$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2716/Vw3xwGbN1vjRpnuH9-THCkNbrgk.roa File: Vw3xwGbN1vjRpnuH9-THCkNbrgk.roa (raw, json) Hash identifier: LZLbkhUXqBVx4BPmezE7BIZ4Q6mp0QqWe7kTEt/+UrE= Subject key identifier: 57:0D:F1:C0:66:CD:D6:F8:D1:A6:7B:87:F7:E4:C7:0A:43:5B:AE:09 Certificate issuer: /CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Certificate serial: 0456 Authority key identifier: 39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Vw3xwGbN1vjRpnuH9-THCkNbrgk.roa Signing time: Mon 27 Oct 2025 12:18:26 +0000 ROA not before: Mon 27 Oct 2025 12:18:26 +0000 ROA not after: Fri 23 Oct 2026 03:01:03 +0000 asID: 138195 IP address blocks: 103.216.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 23:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39EE852FE138CDEDC5B42D11A34295D109AD4925 Validity Not Before: Oct 27 12:18:26 2025 GMT Not After : Oct 23 03:01:03 2026 GMT Subject: CN=570DF1C066CDD6F8D1A67B87F7E4C70A435BAE09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8f:21:4a:ab:b3:ea:1f:d1:97:b2:93:48:f6: c2:61:ef:94:d5:bb:42:50:10:50:b7:58:d3:01:43: 72:76:fe:0b:5b:82:ca:2a:52:ce:d1:8a:a7:69:9d: 7f:ab:d2:89:a3:9e:a7:c3:ae:03:e7:00:cd:2d:64: 65:bf:dd:71:fe:0c:95:00:3b:19:68:45:b7:88:61: f2:da:4a:6d:42:7f:b6:78:56:d9:76:e8:42:41:19: 29:d3:4f:5e:52:a3:c4:4e:bd:7b:a3:ef:73:2c:99: 1e:58:98:2f:36:98:e8:13:bc:26:61:d7:63:46:a2: 55:f9:f4:d4:56:f1:74:e9:f3:7c:9a:86:be:bc:0e: 07:33:52:ba:d5:de:19:a4:c0:c3:26:98:0b:3e:f6: c5:0b:5d:72:1e:5d:3c:72:7a:af:41:cd:b0:0a:48: 26:64:e9:e0:36:d3:3e:43:f8:c3:9c:7f:5f:72:3c: 04:0c:2d:9a:80:69:42:94:a5:39:25:01:ff:04:61: 1c:f3:ca:94:f6:b0:21:97:f2:44:12:db:81:af:d8: f2:c6:7a:b7:cf:7a:ed:c2:11:2e:36:35:c2:69:3b: b4:87:da:91:ab:77:6e:51:3e:9c:3c:be:67:41:e0: 50:4c:d4:e2:d3:d6:85:4e:16:77:23:cd:2d:79:5f: 06:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:0D:F1:C0:66:CD:D6:F8:D1:A6:7B:87:F7:E4:C7:0A:43:5B:AE:09 X509v3 Authority Key Identifier: keyid:39:EE:85:2F:E1:38:CD:ED:C5:B4:2D:11:A3:42:95:D1:09:AD:49:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Oe6FL-E4ze3FtC0Ro0KV0QmtSSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2716/Vw3xwGbN1vjRpnuH9-THCkNbrgk.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.216.231.0/24 Signature Algorithm: sha256WithRSAEncryption a2:2c:45:e7:59:a9:a5:eb:1b:13:55:a9:62:d4:d9:d2:58:a0: d1:a9:de:55:b6:47:ab:fe:fa:0d:a4:fb:e3:ed:e5:67:6c:7e: f5:46:4a:fa:00:45:44:3a:d2:4d:24:43:a9:c3:58:31:a7:93: 91:cc:d7:05:2a:d8:d3:63:e7:9a:69:2d:bb:19:db:f5:5b:73: 3f:dc:92:6f:c1:eb:10:15:72:ac:40:94:d3:23:0c:21:a6:a0: 5e:7c:52:72:c1:88:01:4c:63:84:95:b2:ef:3a:d7:3a:d4:fa: 8c:90:9b:30:17:cd:82:be:9e:10:b6:07:1e:fe:b7:68:51:4e: 4e:ef:ec:89:f7:62:a2:fe:a1:2f:db:0c:2e:3b:d8:51:36:34: 69:ae:e6:7b:b0:06:f3:53:09:0b:75:bc:6e:db:79:e9:e7:42: 53:4e:17:56:75:09:36:d3:1b:61:29:15:a8:6e:ac:20:91:38: 0c:c3:ec:4b:14:ed:eb:4d:80:e5:71:f8:bf:9a:80:6a:eb:fe: 7e:9a:19:1a:63:61:4d:49:28:df:6e:08:d7:6f:79:d4:9a:a7: 96:84:72:82:a3:3e:dd:4a:9b:74:e8:f9:da:e3:9e:60:60:a3: 5c:52:a3:41:99:93:77:18:24:dc:63:9e:18:df:77:e4:8c:97: 4d:86:59:d7 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzlF RTg1MkZFMTM4Q0RFREM1QjQyRDExQTM0Mjk1RDEwOUFENDkyNTAeFw0yNTEwMjcx MjE4MjZaFw0yNjEwMjMwMzAxMDNaMDMxMTAvBgNVBAMTKDU3MERGMUMwNjZDREQ2 RjhEMUE2N0I4N0Y3RTRDNzBBNDM1QkFFMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9jyFKq7PqH9GXspNI9sJh75TVu0JQEFC3WNMBQ3J2/gtbgsoq Us7RiqdpnX+r0omjnqfDrgPnAM0tZGW/3XH+DJUAOxloRbeIYfLaSm1Cf7Z4Vtl2 6EJBGSnTT15So8ROvXuj73MsmR5YmC82mOgTvCZh12NGolX59NRW8XTp83yahr68 DgczUrrV3hmkwMMmmAs+9sULXXIeXTxyeq9BzbAKSCZk6eA20z5D+MOcf19yPAQM LZqAaUKUpTklAf8EYRzzypT2sCGX8kQS24Gv2PLGerfPeu3CES42NcJpO7SH2pGr d25RPpw8vmdB4FBM1OLT1oVOFncjzS15XwbbAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUVw3xwGbN1vjRpnuH9+THCkNbrgkwHwYDVR0jBBgwFoAUOe6FL+E4ze3FtC0R o0KV0QmtSSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjcx Ni9PZTZGTC1FNHplM0Z0QzBSbzBLVjBRbXRTU1UuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09lNkZMLUU0emUzRnRDMFJvMEtWMFFtdFNTVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3MTYvVnczeHdHYk4xdmpS cG51SDktVEhDa05icmdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfY5zANBgkqhkiG9w0BAQsFAAOCAQEAoixF51mppesbE1WpYtTZ0lig0ane VbZHq/76DaT74+3lZ2x+9UZK+gBFRDrSTSRDqcNYMaeTkczXBSrY02Pnmmktuxnb 9VtzP9ySb8HrEBVyrECU0yMMIaagXnxScsGIAUxjhJWy7zrXOtT6jJCbMBfNgr6e ELYHHv63aFFOTu/sifdiov6hL9sMLjvYUTY0aa7me7AG81MJC3W8btt56edCU04X VnUJNtMbYSkVqG6sIJE4DMPsSxTt602A5XH4v5qAauv+fpoZGmNhTUko324I1295 1JqnloRygqM+3UqbdOj52uOeYGCjXFKjQZmTdxgk3GOeGN935IyXTYZZ1w== -----END CERTIFICATE-----Generated at Tue Nov 4 21:45:43 2025 by rpki-client