$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3130/u6pop0XN68g0Mfd28M9P07cT_4s.roa File: u6pop0XN68g0Mfd28M9P07cT_4s.roa (raw, json) Hash identifier: gFGdJGdzxKKXeVOLc8vd3W8bEGn4oZTjb99JykxqD2Y= Subject key identifier: BB:AA:68:A7:45:CD:EB:C8:34:31:F7:76:F0:CF:4F:D3:B7:13:FF:8B Certificate issuer: /CN=2B0C50542CA87AA3C12F30C32323062C87102221 Certificate serial: 1952 Authority key identifier: 2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/u6pop0XN68g0Mfd28M9P07cT_4s.roa Signing time: Mon 21 Jul 2025 07:42:28 +0000 ROA not before: Mon 21 Jul 2025 07:42:28 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 6079 IP address blocks: 180.223.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 05:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6482 (0x1952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0C50542CA87AA3C12F30C32323062C87102221 Validity Not Before: Jul 21 07:42:28 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=BBAA68A745CDEBC83431F776F0CF4FD3B713FF8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:5d:0e:60:dc:81:96:a3:e0:18:45:ec:f3: 58:01:08:34:61:d8:58:b9:d4:c0:f8:62:19:21:b6: fe:3a:16:0b:54:ff:f9:68:25:dc:d9:db:c9:12:6d: d7:73:32:7d:e9:dd:36:e8:05:dc:70:6c:b0:4a:a5: 16:b3:d9:74:07:ec:b4:4d:71:51:83:f2:06:ce:d8: 36:f1:82:0b:cc:bf:90:e7:7a:e6:99:b7:49:a0:d2: 1b:6b:00:6b:0b:03:88:e5:7b:2a:e9:32:38:a4:d1: 27:da:b3:e9:09:c3:36:ae:5e:2a:a5:3f:ea:5f:b9: 4e:0a:9a:8d:08:29:b6:01:73:84:9a:2e:d1:a9:7e: c5:76:1c:a1:c3:16:93:4b:35:b7:c5:f5:31:54:9f: 94:50:28:78:74:e2:f9:77:4b:01:54:d8:34:00:a1: 07:87:46:b0:65:c4:f7:81:6a:b1:96:84:24:08:26: ff:05:0d:1e:e2:c1:10:d1:f5:9f:b4:68:88:96:cd: 07:42:fa:e9:82:62:e1:ab:0e:a5:49:49:b9:f2:b0: 7e:ab:ab:f1:a7:e9:b5:f1:af:71:e5:cf:7f:93:aa: 78:2a:c1:5f:9d:26:8e:b3:8b:77:d4:b8:03:31:d1: 2a:90:bb:c3:69:aa:62:34:a4:ef:1b:f8:7a:90:2d: 2f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AA:68:A7:45:CD:EB:C8:34:31:F7:76:F0:CF:4F:D3:B7:13:FF:8B X509v3 Authority Key Identifier: keyid:2B:0C:50:54:2C:A8:7A:A3:C1:2F:30:C3:23:23:06:2C:87:10:22:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/KwxQVCyoeqPBLzDDIyMGLIcQIiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/KwxQVCyoeqPBLzDDIyMGLIcQIiE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3130/u6pop0XN68g0Mfd28M9P07cT_4s.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.223.192.0/18 Signature Algorithm: sha256WithRSAEncryption 58:a7:dd:4d:85:8a:57:1c:2f:69:30:7f:03:f3:1a:e4:f8:c7: d3:f0:2a:b1:13:81:cd:79:3a:11:d7:0c:6c:7c:be:07:62:c5: 3b:6c:4a:be:3c:af:08:5b:35:0a:7a:67:b1:ce:f3:88:75:67: 59:42:24:f5:82:cc:5e:e5:78:3a:bb:6f:cf:70:d9:7b:a6:af: 52:f5:e5:99:ff:96:5d:5a:cb:aa:80:cd:58:d1:c7:06:1d:1a: d0:f8:f0:5d:06:54:b0:09:3d:af:fd:59:50:ef:25:55:92:b3: 1e:19:0d:0f:1a:e2:42:05:58:1d:1d:02:fc:44:fa:1f:0e:87: 00:46:7a:41:ec:05:ad:c1:3b:07:9c:91:13:e2:0a:6c:8b:2e: 16:eb:6e:fb:b1:a3:6b:4f:f1:a4:56:b8:4c:40:d4:df:40:4a: db:dd:52:c5:41:57:76:ba:6a:76:84:27:08:d2:cb:3a:95:d3: bc:6a:b8:53:b3:a7:d9:ed:b9:8a:97:08:56:00:e8:ef:fc:ac: 16:ac:b8:e8:98:11:ad:9b:72:79:32:42:66:ca:de:45:73:92: 70:52:61:39:51:01:de:26:fe:b0:e8:ae:3d:19:6a:e1:7f:5d: b9:cb:98:ad:79:ab:30:48:3a:50:75:03:82:fe:cc:ef:3b:8d: a9:e9:2e:4f -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICGVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIw QzUwNTQyQ0E4N0FBM0MxMkYzMEMzMjMyMzA2MkM4NzEwMjIyMTAeFw0yNTA3MjEw NzQyMjhaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEJCQUE2OEE3NDVDREVC QzgzNDMxRjc3NkYwQ0Y0RkQzQjcxM0ZGOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3/F0OYNyBlqPgGEXs81gBCDRh2Fi51MD4Yhkhtv46FgtU//lo JdzZ28kSbddzMn3p3TboBdxwbLBKpRaz2XQH7LRNcVGD8gbO2DbxggvMv5DneuaZ t0mg0htrAGsLA4jleyrpMjik0Sfas+kJwzauXiqlP+pfuU4Kmo0IKbYBc4SaLtGp fsV2HKHDFpNLNbfF9TFUn5RQKHh04vl3SwFU2DQAoQeHRrBlxPeBarGWhCQIJv8F DR7iwRDR9Z+0aIiWzQdC+umCYuGrDqVJSbnysH6rq/Gn6bXxr3Hlz3+TqngqwV+d Jo6zi3fUuAMx0SqQu8NpqmI0pO8b+HqQLS+FAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUu6pop0XN68g0Mfd28M9P07cT/4swHwYDVR0jBBgwFoAUKwxQVCyoeqPBLzDD IyMGLIcQIiEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzEz MC9Ld3hRVkN5b2VxUEJMekRESXlNR0xJY1FJaUUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0t3eFFWQ3lvZXFQQkx6RERJeU1HTEljUUlpRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMxMzAvdTZwb3AwWE42OGcw TWZkMjhNOVAwN2NUXzRzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBrTfwDANBgkqhkiG9w0BAQsFAAOCAQEAWKfdTYWKVxwvaTB/A/Ma5PjH0/Aq sROBzXk6EdcMbHy+B2LFO2xKvjyvCFs1Cnpnsc7ziHVnWUIk9YLMXuV4Ortvz3DZ e6avUvXlmf+WXVrLqoDNWNHHBh0a0PjwXQZUsAk9r/1ZUO8lVZKzHhkNDxriQgVY HR0C/ET6Hw6HAEZ6QewFrcE7B5yRE+IKbIsuFutu+7Gja0/xpFa4TEDU30BK291S xUFXdrpqdoQnCNLLOpXTvGq4U7On2e25ipcIVgDo7/ysFqy46JgRrZtyeTJCZsre RXOScFJhOVEB3ib+sOiuPRlq4X9ducuYrXmrMEg6UHUDgv7M7zuNqekuTw== -----END CERTIFICATE-----Generated at Mon Aug 11 04:35:10 2025 by rpki-client