$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/1663/TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa File: TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa (raw, json) Hash identifier: BweYJDm2QhqDgPj1ChzAIBwgj2kCBYjRI7BD0uiJCsI= Subject key identifier: 4F:36:5B:52:83:46:2C:E9:81:EA:69:C9:89:A3:40:1D:1D:A8:13:D7 Certificate issuer: /CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Certificate serial: 5D05 Authority key identifier: 8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa Signing time: Sat 13 Sep 2025 03:06:31 +0000 ROA not before: Sat 13 Sep 2025 03:06:31 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 134762 IP address blocks: 103.45.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 04:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23813 (0x5d05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AE4CF78B49DF0B2C1D29D32E48A943AE4F41ACC Validity Not Before: Sep 13 03:06:31 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4F365B5283462CE981EA69C989A3401D1DA813D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:33:91:f6:1e:e4:43:02:4b:6f:af:41:ed:65: cf:81:37:40:7c:18:7d:87:c6:90:b8:c0:1e:8c:1b: f0:86:b3:6f:1a:07:17:da:b5:50:06:9b:a2:50:dc: af:a3:10:8c:9e:b8:6a:14:93:3c:aa:ab:75:82:a2: 94:8f:44:59:0d:a2:96:87:40:1e:f9:0d:81:0e:db: 05:e8:36:ac:d8:9f:63:48:47:47:8a:5e:d0:57:95: 81:7b:ea:e6:e1:68:8f:16:77:ba:8e:88:0f:4c:81: ce:b6:88:4e:d4:b2:9e:7c:70:a5:3a:82:40:89:38: 3c:74:36:9a:20:c3:4d:53:9b:78:dc:f4:5e:40:de: 6c:71:2d:27:db:bf:36:52:99:fb:66:94:7c:1d:2c: 61:48:a0:71:5e:65:25:3a:c3:5f:27:09:1e:24:71: b4:51:c5:80:c6:0b:1e:5a:8c:9f:d9:a4:25:7c:2b: f4:c1:b2:13:61:57:2e:a4:9e:b2:eb:e4:37:a0:5b: 24:80:ce:90:03:5a:fc:2c:c6:cc:5c:64:58:f4:fa: 8f:41:67:fc:61:5b:86:36:8e:ac:8f:6f:35:ba:59: 44:d3:5a:9a:17:25:e6:da:f6:a0:fd:58:f8:08:e0: ac:32:73:c7:bd:15:28:ce:1d:53:2e:4d:68:d7:30: 89:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:36:5B:52:83:46:2C:E9:81:EA:69:C9:89:A3:40:1D:1D:A8:13:D7 X509v3 Authority Key Identifier: keyid:8A:E4:CF:78:B4:9D:F0:B2:C1:D2:9D:32:E4:8A:94:3A:E4:F4:1A:CC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iuTPeLSd8LLB0p0y5IqUOuT0Gsw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1663/TzZbUoNGLOmB6mnJiaNAHR2oE9c.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.45.248.0/22 Signature Algorithm: sha256WithRSAEncryption 46:75:d8:49:e0:9d:bf:ca:8a:bc:8e:db:9b:a0:5a:70:53:47: e0:8e:af:e6:98:f8:39:47:4b:8d:bc:8f:de:3f:90:b9:e2:71: 6d:93:31:ac:1d:99:54:c2:e2:f7:b2:9e:5d:5a:e9:21:b6:d4: 79:3a:4f:38:cb:09:54:fe:74:d0:19:67:ac:07:26:8b:af:41: f8:fe:93:8f:92:ed:20:a9:eb:42:30:51:cb:ca:95:d6:32:ea: 74:ef:8d:dc:4e:e4:13:fa:ea:ec:ad:06:c9:44:c2:a2:5d:60: 6d:31:e0:e3:83:37:f5:18:bf:ec:dc:e1:17:12:2b:88:8a:67: 24:f1:1e:9a:a5:d1:a5:cc:f2:bf:b0:cb:59:df:2c:a1:26:39: 8a:be:6a:cd:dd:72:10:bf:44:36:02:58:01:64:ae:35:93:70: 86:17:fe:42:34:f9:09:35:d7:3a:d8:da:8c:00:b3:7d:3a:05: 27:33:05:c0:96:3a:04:f7:0e:6b:b6:0c:46:7b:14:1d:27:44: 8a:b6:ff:6f:32:bb:fe:7d:31:a0:02:48:00:29:c4:9b:1f:38: ad:fb:ea:b7:bc:e0:ca:a2:5d:be:c2:ca:f4:29:aa:45:93:01: cc:3e:b9:fe:a5:6b:e3:0f:26:13:b9:55:67:82:64:d6:e2:18: 03:b3:e8:95 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICXQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFF NENGNzhCNDlERjBCMkMxRDI5RDMyRTQ4QTk0M0FFNEY0MUFDQzAeFw0yNTA5MTMw MzA2MzFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDRGMzY1QjUyODM0NjJD RTk4MUVBNjlDOTg5QTM0MDFEMURBODEzRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmM5H2HuRDAktvr0HtZc+BN0B8GH2HxpC4wB6MG/CGs28aBxfa tVAGm6JQ3K+jEIyeuGoUkzyqq3WCopSPRFkNopaHQB75DYEO2wXoNqzYn2NIR0eK XtBXlYF76ubhaI8Wd7qOiA9Mgc62iE7Usp58cKU6gkCJODx0Npogw01Tm3jc9F5A 3mxxLSfbvzZSmftmlHwdLGFIoHFeZSU6w18nCR4kcbRRxYDGCx5ajJ/ZpCV8K/TB shNhVy6knrLr5DegWySAzpADWvwsxsxcZFj0+o9BZ/xhW4Y2jqyPbzW6WUTTWpoX Jeba9qD9WPgI4Kwyc8e9FSjOHVMuTWjXMIkHAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUTzZbUoNGLOmB6mnJiaNAHR2oE9cwHwYDVR0jBBgwFoAUiuTPeLSd8LLB0p0y 5IqUOuT0GswwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMTY2 My9pdVRQZUxTZDhMTEIwcDB5NUlxVU91VDBHc3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2l1VFBlTFNkOExMQjBwMHk1SXFVT3VUMEdzdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzE2NjMvVHpaYlVvTkdMT21C Nm1uSmlhTkFIUjJvRTljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmct+DANBgkqhkiG9w0BAQsFAAOCAQEARnXYSeCdv8qKvI7bm6BacFNH4I6v 5pj4OUdLjbyP3j+QueJxbZMxrB2ZVMLi97KeXVrpIbbUeTpPOMsJVP500BlnrAcm i69B+P6Tj5LtIKnrQjBRy8qV1jLqdO+N3E7kE/rq7K0GyUTCol1gbTHg44M39Ri/ 7NzhFxIriIpnJPEemqXRpczyv7DLWd8soSY5ir5qzd1yEL9ENgJYAWSuNZNwhhf+ QjT5CTXXOtjajACzfToFJzMFwJY6BPcOa7YMRnsUHSdEirb/bzK7/n0xoAJIACnE mx84rfvqt7zgyqJdvsLK9CmqRZMBzD65/qVr4w8mE7lVZ4Jk1uIYA7PolQ== -----END CERTIFICATE-----Generated at Thu Nov 6 00:01:11 2025 by rpki-client