$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2741/llh71OO6sGwAfZdC60WJs1U2NU0.roa File: llh71OO6sGwAfZdC60WJs1U2NU0.roa (raw, json) Hash identifier: 5pHK2BD7cThMf2Gdvo1WL3olc9aZ3jLaBSG3cDaQoIc= Subject key identifier: 96:58:7B:D4:E3:BA:B0:6C:00:7D:97:42:EB:45:89:B3:55:36:35:4D Certificate issuer: /CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Certificate serial: 105C Authority key identifier: FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/llh71OO6sGwAfZdC60WJs1U2NU0.roa Signing time: Mon 04 Aug 2025 13:04:27 +0000 ROA not before: Mon 04 Aug 2025 13:04:27 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 41717 IP address blocks: 103.116.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 12:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4188 (0x105c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAD6B43C09D0490A0DF7F891DF9F63B520CF210F Validity Not Before: Aug 4 13:04:27 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=96587BD4E3BAB06C007D9742EB4589B35536354D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d1:16:f5:f2:af:b7:9d:fd:46:ae:da:ab:e5: 46:0a:03:a7:db:b4:24:cc:69:32:c1:6d:05:3e:c0: 28:63:64:26:7d:32:00:30:79:36:b1:62:98:e3:06: ca:34:f0:92:d2:97:78:f5:ab:15:ee:ac:26:48:e1: fd:df:64:8f:30:aa:83:fe:b6:43:f3:39:74:74:ed: 38:cf:ff:df:d9:21:85:01:7f:49:37:49:b1:51:84: a1:75:e4:93:7c:ad:dc:77:c6:7b:c9:b7:d8:c8:0a: f7:97:84:c0:11:82:73:6c:59:f7:d3:5e:b8:8d:26: f0:bb:26:c0:32:be:39:da:06:86:b8:74:be:b8:a8: dd:f1:aa:80:cc:e6:6f:b3:54:f6:b4:b3:74:73:9a: 20:30:78:a1:85:b9:f7:a5:5f:14:41:a5:4a:79:aa: 64:6c:fb:ca:cf:af:56:2c:bd:c4:43:92:2e:f5:2a: b8:21:41:ce:3b:00:3d:98:0d:15:b8:41:00:90:b5: 35:4f:ea:7a:4d:6a:b3:57:4f:cd:55:e7:86:c8:39: 22:74:c0:f7:85:fb:a4:96:28:8e:47:6c:b7:19:41: 78:bd:75:73:21:a0:f1:e5:ea:02:1d:33:1a:15:dd: b4:a6:06:6a:f7:2d:ab:61:7d:9e:92:4c:10:ea:4b: 08:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:58:7B:D4:E3:BA:B0:6C:00:7D:97:42:EB:45:89:B3:55:36:35:4D X509v3 Authority Key Identifier: keyid:FA:D6:B4:3C:09:D0:49:0A:0D:F7:F8:91:DF:9F:63:B5:20:CF:21:0F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/-ta0PAnQSQoN9_iR359jtSDPIQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/-ta0PAnQSQoN9_iR359jtSDPIQ8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2741/llh71OO6sGwAfZdC60WJs1U2NU0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.150.0/24 Signature Algorithm: sha256WithRSAEncryption 66:96:a4:54:76:ce:51:40:48:c5:87:ff:a8:81:bc:43:c0:b9: 36:17:26:9f:04:4d:42:44:21:5f:9c:b3:c2:73:de:71:48:71: b8:12:93:68:66:96:f9:5f:c4:16:0c:a7:7b:22:70:ce:91:4b: 3d:11:92:cf:73:06:f6:86:17:3d:74:9b:b9:2d:63:09:6d:30: a4:0f:db:b6:26:f5:f0:e5:10:c9:24:80:28:24:fe:84:52:f4: f8:c6:57:66:1e:7d:de:d4:9e:e1:92:21:7e:ac:00:61:7b:92: e6:bb:2f:89:06:26:8c:2e:8c:6d:54:75:eb:94:7d:0f:a9:96: 2e:f0:3f:92:9d:c7:5b:73:e3:83:3d:e3:d7:a3:f1:8e:b6:26: 63:a7:36:ef:c9:7a:70:a8:3b:5f:3b:04:1d:e4:ab:a1:af:28: 60:e3:9e:00:40:c2:57:af:b3:52:48:5d:6a:8d:00:5f:76:4f: a8:ca:2f:4d:4b:95:ad:8f:cb:c5:87:4d:ae:9f:ba:65:3b:7c: 84:b3:36:db:32:c1:c4:47:4c:5d:5d:3c:b9:20:bc:a3:e9:40: 9e:2e:60:07:b3:2f:fb:a2:00:f6:0a:cb:18:a4:eb:79:4c:10: f9:37:e5:62:2e:bc:d8:07:21:c6:a4:47:67:63:07:7c:fa:d1: cf:08:40:97 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkFE NkI0M0MwOUQwNDkwQTBERjdGODkxREY5RjYzQjUyMENGMjEwRjAeFw0yNTA4MDQx MzA0MjdaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDk2NTg3QkQ0RTNCQUIw NkMwMDdEOTc0MkVCNDU4OUIzNTUzNjM1NEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR0Rb18q+3nf1Grtqr5UYKA6fbtCTMaTLBbQU+wChjZCZ9MgAw eTaxYpjjBso08JLSl3j1qxXurCZI4f3fZI8wqoP+tkPzOXR07TjP/9/ZIYUBf0k3 SbFRhKF15JN8rdx3xnvJt9jICveXhMARgnNsWffTXriNJvC7JsAyvjnaBoa4dL64 qN3xqoDM5m+zVPa0s3RzmiAweKGFufelXxRBpUp5qmRs+8rPr1YsvcRDki71Krgh Qc47AD2YDRW4QQCQtTVP6npNarNXT81V54bIOSJ0wPeF+6SWKI5HbLcZQXi9dXMh oPHl6gIdMxoV3bSmBmr3LathfZ6STBDqSwh3AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUllh71OO6sGwAfZdC60WJs1U2NU0wHwYDVR0jBBgwFoAU+ta0PAnQSQoN9/iR 359jtSDPIQ8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjc0 MS8tdGEwUEFuUVNRb045X2lSMzU5anRTRFBJUTguY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwLy10YTBQQW5RU1FvTjlfaVIzNTlqdFNEUElROC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzI3NDEvbGxoNzFPTzZzR3dB ZlpkQzYwV0pzMVUyTlUwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGd0ljANBgkqhkiG9w0BAQsFAAOCAQEAZpakVHbOUUBIxYf/qIG8Q8C5Nhcm nwRNQkQhX5yzwnPecUhxuBKTaGaW+V/EFgyneyJwzpFLPRGSz3MG9oYXPXSbuS1j CW0wpA/btib18OUQySSAKCT+hFL0+MZXZh593tSe4ZIhfqwAYXuS5rsviQYmjC6M bVR165R9D6mWLvA/kp3HW3Pjgz3j16PxjrYmY6c278l6cKg7XzsEHeSroa8oYOOe AEDCV6+zUkhdao0AX3ZPqMovTUuVrY/LxYdNrp+6ZTt8hLM22zLBxEdMXV08uSC8 o+lAni5gB7Mv+6IA9grLGKTreUwQ+TflYi682AchxqRHZ2MHfPrRzwhAlw== -----END CERTIFICATE-----Generated at Sat Aug 9 10:47:24 2025 by rpki-client