$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/PV3NoYJ4luqWeXwZgNAcmoFPRp8.roa File: PV3NoYJ4luqWeXwZgNAcmoFPRp8.roa (raw, json) Hash identifier: y7qRB1JfkKhqd8IfW2PZRFTxRsXS4L5MjUYwS2x4FoM= Subject key identifier: 3D:5D:CD:A1:82:78:96:EA:96:79:7C:19:80:D0:1C:9A:81:4F:46:9F Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 13E2 Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/PV3NoYJ4luqWeXwZgNAcmoFPRp8.roa Signing time: Mon 21 Jul 2025 11:55:59 +0000 ROA not before: Mon 21 Jul 2025 11:55:59 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 06:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5090 (0x13e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jul 21 11:55:59 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=3D5DCDA1827896EA96797C1980D01C9A814F469F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:29:30:11:53:c0:2b:d8:00:2a:e4:ad:0e:c8: 9f:b9:82:aa:87:d2:e6:17:a2:33:95:cf:1c:b4:89: 63:6d:d3:bc:da:29:67:72:bc:4e:bf:21:82:97:bc: 25:1b:37:ba:2b:70:9b:e3:cc:81:47:9d:e9:99:dc: 91:ee:a8:fe:28:bf:6b:7a:7c:81:d6:a3:36:73:09: 2a:dd:b2:f6:89:54:d2:15:37:6b:20:b9:ab:7c:2b: 8e:d2:9b:fb:60:5e:77:58:ba:26:83:10:03:97:12: 38:52:43:0d:d5:2a:43:5a:fa:ba:89:0d:89:82:49: 6b:56:ce:21:ce:d4:dc:21:7a:81:25:98:02:01:9a: 3d:bb:cf:b7:b1:35:54:52:4f:18:12:f1:db:25:cb: 4e:d2:b0:ac:4d:7d:1f:4c:e6:23:83:fe:f8:fd:9a: 9b:ab:0a:9b:c2:c4:e5:8f:db:3b:76:52:02:1e:3b: 6d:d5:31:41:b2:bc:33:d0:02:ca:b5:b8:41:0c:95: d4:74:0f:ed:ba:6a:6c:c0:65:a0:9f:dc:d9:d8:16: 20:89:f0:82:56:20:b0:56:e4:ec:6f:55:8c:94:63: 32:2b:6d:af:75:52:77:7b:38:a2:77:a9:e2:3a:d6: f1:58:b0:c5:4f:6f:33:92:40:b1:41:8b:26:92:17: 5c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5D:CD:A1:82:78:96:EA:96:79:7C:19:80:D0:1C:9A:81:4F:46:9F X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/PV3NoYJ4luqWeXwZgNAcmoFPRp8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.148.0/22 Signature Algorithm: sha256WithRSAEncryption 44:38:15:74:69:f2:23:9e:16:b8:42:05:81:82:d5:d7:4f:bd: b6:3f:a8:6f:ef:71:53:e2:15:a3:ec:92:86:5d:ff:6b:f1:da: 1a:47:df:a6:a2:ea:e2:27:c9:53:a8:55:27:51:25:03:37:bc: 35:9c:c2:14:2c:df:e5:51:dd:07:34:b6:cb:45:92:a3:4a:b1: 13:56:42:5a:cc:66:01:89:6f:7f:f7:f8:98:5b:43:fa:d6:2f: 18:0b:be:bb:c4:11:5c:d6:80:b7:f9:e4:0b:6c:ea:bd:c8:b7: 56:4a:65:fc:1e:a7:ed:6c:a8:00:f5:f6:b7:98:e7:61:f4:31: 07:c4:26:11:72:2d:e8:45:06:89:2f:9d:16:a7:0e:fd:42:79: 7d:d6:aa:8b:a6:66:7e:90:ad:4e:b9:76:b5:01:5b:32:44:97: d9:39:ee:5d:92:a8:0b:a0:f9:d5:18:66:df:29:3f:76:b6:84: 23:67:64:4d:05:55:91:3c:87:69:46:12:5c:69:7a:c9:c3:54: d8:2a:4c:4d:af:2a:f1:8e:fd:4f:29:e5:a4:6c:a7:8c:49:64: f3:4e:76:01:21:49:8f:81:2f:85:9c:86:9b:14:9d:44:81:6f: 4a:1b:1f:b1:f0:3c:eb:ba:01:81:63:ec:69:d6:80:72:ae:d0: c7:7f:eb:12 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICE+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA3MjEx MTU1NTlaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDNENURDREExODI3ODk2 RUE5Njc5N0MxOTgwRDAxQzlBODE0RjQ2OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhKTARU8Ar2AAq5K0OyJ+5gqqH0uYXojOVzxy0iWNt07zaKWdy vE6/IYKXvCUbN7orcJvjzIFHnemZ3JHuqP4ov2t6fIHWozZzCSrdsvaJVNIVN2sg uat8K47Sm/tgXndYuiaDEAOXEjhSQw3VKkNa+rqJDYmCSWtWziHO1NwheoElmAIB mj27z7exNVRSTxgS8dsly07SsKxNfR9M5iOD/vj9mpurCpvCxOWP2zt2UgIeO23V MUGyvDPQAsq1uEEMldR0D+26amzAZaCf3NnYFiCJ8IJWILBW5OxvVYyUYzIrba91 Und7OKJ3qeI61vFYsMVPbzOSQLFBiyaSF1zlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUPV3NoYJ4luqWeXwZgNAcmoFPRp8wHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL1BWM05vWUo0bHVxV2VY d1pnTkFjbW9GUFJwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6JQwDQYJKoZIhvcNAQELBQADggEBAEQ4FXRp8iOeFrhCBYGC1ddPvbY/qG/v cVPiFaPskoZd/2vx2hpH36ai6uInyVOoVSdRJQM3vDWcwhQs3+VR3Qc0tstFkqNK sRNWQlrMZgGJb3/3+JhbQ/rWLxgLvrvEEVzWgLf55Ats6r3It1ZKZfwep+1sqAD1 9reY52H0MQfEJhFyLehFBokvnRanDv1CeX3WqoumZn6QrU65drUBWzJEl9k57l2S qAug+dUYZt8pP3a2hCNnZE0FVZE8h2lGElxpesnDVNgqTE2vKvGO/U8p5aRsp4xJ ZPNOdgEhSY+BL4WchpsUnUSBb0obH7HwPOu6AYFj7GnWgHKu0Md/6xI= -----END CERTIFICATE-----Generated at Mon Aug 11 04:32:29 2025 by rpki-client