$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/413/mx4cpcxSzhtU_E6kjp_d9yBOXyU.roa File: mx4cpcxSzhtU_E6kjp_d9yBOXyU.roa (raw, json) Hash identifier: yuM4GDQgG09aWY9cf3RaJN5IFShe944BoFFB4C2MytY= Subject key identifier: 9B:1E:1C:A5:CC:52:CE:1B:54:FC:4E:A4:8E:9F:DD:F7:20:4E:5F:25 Certificate issuer: /CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Certificate serial: 13DC Authority key identifier: C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/mx4cpcxSzhtU_E6kjp_d9yBOXyU.roa Signing time: Mon 21 Jul 2025 11:55:14 +0000 ROA not before: Mon 21 Jul 2025 11:55:14 +0000 ROA not after: Fri 03 Apr 2026 08:00:09 +0000 asID: 62387 IP address blocks: 101.232.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 09:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5084 (0x13dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C65BF57BDC9B5BE7D97E0D65AA4222B1EFAABEAA Validity Not Before: Jul 21 11:55:14 2025 GMT Not After : Apr 3 08:00:09 2026 GMT Subject: CN=9B1E1CA5CC52CE1B54FC4EA48E9FDDF7204E5F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:71:e4:7a:dd:42:d2:28:12:3d:27:b0:bf: 75:6c:57:2e:f4:44:6b:9f:5a:fa:b6:2e:cc:fa:6f: 63:9a:19:fe:91:0a:69:83:17:ec:f3:48:33:39:1b: 0d:7a:29:81:09:40:96:b5:f3:11:31:d4:93:06:ee: d0:22:68:bd:b2:ad:18:a6:3e:c6:ff:27:7b:f7:81: 49:7d:58:bd:ec:41:f5:01:12:0b:a7:ee:23:3c:8e: ac:5a:08:cc:43:98:54:e5:81:32:fd:c3:0b:9f:4c: dd:a5:85:b5:9b:de:c8:da:bb:d9:69:ea:68:71:26: 8a:46:b4:35:e5:98:ff:b6:86:2e:1a:59:01:66:b6: cb:1a:72:51:19:23:d0:7f:b0:39:11:5a:a6:e2:5e: 9b:9d:5c:77:ee:ce:94:c8:2e:bc:61:fd:4b:67:7c: 93:8d:0c:0e:24:28:d7:29:cb:06:7f:a5:d3:80:e3: 14:f7:bc:d2:1f:33:ed:18:cb:2c:1b:a3:d8:ab:bc: e8:2e:9e:93:b2:32:99:85:b0:79:5a:2e:72:f6:da: 4d:67:c4:56:8d:9e:6e:6e:a4:e5:64:4b:0f:a8:0e: 3c:57:28:8e:80:02:34:21:c9:72:c3:28:18:57:d6: eb:ba:ab:2f:83:6f:cb:9e:4f:69:24:37:8f:0b:48: 41:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:1E:1C:A5:CC:52:CE:1B:54:FC:4E:A4:8E:9F:DD:F7:20:4E:5F:25 X509v3 Authority Key Identifier: keyid:C6:5B:F5:7B:DC:9B:5B:E7:D9:7E:0D:65:AA:42:22:B1:EF:AA:BE:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/xlv1e9ybW-fZfg1lqkIise-qvqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/xlv1e9ybW-fZfg1lqkIise-qvqo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/413/mx4cpcxSzhtU_E6kjp_d9yBOXyU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.232.136.0/22 Signature Algorithm: sha256WithRSAEncryption 15:02:36:6e:f9:82:68:35:fb:ca:ab:09:c6:bb:13:63:0a:83: 8f:47:33:83:72:34:92:44:43:fa:47:10:0a:52:90:ad:38:cf: 37:7c:5e:d8:93:b1:0a:4b:59:c5:74:55:b3:7d:5f:5c:34:bc: c8:8e:2d:8e:d5:0b:a6:51:82:77:8c:be:96:4d:c5:ae:cc:15: b0:fd:c0:f9:3e:09:e4:6f:a7:41:50:3a:f7:ca:75:f6:a1:35: 8b:f6:44:68:c5:d2:75:3e:af:9d:42:ac:08:b0:58:a7:14:f9: ec:84:f2:c6:a4:63:e1:5b:97:87:ad:2b:27:2d:21:88:c1:1e: 6d:e1:3e:f0:88:d0:50:f9:1d:43:66:95:3f:78:77:6f:6f:9e: 02:f1:72:29:88:09:6f:ae:94:ec:9f:32:7c:58:4c:cb:9f:53: bc:17:51:5a:54:f1:af:d3:25:72:3c:f9:17:51:ce:a8:a5:c0: 36:41:8a:34:58:e0:3d:eb:61:c5:e1:68:82:a5:39:3c:e3:73: 5c:92:aa:74:02:fc:f4:dc:db:84:d2:27:20:6b:ce:b7:c5:91: 42:0b:e1:e2:67:2e:fb:0b:06:f4:9a:cd:e0:10:02:7f:81:c5: 28:4c:2d:e6:d1:a3:7e:9f:af:df:54:9a:28:c8:89:c2:b8:84: 11:bb:a4:31 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICE9wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzY1 QkY1N0JEQzlCNUJFN0Q5N0UwRDY1QUE0MjIyQjFFRkFBQkVBQTAeFw0yNTA3MjEx MTU1MTRaFw0yNjA0MDMwODAwMDlaMDMxMTAvBgNVBAMTKDlCMUUxQ0E1Q0M1MkNF MUI1NEZDNEVBNDhFOUZEREY3MjA0RTVGMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1C3Hket1C0igSPSewv3VsVy70RGufWvq2Lsz6b2OaGf6RCmmD F+zzSDM5Gw16KYEJQJa18xEx1JMG7tAiaL2yrRimPsb/J3v3gUl9WL3sQfUBEgun 7iM8jqxaCMxDmFTlgTL9wwufTN2lhbWb3sjau9lp6mhxJopGtDXlmP+2hi4aWQFm tssaclEZI9B/sDkRWqbiXpudXHfuzpTILrxh/UtnfJONDA4kKNcpywZ/pdOA4xT3 vNIfM+0Yyywbo9irvOgunpOyMpmFsHlaLnL22k1nxFaNnm5upOVkSw+oDjxXKI6A AjQhyXLDKBhX1uu6qy+Db8ueT2kkN48LSEH3AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmx4cpcxSzhtU/E6kjp/d9yBOXyUwHwYDVR0jBBgwFoAUxlv1e9ybW+fZfg1l qkIise+qvqowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEz L3hsdjFlOXliVy1mWmZnMWxxa0lpc2UtcXZxby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAveGx2MWU5eWJXLWZaZmcxbHFrSWlzZS1xdnFvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNDEzL214NGNwY3hTemh0VV9F NmtqcF9kOXlCT1h5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJl6IgwDQYJKoZIhvcNAQELBQADggEBABUCNm75gmg1+8qrCca7E2MKg49HM4Ny NJJEQ/pHEApSkK04zzd8XtiTsQpLWcV0VbN9X1w0vMiOLY7VC6ZRgneMvpZNxa7M FbD9wPk+CeRvp0FQOvfKdfahNYv2RGjF0nU+r51CrAiwWKcU+eyE8sakY+Fbl4et KyctIYjBHm3hPvCI0FD5HUNmlT94d29vngLxcimICW+ulOyfMnxYTMufU7wXUVpU 8a/TJXI8+RdRzqilwDZBijRY4D3rYcXhaIKlOTzjc1ySqnQC/PTc24TSJyBrzrfF kUIL4eJnLvsLBvSazeAQAn+BxShMLebRo36fr99UmijIicK4hBG7pDE= -----END CERTIFICATE-----Generated at Mon Aug 11 07:39:15 2025 by rpki-client