLDyif9BhSGoUz/f ySb3qNLlCLHcJF8Q9BgZTwqxkQPU8WeYvLHDAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUsV/AAIAwAhYk14W3TQoWU0zjoRcwHwYDVR0jBBgwFoAUvevthkDLplk9qfmj 3SKNOJEkWOowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3 L3ZldnRoa0RMcGxrOXFmbWozU0tOT0pFa1dPby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvdmV2dGhrRExwbGs5cWZtajNTS05PSkVrV09vLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTM3L3NWX0FBSUF3QWhZazE0 VzNUUW9XVTB6am9SYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn7BwwDQYJKoZIhvcNAQELBQADggEBABLsJDnJYeLrHGjhRlTb7Fp23iLHyMcC Pm9gBNcvHn9HIzq9nghS/vsY1gf/6n7DCYDVFQNcChX3JFzc+PJo4awYvchOXLBc MDF/+AWkDwpVo1ZAEafqnm7OMJOxWa0tfttMwJ3IU7a02ywUH1NcJ/hhMwbF1V7j oMSBadx/nVdlutNNXDI6BD7/jRGVzpVRzWBh32HTEzk1VYHoW1Z+MNEXlRbJ69UJ kCI69dRArteok2qTNqRscaF7x1gXdCfDnW8Clr9f203NWuP/jk35VNbkA2wjFPCA wP5cGvOucmdrqe/TEX5CcF1FfLy5COPJr6qw+ZAtY1nurp5MeopvH60= -----END CERTIFICATE-----Generated at Thu Aug 14 11:09:23 2025 by rpki-client