$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3014/_pMm4CBSl6OT26vItkFzHWxfBjE.roa File: _pMm4CBSl6OT26vItkFzHWxfBjE.roa (raw, json) Hash identifier: ynIjp6LKlbiPRCWuOgq+FW5aBDusMRuaPr9VhaIy2po= Subject key identifier: FE:93:26:E0:20:52:97:A3:93:DB:AB:C8:B6:41:73:1D:6C:5F:06:31 Certificate issuer: /CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Certificate serial: 15C5 Authority key identifier: 3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/_pMm4CBSl6OT26vItkFzHWxfBjE.roa Signing time: Sat 13 Sep 2025 03:06:46 +0000 ROA not before: Sat 13 Sep 2025 03:06:46 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 55990 IP address blocks: 113.46.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5573 (0x15c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ACE10C838292C6FC706585B444EBAEDCA2A11B9 Validity Not Before: Sep 13 03:06:46 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=FE9326E0205297A393DBABC8B641731D6C5F0631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:15:99:25:21:7c:a9:ca:47:31:a0:19:5b:b9: 5e:2a:10:ba:b4:52:90:0e:8b:4e:4c:c6:fe:0c:fe: 8f:80:37:3c:16:33:9d:97:dc:e4:3d:09:03:75:8d: 56:98:3f:a2:a5:56:f3:fa:9d:e5:51:d0:35:38:9f: 27:a2:74:e3:f1:04:6c:9d:24:11:da:5e:80:86:44: c1:5c:33:c8:5a:20:85:c0:b0:90:f9:99:5e:27:e9: b7:c4:1d:83:a9:1d:41:9d:cc:25:e5:78:c1:01:32: 5d:b7:a5:f5:5c:ae:73:6e:7f:64:b7:82:51:96:d9: 86:65:0f:61:69:59:33:68:ad:d5:7b:f0:81:9e:c7: ea:6c:da:e9:e0:e6:9f:55:b1:65:6f:95:ea:e7:c0: 10:7e:03:f3:91:7d:60:50:39:a9:fd:76:80:ae:42: d7:f4:86:a3:a9:dd:d2:8f:ca:2e:9c:10:18:9e:c0: 43:54:3d:8a:0a:ad:69:91:6c:79:c3:ae:10:58:f0: 89:d1:83:21:91:06:14:f7:29:66:14:98:63:99:a5: 4f:e3:8a:8b:24:df:c1:a5:27:64:b4:8d:5b:9e:ed: a1:53:67:dd:4b:df:ae:ec:be:ed:14:26:d5:4d:6e: 86:d0:d1:74:9a:0a:9a:cd:09:f7:e8:69:8c:dd:d2: f4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:93:26:E0:20:52:97:A3:93:DB:AB:C8:B6:41:73:1D:6C:5F:06:31 X509v3 Authority Key Identifier: keyid:3A:CE:10:C8:38:29:2C:6F:C7:06:58:5B:44:4E:BA:ED:CA:2A:11:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/Os4QyDgpLG_HBlhbRE667coqEbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/Os4QyDgpLG_HBlhbRE667coqEbk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3014/_pMm4CBSl6OT26vItkFzHWxfBjE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.46.128.0/19 Signature Algorithm: sha256WithRSAEncryption 8d:e1:f8:80:d0:25:b1:0e:9d:4b:98:fa:a0:f8:98:61:2a:6d: ad:bf:87:43:51:b1:d9:a8:25:1e:e8:44:da:ab:16:ed:6f:25: 2e:bd:4b:10:f7:d3:ef:0c:ac:4f:10:c6:88:46:18:aa:a3:ea: b5:c9:1e:3a:ae:c2:93:3f:40:00:7b:99:41:a9:9b:3a:b3:ec: 9c:e1:39:bd:0e:14:31:98:b3:c8:ff:be:90:0c:d6:fc:ee:b9: 37:a7:04:a0:ae:9f:26:32:66:24:89:19:5c:d5:7e:ac:1a:a6: 9f:87:84:f4:0e:0b:6c:07:e2:2c:9e:9b:3b:dd:03:20:28:77: 2f:6e:5b:15:8c:c0:e9:95:4c:db:8f:39:a6:6f:b7:73:01:87: 3b:ca:9e:2e:fd:59:dc:44:1f:59:a7:a5:60:19:7a:6f:ac:b4: f0:f3:c6:1b:50:4e:87:b9:6f:4a:dc:40:95:02:3d:df:f7:29: a2:8f:fc:b3:1f:3c:c4:65:70:2b:c3:66:78:ea:bd:a6:54:9a: 81:eb:d9:ba:37:1a:70:a6:df:ec:13:9c:9d:03:0c:fc:bb:13: f0:e3:1a:67:ac:7c:d3:11:d1:00:a8:87:48:80:b3:f8:70:bb: 8e:e8:17:3c:11:ea:69:ba:fd:50:d7:a9:1e:6f:48:34:d6:99: 53:0a:72:66 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICFcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0FD RTEwQzgzODI5MkM2RkM3MDY1ODVCNDQ0RUJBRURDQTJBMTFCOTAeFw0yNTA5MTMw MzA2NDZaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEZFOTMyNkUwMjA1Mjk3 QTM5M0RCQUJDOEI2NDE3MzFENkM1RjA2MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYFZklIXypykcxoBlbuV4qELq0UpAOi05Mxv4M/o+ANzwWM52X 3OQ9CQN1jVaYP6KlVvP6neVR0DU4nyeidOPxBGydJBHaXoCGRMFcM8haIIXAsJD5 mV4n6bfEHYOpHUGdzCXleMEBMl23pfVcrnNuf2S3glGW2YZlD2FpWTNordV78IGe x+ps2ung5p9VsWVvlernwBB+A/ORfWBQOan9doCuQtf0hqOp3dKPyi6cEBiewENU PYoKrWmRbHnDrhBY8InRgyGRBhT3KWYUmGOZpU/jiosk38GlJ2S0jVue7aFTZ91L 367svu0UJtVNbobQ0XSaCprNCffoaYzd0vSZAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU/pMm4CBSl6OT26vItkFzHWxfBjEwHwYDVR0jBBgwFoAUOs4QyDgpLG/HBlhb RE667coqEbkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzAx NC9PczRReURncExHX0hCbGhiUkU2Njdjb3FFYmsuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL09zNFF5RGdwTEdfSEJsaGJSRTY2N2NvcUViay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwMTQvX3BNbTRDQlNsNk9U MjZ2SXRrRnpIV3hmQmpFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXEugDANBgkqhkiG9w0BAQsFAAOCAQEAjeH4gNAlsQ6dS5j6oPiYYSptrb+H Q1Gx2aglHuhE2qsW7W8lLr1LEPfT7wysTxDGiEYYqqPqtckeOq7Ckz9AAHuZQamb OrPsnOE5vQ4UMZizyP++kAzW/O65N6cEoK6fJjJmJIkZXNV+rBqmn4eE9A4LbAfi LJ6bO90DICh3L25bFYzA6ZVM2485pm+3cwGHO8qeLv1Z3EQfWaelYBl6b6y08PPG G1BOh7lvStxAlQI93/cpoo/8sx88xGVwK8NmeOq9plSagevZujcacKbf7BOcnQMM /LsT8OMaZ6x80xHRAKiHSICz+HC7jugXPBHqabr9UNepHm9INNaZUwpyZg== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:19 2025 by rpki-client