$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/_T58Ebxa2m5BuEMMFKbL_SVpkLg.roa File: _T58Ebxa2m5BuEMMFKbL_SVpkLg.roa (raw, json) Hash identifier: q8/NSXgaRzbGgQ3rJVUYa9bz2880jSChOZww83JvobA= Subject key identifier: FD:3E:7C:11:BC:5A:DA:6E:41:B8:43:0C:14:A6:CB:FD:25:69:90:B8 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15C4 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/_T58Ebxa2m5BuEMMFKbL_SVpkLg.roa Signing time: Sat 13 Sep 2025 03:06:46 +0000 ROA not before: Sat 13 Sep 2025 03:06:46 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 110.41.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5572 (0x15c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FD3E7C11BC5ADA6E41B8430C14A6CBFD256990B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f0:db:d6:d0:17:6f:4d:d2:17:e6:d3:74:57: b4:5a:03:c0:b9:cd:32:57:41:02:1b:ba:d5:d2:85: b7:4a:f6:a8:98:25:f8:2b:1c:fe:8a:e6:35:41:0f: 1e:c4:42:12:d9:02:82:51:7f:1a:6c:82:76:78:5c: 0c:d9:f6:00:64:d1:3f:99:c0:ea:d2:81:bd:92:50: e2:1b:41:15:1b:60:b9:10:7b:ea:b9:70:58:4b:72: 66:65:bb:d7:ab:09:22:63:f6:7e:a1:95:3d:9d:14: 47:0b:66:83:b0:38:a7:cc:c9:e3:ec:82:f7:0b:e1: 3f:67:0c:9e:de:32:78:37:2c:21:52:41:54:91:ac: c2:27:81:3c:cf:fc:c7:54:fb:0d:8e:9e:6b:ce:40: 63:30:7a:97:e7:3a:97:2f:9d:32:26:8e:3d:f2:bd: 3f:33:3e:1e:93:aa:d0:a2:87:7e:72:85:a3:ce:68: 44:a9:7d:ee:28:56:b6:33:de:04:99:9e:55:ba:cd: e0:72:f8:6b:5a:a5:92:4b:36:ad:78:20:76:32:e3: 73:3f:fd:87:75:9d:29:1a:58:98:df:05:e7:dd:a0: 3e:c9:81:4a:3d:d6:83:18:e8:fe:ad:7e:6f:47:c6: 90:8f:33:b8:8e:16:dc:2a:5d:41:47:bf:64:2c:e8: 1f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3E:7C:11:BC:5A:DA:6E:41:B8:43:0C:14:A6:CB:FD:25:69:90:B8 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/_T58Ebxa2m5BuEMMFKbL_SVpkLg.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.41.209.0/24 Signature Algorithm: sha256WithRSAEncryption b1:75:f7:a8:6f:4c:89:8a:46:1a:6e:39:12:5e:8d:3f:b6:14: 9c:f2:ad:a0:30:e2:27:d7:55:a7:1d:f5:81:ca:25:e0:65:14: 5b:21:5a:e8:8c:99:cd:e0:6e:b6:42:54:1c:9b:e0:b8:76:7d: 84:5d:89:df:43:64:27:35:6e:3c:3c:d5:21:96:45:1b:72:d7: 73:9c:c0:dc:f1:9e:51:9f:0f:f1:f8:30:4b:99:ee:7f:12:14: 30:e7:f8:3b:b5:ec:f8:18:57:9d:4f:3c:2a:eb:0b:a6:78:26: 5a:f6:f0:b5:23:2f:64:61:f1:da:56:01:b6:c4:60:0e:17:cd: 2d:a6:5f:19:19:07:0a:fb:59:1e:08:b4:3a:9e:32:37:82:97: 33:86:e5:f1:ff:27:45:40:f1:40:bf:3c:2a:0a:96:e3:9d:c7: 05:af:f8:af:74:39:a5:17:e9:b7:12:6b:06:29:d9:e8:5d:7c: 04:75:f4:c1:70:a2:97:c7:10:ac:15:38:ee:1d:24:c2:66:76: b7:6d:66:06:2f:31:7a:c7:ff:bd:33:e3:b7:a3:35:db:df:d5: ac:b9:a5:04:07:f0:ef:76:f6:b0:db:16:fc:dd:98:c1:2f:b6: 2c:1a:6e:ac:90:29:f3:93:39:01:69:e0:cd:88:f0:84:6e:f2: 74:e3:57:15 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZEM0U3QzExQkM1QURB NkU0MUI4NDMwQzE0QTZDQkZEMjU2OTkwQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO8NvW0BdvTdIX5tN0V7RaA8C5zTJXQQIbutXShbdK9qiYJfgr HP6K5jVBDx7EQhLZAoJRfxpsgnZ4XAzZ9gBk0T+ZwOrSgb2SUOIbQRUbYLkQe+q5 cFhLcmZlu9erCSJj9n6hlT2dFEcLZoOwOKfMyePsgvcL4T9nDJ7eMng3LCFSQVSR rMIngTzP/MdU+w2OnmvOQGMwepfnOpcvnTImjj3yvT8zPh6TqtCih35yhaPOaESp fe4oVrYz3gSZnlW6zeBy+GtapZJLNq14IHYy43M//Yd1nSkaWJjfBefdoD7JgUo9 1oMY6P6tfm9HxpCPM7iOFtwqXUFHv2Qs6B9RAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU/T58Ebxa2m5BuEMMFKbL/SVpkLgwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvX1Q1OEVieGEybTVC dUVNTUZLYkxfU1Zwa0xnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAG4p0TANBgkqhkiG9w0BAQsFAAOCAQEAsXX3qG9MiYpGGm45El6NP7YUnPKt oDDiJ9dVpx31gcol4GUUWyFa6IyZzeButkJUHJvguHZ9hF2J30NkJzVuPDzVIZZF G3LXc5zA3PGeUZ8P8fgwS5nufxIUMOf4O7Xs+BhXnU88KusLpngmWvbwtSMvZGHx 2lYBtsRgDhfNLaZfGRkHCvtZHgi0Op4yN4KXM4bl8f8nRUDxQL88KgqW453HBa/4 r3Q5pRfptxJrBinZ6F18BHX0wXCil8cQrBU47h0kwmZ2t21mBi8xesf/vTPjt6M1 29/VrLmlBAfw73b2sNsW/N2YwS+2LBpurJAp85M5AWngzYjwhG7ydONXFQ== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:12 2025 by rpki-client