$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/6LSr9K9MD-8PYtmuqewK7SI7fZc.roa File: 6LSr9K9MD-8PYtmuqewK7SI7fZc.roa (raw, json) Hash identifier: xwq/1QV+fFAAgfhYwWcBl1u4Ld1CfHWcz+tLc9YNTnw= Subject key identifier: E8:B4:AB:F4:AF:4C:0F:EF:0F:62:D9:AE:A9:EC:0A:ED:22:3B:7D:97 Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 140E Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/6LSr9K9MD-8PYtmuqewK7SI7fZc.roa Signing time: Wed 30 Jul 2025 04:38:43 +0000 ROA not before: Wed 30 Jul 2025 04:38:43 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 04:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5134 (0x140e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jul 30 04:38:43 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=E8B4ABF4AF4C0FEF0F62D9AEA9EC0AED223B7D97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ca:b2:ef:01:91:3b:8a:4a:04:a5:32:62:fc: cb:34:b1:c2:9b:81:b9:4e:8b:99:82:17:1d:19:db: b2:36:a0:ed:72:4c:f1:6d:c9:69:59:57:e9:48:18: d7:0a:20:8c:4a:f5:f7:d3:c6:ee:c3:6a:14:f8:48: bc:ef:ed:7c:a2:d8:8c:63:7b:dd:9d:e8:0e:f3:d9: 81:ec:3e:2e:a9:85:9f:4a:a9:ac:0f:ce:eb:a1:fe: 7d:3f:a6:a9:82:3a:f4:bf:c6:03:05:5a:eb:9c:16: 8f:d1:c5:e3:ae:f5:e2:06:fc:33:fc:a3:b5:83:48: 73:f0:f3:29:6f:8c:35:96:09:9d:f5:1c:5e:d9:f1: 1b:b6:28:5d:0c:72:67:fc:e6:00:10:19:4a:bb:88: 72:aa:5a:df:5f:dd:c1:ad:84:7f:1e:16:80:08:68: b7:b3:a1:bd:ac:f9:ab:ff:e4:44:91:fa:62:d4:59: 97:bd:50:f5:92:5c:d5:21:6d:9f:00:90:d1:85:c7: dd:00:83:6b:57:bc:39:27:cb:f8:b0:2a:0c:b4:71: c3:bd:27:57:d6:00:b0:56:29:a6:52:82:7f:07:67: 23:35:c6:b5:60:bc:6d:d5:58:97:81:08:e3:34:03: c0:25:4f:f5:59:7f:0a:b8:d9:dd:97:b9:17:9b:6a: 48:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B4:AB:F4:AF:4C:0F:EF:0F:62:D9:AE:A9:EC:0A:ED:22:3B:7D:97 X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/6LSr9K9MD-8PYtmuqewK7SI7fZc.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.48.0/22 Signature Algorithm: sha256WithRSAEncryption 09:06:fa:5a:0e:10:a8:45:ba:1c:cc:f3:5b:00:c3:d9:29:72: 97:0b:6b:85:d5:d0:e4:fc:88:71:00:a0:21:b9:cb:c0:a1:e4: 03:2e:81:5a:0b:5d:01:a0:f9:f4:d9:b5:9d:75:e1:32:16:34: aa:93:f1:36:ad:f9:b5:80:a3:f5:9f:44:e8:b1:f7:ab:d7:c7: cd:88:37:de:56:cc:61:35:c5:6e:aa:e1:65:b8:d3:91:78:9f: 78:fe:c5:d0:e5:db:fb:76:02:79:da:de:d0:3a:a3:31:9e:35: 0a:a0:b7:78:12:3e:43:fc:e8:5f:69:4b:dd:d4:5a:4f:04:1a: 37:f0:fa:bc:f0:2c:67:53:d4:90:27:5d:66:fd:9b:00:f0:ed: d5:2b:2e:bd:5a:92:22:91:14:27:cc:3c:58:8f:3e:5b:9e:81: d1:d3:07:e8:4a:67:8a:7f:1d:43:5d:8e:a0:5a:83:9a:32:4b: 10:d6:39:85:c7:c9:b1:2d:9e:d2:b1:28:e0:38:28:c4:5d:84: 06:09:56:9c:ec:f1:8c:e2:f7:41:19:bf:7b:e8:7d:bf:37:8b: b3:ef:18:f3:58:9f:c7:63:c6:73:93:ce:fe:63:64:2a:65:cb: b8:9f:35:1c:00:2f:a5:b7:cc:63:22:da:81:fa:ea:9a:c6:55: 61:16:b3:59 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICFA4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA3MzAw NDM4NDNaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKEU4QjRBQkY0QUY0QzBG RUYwRjYyRDlBRUE5RUMwQUVEMjIzQjdEOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/yrLvAZE7ikoEpTJi/Ms0scKbgblOi5mCFx0Z27I2oO1yTPFt yWlZV+lIGNcKIIxK9ffTxu7DahT4SLzv7Xyi2Ixje92d6A7z2YHsPi6phZ9KqawP zuuh/n0/pqmCOvS/xgMFWuucFo/RxeOu9eIG/DP8o7WDSHPw8ylvjDWWCZ31HF7Z 8Ru2KF0Mcmf85gAQGUq7iHKqWt9f3cGthH8eFoAIaLezob2s+av/5ESR+mLUWZe9 UPWSXNUhbZ8AkNGFx90Ag2tXvDkny/iwKgy0ccO9J1fWALBWKaZSgn8HZyM1xrVg vG3VWJeBCOM0A8AlT/VZfwq42d2XuRebakjxAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6LSr9K9MD+8PYtmuqewK7SI7fZcwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzLzZMU3I5SzlNRC04UFl0 bXVxZXdLN1NJN2ZaYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6DAwDQYJKoZIhvcNAQELBQADggEBAAkG+loOEKhFuhzM81sAw9kpcpcLa4XV 0OT8iHEAoCG5y8Ch5AMugVoLXQGg+fTZtZ114TIWNKqT8Tat+bWAo/WfROix96vX x82IN95WzGE1xW6q4WW405F4n3j+xdDl2/t2Anna3tA6ozGeNQqgt3gSPkP86F9p S93UWk8EGjfw+rzwLGdT1JAnXWb9mwDw7dUrLr1akiKRFCfMPFiPPluegdHTB+hK Z4p/HUNdjqBag5oySxDWOYXHybEtntKxKOA4KMRdhAYJVpzs8Yzi90EZv3vofb83 i7PvGPNYn8djxnOTzv5jZCply7ifNRwAL6W3zGMi2oH66prGVWEWs1k= -----END CERTIFICATE-----Generated at Mon Aug 11 02:07:22 2025 by rpki-client