$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/357/9EagA56WVM6kpTQ8jadQG7pUMDE.roa File: 9EagA56WVM6kpTQ8jadQG7pUMDE.roa (raw, json) Hash identifier: L6JnTaYkliglaFxtnTSH80tKSo26V8tuLROJtvyDN5A= Subject key identifier: F4:46:A0:03:9E:96:54:CE:A4:A5:34:3C:8D:A7:50:1B:BA:54:30:31 Certificate issuer: /CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Certificate serial: 195C Authority key identifier: B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/9EagA56WVM6kpTQ8jadQG7pUMDE.roa Signing time: Sat 13 Sep 2025 03:10:19 +0000 ROA not before: Sat 13 Sep 2025 03:10:19 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 37963 IP address blocks: 112.125.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6492 (0x195c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3BA6AEF3B8FA2E5D9B5E43438E0020D426A1ECA Validity Not Before: Sep 13 03:10:19 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=F446A0039E9654CEA4A5343C8DA7501BBA543031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:32:62:09:b3:81:87:82:21:33:5c:30:ec: cc:26:f9:65:ca:f9:a3:17:64:db:3b:bd:6f:31:9d: e8:02:ec:3e:ba:fa:b9:2c:7b:1c:82:ae:c0:d6:ca: e3:c2:3b:42:0f:36:4d:94:ab:8d:03:60:00:0f:86: 3a:3d:b8:88:e9:9a:61:d9:9c:85:88:25:b7:cf:cf: 3a:be:17:8e:42:10:31:be:a0:79:57:2b:2d:46:06: 71:59:08:91:bd:22:e9:76:91:b9:8b:8b:5a:df:e4: ab:09:8b:87:13:05:3d:bb:33:d3:d7:2d:1c:99:ce: ce:6c:eb:56:ef:a8:9d:2d:76:54:2b:7a:e6:eb:ab: f2:85:73:41:17:cc:eb:c4:74:59:e8:60:eb:08:a7: 22:7c:f1:e6:5c:45:15:a5:a9:c4:f6:75:be:b8:49: 99:fe:4c:01:15:bc:c2:01:71:f6:87:d2:3a:3a:96: 49:27:5f:33:68:9e:a4:38:24:3c:86:eb:36:f5:68: 64:53:39:2c:bf:71:c6:04:dd:89:f5:29:e6:ef:91: 9b:54:a5:37:47:ef:5e:4a:3c:ab:51:a0:96:01:77: 8a:64:56:a3:fa:c4:b1:c4:d3:74:11:7d:a4:54:33: cf:1e:62:fe:a2:9f:25:f7:f5:9c:1d:4f:81:0c:8a: d4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:46:A0:03:9E:96:54:CE:A4:A5:34:3C:8D:A7:50:1B:BA:54:30:31 X509v3 Authority Key Identifier: keyid:B3:BA:6A:EF:3B:8F:A2:E5:D9:B5:E4:34:38:E0:02:0D:42:6A:1E:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/s7pq7zuPouXZteQ0OOACDUJqHso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/s7pq7zuPouXZteQ0OOACDUJqHso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/357/9EagA56WVM6kpTQ8jadQG7pUMDE.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:e0:d0:fb:ba:b4:d6:19:2f:20:27:7b:82:d1:0c:5d:37:9b: 0d:4a:86:b0:bc:a1:88:57:f6:0a:88:60:b7:4f:81:9d:eb:d2: d7:dc:c0:5c:ff:47:fc:30:50:64:d2:c1:55:c2:2b:07:1f:1d: 3f:b0:30:94:95:8a:d4:80:92:61:7d:d8:50:f2:d4:0d:3e:69: 0d:07:0e:62:26:45:3e:1c:c7:68:f6:7a:ae:72:a7:49:24:71: 53:d0:3e:eb:2e:9c:c7:9c:db:0f:34:99:4e:4c:09:63:b1:f9: 66:29:f0:bd:cd:cc:02:86:a7:3b:f5:73:c5:38:45:19:20:4e: 2b:b3:69:11:f4:7c:35:ec:92:51:51:8c:0d:f4:c7:d5:6f:08: 51:32:b7:ef:60:33:15:5f:3d:b8:14:e2:6f:7b:d5:b7:27:b8: 4c:47:4f:16:c5:a2:7d:ae:e7:b9:fc:df:8b:04:24:5f:d8:1f: 52:81:fd:0b:41:b9:57:87:30:8e:e2:a8:09:bb:df:e8:62:23: 7a:14:d9:21:a8:b7:a9:06:f0:a8:46:ad:d5:3f:d9:26:3a:02: fa:46:61:36:e2:7d:e8:28:60:91:8c:33:fa:21:63:8b:2d:fd: 4d:55:94:f2:c7:5f:cf:8a:06:73:25:22:83:1b:73:20:cb:ed: e6:47:cc:d1 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICGVwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjNC QTZBRUYzQjhGQTJFNUQ5QjVFNDM0MzhFMDAyMEQ0MjZBMUVDQTAeFw0yNTA5MTMw MzEwMTlaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEY0NDZBMDAzOUU5NjU0 Q0VBNEE1MzQzQzhEQTc1MDFCQkE1NDMwMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9HzJiCbOBh4IhM1ww7Mwm+WXK+aMXZNs7vW8xnegC7D66+rks exyCrsDWyuPCO0IPNk2Uq40DYAAPhjo9uIjpmmHZnIWIJbfPzzq+F45CEDG+oHlX Ky1GBnFZCJG9Iul2kbmLi1rf5KsJi4cTBT27M9PXLRyZzs5s61bvqJ0tdlQreubr q/KFc0EXzOvEdFnoYOsIpyJ88eZcRRWlqcT2db64SZn+TAEVvMIBcfaH0jo6lkkn XzNonqQ4JDyG6zb1aGRTOSy/ccYE3Yn1KebvkZtUpTdH715KPKtRoJYBd4pkVqP6 xLHE03QRfaRUM88eYv6inyX39ZwdT4EMitQZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9EagA56WVM6kpTQ8jadQG7pUMDEwHwYDVR0jBBgwFoAUs7pq7zuPouXZteQ0 OOACDUJqHsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3 L3M3cHE3enVQb3VYWnRlUTBPT0FDRFVKcUhzby5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvczdwcTd6dVBvdVhadGVRME9PQUNEVUpxSHNvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvMzU3LzlFYWdBNTZXVk02a3BU UThqYWRRRzdwVU1ERS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwBwfTANBgkqhkiG9w0BAQsFAAOCAQEAquDQ+7q01hkvICd7gtEMXTebDUqGsLyh iFf2Cohgt0+BnevS19zAXP9H/DBQZNLBVcIrBx8dP7AwlJWK1ICSYX3YUPLUDT5p DQcOYiZFPhzHaPZ6rnKnSSRxU9A+6y6cx5zbDzSZTkwJY7H5Zinwvc3MAoanO/Vz xThFGSBOK7NpEfR8NeySUVGMDfTH1W8IUTK372AzFV89uBTib3vVtye4TEdPFsWi fa7nufzfiwQkX9gfUoH9C0G5V4cwjuKoCbvf6GIjehTZIai3qQbwqEat1T/ZJjoC +kZhNuJ96ChgkYwz+iFjiy39TVWU8sdfz4oGcyUigxtzIMvt5kfM0Q== -----END CERTIFICATE-----Generated at Mon Oct 20 15:26:45 2025 by rpki-client