$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3379/wgZ4qGzKdDXXH1HF5nti5GKG3N4.roa File: wgZ4qGzKdDXXH1HF5nti5GKG3N4.roa (raw, json) Hash identifier: FN30N9G4iSO3OygjiOveFzO+6LPT/EsEoUmWxVb6+Ss= Subject key identifier: C2:06:78:A8:6C:CA:74:35:D7:1F:51:C5:E6:7B:62:E4:62:86:DC:DE Certificate issuer: /CN=2CB237ABE1A66A755DA9545795F1DD229F0E0311 Certificate serial: CF Authority key identifier: 2C:B2:37:AB:E1:A6:6A:75:5D:A9:54:57:95:F1:DD:22:9F:0E:03:11 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/wgZ4qGzKdDXXH1HF5nti5GKG3N4.roa Signing time: Mon 04 Aug 2025 06:14:46 +0000 ROA not before: Mon 04 Aug 2025 06:14:46 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 139187 IP address blocks: 165.101.70.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/1xHsDTeBWKRHb-bqfXClSpUZWhE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1xHsDTeBWKRHb-bqfXClSpUZWhE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 11:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB237ABE1A66A755DA9545795F1DD229F0E0311 Validity Not Before: Aug 4 06:14:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=C20678A86CCA7435D71F51C5E67B62E46286DCDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:c4:96:c5:91:d7:70:6a:5c:5e:50:d4:8e: a7:8e:b3:8e:08:f7:c9:d6:e7:00:9c:b1:6a:3b:87: c4:90:03:40:ec:ab:f9:8b:78:2a:5a:92:44:ac:5c: 74:e4:f9:6f:73:a5:d6:5e:e9:31:43:01:3e:be:e3: fb:07:7b:24:86:29:77:83:5b:5f:8c:ce:29:37:0b: 7d:33:d5:60:36:bb:93:3a:52:dc:5e:ba:1b:3b:ad: a4:21:3e:0f:32:9f:92:3d:a9:04:97:13:eb:5a:5b: 8b:24:2b:02:16:a5:22:6b:55:21:85:25:79:2e:f6: 83:75:03:e3:4f:fb:af:fa:af:00:d8:ca:3b:01:3a: fa:8f:6d:31:a3:5e:b6:92:8b:f7:c0:38:1b:30:03: 32:e8:26:31:27:b5:ca:91:5d:c0:cb:9b:9f:0e:4d: ea:fc:89:b7:01:61:2e:c0:a5:d3:ee:00:78:00:17: c1:ae:56:67:58:20:d8:5d:e9:bc:7c:96:46:04:9e: ea:cc:75:d3:25:43:20:31:e3:8b:fa:53:93:ee:58: bd:a3:4f:1a:88:63:c3:69:78:3f:af:ea:43:dc:da: 7d:e7:d0:57:0f:94:24:bf:c4:3c:f2:a0:93:a0:1a: 2a:3a:37:88:a0:ea:e4:29:e0:3f:89:8f:19:ec:1f: c4:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:06:78:A8:6C:CA:74:35:D7:1F:51:C5:E6:7B:62:E4:62:86:DC:DE X509v3 Authority Key Identifier: keyid:2C:B2:37:AB:E1:A6:6A:75:5D:A9:54:57:95:F1:DD:22:9F:0E:03:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/LLI3q-GmanVdqVRXlfHdIp8OAxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LLI3q-GmanVdqVRXlfHdIp8OAxE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3379/wgZ4qGzKdDXXH1HF5nti5GKG3N4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 165.101.70.0/24 Signature Algorithm: sha256WithRSAEncryption 44:c5:93:27:eb:2a:f1:a8:04:8d:27:ea:5d:33:51:a1:c5:11: 8d:2d:05:2f:40:5e:f4:72:a1:51:1c:57:d8:14:5b:af:67:1c: 8a:23:dd:26:33:db:e9:be:ea:d0:e7:aa:1e:3f:92:fc:3a:c5: 6f:39:ff:8b:2f:94:c4:cb:63:69:b6:2c:bc:57:de:08:30:17: 2d:b6:77:83:bf:ee:79:8a:a6:f4:aa:4a:60:95:6c:d2:f3:c5: e8:ec:c6:10:3f:02:97:68:fe:46:6f:20:17:0f:79:92:b0:56: 13:25:36:59:65:81:a9:ea:6b:9d:82:2e:65:2c:5d:af:0e:a4: 9c:b1:a3:84:4a:64:d4:15:37:10:08:e8:f0:84:47:95:cc:92: fa:3d:49:80:f7:96:59:31:6a:b5:33:d2:93:76:71:7b:69:17: f5:30:d0:eb:1c:f7:bf:ba:54:84:4a:6c:f2:f4:f6:15:a9:eb: 91:2f:3d:a0:25:f9:01:06:91:b9:86:fb:12:bc:a2:71:4c:9c: 5f:57:92:6b:db:fe:cf:a1:a7:a9:32:52:c9:f5:c9:39:65:f0: ef:0c:c7:e2:6e:71:77:b2:29:e7:8f:fd:4c:c3:72:94:0a:ae: 4d:39:10:1d:8b:6e:68:43:9c:7e:7d:77:bb:40:f8:c7:02:0c: 69:cd:27:b9 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkNC MjM3QUJFMUE2NkE3NTVEQTk1NDU3OTVGMUREMjI5RjBFMDMxMTAeFw0yNTA4MDQw NjE0NDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEMyMDY3OEE4NkNDQTc0 MzVENzFGNTFDNUU2N0I2MkU0NjI4NkRDREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO/cSWxZHXcGpcXlDUjqeOs44I98nW5wCcsWo7h8SQA0Dsq/mL eCpakkSsXHTk+W9zpdZe6TFDAT6+4/sHeySGKXeDW1+Mzik3C30z1WA2u5M6Utxe uhs7raQhPg8yn5I9qQSXE+taW4skKwIWpSJrVSGFJXku9oN1A+NP+6/6rwDYyjsB OvqPbTGjXraSi/fAOBswAzLoJjEntcqRXcDLm58OTer8ibcBYS7ApdPuAHgAF8Gu VmdYINhd6bx8lkYEnurMddMlQyAx44v6U5PuWL2jTxqIY8NpeD+v6kPc2n3n0FcP lCS/xDzyoJOgGio6N4ig6uQp4D+JjxnsH8QzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUwgZ4qGzKdDXXH1HF5nti5GKG3N4wHwYDVR0jBBgwFoAULLI3q+GmanVdqVRX lfHdIp8OAxEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzM3 OS9MTEkzcS1HbWFuVmRxVlJYbGZIZElwOE9BeEUuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL0xMSTNxLUdtYW5WZHFWUlhsZkhkSXA4T0F4RS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMzNzkvd2daNHFHektkRFhY SDFIRjVudGk1R0tHM040LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKVlRjANBgkqhkiG9w0BAQsFAAOCAQEARMWTJ+sq8agEjSfqXTNRocURjS0F L0Be9HKhURxX2BRbr2cciiPdJjPb6b7q0OeqHj+S/DrFbzn/iy+UxMtjabYsvFfe CDAXLbZ3g7/ueYqm9KpKYJVs0vPF6OzGED8Cl2j+Rm8gFw95krBWEyU2WWWBqepr nYIuZSxdrw6knLGjhEpk1BU3EAjo8IRHlcyS+j1JgPeWWTFqtTPSk3Zxe2kX9TDQ 6xz3v7pUhEps8vT2FanrkS89oCX5AQaRuYb7EryicUycX1eSa9v+z6GnqTJSyfXJ OWXw7wzH4m5xd7Ip54/9TMNylAquTTkQHYtuaEOcfn13u0D4xwIMac0nuQ== -----END CERTIFICATE-----Generated at Mon Aug 11 10:56:23 2025 by rpki-client