$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/MRmJHXHbniE2rjTMj7-XBPn2PFE.roa File: MRmJHXHbniE2rjTMj7-XBPn2PFE.roa (raw, json) Hash identifier: AZznRSYPnsoxRC7iuvzdOmezQdGSxGrbcrS0Svin9+Q= Subject key identifier: 31:19:89:1D:71:DB:9E:21:36:AE:34:CC:8F:BF:97:04:F9:F6:3C:51 Certificate issuer: /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Certificate serial: 106A Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/MRmJHXHbniE2rjTMj7-XBPn2PFE.roa Signing time: Tue 05 Aug 2025 13:49:08 +0000 ROA not before: Tue 05 Aug 2025 13:49:08 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 18186 IP address blocks: 103.116.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Validity Not Before: Aug 5 13:49:08 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=3119891D71DB9E2136AE34CC8FBF9704F9F63C51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:32:f7:dc:85:b5:75:c1:0a:b0:4f:22:f9: 69:27:62:1e:01:08:1d:e9:b6:60:b0:48:e0:e5:f1: 54:84:98:05:c2:a3:f3:29:6e:7f:54:d1:56:cf:48: 78:4a:71:db:d9:7f:07:10:96:3d:f8:13:24:e8:77: 81:96:57:43:d7:52:25:52:34:8c:10:dc:cd:2f:0e: 27:cf:d3:5f:eb:f9:eb:31:69:c4:45:8f:8c:6f:26: da:c4:c7:19:4e:d5:97:7d:3e:30:ae:e4:a9:eb:21: 19:a7:4e:15:b3:aa:66:54:c7:61:37:19:44:d2:a6: b3:39:01:93:3d:52:11:fa:97:67:07:8c:4f:56:51: e9:a5:d4:db:db:5c:26:5e:5e:83:19:4e:1a:fe:42: 13:26:85:67:22:a1:e7:b9:98:f6:ac:87:63:b0:00: e8:da:12:b9:25:9a:0d:df:9d:62:d3:23:49:ce:55: a4:b6:c8:dd:65:fa:38:4e:f7:ff:8f:8a:c0:46:dc: 7a:b7:bf:3f:7a:41:d9:a0:10:59:fa:d3:e9:d1:ef: 2c:51:3e:a8:58:46:73:10:18:16:d5:f9:21:d6:4c: bf:27:ef:16:00:91:a6:75:c0:64:47:45:9a:8d:88: 00:ce:ab:79:ec:eb:43:a8:89:7b:c7:e1:e8:a5:61: bd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:19:89:1D:71:DB:9E:21:36:AE:34:CC:8F:BF:97:04:F9:F6:3C:51 X509v3 Authority Key Identifier: keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/MRmJHXHbniE2rjTMj7-XBPn2PFE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.150.0/24 Signature Algorithm: sha256WithRSAEncryption 62:9e:e7:0e:5b:3f:ff:b0:92:c3:cf:f1:db:6f:42:e0:39:f9: 7c:df:ff:63:47:d2:6b:1b:9d:d3:13:eb:e4:a7:ea:fd:14:e1: 31:19:f7:e7:01:b7:26:ba:2c:80:83:c6:d7:63:62:8b:1c:a9: da:39:df:23:02:df:3b:97:f2:6b:f4:ab:cc:ba:64:16:30:13: 4e:a2:01:d3:4c:c1:b9:48:6c:e0:a5:7d:eb:7b:5c:0b:4a:2a: 94:4a:47:9a:e3:3f:79:4f:33:ab:2e:5f:84:4d:bc:42:d9:67: 8b:aa:18:68:e7:d0:13:56:38:08:a2:a6:3f:c9:f0:ef:6a:2c: e8:90:83:31:fe:fb:5c:20:2a:11:2c:59:b7:d6:ee:d1:7d:e3: c4:e2:94:42:07:1e:a0:af:5b:2d:29:26:74:4f:1b:e3:5f:a7: fe:ea:1b:78:34:53:40:de:d8:fb:5b:4d:1a:38:e9:42:4a:1c: 93:10:a7:f3:12:09:3d:36:41:43:1d:c4:98:a4:67:c3:f9:e3: 5c:1d:de:ac:a6:31:b3:ae:ea:f5:a0:32:31:b5:fd:a9:a6:5d: da:ed:20:4b:4e:95:b3:8c:4c:63:9f:67:e2:7e:f9:86:87:5d: 33:d4:7f:dc:3e:af:b5:a6:0d:d3:79:99:6f:5d:61:14:c7:22: cd:bc:a0:27 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkFE NkI0M0MwOUQwNDkwQTBERjdGODkxREY5RjYzQjUyMENGMjEwRjAeFw0yNTA4MDUx MzQ5MDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDMxMTk4OTFENzFEQjlF MjEzNkFFMzRDQzhGQkY5NzA0RjlGNjNDNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFIDL33IW1dcEKsE8i+WknYh4BCB3ptmCwSODl8VSEmAXCo/Mp bn9U0VbPSHhKcdvZfwcQlj34EyTod4GWV0PXUiVSNIwQ3M0vDifP01/r+esxacRF j4xvJtrExxlO1Zd9PjCu5KnrIRmnThWzqmZUx2E3GUTSprM5AZM9UhH6l2cHjE9W Ueml1NvbXCZeXoMZThr+QhMmhWcioee5mPash2OwAOjaErklmg3fnWLTI0nOVaS2 yN1l+jhO9/+PisBG3Hq3vz96QdmgEFn60+nR7yxRPqhYRnMQGBbV+SHWTL8n7xYA kaZ1wGRHRZqNiADOq3ns60OoiXvH4eilYb2nAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUMRmJHXHbniE2rjTMj7+XBPn2PFEwHwYDVR0jBBgwFoAU+ta0PAnQSQoN9/iR 359jtSDPIQ8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 MS8tdGEwUEFuUVNRb045X2lSMzU5anRTRFBJUTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy10YTBQQW5RU1FvTjlfaVIzNTlqdFNEUElROC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDEvTVJtSkhYSGJuaUUy cmpUTWo3LVhCUG4yUEZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGd0ljANBgkqhkiG9w0BAQsFAAOCAQEAYp7nDls//7CSw8/x229C4Dn5fN// Y0fSaxud0xPr5Kfq/RThMRn35wG3JrosgIPG12Niixyp2jnfIwLfO5fya/SrzLpk FjATTqIB00zBuUhs4KV963tcC0oqlEpHmuM/eU8zqy5fhE28Qtlni6oYaOfQE1Y4 CKKmP8nw72os6JCDMf77XCAqESxZt9bu0X3jxOKUQgceoK9bLSkmdE8b41+n/uob eDRTQN7Y+1tNGjjpQkockxCn8xIJPTZBQx3EmKRnw/njXB3erKYxs67q9aAyMbX9 qaZd2u0gS06Vs4xMY59n4n75hoddM9R/3D6vtaYN03mZb11hFMcizbygJw== -----END CERTIFICATE-----Generated at Mon Aug 11 10:43:42 2025 by rpki-client