$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3326/-nuj7q8BFPfekf6cTVL75zjPLIY.roa File: -nuj7q8BFPfekf6cTVL75zjPLIY.roa (raw, json) Hash identifier: vgpCVZVkUes2godlRRRkm8zUfFj/XtEv+DwM/T6idNw= Subject key identifier: FA:7B:A3:EE:AF:01:14:F7:DE:91:FE:9C:4D:52:FB:E7:38:CF:2C:86 Certificate issuer: /CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C Certificate serial: 058A Authority key identifier: 6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/-nuj7q8BFPfekf6cTVL75zjPLIY.roa Signing time: Fri 01 Aug 2025 06:36:02 +0000 ROA not before: Fri 01 Aug 2025 06:36:02 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 134768 IP address blocks: 103.236.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 15:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1418 (0x58a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C Validity Not Before: Aug 1 06:36:02 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=FA7BA3EEAF0114F7DE91FE9C4D52FBE738CF2C86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:90:84:ba:98:01:7f:ba:69:48:00:03:73:ac: c6:45:f8:4d:36:66:89:48:d6:76:48:33:ab:58:e5: 50:2f:c6:c9:33:84:fd:5c:90:fe:e7:6e:b0:d6:20: 78:39:ee:a2:48:3f:b9:ed:dd:17:a1:77:c5:eb:72: 06:5e:ba:ab:7b:5d:74:74:97:3d:e5:16:e9:12:86: a2:1b:f4:bb:2e:49:e3:df:7d:be:12:66:63:f0:73: 28:91:96:1e:ca:f6:c4:61:09:58:8e:ec:50:1f:59: 0f:a5:be:e0:6f:a8:2f:79:e3:fe:c4:a9:c9:ec:54: c8:b1:2b:cb:b3:20:0a:02:24:8f:ad:62:4d:a2:06: 34:b9:08:d6:1e:45:a5:bd:ba:1a:a0:a9:f8:c5:f6: 4b:11:ab:90:39:28:b0:f3:54:d5:22:1c:71:e4:17: 26:b6:95:c4:fb:9e:d3:20:be:08:a9:06:3d:26:c3: 60:36:a5:9c:1e:8d:29:d0:e3:75:99:27:d6:c0:3f: 97:40:d4:eb:d0:1a:c9:70:9b:cf:6b:2d:f1:b6:fe: b1:04:81:eb:90:9f:fa:13:ac:9c:de:98:53:46:a6: e0:44:5e:2d:04:39:0b:c7:ed:0d:f0:44:45:d0:bd: 7b:cf:ea:97:9a:1d:46:86:15:14:b2:b9:fa:75:95: ad:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7B:A3:EE:AF:01:14:F7:DE:91:FE:9C:4D:52:FB:E7:38:CF:2C:86 X509v3 Authority Key Identifier: keyid:6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/-nuj7q8BFPfekf6cTVL75zjPLIY.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.236.91.0/24 Signature Algorithm: sha256WithRSAEncryption a1:84:79:09:66:51:80:71:a9:d4:1d:7c:2f:a6:f5:d6:c1:b2: 14:77:88:77:14:4e:aa:8d:40:bb:26:4b:17:5b:88:7f:5b:24: 32:3b:57:1c:6e:ff:b6:b5:cf:64:39:bf:8c:78:a5:7b:80:5c: 0b:6b:d6:21:4a:03:4b:6e:06:0d:41:18:93:2b:e5:25:96:ff: e2:77:6d:fb:22:e2:85:60:c8:af:54:c8:ad:46:03:48:1a:a2: 6d:92:15:d7:cc:91:36:f2:af:e0:57:7f:de:8c:80:3f:7c:8d: 74:bf:55:7c:29:a6:11:f1:d9:53:d8:25:3d:db:c8:6c:a6:2c: 60:18:f9:04:8d:8b:c6:95:13:ec:44:6e:03:db:e3:2c:08:2f: e8:f7:92:4d:0d:fa:e7:fc:26:49:62:5d:69:42:cb:d2:a3:d7: 7a:89:70:b2:72:b8:3e:5d:f8:50:ea:9d:51:8b:ab:9a:d7:31: d7:96:5c:33:49:7d:58:ad:b3:fb:c6:bf:44:28:26:7d:db:7a: 7d:ac:80:38:b0:e7:67:cb:e2:4c:2d:8c:8d:a3:16:bb:1b:86: 2f:b0:b7:72:d8:a8:35:db:d9:d0:3b:e4:67:63:9f:b2:6d:65: e7:b4:69:32:71:2e:97:1a:50:d6:7c:0e:55:54:3d:9a:c1:80: a3:11:e2:cf -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEx MUVFNDc0MjVEMTRFQkFGMkZDRDI0RDIwNjJCMEE1MkJBMDQyQzAeFw0yNTA4MDEw NjM2MDJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEZBN0JBM0VFQUYwMTE0 RjdERTkxRkU5QzRENTJGQkU3MzhDRjJDODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGkIS6mAF/umlIAANzrMZF+E02ZolI1nZIM6tY5VAvxskzhP1c kP7nbrDWIHg57qJIP7nt3Rehd8XrcgZeuqt7XXR0lz3lFukShqIb9LsuSePffb4S ZmPwcyiRlh7K9sRhCViO7FAfWQ+lvuBvqC954/7EqcnsVMixK8uzIAoCJI+tYk2i BjS5CNYeRaW9uhqgqfjF9ksRq5A5KLDzVNUiHHHkFya2lcT7ntMgvgipBj0mw2A2 pZwejSnQ43WZJ9bAP5dA1OvQGslwm89rLfG2/rEEgeuQn/oTrJzemFNGpuBEXi0E OQvH7Q3wREXQvXvP6peaHUaGFRSyufp1la3DAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU+nuj7q8BFPfekf6cTVL75zjPLIYwHwYDVR0jBBgwFoAUahHuR0JdFOuvL80k 0gYrClK6BCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy Ni9haEh1UjBKZEZPdXZMODBrMGdZckNsSzZCQ3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2FoSHVSMEpkRk91dkw4MGswZ1lyQ2xLNkJDdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjYvLW51ajdxOEJGUGZl a2Y2Y1RWTDc1empQTElZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfsWzANBgkqhkiG9w0BAQsFAAOCAQEAoYR5CWZRgHGp1B18L6b11sGyFHeI dxROqo1AuyZLF1uIf1skMjtXHG7/trXPZDm/jHile4BcC2vWIUoDS24GDUEYkyvl JZb/4ndt+yLihWDIr1TIrUYDSBqibZIV18yRNvKv4Fd/3oyAP3yNdL9VfCmmEfHZ U9glPdvIbKYsYBj5BI2LxpUT7ERuA9vjLAgv6PeSTQ365/wmSWJdaULL0qPXeolw snK4Pl34UOqdUYurmtcx15ZcM0l9WK2z+8a/RCgmfdt6fayAOLDnZ8viTC2MjaMW uxuGL7C3ctioNdvZ0DvkZ2Ofsm1l57RpMnEulxpQ1nwOVVQ9msGAoxHizw== -----END CERTIFICATE-----Generated at Mon Aug 11 10:38:09 2025 by rpki-client