$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/05dvA-8ZfJyUgeITEnNZJwhv200.roa File: 05dvA-8ZfJyUgeITEnNZJwhv200.roa (raw, json) Hash identifier: AA0YCO5z2Goij66b3RauMvedZwcLSay9ngOrzY8rL/c= Subject key identifier: D3:97:6F:03:EF:19:7C:9C:94:81:E2:13:12:73:59:27:08:6F:DB:4D Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15AD Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/05dvA-8ZfJyUgeITEnNZJwhv200.roa Signing time: Sat 13 Sep 2025 03:06:42 +0000 ROA not before: Sat 13 Sep 2025 03:06:42 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 115.175.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5549 (0x15ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:42 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D3976F03EF197C9C9481E21312735927086FDB4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2b:4a:3f:b8:b9:4a:0d:18:a6:7c:cb:c9:73: b3:e9:c1:82:8f:57:1c:47:e0:49:14:c8:9a:ce:19: 50:8c:d8:03:07:c5:85:29:0c:6f:f8:c1:22:ce:d3: 82:3a:9c:30:a2:7e:2e:a8:ca:87:48:10:25:ae:e8: 9a:22:b0:b8:23:2f:f1:c3:04:50:cd:6b:3c:8a:45: 64:c9:d9:e3:01:36:26:47:37:14:71:c2:12:10:9f: 52:6f:14:83:0f:61:c9:d0:a3:d0:96:10:e4:be:04: 84:d0:4e:de:12:7c:b2:e0:65:df:af:9c:39:54:4d: 2b:9e:19:5f:33:24:f8:64:c6:71:c9:a7:32:20:12: 16:f2:5e:1b:03:8e:f3:9d:a1:b8:58:aa:af:62:ac: 1b:84:40:7c:de:0e:c6:1f:67:61:4c:19:0f:91:28: 2e:b8:53:c2:7d:c1:42:24:19:ad:2d:ba:e5:14:19: 0c:cf:26:b2:98:11:13:a0:56:8e:09:0e:51:65:1f: e8:fe:42:8e:d5:ad:26:d9:02:81:2d:a8:21:b4:69: de:f2:5e:4b:df:87:6d:d7:fc:41:7d:2f:47:72:50: a6:5f:5e:7d:02:97:02:88:1f:43:67:59:6f:a0:60: 3e:26:ee:ba:c1:c1:be:2d:e0:72:07:f9:2a:90:67: 6a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:97:6F:03:EF:19:7C:9C:94:81:E2:13:12:73:59:27:08:6F:DB:4D X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/05dvA-8ZfJyUgeITEnNZJwhv200.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.175.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5c:c9:64:a9:72:04:ef:21:cd:88:37:89:7d:00:f1:26:df:a4: 08:33:50:9f:fd:1d:b6:d9:35:e3:e8:3b:25:85:bb:12:da:6b: 0f:a0:60:14:49:98:14:49:13:85:a4:86:41:17:fc:ac:89:1d: c9:a8:d1:59:9f:13:8e:b4:f7:ec:95:68:44:b5:bd:e5:5d:71: d9:d0:fd:cd:47:91:46:5e:89:5e:e5:36:92:6b:a6:dc:69:62: 87:26:bd:b9:b1:e3:d4:00:48:f0:ad:15:22:9a:18:43:dd:9a: d7:71:73:80:78:28:64:46:66:5c:b2:52:e3:42:1e:2e:cc:81: 7e:39:76:57:ca:43:7d:f6:4f:ae:4f:78:a2:fc:a6:a8:49:a4: 10:b5:3c:f7:f8:1d:d6:70:d5:06:e8:d1:f0:d3:06:ba:7f:2c: 3e:76:9a:a1:d5:d8:eb:6e:86:b0:a4:44:a0:20:4b:41:fc:0a: d6:01:10:b9:8f:53:c5:ee:e9:cc:2a:22:29:2a:39:74:ce:10: 67:eb:d3:24:05:97:4a:0a:cf:4e:9d:3a:bb:4b:34:93:45:4b: 40:29:50:db:37:1b:fd:56:72:92:6b:71:95:f8:65:2d:26:ab: d8:52:5d:41:37:ff:8e:00:a7:a5:30:23:10:e0:20:e1:be:20: 9a:59:3d:68 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFa0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDJaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQzOTc2RjAzRUYxOTdD OUM5NDgxRTIxMzEyNzM1OTI3MDg2RkRCNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9K0o/uLlKDRimfMvJc7PpwYKPVxxH4EkUyJrOGVCM2AMHxYUp DG/4wSLO04I6nDCifi6oyodIECWu6JoisLgjL/HDBFDNazyKRWTJ2eMBNiZHNxRx whIQn1JvFIMPYcnQo9CWEOS+BITQTt4SfLLgZd+vnDlUTSueGV8zJPhkxnHJpzIg EhbyXhsDjvOdobhYqq9irBuEQHzeDsYfZ2FMGQ+RKC64U8J9wUIkGa0tuuUUGQzP JrKYEROgVo4JDlFlH+j+Qo7VrSbZAoEtqCG0ad7yXkvfh23X/EF9L0dyUKZfXn0C lwKIH0NnWW+gYD4m7rrBwb4t4HIH+SqQZ2qXAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU05dvA+8ZfJyUgeITEnNZJwhv200wHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvMDVkdkEtOFpmSnlV Z2VJVEVuTlpKd2h2MjAwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXOvIDANBgkqhkiG9w0BAQsFAAOCAQEAXMlkqXIE7yHNiDeJfQDxJt+kCDNQ n/0dttk14+g7JYW7EtprD6BgFEmYFEkThaSGQRf8rIkdyajRWZ8TjrT37JVoRLW9 5V1x2dD9zUeRRl6JXuU2kmum3Glihya9ubHj1ABI8K0VIpoYQ92a13FzgHgoZEZm XLJS40IeLsyBfjl2V8pDffZPrk94ovymqEmkELU89/gd1nDVBujR8NMGun8sPnaa odXY626GsKREoCBLQfwK1gEQuY9Txe7pzCoiKSo5dM4QZ+vTJAWXSgrPTp06u0s0 k0VLQClQ2zcb/VZykmtxlfhlLSar2FJdQTf/jgCnpTAjEOAg4b4gmlk9aA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:03 2025 by rpki-client