$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/71UqCYeLgbSnYRmcGupASjAAHsU.roa File: 71UqCYeLgbSnYRmcGupASjAAHsU.roa (raw, json) Hash identifier: CygnVRGcvVKTT84Np9bF5YFLImwOV3EXtbgoKYpY+4A= Subject key identifier: EF:55:2A:09:87:8B:81:B4:A7:61:19:9C:1A:EA:40:4A:30:00:1E:C5 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15BF Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/71UqCYeLgbSnYRmcGupASjAAHsU.roa Signing time: Sat 13 Sep 2025 03:06:45 +0000 ROA not before: Sat 13 Sep 2025 03:06:45 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 110.41.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5567 (0x15bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:45 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=EF552A09878B81B4A761199C1AEA404A30001EC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:28:0c:72:6b:03:d3:03:97:0f:34:14:b8:1f: 59:34:37:b7:ae:8f:0d:b7:ba:dd:83:5b:5c:0e:13: dc:db:dc:29:f8:e3:7c:8a:a3:75:be:90:d8:5f:48: ac:9b:d0:02:00:33:d6:91:ef:0a:c6:25:3f:7c:10: 5a:5d:19:6f:e5:1a:ec:ae:a2:fd:5e:0d:f9:06:b8: fd:95:ed:bd:73:be:e2:77:7f:e2:48:6b:71:29:51: 74:5c:ec:bd:3c:66:f3:a3:15:3c:25:5f:13:7f:a9: 82:d3:26:ae:8b:9a:bc:cc:61:d3:fe:40:7e:a3:ac: 2a:13:d0:63:96:ef:7c:dd:32:57:28:87:79:5f:9d: d1:d0:2e:66:a9:0e:b3:dc:e9:e3:b8:8d:c6:42:6f: ef:14:15:04:f9:f9:7e:3a:dc:bf:cc:0c:02:6d:8c: 44:07:4e:51:16:da:9b:89:f4:09:ca:4c:31:4b:ea: da:ce:bf:a8:20:54:4c:0c:42:80:ca:b2:69:1b:0a: 4e:87:9c:d6:b5:ca:c6:72:fb:e3:a2:25:4b:76:9f: 41:5e:df:04:18:9b:ce:c3:a6:52:90:30:a7:31:be: 79:31:22:58:0d:a2:9e:ff:ab:a4:f5:98:78:ba:84: fb:f4:d9:f5:ce:7b:87:5e:59:46:e6:30:93:99:af: f9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:55:2A:09:87:8B:81:B4:A7:61:19:9C:1A:EA:40:4A:30:00:1E:C5 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/71UqCYeLgbSnYRmcGupASjAAHsU.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.41.210.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:ef:f4:c6:ab:a8:2c:2f:e4:1f:85:36:d5:19:6e:91:71:bc: 7d:2c:c1:27:55:27:56:fc:e2:e9:92:dc:79:c3:cb:ef:f2:10: de:c0:b4:45:e0:51:8c:66:de:ac:9c:3b:3b:f5:b4:0b:87:76: 78:70:22:30:85:5b:33:26:fa:3e:b1:19:be:f3:74:70:9f:b0: a0:e7:22:06:9f:20:b7:2a:59:ba:35:22:33:43:de:1d:15:9b: 4d:46:ea:46:aa:57:7c:63:55:1f:95:a4:07:3d:fd:fa:be:06: ef:64:b4:2d:e4:84:63:2c:e2:45:64:3a:cf:27:52:02:f8:25: ea:a0:ec:24:5f:1f:cc:1c:a9:e7:c7:3f:13:bc:ea:99:ac:04: 87:2c:bb:5c:73:81:0f:4f:17:dc:3e:c6:44:72:cf:a5:38:b7: 80:06:39:3e:e5:77:49:6c:b4:36:52:e7:3b:0c:57:3e:15:a3: 85:fb:37:ef:6e:e3:f3:8d:1f:82:af:da:35:98:71:de:11:69: 80:5e:99:e0:f8:bc:07:fd:5a:f0:e2:a3:b7:47:92:16:d0:0a: db:72:b2:73:ea:94:dc:7a:c5:d7:60:29:e7:56:6b:77:9e:31: 36:b5:26:c9:fd:82:31:af:7f:b7:40:2f:6d:df:67:b6:04:9d: 78:b5:fe:00 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDVaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEVGNTUyQTA5ODc4Qjgx QjRBNzYxMTk5QzFBRUE0MDRBMzAwMDFFQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmKAxyawPTA5cPNBS4H1k0N7eujw23ut2DW1wOE9zb3Cn443yK o3W+kNhfSKyb0AIAM9aR7wrGJT98EFpdGW/lGuyuov1eDfkGuP2V7b1zvuJ3f+JI a3EpUXRc7L08ZvOjFTwlXxN/qYLTJq6LmrzMYdP+QH6jrCoT0GOW73zdMlcoh3lf ndHQLmapDrPc6eO4jcZCb+8UFQT5+X463L/MDAJtjEQHTlEW2puJ9AnKTDFL6trO v6ggVEwMQoDKsmkbCk6HnNa1ysZy++OiJUt2n0Fe3wQYm87DplKQMKcxvnkxIlgN op7/q6T1mHi6hPv02fXOe4deWUbmMJOZr/kdAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU71UqCYeLgbSnYRmcGupASjAAHsUwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvNzFVcUNZZUxnYlNu WVJtY0d1cEFTakFBSHNVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAG4p0jANBgkqhkiG9w0BAQsFAAOCAQEAXe/0xquoLC/kH4U21RlukXG8fSzB J1UnVvzi6ZLcecPL7/IQ3sC0ReBRjGberJw7O/W0C4d2eHAiMIVbMyb6PrEZvvN0 cJ+woOciBp8gtypZujUiM0PeHRWbTUbqRqpXfGNVH5WkBz39+r4G72S0LeSEYyzi RWQ6zydSAvgl6qDsJF8fzByp58c/E7zqmawEhyy7XHOBD08X3D7GRHLPpTi3gAY5 PuV3SWy0NlLnOwxXPhWjhfs3727j840fgq/aNZhx3hFpgF6Z4Pi8B/1a8OKjt0eS FtAK23Kyc+qU3HrF12Ap51Zrd54xNrUmyf2CMa9/t0Avbd9ntgSdeLX+AA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:03 2025 by rpki-client