$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/Tpd6fVwrN6QA0nX3bFMCwI6ETSo.roa File: Tpd6fVwrN6QA0nX3bFMCwI6ETSo.roa (raw, json) Hash identifier: mzKD7qJFMNwsupy7DAG//cne1Npm7AtN44dZGPHCjSo= Subject key identifier: 4E:97:7A:7D:5C:2B:37:A4:00:D2:75:F7:6C:53:02:C0:8E:84:4D:2A Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15A9 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Tpd6fVwrN6QA0nX3bFMCwI6ETSo.roa Signing time: Sat 13 Sep 2025 03:06:41 +0000 ROA not before: Sat 13 Sep 2025 03:06:41 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 113.46.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5545 (0x15a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:41 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=4E977A7D5C2B37A400D275F76C5302C08E844D2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:0d:58:71:15:e3:ac:e0:1a:db:d2:97:58: a0:3e:ad:46:d8:f6:e0:15:83:a3:bc:d9:76:e8:d5: 1d:30:b4:42:2a:72:75:05:84:6e:6a:13:05:43:f2: e6:74:b1:e0:21:fc:60:98:29:aa:af:e7:5b:e6:6f: 13:90:d6:98:fb:c3:ac:7e:4d:8e:e8:9a:6c:89:84: 12:3a:aa:36:dd:2b:ba:59:f3:3f:24:8b:dd:1a:af: 1f:20:17:a8:ae:d0:78:3f:ac:90:30:11:ee:6b:f8: ce:6f:4a:1c:54:82:ac:17:79:92:a3:5d:fa:2c:d7: 53:54:ff:29:85:bf:f8:93:19:b7:f8:e3:40:0f:5b: 98:6d:a6:d1:70:a5:35:78:c7:fc:11:11:b7:31:ac: d1:10:a1:ac:d5:ce:c5:1a:ae:ae:54:c9:5c:80:18: e3:6a:92:32:3e:ca:f8:f9:f8:a9:dc:c3:3a:87:8b: bb:73:21:ed:ad:ab:af:2f:ae:7c:2d:c5:3c:9a:98: d8:3f:0e:d7:1f:a5:a0:6f:23:f7:45:d2:3e:c9:e8: 78:c8:bc:72:2a:9d:7f:a6:27:d4:1b:83:09:db:68: ff:80:13:75:0b:14:d0:af:ff:ad:5e:ba:ed:ab:f0: 10:09:63:b8:f1:25:a1:ab:4e:1a:88:c3:94:4c:9d: d4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:97:7A:7D:5C:2B:37:A4:00:D2:75:F7:6C:53:02:C0:8E:84:4D:2A X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Tpd6fVwrN6QA0nX3bFMCwI6ETSo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.46.160.0/19 Signature Algorithm: sha256WithRSAEncryption 5b:f1:ec:17:82:45:60:41:1b:67:7c:7c:30:6c:2e:74:c5:4c: f0:88:2f:c1:c7:4a:f2:61:bf:bc:5b:d3:df:e8:c8:fc:ec:35: 93:cd:56:5d:d9:c6:ca:71:1e:e6:06:92:7d:fa:95:80:fc:c2: 3c:75:71:2c:c6:ea:ed:44:48:f8:77:c5:c6:eb:b9:ce:d5:28: 18:5c:8f:c1:f1:9f:28:70:86:bc:56:ad:d8:62:87:a7:e3:ff: 7e:0d:43:ac:ca:b1:00:d7:b5:0b:6d:c7:cc:de:41:cf:38:b2: 3e:2f:66:cc:63:b9:31:23:3e:76:f4:2d:f4:29:38:f3:76:f0: 82:3a:dd:3b:f4:e3:b8:6b:ba:82:9e:3a:1e:63:95:a2:f5:da: 42:97:7d:dd:a0:8b:ee:30:68:9e:18:23:03:99:9b:b6:9b:d6: 7b:d5:b6:de:14:47:0f:b8:76:00:2e:a7:3a:91:c4:84:a0:8f: 4c:7f:fa:72:71:52:23:ce:fd:21:50:95:86:87:b3:e6:8c:6c: 8f:20:74:d1:ff:f4:4b:d4:96:5b:79:af:0e:08:f7:fe:6b:70: bd:d3:cf:73:7d:92:c2:88:3c:60:bd:75:90:17:03:14:2a:19: d5:22:05:09:5c:61:3b:e7:cd:86:36:1f:cb:c8:ca:db:99:9c: 55:9a:78:ce -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDFaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDRFOTc3QTdENUMyQjM3 QTQwMEQyNzVGNzZDNTMwMkMwOEU4NDREMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9Dw1YcRXjrOAa29KXWKA+rUbY9uAVg6O82Xbo1R0wtEIqcnUF hG5qEwVD8uZ0seAh/GCYKaqv51vmbxOQ1pj7w6x+TY7ommyJhBI6qjbdK7pZ8z8k i90arx8gF6iu0Hg/rJAwEe5r+M5vShxUgqwXeZKjXfos11NU/ymFv/iTGbf440AP W5htptFwpTV4x/wREbcxrNEQoazVzsUarq5UyVyAGONqkjI+yvj5+KncwzqHi7tz Ie2tq68vrnwtxTyamNg/DtcfpaBvI/dF0j7J6HjIvHIqnX+mJ9QbgwnbaP+AE3UL FNCv/61euu2r8BAJY7jxJaGrThqIw5RMndRlAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUTpd6fVwrN6QA0nX3bFMCwI6ETSowHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvVHBkNmZWd3JONlFB MG5YM2JGTUN3STZFVFNvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXEuoDANBgkqhkiG9w0BAQsFAAOCAQEAW/HsF4JFYEEbZ3x8MGwudMVM8Igv wcdK8mG/vFvT3+jI/Ow1k81WXdnGynEe5gaSffqVgPzCPHVxLMbq7URI+HfFxuu5 ztUoGFyPwfGfKHCGvFat2GKHp+P/fg1DrMqxANe1C23HzN5BzziyPi9mzGO5MSM+ dvQt9Ck483bwgjrdO/TjuGu6gp46HmOVovXaQpd93aCL7jBonhgjA5mbtpvWe9W2 3hRHD7h2AC6nOpHEhKCPTH/6cnFSI879IVCVhoez5oxsjyB00f/0S9SWW3mvDgj3 /mtwvdPPc32Swog8YL11kBcDFCoZ1SIFCVxhO+fNhjYfy8jK25mcVZp4zg== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:18 2025 by rpki-client