$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/846/99HRwhw6tal7rDmw-PFDo59JioM.roa File: 99HRwhw6tal7rDmw-PFDo59JioM.roa (raw, json) Hash identifier: T7qj9RdduCmFelHSSIKeK8dbeOUk57gZ9sZGu20s13s= Subject key identifier: F7:D1:D1:C2:1C:3A:B5:A9:7B:AC:39:B0:F8:F1:43:A3:9F:49:8A:83 Certificate issuer: /CN=88A408EEB5D3A6FE2CB928C50C9FB6802F90267F Certificate serial: 11 Authority key identifier: 88:A4:08:EE:B5:D3:A6:FE:2C:B9:28:C5:0C:9F:B6:80:2F:90:26:7F Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iKQI7rXTpv4suSjFDJ-2gC-QJn8.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/99HRwhw6tal7rDmw-PFDo59JioM.roa Signing time: Thu 23 Oct 2025 00:33:29 +0000 ROA not before: Thu 23 Oct 2025 00:33:29 +0000 ROA not after: Wed 21 Oct 2026 02:14:57 +0000 asID: 59073 IP address blocks: 2402:93c0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/iKQI7rXTpv4suSjFDJ-2gC-QJn8.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/iKQI7rXTpv4suSjFDJ-2gC-QJn8.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iKQI7rXTpv4suSjFDJ-2gC-QJn8.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 13:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88A408EEB5D3A6FE2CB928C50C9FB6802F90267F Validity Not Before: Oct 23 00:33:29 2025 GMT Not After : Oct 21 02:14:57 2026 GMT Subject: CN=F7D1D1C21C3AB5A97BAC39B0F8F143A39F498A83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:08:8c:6d:dc:b2:09:32:a4:9d:71:04:9a:bb: c1:86:3c:d0:3e:9b:a7:8f:9e:8a:a7:3b:a3:dd:f8: 6b:87:6e:b3:0b:b7:cf:f5:73:e8:74:d4:a8:0f:cc: 20:ad:b6:f0:87:56:c2:70:65:4c:f2:a8:41:68:a7: 1c:d2:e7:ed:57:35:8b:81:f7:ba:da:fd:cb:a0:70: 13:11:87:ed:5d:88:f2:ec:b3:9b:13:49:ad:17:55: f6:30:17:81:a1:4b:1d:08:ef:41:17:b8:3c:77:c4: 84:f7:7b:32:8b:c3:2b:ff:34:0e:bd:af:17:cb:d8: 7d:19:74:d7:32:51:96:31:f3:09:0c:a4:86:6e:a7: 73:f6:8b:c6:40:28:24:3c:eb:64:ad:fb:f4:18:05: dc:92:70:a6:d2:4b:ee:96:88:5e:20:d4:a9:35:a8: 62:7d:eb:07:ec:2e:c0:67:a3:20:4e:c3:33:32:6b: ae:f8:f4:30:70:bb:a4:97:5a:9f:fa:80:ba:1a:85: d0:c7:38:f8:c5:c8:d2:5a:7e:62:7c:0a:5f:c8:39: bc:3c:bc:38:77:f8:3b:15:98:75:f2:a2:62:7e:ea: 42:02:64:c1:88:45:52:67:c2:18:6d:13:fd:6b:9f: 24:94:15:6b:1b:85:dd:43:3c:7b:07:70:2e:88:72: 97:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D1:D1:C2:1C:3A:B5:A9:7B:AC:39:B0:F8:F1:43:A3:9F:49:8A:83 X509v3 Authority Key Identifier: keyid:88:A4:08:EE:B5:D3:A6:FE:2C:B9:28:C5:0C:9F:B6:80:2F:90:26:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/iKQI7rXTpv4suSjFDJ-2gC-QJn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/iKQI7rXTpv4suSjFDJ-2gC-QJn8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/846/99HRwhw6tal7rDmw-PFDo59JioM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:93c0:20::/48 Signature Algorithm: sha256WithRSAEncryption 77:60:dc:27:89:99:f2:59:b6:19:62:5f:a2:dc:a7:c5:36:53: d9:81:2e:5d:d8:e5:23:1d:51:04:a7:1b:c1:ef:66:d8:85:1c: 9c:b3:aa:e8:88:bb:b1:7e:c7:c1:29:e6:02:3b:6c:7e:a3:91: cd:bc:13:08:69:ed:6d:19:f0:23:78:02:1c:44:c7:4a:91:38: 68:bd:77:6e:16:50:aa:e2:02:a0:68:d2:c6:c0:d9:16:a3:2e: 02:09:1a:9c:54:45:28:45:0c:0e:e9:87:07:8a:68:6f:2f:a6: f1:8f:d1:af:4e:df:f8:e7:9c:07:c8:20:0d:df:d8:c8:a3:d4: 32:84:0f:c9:ea:fe:8f:86:72:01:33:ee:c5:f8:07:27:df:4f: 68:ef:e6:19:23:4b:c7:12:25:1c:12:43:0b:68:89:44:37:e3: 76:cc:96:a5:34:77:4c:27:85:15:86:36:e4:3b:99:2e:37:53: 61:4f:e4:40:01:1e:ea:3c:65:b4:97:1f:98:22:5a:80:0c:fa: 18:b6:45:a2:fb:fc:fc:d5:74:91:cb:43:4a:51:ed:66:1f:73: 58:0e:cd:9d:fe:c9:74:20:6d:f1:d0:49:c5:2c:b9:f9:f5:68: 48:df:cb:db:a1:b1:d2:b0:80:00:85:62:99:1a:24:b5:b3:39: 16:ad:c1:cf -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OEE0 MDhFRUI1RDNBNkZFMkNCOTI4QzUwQzlGQjY4MDJGOTAyNjdGMB4XDTI1MTAyMzAw MzMyOVoXDTI2MTAyMTAyMTQ1N1owMzExMC8GA1UEAxMoRjdEMUQxQzIxQzNBQjVB OTdCQUMzOUIwRjhGMTQzQTM5RjQ5OEE4MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALQIjG3csgkypJ1xBJq7wYY80D6bp4+eiqc7o934a4duswu3z/Vz 6HTUqA/MIK228IdWwnBlTPKoQWinHNLn7Vc1i4H3utr9y6BwExGH7V2I8uyzmxNJ rRdV9jAXgaFLHQjvQRe4PHfEhPd7MovDK/80Dr2vF8vYfRl01zJRljHzCQykhm6n c/aLxkAoJDzrZK379BgF3JJwptJL7paIXiDUqTWoYn3rB+wuwGejIE7DMzJrrvj0 MHC7pJdan/qAuhqF0Mc4+MXI0lp+YnwKX8g5vDy8OHf4OxWYdfKiYn7qQgJkwYhF UmfCGG0T/WufJJQVaxuF3UM8ewdwLohyl98CAwEAAaOCAfQwggHwMB0GA1UdDgQW BBT30dHCHDq1qXusObD48UOjn0mKgzAfBgNVHSMEGDAWgBSIpAjutdOm/iy5KMUM n7aAL5AmfzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC84NDYv aUtRSTdyWFRwdjRzdVNqRkRKLTJnQy1RSm44LmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9pS1FJN3JYVHB2NHN1U2pGREotMmdDLVFKbjguY2VyMA4GA1UdDwEB/wQE AwIHgDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC84NDYvOTlIUndodzZ0YWw3ckRt dy1QRkRvNTlKaW9NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNubmlj LmNuL3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACQCk8AAIDANBgkqhkiG9w0BAQsFAAOCAQEAd2DcJ4mZ8lm2GWJfotynxTZT2YEu XdjlIx1RBKcbwe9m2IUcnLOq6Ii7sX7HwSnmAjtsfqORzbwTCGntbRnwI3gCHETH SpE4aL13bhZQquICoGjSxsDZFqMuAgkanFRFKEUMDumHB4poby+m8Y/Rr07f+Oec B8ggDd/YyKPUMoQPyer+j4ZyATPuxfgHJ99PaO/mGSNLxxIlHBJDC2iJRDfjdsyW pTR3TCeFFYY25DuZLjdTYU/kQAEe6jxltJcfmCJagAz6GLZFovv8/NV0kctDSlHt Zh9zWA7Nnf7JdCBt8dBJxSy5+fVoSN/L26Gx0rCAAIVimRoktbM5Fq3Bzw== -----END CERTIFICATE-----Generated at Fri Nov 7 12:39:24 2025 by rpki-client