$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3044/E4PP_3uLA1Cw55bmak1f9JGRRx8.roa File: E4PP_3uLA1Cw55bmak1f9JGRRx8.roa (raw, json) Hash identifier: 0iP+XezUxrgE6cPJwsyPP1KKF81wf6Crs0sK+eDfBj0= Subject key identifier: 13:83:CF:FF:7B:8B:03:50:B0:E7:96:E6:6A:4D:5F:F4:91:91:47:1F Certificate issuer: /CN=B08B918D2D45B6371ACB9770743553D1BF224708 Certificate serial: 21C7 Authority key identifier: B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/E4PP_3uLA1Cw55bmak1f9JGRRx8.roa Signing time: Sat 13 Sep 2025 03:08:59 +0000 ROA not before: Sat 13 Sep 2025 03:08:59 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 137718 IP address blocks: 118.196.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8647 (0x21c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B08B918D2D45B6371ACB9770743553D1BF224708 Validity Not Before: Sep 13 03:08:59 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=1383CFFF7B8B0350B0E796E66A4D5FF49191471F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0d:1a:cf:3f:f6:bd:fe:71:ed:09:2b:be:59: e8:2a:cc:be:9a:f5:25:56:bf:a1:28:56:26:6c:1b: de:7a:22:01:53:e1:f5:62:ae:50:5e:e2:5d:66:39: 6a:7b:e4:dd:59:a2:70:6c:da:f1:80:be:2b:0f:85: 7f:60:6e:6f:78:25:1b:b8:05:5f:46:36:ce:98:a7: 77:e1:14:98:6d:30:76:db:cc:6b:cc:08:48:23:42: 6c:34:d1:e8:23:f1:5b:d0:1b:0b:ed:6a:31:d9:5f: 21:98:8c:a5:44:b2:16:1d:eb:de:a1:0f:11:cd:04: bf:f0:72:71:67:f6:c9:ce:09:6e:3f:94:87:02:f7: e7:20:f6:ae:13:7e:45:10:40:40:5f:d6:fa:16:bb: 9a:aa:76:84:09:2d:a5:28:39:93:af:ba:f5:29:86: e5:b2:c0:91:f3:d2:13:83:49:dd:47:84:33:1e:78: 9b:07:8c:94:67:f6:bd:98:96:b3:bc:47:3d:f3:31: 64:3b:bf:e8:1b:94:44:68:d8:6a:2e:c7:c4:eb:9e: 9c:db:78:d4:5e:76:35:34:e8:92:38:a0:f1:78:06: 86:8e:9b:c1:23:29:f0:62:26:53:87:22:8e:aa:ac: 4a:53:c9:f0:f4:ea:26:35:a1:19:d9:2b:9d:34:7c: 24:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:83:CF:FF:7B:8B:03:50:B0:E7:96:E6:6A:4D:5F:F4:91:91:47:1F X509v3 Authority Key Identifier: keyid:B0:8B:91:8D:2D:45:B6:37:1A:CB:97:70:74:35:53:D1:BF:22:47:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/sIuRjS1Ftjcay5dwdDVT0b8iRwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/sIuRjS1Ftjcay5dwdDVT0b8iRwg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3044/E4PP_3uLA1Cw55bmak1f9JGRRx8.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.196.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2e:f7:09:fa:c8:c3:49:66:47:8f:1d:4b:58:89:70:97:c7:e4: 8b:c4:e2:93:23:0f:b3:e2:f8:e2:ed:03:9a:05:e7:cc:6f:b5: 27:c0:5e:92:f8:45:12:a3:4a:db:ff:7c:98:db:a9:8f:cc:fe: de:39:b4:04:98:59:9f:d0:31:57:4c:66:66:6b:a3:a5:7f:f4: db:c0:49:59:5e:23:14:16:bd:de:3d:a5:bb:c6:54:64:77:fd: d0:53:eb:c3:06:bd:73:d2:e7:12:4f:2b:60:ef:32:90:23:8e: b0:61:65:05:99:ba:67:f1:93:97:b0:70:23:69:2e:b5:42:96: 9d:1a:c1:5f:7b:96:b2:02:62:ca:22:8a:c6:c4:ac:18:eb:2e: 46:67:3a:5d:d0:41:9b:16:66:05:60:81:2b:2b:a8:bb:51:0c: ce:dc:4c:fa:32:19:f2:aa:7c:67:2f:79:dd:09:3e:52:e1:00: da:70:94:a4:fc:1d:5c:ec:48:d0:f7:2d:a8:30:12:6e:4d:8f: 28:c7:63:c8:7b:f7:43:60:29:22:36:1d:98:0c:7d:77:2c:7a: 0d:11:0a:33:6b:b1:37:94:c7:cd:51:cc:13:b6:fd:1b:71:a7: 66:cc:f6:30:03:9c:45:3a:fc:97:e1:fd:0d:2a:4d:9b:59:b3: 54:93:67:3e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICIccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjA4 QjkxOEQyRDQ1QjYzNzFBQ0I5NzcwNzQzNTUzRDFCRjIyNDcwODAeFw0yNTA5MTMw MzA4NTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKDEzODNDRkZGN0I4QjAz NTBCMEU3OTZFNjZBNEQ1RkY0OTE5MTQ3MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiDRrPP/a9/nHtCSu+WegqzL6a9SVWv6EoViZsG956IgFT4fVi rlBe4l1mOWp75N1ZonBs2vGAvisPhX9gbm94JRu4BV9GNs6Yp3fhFJhtMHbbzGvM CEgjQmw00egj8VvQGwvtajHZXyGYjKVEshYd696hDxHNBL/wcnFn9snOCW4/lIcC 9+cg9q4TfkUQQEBf1voWu5qqdoQJLaUoOZOvuvUphuWywJHz0hODSd1HhDMeeJsH jJRn9r2YlrO8Rz3zMWQ7v+gblERo2Goux8TrnpzbeNRedjU06JI4oPF4BoaOm8Ej KfBiJlOHIo6qrEpTyfD06iY1oRnZK500fCQNAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUE4PP/3uLA1Cw55bmak1f9JGRRx8wHwYDVR0jBBgwFoAUsIuRjS1Ftjcay5dw dDVT0b8iRwgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzA0 NC9zSXVSalMxRnRqY2F5NWR3ZERWVDBiOGlSd2cuY3JsMGMGCCsGAQUFBwEBBFcw VTBTBggrBgEFBQcwAoZHcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJF M0QwMDAwL3NJdVJqUzFGdGpjYXk1ZHdkRFZUMGI4aVJ3Zy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9y cGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMwNDQvRTRQUF8zdUxBMUN3 NTVibWFrMWY5SkdSUng4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycGtpLmNu bmljLmNuL3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAXbEMA0GCSqGSIb3DQEBCwUAA4IBAQAu9wn6yMNJZkePHUtYiXCXx+SLxOKT Iw+z4vji7QOaBefMb7UnwF6S+EUSo0rb/3yY26mPzP7eObQEmFmf0DFXTGZma6Ol f/TbwElZXiMUFr3ePaW7xlRkd/3QU+vDBr1z0ucSTytg7zKQI46wYWUFmbpn8ZOX sHAjaS61QpadGsFfe5ayAmLKIorGxKwY6y5GZzpd0EGbFmYFYIErK6i7UQzO3Ez6 MhnyqnxnL3ndCT5S4QDacJSk/B1c7EjQ9y2oMBJuTY8ox2PIe/dDYCkiNh2YDH13 LHoNEQoza7E3lMfNUcwTtv0bcadmzPYwA5xFOvyX4f0NKk2bWbNUk2c+ -----END CERTIFICATE-----Generated at Mon Oct 20 22:37:48 2025 by rpki-client