$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/0qQRL18CRO3k_Ca5EjsQqBGexsM.roa File: 0qQRL18CRO3k_Ca5EjsQqBGexsM.roa (raw, json) Hash identifier: mZ3X9qPBSwSMY40H+NDztgjkX5p7loQ/6GRX5R714dw= Subject key identifier: D2:A4:11:2F:5F:02:44:ED:E4:FC:26:B9:12:3B:10:A8:11:9E:C6:C3 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15C2 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/0qQRL18CRO3k_Ca5EjsQqBGexsM.roa Signing time: Sat 13 Sep 2025 03:06:46 +0000 ROA not before: Sat 13 Sep 2025 03:06:46 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 113.47.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5570 (0x15c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=D2A4112F5F0244EDE4FC26B9123B10A8119EC6C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:98:76:14:42:f6:30:15:ba:18:b4:70:b1:ef: 2a:6e:47:ad:5a:b4:35:05:fb:33:c1:00:27:79:58: ee:0f:6b:a7:5a:fe:c3:4d:a5:31:51:fc:56:db:bb: a7:1a:26:62:17:89:43:cc:f7:95:ea:cf:a4:45:2e: 41:10:79:95:53:af:14:df:1d:3e:2a:97:62:17:cf: c2:88:0e:20:b6:0a:8b:c8:81:fd:dd:b5:cb:e5:22: be:6a:8f:2d:f8:98:6f:ae:d2:76:9e:f0:eb:1d:cc: 80:09:85:c5:2b:d0:c8:e8:f7:55:86:c0:61:af:f8: ba:0a:08:64:32:49:4d:97:01:74:98:3e:1d:93:a9: bb:b3:f3:9a:3b:82:cd:d4:94:1b:37:26:7a:01:a4: ef:96:11:c9:3f:6f:fc:a5:89:b6:e2:7e:2e:1b:02: 78:00:32:8b:d8:00:ae:3c:07:c5:bd:e6:19:64:3c: b5:5f:f6:93:c3:d2:78:35:84:f2:bf:c0:21:03:69: c3:b1:8b:0d:48:13:54:c5:ad:83:e3:0b:ce:cb:67: 93:27:f9:45:9b:9f:b2:f3:f9:ba:85:e0:80:65:dc: 40:47:83:7e:9a:b0:d0:ce:a0:50:62:da:9d:08:8b: 00:97:b7:20:8b:2d:47:55:ad:aa:f7:08:6d:8c:44: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A4:11:2F:5F:02:44:ED:E4:FC:26:B9:12:3B:10:A8:11:9E:C6:C3 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/0qQRL18CRO3k_Ca5EjsQqBGexsM.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.47.230.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:e6:1c:09:e8:c5:6f:da:64:b9:29:36:8c:7a:3a:fb:ee:92: 95:0a:cd:f7:38:67:ac:7e:9e:b4:15:93:27:e3:62:12:87:e7: 46:b0:b2:27:0c:db:bb:c8:e6:5e:2a:d6:6b:b3:4e:27:ff:6a: ba:2a:21:12:45:ac:8b:f7:a7:6e:33:75:33:79:cd:bb:f6:81: 77:66:86:b4:22:c4:33:e0:4c:3d:db:0a:78:b0:39:f0:d2:03: 58:93:61:96:90:b3:02:c3:0b:70:17:69:71:1d:42:81:11:02: cc:65:ec:86:44:2a:de:d0:14:0d:17:ac:94:0b:9d:4b:a1:1c: 26:c3:5a:50:79:5e:bf:a3:61:6f:80:4b:15:0c:bd:45:04:7b: 9f:52:94:ac:83:0d:43:ef:05:c2:7c:7b:19:7a:80:6a:e0:6e: af:71:36:2d:fd:e7:7e:57:97:3f:7d:6f:86:00:ea:1a:a4:3e: a6:68:4c:c4:a0:5b:1e:93:1b:72:5f:28:97:a7:bb:b1:03:56: 70:50:37:2c:cf:1a:4b:ef:f9:41:4c:65:fc:a0:94:44:bf:25: a4:c6:c4:ac:c2:07:d2:c0:3a:1a:8e:f8:2c:89:98:ef:8b:05: 91:ee:f6:a6:5d:74:a9:a5:b1:61:31:5b:c8:00:09:b1:83:66: ee:f5:05:cb -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEQyQTQxMTJGNUYwMjQ0 RURFNEZDMjZCOTEyM0IxMEE4MTE5RUM2QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNmHYUQvYwFboYtHCx7ypuR61atDUF+zPBACd5WO4Pa6da/sNN pTFR/Fbbu6caJmIXiUPM95Xqz6RFLkEQeZVTrxTfHT4ql2IXz8KIDiC2CovIgf3d tcvlIr5qjy34mG+u0nae8OsdzIAJhcUr0Mjo91WGwGGv+LoKCGQySU2XAXSYPh2T qbuz85o7gs3UlBs3JnoBpO+WEck/b/ylibbifi4bAngAMovYAK48B8W95hlkPLVf 9pPD0ng1hPK/wCEDacOxiw1IE1TFrYPjC87LZ5Mn+UWbn7Lz+bqF4IBl3EBHg36a sNDOoFBi2p0IiwCXtyCLLUdVrar3CG2MRKa9AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU0qQRL18CRO3k/Ca5EjsQqBGexsMwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvMHFRUkwxOENSTzNr X0NhNUVqc1FxQkdleHNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXEv5jANBgkqhkiG9w0BAQsFAAOCAQEAH+YcCejFb9pkuSk2jHo6++6SlQrN 9zhnrH6etBWTJ+NiEofnRrCyJwzbu8jmXirWa7NOJ/9quiohEkWsi/enbjN1M3nN u/aBd2aGtCLEM+BMPdsKeLA58NIDWJNhlpCzAsMLcBdpcR1CgRECzGXshkQq3tAU DReslAudS6EcJsNaUHlev6Nhb4BLFQy9RQR7n1KUrIMNQ+8Fwnx7GXqAauBur3E2 Lf3nfleXP31vhgDqGqQ+pmhMxKBbHpMbcl8ol6e7sQNWcFA3LM8aS+/5QUxl/KCU RL8lpMbErMIH0sA6Go74LImY74sFke72pl10qaWxYTFbyAAJsYNm7vUFyw== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:17 2025 by rpki-client