$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3379/8qJ-AvVhWplgQWfnk0NpqigYdno.roa File: 8qJ-AvVhWplgQWfnk0NpqigYdno.roa (raw, json) Hash identifier: C+p69gaICTHOell5j8IENDKVQ6rYc0FNslnf5+F8dls= Subject key identifier: F2:A2:7E:02:F5:61:5A:99:60:41:67:E7:93:43:69:AA:28:18:76:7A Certificate issuer: /CN=2CB237ABE1A66A755DA9545795F1DD229F0E0311 Certificate serial: CC Authority key identifier: 2C:B2:37:AB:E1:A6:6A:75:5D:A9:54:57:95:F1:DD:22:9F:0E:03:11 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/8qJ-AvVhWplgQWfnk0NpqigYdno.roa Signing time: Mon 04 Aug 2025 03:40:30 +0000 ROA not before: Mon 04 Aug 2025 03:40:30 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 396982 IP address blocks: 165.101.71.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 04:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB237ABE1A66A755DA9545795F1DD229F0E0311 Validity Not Before: Aug 4 03:40:30 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F2A27E02F5615A99604167E7934369AA2818767A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6b:e2:3f:14:e1:39:18:cb:f5:9e:33:c7:7c: 35:e0:24:90:8c:e8:08:28:6a:aa:9d:ec:1f:09:34: 13:3b:29:a7:02:1c:d3:62:ed:bb:b8:26:99:c0:aa: 82:ee:69:f6:ed:a7:91:f1:1d:20:f4:f3:5d:ce:6e: 0f:b6:a5:62:8c:fd:b6:db:1e:dc:07:06:f1:9e:8a: b9:de:34:32:7a:4f:8d:28:32:9e:76:f4:aa:f0:8c: 32:5e:fa:4e:71:90:3a:0b:25:c7:0c:4e:39:d7:10: 31:53:0a:39:19:20:5a:c4:1a:33:bf:c4:5d:ef:de: 71:91:a6:70:be:90:13:ab:5f:af:f3:81:3c:35:4c: fd:aa:53:6e:98:2b:46:b3:3f:3a:61:f6:ad:84:6f: 0c:be:1e:a6:d7:e8:0a:15:5d:b2:0f:d2:5a:53:1d: 87:09:7a:12:3b:31:ce:09:8b:a3:3f:d7:32:d0:f8: 0d:92:51:e1:fa:90:65:10:67:37:82:a3:8a:fa:80: 91:73:a6:e0:eb:0f:64:3c:3f:30:08:f6:70:e2:d8: a6:9b:c4:e8:e2:b6:19:56:bc:2b:14:b7:e1:dc:2c: fa:3b:a6:e1:fc:bd:cf:8a:96:c8:07:38:13:ef:93: 6d:2c:8a:4a:fa:6d:a1:90:08:9d:0a:72:be:75:84: 63:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A2:7E:02:F5:61:5A:99:60:41:67:E7:93:43:69:AA:28:18:76:7A X509v3 Authority Key Identifier: keyid:2C:B2:37:AB:E1:A6:6A:75:5D:A9:54:57:95:F1:DD:22:9F:0E:03:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/8qJ-AvVhWplgQWfnk0NpqigYdno.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.71.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:98:68:13:c9:ea:3c:2b:1e:f4:0c:7c:6a:e0:73:13:5d:43: 08:d9:63:bd:a4:c0:3e:93:3a:7f:78:e2:82:d1:0c:12:81:d4: 03:e7:c7:90:15:e4:98:ae:85:0a:07:b5:cb:60:a6:aa:08:f1: 5e:73:31:90:f4:3d:1f:46:4d:ae:2a:6a:b6:20:c7:dc:b5:0a: 8d:0f:ae:e0:3b:79:6d:0f:ce:e5:71:33:3f:a5:f2:b9:cd:e8: 73:a2:96:73:45:14:55:1b:f0:0c:c1:6c:6a:9f:c4:33:2a:f9: ad:46:e7:21:d8:d1:b5:b8:49:62:10:8f:bb:b5:d1:a2:14:1d: 79:c6:b4:98:35:d8:93:d3:45:a0:3f:ba:d0:96:54:27:26:c5: 0f:4e:31:f8:1d:53:e9:b2:51:4e:da:d2:c7:c1:88:3c:14:c6: 37:c2:d9:e7:5d:49:b5:a3:41:0b:ac:ca:b4:ba:61:e7:16:27: 1e:6b:47:19:49:42:03:48:49:57:9c:e4:09:56:6c:76:e4:cd: 19:bd:f8:44:80:55:7c:5a:ce:46:29:34:ab:88:bb:f5:b8:b9: 04:51:84:95:a2:5c:09:65:8e:f5:28:95:7e:e6:b4:9c:f9:95: 69:76:6a:a1:a7:54:bf:dc:5f:f9:78:fc:81:34:9b:cb:ff:1b: 71:15:0d:7c -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkNC MjM3QUJFMUE2NkE3NTVEQTk1NDU3OTVGMUREMjI5RjBFMDMxMTAeFw0yNTA4MDQw MzQwMzBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEYyQTI3RTAyRjU2MTVB OTk2MDQxNjdFNzkzNDM2OUFBMjgxODc2N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2a+I/FOE5GMv1njPHfDXgJJCM6Agoaqqd7B8JNBM7KacCHNNi 7bu4JpnAqoLuafbtp5HxHSD0813Obg+2pWKM/bbbHtwHBvGeirneNDJ6T40oMp52 9KrwjDJe+k5xkDoLJccMTjnXEDFTCjkZIFrEGjO/xF3v3nGRpnC+kBOrX6/zgTw1 TP2qU26YK0azPzph9q2Ebwy+HqbX6AoVXbIP0lpTHYcJehI7Mc4Ji6M/1zLQ+A2S UeH6kGUQZzeCo4r6gJFzpuDrD2Q8PzAI9nDi2KabxOjithlWvCsUt+HcLPo7puH8 vc+KlsgHOBPvk20sikr6baGQCJ0Kcr51hGPhAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU8qJ+AvVhWplgQWfnk0NpqigYdnowHwYDVR0jBBgwFoAULLI3q+GmanVdqVRX lfHdIp8OAxEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM3 OS9MTEkzcS1HbWFuVmRxVlJYbGZIZElwOE9BeEUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0xMSTNxLUdtYW5WZHFWUlhsZkhkSXA4T0F4RS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNzkvOHFKLUF2VmhXcGxn UVdmbmswTnBxaWdZZG5vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKVlRzANBgkqhkiG9w0BAQsFAAOCAQEAX5hoE8nqPCse9Ax8auBzE11DCNlj vaTAPpM6f3jigtEMEoHUA+fHkBXkmK6FCge1y2CmqgjxXnMxkPQ9H0ZNripqtiDH 3LUKjQ+u4Dt5bQ/O5XEzP6Xyuc3oc6KWc0UUVRvwDMFsap/EMyr5rUbnIdjRtbhJ YhCPu7XRohQdeca0mDXYk9NFoD+60JZUJybFD04x+B1T6bJRTtrSx8GIPBTGN8LZ 511JtaNBC6zKtLph5xYnHmtHGUlCA0hJV5zkCVZsduTNGb34RIBVfFrORik0q4i7 9bi5BFGElaJcCWWO9SiVfua0nPmVaXZqoadUv9xf+Xj8gTSby/8bcRUNfA== -----END CERTIFICATE-----Generated at Mon Aug 11 02:06:45 2025 by rpki-client