$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/2358/YV-bcU71KiaRsGqggAmcQHSDYO0.roa File: YV-bcU71KiaRsGqggAmcQHSDYO0.roa (raw, json) Hash identifier: OEsCMgj+PCyrMdRauHOXf98dueA82V9PBQVMmn2JjQ8= Subject key identifier: 61:5F:9B:71:4E:F5:2A:26:91:B0:6A:A0:80:09:9C:40:74:83:60:ED Certificate issuer: /CN=4C0430E3518A5AF51BC0DF62567E0D157CA523C1 Certificate serial: 60 Authority key identifier: 4C:04:30:E3:51:8A:5A:F5:1B:C0:DF:62:56:7E:0D:15:7C:A5:23:C1 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TAQw41GKWvUbwN9iVn4NFXylI8E.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2358/YV-bcU71KiaRsGqggAmcQHSDYO0.roa Signing time: Mon 29 Sep 2025 11:44:37 +0000 ROA not before: Mon 29 Sep 2025 11:44:37 +0000 ROA not after: Tue 15 Sep 2026 07:06:43 +0000 asID: 131539 IP address blocks: 110.42.100.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2358/TAQw41GKWvUbwN9iVn4NFXylI8E.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2358/TAQw41GKWvUbwN9iVn4NFXylI8E.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TAQw41GKWvUbwN9iVn4NFXylI8E.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 08:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C0430E3518A5AF51BC0DF62567E0D157CA523C1 Validity Not Before: Sep 29 11:44:37 2025 GMT Not After : Sep 15 07:06:43 2026 GMT Subject: CN=615F9B714EF52A2691B06AA080099C40748360ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:d0:2e:0c:ba:cf:92:b2:82:8f:27:db:e1: 5e:4f:c0:da:b4:c2:ca:09:0a:7b:48:42:05:9f:9b: c1:60:c3:87:61:e8:cb:3b:80:3a:3b:fb:99:bc:0b: d0:e5:d7:bf:4f:a4:00:25:71:d8:88:94:cb:81:5c: d5:f9:66:0d:c2:b9:77:02:65:1c:d3:0c:b4:ac:f7: 12:23:25:5f:b8:bb:75:b5:c2:a5:f3:43:7a:91:2d: 67:7a:7a:97:60:45:54:ab:79:2c:c1:fb:d0:b9:1b: af:f2:48:37:22:f0:2d:35:1e:c4:c2:1b:6f:d7:17: c0:d1:b5:10:ad:e9:ec:00:de:fb:18:e5:53:d3:9f: 9d:40:d3:4d:73:59:f7:0f:28:fd:6c:82:80:2a:b0: f6:b7:1b:3f:49:2b:f4:ab:b8:43:1f:52:07:e9:48: d9:d4:a5:1e:02:7d:25:92:fe:a6:b9:79:ce:07:28: 08:fc:79:d5:09:8d:6c:c7:98:e3:af:fd:82:b0:15: 37:2c:6d:79:a9:ed:59:8b:06:4d:83:7c:70:93:89: d0:f3:61:ef:78:7d:a4:34:96:c7:3e:a9:a6:f9:42: 4b:9e:19:55:69:4f:46:e2:9e:6c:3e:e6:6d:9b:b6: 0a:92:ba:35:ac:c4:8f:5c:55:ca:b1:bf:0a:82:f7: 24:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5F:9B:71:4E:F5:2A:26:91:B0:6A:A0:80:09:9C:40:74:83:60:ED X509v3 Authority Key Identifier: keyid:4C:04:30:E3:51:8A:5A:F5:1B:C0:DF:62:56:7E:0D:15:7C:A5:23:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2358/TAQw41GKWvUbwN9iVn4NFXylI8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/TAQw41GKWvUbwN9iVn4NFXylI8E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/2358/YV-bcU71KiaRsGqggAmcQHSDYO0.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.42.100.0/24 Signature Algorithm: sha256WithRSAEncryption 49:c1:ec:e6:85:76:a9:d9:65:98:b8:f3:04:2e:b5:6c:ff:b9: 3d:20:f4:fb:b0:91:c8:56:4f:68:9c:64:86:c6:dc:e6:b1:49: e0:29:b6:45:13:5a:eb:26:f3:63:2b:38:29:e1:aa:df:8b:1f: 4d:84:8d:8d:03:21:8f:e7:01:79:f5:c7:dd:4d:8b:1b:ea:a4: 11:dd:f4:5f:28:61:c1:ce:f1:e4:00:eb:5c:04:8d:a9:e4:7d: 49:d1:4f:e4:e2:39:88:d8:c2:45:0c:73:cf:a3:dc:1a:49:d8: cc:03:fc:04:a0:2b:33:db:f9:b8:9f:65:4f:41:fc:48:41:06: e0:c5:61:45:62:7c:49:c3:2c:b9:fe:fa:c4:07:1d:c8:12:bf: d4:85:2b:3f:dc:6d:7f:0b:aa:a6:05:08:c4:6b:c5:1a:6b:fa: ed:9c:be:d7:50:0b:b8:09:bb:cd:6f:27:8e:33:f6:4e:1b:90: 3f:56:65:50:b4:97:7a:a3:9d:b9:d1:2f:c3:4e:21:75:a4:30: 8d:23:79:29:eb:95:6a:1e:38:7c:3b:58:21:74:42:da:ab:de: f6:22:54:71:bd:5a:0d:8d:19:79:51:45:a3:93:cb:82:12:37: 00:c0:62:40:02:50:59:d2:4d:4e:9b:58:55:01:ff:e4:50:30: b6:53:80:81 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QzA0 MzBFMzUxOEE1QUY1MUJDMERGNjI1NjdFMEQxNTdDQTUyM0MxMB4XDTI1MDkyOTEx NDQzN1oXDTI2MDkxNTA3MDY0M1owMzExMC8GA1UEAxMoNjE1RjlCNzE0RUY1MkEy NjkxQjA2QUEwODAwOTlDNDA3NDgzNjBFRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMQO0C4Mus+SsoKPJ9vhXk/A2rTCygkKe0hCBZ+bwWDDh2HoyzuA Ojv7mbwL0OXXv0+kACVx2IiUy4Fc1flmDcK5dwJlHNMMtKz3EiMlX7i7dbXCpfND epEtZ3p6l2BFVKt5LMH70Lkbr/JINyLwLTUexMIbb9cXwNG1EK3p7ADe+xjlU9Of nUDTTXNZ9w8o/WyCgCqw9rcbP0kr9Ku4Qx9SB+lI2dSlHgJ9JZL+prl5zgcoCPx5 1QmNbMeY46/9grAVNyxteantWYsGTYN8cJOJ0PNh73h9pDSWxz6ppvlCS54ZVWlP RuKebD7mbZu2CpK6NazEj1xVyrG/CoL3JA8CAwEAAaOCAfMwggHvMB0GA1UdDgQW BBRhX5txTvUqJpGwaqCACZxAdINg7TAfBgNVHSMEGDAWgBRMBDDjUYpa9RvA32JW fg0VfKUjwTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8yMzU4 L1RBUXc0MUdLV3ZVYndOOWlWbjRORlh5bEk4RS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvVEFRdzQxR0tXdlVid045aVZuNE5GWHlsSThFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMjM1OC9ZVi1iY1U3MUtpYVJz R3FnZ0FtY1FIU0RZTzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25u aWMuY24vcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAbipkMA0GCSqGSIb3DQEBCwUAA4IBAQBJwezmhXap2WWYuPMELrVs/7k9IPT7 sJHIVk9onGSGxtzmsUngKbZFE1rrJvNjKzgp4arfix9NhI2NAyGP5wF59cfdTYsb 6qQR3fRfKGHBzvHkAOtcBI2p5H1J0U/k4jmI2MJFDHPPo9waSdjMA/wEoCsz2/m4 n2VPQfxIQQbgxWFFYnxJwyy5/vrEBx3IEr/UhSs/3G1/C6qmBQjEa8Uaa/rtnL7X UAu4CbvNbyeOM/ZOG5A/VmVQtJd6o5250S/DTiF1pDCNI3kp65VqHjh8O1ghdELa q972IlRxvVoNjRl5UUWjk8uCEjcAwGJAAlBZ0k1Om1hVAf/kUDC2U4CB -----END CERTIFICATE-----Generated at Mon Oct 20 05:45:59 2025 by rpki-client