$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/33/41EdNeYthNI184xDZd6FJUQ2f-Q.roa File: 41EdNeYthNI184xDZd6FJUQ2f-Q.roa (raw, json) Hash identifier: Il6nEvx/d+Q7kVrsNSckiIQ2UrjILLhsV9a4Q14rUFQ= Subject key identifier: E3:51:1D:35:E6:2D:84:D2:35:F3:8C:43:65:DE:85:25:44:36:7F:E4 Certificate issuer: /CN=2C0314DFDED41AB611D99F542063982FE38080BA Certificate serial: 0A67 Authority key identifier: 2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/41EdNeYthNI184xDZd6FJUQ2f-Q.roa Signing time: Sat 13 Sep 2025 03:03:18 +0000 ROA not before: Sat 13 Sep 2025 03:03:18 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 146838 IP address blocks: 117.126.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 08:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2663 (0xa67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C0314DFDED41AB611D99F542063982FE38080BA Validity Not Before: Sep 13 03:03:18 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=E3511D35E62D84D235F38C4365DE852544367FE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1b:0b:ab:ca:56:d1:0d:29:ba:2a:77:2d:0f: f8:20:16:5b:15:45:03:3a:20:57:c8:2f:c1:dd:c6: 45:3a:be:fa:f5:62:03:a0:01:c3:e2:b5:3a:14:bd: 64:1c:09:4f:3e:61:3d:c8:72:3f:5b:94:7b:61:ff: 92:f4:18:77:c4:0d:7f:36:69:e3:c5:5a:2a:2c:2f: 1f:5f:90:20:4e:f8:f0:ee:c2:0e:4f:0f:ae:e3:e4: 0d:fc:f3:a7:89:da:63:cd:4d:cf:6e:e9:2c:d1:81: 6e:c9:b1:6f:0d:1e:c0:0d:86:ac:c5:84:d5:cf:7b: 8c:18:a9:e4:4d:c8:f2:c6:05:ec:a5:e6:25:95:c6: 4c:23:d6:f0:e0:f8:5a:d7:39:be:01:1f:d9:ba:6a: 81:a3:97:fe:d9:b7:47:83:c8:c2:98:47:d0:1d:6e: 9d:82:9a:42:2f:54:c3:93:63:be:74:e9:d5:e3:1f: 8a:8d:cc:2e:bb:4b:20:37:2c:0f:b8:57:13:d0:f2: a4:1b:30:e5:17:a2:bb:85:76:bd:5a:b5:b2:ba:11: 09:ce:0a:d1:3b:84:3d:77:be:8e:6e:6c:17:8b:62: 1d:a2:2d:84:10:15:8f:a4:bd:3b:8a:5b:a9:ab:ec: 9f:46:e5:ec:f5:2a:ec:49:1f:dc:20:e3:6f:63:be: 9b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:51:1D:35:E6:2D:84:D2:35:F3:8C:43:65:DE:85:25:44:36:7F:E4 X509v3 Authority Key Identifier: keyid:2C:03:14:DF:DE:D4:1A:B6:11:D9:9F:54:20:63:98:2F:E3:80:80:BA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/LAMU397UGrYR2Z9UIGOYL-OAgLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/LAMU397UGrYR2Z9UIGOYL-OAgLo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/33/41EdNeYthNI184xDZd6FJUQ2f-Q.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 117.126.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:0d:07:dc:a3:8b:4a:ee:27:79:43:db:dd:41:91:e5:25:5f: fc:2f:fa:4e:59:13:03:10:4d:6d:92:26:93:c1:d9:45:e9:a0: 6b:21:76:bd:0e:c5:3f:15:c4:06:2f:db:8b:33:d6:c7:25:39: 90:e6:04:a0:9f:63:da:24:a5:5b:04:4c:bf:c9:a1:12:28:ab: 5e:24:1e:b9:07:a9:3b:82:ba:c1:b6:3f:f8:65:c0:a0:5a:89: 41:3c:08:48:55:0d:f3:ed:e6:3d:e2:b3:95:4d:e1:0a:a7:5b: 4f:2a:f8:75:bf:50:5c:95:6e:7c:51:5f:37:33:34:93:66:4b: bf:00:36:7e:d5:43:f9:c6:f2:49:f1:57:6a:a2:c3:4b:30:f5: f5:4c:ff:49:73:35:fc:c1:f1:3f:fe:96:84:79:1a:e1:84:a4: 50:ad:c9:1f:63:b1:ac:ff:b5:b9:c8:43:32:b2:ec:20:d4:78: 72:cd:79:14:04:9c:ee:00:05:3d:74:80:81:f7:45:77:3c:e6: aa:ba:03:03:b0:59:ca:f5:6a:2e:70:dd:fb:1d:91:9c:58:8b: 30:f8:d4:e3:2f:48:18:eb:5c:ae:c8:72:a2:c6:d2:f0:01:01: 29:d3:7e:63:34:1d:95:d3:21:dc:9e:02:4d:2a:29:2c:ad:17: d3:35:86:c3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkMw MzE0REZERUQ0MUFCNjExRDk5RjU0MjA2Mzk4MkZFMzgwODBCQTAeFw0yNTA5MTMw MzAzMThaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEUzNTExRDM1RTYyRDg0 RDIzNUYzOEM0MzY1REU4NTI1NDQzNjdGRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEGwurylbRDSm6KnctD/ggFlsVRQM6IFfIL8HdxkU6vvr1YgOg AcPitToUvWQcCU8+YT3Icj9blHth/5L0GHfEDX82aePFWiosLx9fkCBO+PDuwg5P D67j5A3886eJ2mPNTc9u6SzRgW7JsW8NHsANhqzFhNXPe4wYqeRNyPLGBeyl5iWV xkwj1vDg+FrXOb4BH9m6aoGjl/7Zt0eDyMKYR9Adbp2CmkIvVMOTY7506dXjH4qN zC67SyA3LA+4VxPQ8qQbMOUXoruFdr1atbK6EQnOCtE7hD13vo5ubBeLYh2iLYQQ FY+kvTuKW6mr7J9G5ez1KuxJH9wg429jvpuvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU41EdNeYthNI184xDZd6FJUQ2f+QwHwYDVR0jBBgwFoAULAMU397UGrYR2Z9U IGOYL+OAgLowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzMv TEFNVTM5N1VHcllSMlo5VUlHT1lMLU9BZ0xvLmNybDBjBggrBgEFBQcBAQRXMFUw UwYIKwYBBQUHMAKGR3JzeW5jOi8vcnBraS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNE MDAwMC9MQU1VMzk3VUdyWVIyWjlVSUdPWUwtT0FnTG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBr aS5jbm5pYy5jbi9ycGtpL0E5MTYyRTNEMDAwMC8zMy80MUVkTmVZdGhOSTE4NHhE WmQ2RkpVUTJmLVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMu Y24vcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA dX4wDQYJKoZIhvcNAQELBQADggEBACANB9yji0ruJ3lD291BkeUlX/wv+k5ZEwMQ TW2SJpPB2UXpoGshdr0OxT8VxAYv24sz1sclOZDmBKCfY9okpVsETL/JoRIoq14k HrkHqTuCusG2P/hlwKBaiUE8CEhVDfPt5j3is5VN4QqnW08q+HW/UFyVbnxRXzcz NJNmS78ANn7VQ/nG8knxV2qiw0sw9fVM/0lzNfzB8T/+loR5GuGEpFCtyR9jsaz/ tbnIQzKy7CDUeHLNeRQEnO4ABT10gIH3RXc85qq6AwOwWcr1ai5w3fsdkZxYizD4 1OMvSBjrXK7IcqLG0vABASnTfmM0HZXTIdyeAk0qKSytF9M1hsM= -----END CERTIFICATE-----Generated at Mon Oct 20 08:33:48 2025 by rpki-client