$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3326/aEodeE0cDL7eIdkRdrhbufTy4Fw.roa File: aEodeE0cDL7eIdkRdrhbufTy4Fw.roa (raw, json) Hash identifier: iiURpdfWHfravVPPVcm7aApL8Q38TsH/3ZH5R7b1MbI= Subject key identifier: 68:4A:1D:78:4D:1C:0C:BE:DE:21:D9:11:76:B8:5B:B9:F4:F2:E0:5C Certificate issuer: /CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C Certificate serial: 0589 Authority key identifier: 6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/aEodeE0cDL7eIdkRdrhbufTy4Fw.roa Signing time: Fri 01 Aug 2025 06:36:02 +0000 ROA not before: Fri 01 Aug 2025 06:36:02 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 134768 IP address blocks: 103.236.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 15:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A11EE47425D14EBAF2FCD24D2062B0A52BA042C Validity Not Before: Aug 1 06:36:02 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=684A1D784D1C0CBEDE21D91176B85BB9F4F2E05C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:ac:7d:30:97:36:1f:9d:9e:3a:a9:66:13: e5:72:c2:f1:b8:7a:68:21:7c:c9:2c:1e:bd:07:28: 1b:3b:1e:7d:d6:c2:a7:34:b2:e7:91:75:c4:22:34: ed:f2:59:80:72:13:11:79:e0:18:29:7c:71:aa:ed: b5:39:50:3f:4b:e0:26:8d:b8:69:1b:61:ba:d9:97: 3b:28:6a:6a:52:01:74:76:68:21:86:67:c0:5c:3a: 53:99:24:a1:20:49:b9:eb:92:fd:6b:f5:e8:8a:83: 89:ff:cc:09:ac:bb:21:95:91:64:6f:43:73:68:32: e2:ac:73:56:9b:85:cb:8a:a3:67:75:3a:b9:b3:6c: a9:47:90:26:06:72:c5:47:0a:b9:cb:35:2f:a8:eb: 59:e2:45:c5:65:0d:06:ce:fb:04:64:e3:33:8b:fa: b5:4d:5b:a3:d6:f3:97:96:6e:2e:12:3b:2b:40:97: 9c:62:3e:b5:bf:e0:8e:3c:26:e8:74:e5:20:80:f6: bc:ca:f5:3f:51:93:93:76:06:a1:8e:4a:b2:6b:21: 41:9b:a0:a5:0e:e7:35:ba:b3:a8:38:f2:0d:5a:a7: a6:4d:ab:ed:7e:97:87:9d:c5:9f:84:b2:4f:44:a3: 26:8f:4f:67:02:5b:27:1f:64:67:18:b7:b9:97:76: 09:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4A:1D:78:4D:1C:0C:BE:DE:21:D9:11:76:B8:5B:B9:F4:F2:E0:5C X509v3 Authority Key Identifier: keyid:6A:11:EE:47:42:5D:14:EB:AF:2F:CD:24:D2:06:2B:0A:52:BA:04:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/ahHuR0JdFOuvL80k0gYrClK6BCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/ahHuR0JdFOuvL80k0gYrClK6BCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3326/aEodeE0cDL7eIdkRdrhbufTy4Fw.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.236.97.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:88:d4:ba:a4:38:84:92:67:19:d2:fe:ef:47:5d:b4:64:07: 61:25:9f:4c:76:30:9b:bd:89:c1:26:ca:23:e9:89:7d:03:03: f6:09:fb:40:1f:34:c7:56:17:80:5a:0e:9e:34:01:2d:16:00: 0e:5c:e2:bd:4a:58:12:c6:c4:76:4b:a6:9d:9f:1e:8b:ab:91: f6:47:b9:8f:46:02:5b:3d:af:cf:22:3b:b8:58:ef:fd:b5:18: ff:ea:d5:06:d1:e2:43:b2:01:4e:33:fa:21:ae:47:87:ef:a8: af:b7:0e:69:75:69:51:df:8b:02:cf:0d:4c:d8:39:5f:63:d4: c8:6c:60:31:c7:d4:b5:a5:03:7d:37:9f:a8:1b:e1:12:1a:fe: 52:06:77:d6:a0:91:96:4d:bf:66:2b:ba:67:bf:fe:a8:be:24: ab:1c:04:09:95:7e:f3:11:57:16:c2:c2:4a:c8:0f:fa:71:a4: 96:66:22:35:2f:6e:36:97:39:74:53:62:d2:48:0b:5e:e3:77: f6:2e:86:eb:ce:bf:5d:9d:5f:f6:ca:a4:05:9b:77:a0:20:f7: 65:90:a0:33:bc:2f:01:f8:cc:2d:37:8b:11:73:e8:81:cd:f7: cf:10:d4:9f:7a:b6:19:1f:3c:76:39:a4:92:29:aa:00:95:7d: 85:25:22:56 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEx MUVFNDc0MjVEMTRFQkFGMkZDRDI0RDIwNjJCMEE1MkJBMDQyQzAeFw0yNTA4MDEw NjM2MDJaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDY4NEExRDc4NEQxQzBD QkVERTIxRDkxMTc2Qjg1QkI5RjRGMkUwNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDhax9MJc2H52eOqlmE+VywvG4emghfMksHr0HKBs7Hn3Wwqc0 sueRdcQiNO3yWYByExF54BgpfHGq7bU5UD9L4CaNuGkbYbrZlzsoampSAXR2aCGG Z8BcOlOZJKEgSbnrkv1r9eiKg4n/zAmsuyGVkWRvQ3NoMuKsc1abhcuKo2d1Ormz bKlHkCYGcsVHCrnLNS+o61niRcVlDQbO+wRk4zOL+rVNW6PW85eWbi4SOytAl5xi PrW/4I48Juh05SCA9rzK9T9Rk5N2BqGOSrJrIUGboKUO5zW6s6g48g1ap6ZNq+1+ l4edxZ+Esk9EoyaPT2cCWycfZGcYt7mXdgmhAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUaEodeE0cDL7eIdkRdrhbufTy4FwwHwYDVR0jBBgwFoAUahHuR0JdFOuvL80k 0gYrClK6BCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMy Ni9haEh1UjBKZEZPdXZMODBrMGdZckNsSzZCQ3cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL2FoSHVSMEpkRk91dkw4MGswZ1lyQ2xLNkJDdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzMjYvYUVvZGVFMGNETDdl SWRrUmRyaGJ1ZlR5NEZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfsYTANBgkqhkiG9w0BAQsFAAOCAQEAfIjUuqQ4hJJnGdL+70ddtGQHYSWf THYwm72JwSbKI+mJfQMD9gn7QB80x1YXgFoOnjQBLRYADlzivUpYEsbEdkumnZ8e i6uR9ke5j0YCWz2vzyI7uFjv/bUY/+rVBtHiQ7IBTjP6Ia5Hh++or7cOaXVpUd+L As8NTNg5X2PUyGxgMcfUtaUDfTefqBvhEhr+UgZ31qCRlk2/Ziu6Z7/+qL4kqxwE CZV+8xFXFsLCSsgP+nGklmYiNS9uNpc5dFNi0kgLXuN39i6G686/XZ1f9sqkBZt3 oCD3ZZCgM7wvAfjMLTeLEXPogc33zxDUn3q2GR88djmkkimqAJV9hSUiVg== -----END CERTIFICATE-----Generated at Mon Aug 11 10:42:57 2025 by rpki-client