The CID is not transmitted by the calling party, it is handled by the call origination provider, the one with the connection to the telephone network. It used to be possible to instruct the origination equipment to pass and arbitrary CID string, but not any more.
And, if a spoofer had direct access to the network, there is nothing about the “spoofed” CID they would send to distinguish it from “real” because the spoofing isn’t at the physical layer, it’s a logical thing.
And, if a spoofer had direct access to the network, there is nothing about the “spoofed” CID they would send to distinguish it from “real” because the spoofing isn’t at the physical layer, it’s a logical thing.