$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/4Vfz06V9xJz2N3FlnTICmulrZM8.roa File: 4Vfz06V9xJz2N3FlnTICmulrZM8.roa (raw, json) Hash identifier: cyjp2rjsv85SErzYov3ecmrSUXpgEUDKtF7CnIqP3oc= Subject key identifier: E1:57:F3:D3:A5:7D:C4:9C:F6:37:71:65:9D:32:02:9A:E9:6B:64:CF Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 13D8 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/4Vfz06V9xJz2N3FlnTICmulrZM8.roa Signing time: Mon 21 Jul 2025 11:45:27 +0000 ROA not before: Mon 21 Jul 2025 11:45:27 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 06:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5080 (0x13d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jul 21 11:45:27 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E157F3D3A57DC49CF63771659D32029AE96B64CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c7:4d:8b:14:fa:ae:5f:33:c6:39:d1:ce:84: 0c:d4:7e:d4:19:21:ee:55:8d:81:2f:70:41:3d:e6: 85:46:03:70:47:57:dc:cc:09:b8:68:50:cc:1e:8c: 04:8b:3e:10:49:08:c2:9d:44:54:ac:cf:1b:b9:b6: 34:96:ac:10:3b:64:20:3a:73:c3:7a:73:64:62:c3: b1:95:09:94:ea:d7:86:97:c4:0b:1f:9e:22:a0:7d: f5:dd:ad:70:75:64:95:e4:64:1a:6e:3f:fa:da:a3: 11:9b:39:19:4b:25:93:6e:a8:b1:f7:31:be:27:b6: 36:02:c6:d7:92:e7:d4:e4:88:c0:5a:c0:30:45:84: 5f:b1:c3:dd:11:40:ed:82:aa:4e:06:b5:c7:ed:2b: 7d:76:b1:43:6e:f8:4e:6f:be:b9:f5:68:1a:ea:a0: 35:62:f6:3b:25:96:9c:a8:7c:1b:38:6f:ae:ca:cb: 9e:76:c0:56:75:f7:8e:1a:36:a4:ec:85:98:18:b4: 96:45:7e:b4:5c:47:2b:e2:d4:50:bb:0d:d3:ab:8c: 4d:ed:b3:2a:17:28:52:0f:2d:84:06:93:5a:a6:0f: 5b:76:78:17:03:e8:f9:ca:7b:c9:87:29:5f:dd:ef: a0:e8:d4:25:49:18:bf:c8:e2:8e:7e:69:c6:11:49: 2a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:57:F3:D3:A5:7D:C4:9C:F6:37:71:65:9D:32:02:9A:E9:6B:64:CF X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/4Vfz06V9xJz2N3FlnTICmulrZM8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.128.0/22 Signature Algorithm: sha256WithRSAEncryption cd:48:40:e7:aa:80:4c:c7:04:8e:f3:80:12:88:e8:cb:67:2d: ba:8f:71:17:f9:64:4a:68:7c:7d:bf:37:f7:84:c0:36:a1:ab: 6f:56:e2:56:1d:17:fd:31:c5:a0:ef:4d:59:4e:a0:fd:ea:24: fa:ba:6d:f1:45:c4:c1:ae:4f:c0:44:88:2c:b2:0a:b1:31:5f: 2e:49:8a:3d:a4:c6:88:2c:5e:57:a4:58:94:c9:3e:de:ff:97: b8:30:ea:fb:4f:c7:64:8e:11:d7:3c:ba:a0:ab:ab:e5:71:29: 35:0a:83:0c:2b:6a:5a:cf:42:ee:67:d1:a7:55:51:90:b6:55: 73:0a:8a:2c:16:4d:f7:d7:e4:52:52:08:ef:b2:bb:fd:84:cc: fa:04:30:8e:c4:e6:6b:a9:93:36:6b:a7:cb:f2:54:88:14:6d: 12:69:40:f5:81:2c:c2:78:ff:65:34:3a:5d:dd:38:49:3f:79: 08:6c:8d:9e:4f:65:81:b0:bc:b5:61:6b:30:4f:aa:9f:c9:a2: 08:63:88:65:d3:3f:b7:53:e6:56:b9:74:c3:9d:5b:d0:71:57: c8:40:a7:74:df:3f:1f:59:96:a1:69:e1:cc:2a:b6:e4:05:6b: 67:b5:35:a0:3c:9e:14:02:0a:a2:97:40:ef:fa:b8:f2:03:e5: b8:03:a2:a7 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICE9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA3MjEx MTQ1MjdaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEUxNTdGM0QzQTU3REM0 OUNGNjM3NzE2NTlEMzIwMjlBRTk2QjY0Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRx02LFPquXzPGOdHOhAzUftQZIe5VjYEvcEE95oVGA3BHV9zM CbhoUMwejASLPhBJCMKdRFSszxu5tjSWrBA7ZCA6c8N6c2Riw7GVCZTq14aXxAsf niKgffXdrXB1ZJXkZBpuP/raoxGbORlLJZNuqLH3Mb4ntjYCxteS59TkiMBawDBF hF+xw90RQO2Cqk4GtcftK312sUNu+E5vvrn1aBrqoDVi9jsllpyofBs4b67Ky552 wFZ1944aNqTshZgYtJZFfrRcRyvi1FC7DdOrjE3tsyoXKFIPLYQGk1qmD1t2eBcD 6PnKe8mHKV/d76Do1CVJGL/I4o5+acYRSSpnAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU4Vfz06V9xJz2N3FlnTICmulrZM8wHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzLzRWZnowNlY5eEp6Mk4z RmxuVElDbXVsclpNOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6IAwDQYJKoZIhvcNAQELBQADggEBAM1IQOeqgEzHBI7zgBKI6MtnLbqPcRf5 ZEpofH2/N/eEwDahq29W4lYdF/0xxaDvTVlOoP3qJPq6bfFFxMGuT8BEiCyyCrEx Xy5Jij2kxogsXlekWJTJPt7/l7gw6vtPx2SOEdc8uqCrq+VxKTUKgwwralrPQu5n 0adVUZC2VXMKiiwWTffX5FJSCO+yu/2EzPoEMI7E5mupkzZrp8vyVIgUbRJpQPWB LMJ4/2U0Ol3dOEk/eQhsjZ5PZYGwvLVhazBPqp/JoghjiGXTP7dT5la5dMOdW9Bx V8hAp3TfPx9ZlqFp4cwqtuQFa2e1NaA8nhQCCqKXQO/6uPID5bgDoqc= -----END CERTIFICATE-----Generated at Mon Aug 11 04:45:01 2025 by rpki-client