$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/W5jgJuES1Ap91qcijT4qpUyeCIo.roa File: W5jgJuES1Ap91qcijT4qpUyeCIo.roa (raw, json) Hash identifier: pH5G+WMxkVQJuSU11e9MrR/Jz1Uj3rC84FCSM+Uxntc= Subject key identifier: 5B:98:E0:26:E1:12:D4:0A:7D:D6:A7:22:8D:3E:2A:A5:4C:9E:08:8A Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15C9 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/W5jgJuES1Ap91qcijT4qpUyeCIo.roa Signing time: Sat 13 Sep 2025 03:06:48 +0000 ROA not before: Sat 13 Sep 2025 03:06:48 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 113.47.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5577 (0x15c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:48 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=5B98E026E112D40A7DD6A7228D3E2AA54C9E088A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fb:09:79:39:37:d2:b9:a2:25:40:0f:4f:46: 8c:33:72:75:c4:86:03:ab:d5:d7:31:2a:e5:97:e5: 17:f5:8a:c3:e8:53:61:e9:19:9a:aa:c8:e5:49:15: c6:f8:e7:6f:52:6a:5d:b3:5d:80:07:70:ac:16:84: 2d:92:a5:ac:b7:15:df:e5:69:3c:78:fa:a4:b1:ec: 98:ac:1a:c6:31:83:2d:8c:3b:8a:6f:73:d7:c1:b1: 1f:a9:f4:a6:74:ce:a0:fb:e7:cc:49:5b:9a:67:46: 9f:ae:6f:5a:09:08:c0:d0:ca:96:10:0d:f0:9c:72: 65:34:00:99:53:f7:b1:42:0e:e9:04:f6:60:85:52: 10:4f:29:b0:19:e3:bf:1f:35:13:11:08:55:ee:a4: 8d:7b:44:7f:ff:6e:f7:a0:8e:3b:9e:30:38:45:37: 25:a6:6d:01:79:99:05:96:ac:fb:a7:38:17:64:fb: 9e:21:f8:46:70:ad:73:e7:2c:43:85:a0:8f:0d:c8: b3:f2:65:8d:e3:a1:73:8d:2e:4a:6e:84:84:a1:46: 11:74:35:03:35:98:a9:9a:2e:e1:23:95:34:64:8e: 7b:e4:00:bb:40:74:96:02:40:ff:3e:5c:71:25:97: 67:ce:23:ba:4e:c3:d9:83:14:25:f1:ff:33:6e:bb: d7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:98:E0:26:E1:12:D4:0A:7D:D6:A7:22:8D:3E:2A:A5:4C:9E:08:8A X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/W5jgJuES1Ap91qcijT4qpUyeCIo.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.47.226.0/23 Signature Algorithm: sha256WithRSAEncryption 37:62:a8:dc:12:cb:ca:96:8e:d9:a3:cd:83:9b:f4:33:67:5a: 12:19:7c:2e:30:27:3f:ba:4e:8c:99:c6:10:fc:87:54:fc:05: a1:3d:72:9d:77:81:69:9c:b9:65:b4:ce:6a:6d:19:78:b0:3b: c3:29:29:32:3c:13:be:28:d2:84:92:56:86:a7:24:68:ce:08: 1f:af:3d:a4:8e:96:73:14:f0:2b:f2:2f:b0:6e:5b:15:01:5a: 2a:66:e3:f9:91:93:ed:28:b1:5d:a5:69:d1:02:18:07:2e:c5: 17:c0:db:5b:0c:66:99:48:b8:3a:9d:fa:a3:50:c2:14:58:81: 10:80:ba:2b:05:a6:48:25:aa:0e:0b:68:58:ac:4e:7c:9e:1a: 62:14:e1:4b:33:e4:65:29:2c:cf:d9:c5:d1:17:01:f2:d3:61: 3f:da:ac:ae:ae:4a:b3:c5:e3:95:82:c2:cc:8e:1e:a8:0b:1e: 8b:8c:8b:83:c7:92:bb:34:ea:a4:9d:b7:e5:78:a4:6d:03:22: cd:1f:54:ed:70:e1:4f:0c:56:ec:00:9e:40:d8:e3:aa:a5:66: 82:e6:af:08:e6:a0:2e:26:ae:a5:45:6f:e5:ec:4b:60:a4:68: e1:2f:7e:87:8a:b9:1f:32:69:dc:e2:14:7b:43:35:96:61:5c: 6e:09:4d:a0 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDhaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDVCOThFMDI2RTExMkQ0 MEE3REQ2QTcyMjhEM0UyQUE1NEM5RTA4OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx+wl5OTfSuaIlQA9PRowzcnXEhgOr1dcxKuWX5Rf1isPoU2Hp GZqqyOVJFcb4529Sal2zXYAHcKwWhC2Spay3Fd/laTx4+qSx7JisGsYxgy2MO4pv c9fBsR+p9KZ0zqD758xJW5pnRp+ub1oJCMDQypYQDfCccmU0AJlT97FCDukE9mCF UhBPKbAZ478fNRMRCFXupI17RH//bvegjjueMDhFNyWmbQF5mQWWrPunOBdk+54h +EZwrXPnLEOFoI8NyLPyZY3joXONLkpuhIShRhF0NQM1mKmaLuEjlTRkjnvkALtA dJYCQP8+XHEll2fOI7pOw9mDFCXx/zNuu9d1AgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUW5jgJuES1Ap91qcijT4qpUyeCIowHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvVzVqZ0p1RVMxQXA5 MXFjaWpUNHFwVXllQ0lvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAXEv4jANBgkqhkiG9w0BAQsFAAOCAQEAN2Ko3BLLypaO2aPNg5v0M2daEhl8 LjAnP7pOjJnGEPyHVPwFoT1ynXeBaZy5ZbTOam0ZeLA7wykpMjwTvijShJJWhqck aM4IH689pI6WcxTwK/IvsG5bFQFaKmbj+ZGT7SixXaVp0QIYBy7FF8DbWwxmmUi4 Op36o1DCFFiBEIC6KwWmSCWqDgtoWKxOfJ4aYhThSzPkZSksz9nF0RcB8tNhP9qs rq5Ks8XjlYLCzI4eqAsei4yLg8eSuzTqpJ235XikbQMizR9U7XDhTwxW7ACeQNjj qqVmguavCOagLiaupUVv5exLYKRo4S9+h4q5HzJp3OIUe0M1lmFcbglNoA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:10 2025 by rpki-client